Apache killerã¯å±é™ºï½žApache killerを評価ã™ã‚‹ä¸Šã§ã®æ³¨æ„~Apacheã®è„†å¼±æ€§(CVE-2011-3192)ã„ã‚ゆるApache killerãŒè©±é¡Œã«ãªã£ã¦ã„ã¾ã™ãŒã€ãã®è„…å¨ã«ã¤ã„ã¦ã¯ä¸€éƒ¨èª¤è§£ãŒã‚るよã†ã§ã™ã€‚ 以下ã¯ã€éžå¸¸ã«è„…å¨ã¨ã™ã‚‹å ±å‘Šã®ä¾‹ã§ã™ã€‚ 一方今回ã®ã¯ãƒ—ãƒã‚»ã‚¹ã®è‚¥å¤§åŒ–ã‚’ä¼´ã†ã®ã§ã€å®Ÿãƒ¡ãƒ¢ãƒªæ¶ˆè²»ã—ã¦æ›´ã«ã‚¹ãƒ¯ãƒƒãƒ—も使ã„å°½ãã—ã¦OS毎激é‡ã«ãªã£ãŸã‚ã’ãLinuxã¨ã‹ã®å ´åˆã¯OOM Killer発動ã¨ã€ä»–ã®ãƒ—ãƒã‚»ã‚¹ã‚„å ´åˆã«ã‚ˆã£ã¦ã¯OSã‚’å·»ã込んã§é€ã£ã¦ã—ã¾ã„ã¾ã™ã€‚ CVE-2011-3192 Range header DoS vulnerability Apache HTTPD 1.3/2.xより引用 以下ã¯ã€ãã‚Œã»ã©è„…å¨ã§ãªã‹ã£ãŸã¨ã™ã‚‹å ±å‘Šã®ä¾‹ã§ã™ã€‚ pooh.gr.jp ã¯çµæ§‹é ‘丈ã ã£ãŸã®ã§ 60 並列ã§ã‚„ã£ã¨ CPU idle 30% ã¾ã§æ¸›ã‚‰ã›ãŸã€‚ Apache Killer (CVE-2011-3192) å¯¾ç– for CentOS 5
{{#tags}}- {{label}}
{{/tags}}