이전 목록 다음

the attack for demonstration purposes

훈련소장

4년 전 2,374

해커가

Responsible Disclosure would be regarding an Interval HTTP-Header based vulnerability that creates overflow in the server process to impact the request handling.

I would like to create a PoC of the attack for demonstration purposes and instruct with solving it.
Regards,

위와같이 메시지가 온후 사이트 작동이 멈추고 access.log 에 다음과 같이 되어있습니다.

아무 정보나 좋습니다... 해결책을 찾고 있는 중입니다.

51.159.5.133 - - [29/Nov/2021:15:31:58 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
101.99.95.54 - - [29/Nov/2021:15:31:58 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
201.28.120.142 - - [29/Nov/2021:15:31:58 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
163.172.35.121 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
182.53.50.184 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
115.75.1.184 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
115.75.1.184 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
36.95.65.99 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
202.162.214.243 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
51.159.5.133 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
103.124.2.239 - - [29/Nov/2021:15:31:59 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
188.166.162.1 - - [29/Nov/2021:15:32:00 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
103.124.2.239 - - [29/Nov/2021:15:32:00 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"
203.189.142.168 - - [29/Nov/2021:15:32:00 +0000] "PRI * HTTP/2.0" 400 182 "-" "-"

에러로그는 다음과 같습니다.

2021/11/29 15:32:56 [alert] 6395#6395: 768 worker_connections are not enough

nginx