[OT] RE: Is Tomcat being hacked by curl ?

[Peter Crowther <Pe...@melandra.com>]

> From: David Rees [mailto:drees76@gmail.com] 
> You can use telnet to run a crude DoS attack, too. Or any other tool
> which can open a TCP connection. curl would not be my first choice to
> perform a DoS attack if I were so inclined.

No, it's a bit resource-intensive.  A good few years ago, when I was
testing credit card auth systems for a large UK retailer, I wrote a load
tester that would sustain upwards of 200 TCP connection attempts per
second.  It took me a couple of hours to write the core, and it ran on a
P100 desktop under Yggdrasil Linux, kernel version 1.0.0 - we never
found out how high it'd go, as the servers failed at a small fraction of
that load.  I've no doubt far more effective DoS (and DDoS) tools exist
than that now; this is merely a datum about just how easy it is to write
better hacking tools!

		- Peter

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org