Denial Of Service attack on HTTP server
Ajith Adapa
adapa.ajith at gmail.com
Mon Mar 8 05:48:07 UTC 2010
>
> # wget http://busybox.net/downloads/busybox-1.2.0.tar.bz2
> Connecting to busybox.net (140.211.167.224:80)
> busybox-1.2.0.tar.bz 100% |*********************| 1366k --:--:-- ETA
> # tar xf busybox-1.2.0.tar.bz2
> # grep -r MAX_CLIENTS busybox-1.2.0
> # grep -r cur_clients busybox-1.2.0
> #
>
> Where did you get your (allegedly) version 1.2?
>
I guess these 2 lines of code can be found in httpd.c file
static int *cur_clients = NULL;
if(*cur_clients < config->max_clients )
--
Thanks,
codingfreak
---------------------------------------------
www.codingfreak.blogspot.com
More information about the busybox
mailing list