[Zope] Easy Zope DoS ?

John Ziniti jziniti@speakeasy.org
Tue, 21 May 2002 16:18:09 -0400


Zope 2.4.3 on Linux returned a HTTP/1.0 500 and continued
serving requests from other browsers.

John Adams wrote:

>It seems that if I've started the zope server from the command line, and
>then telnet to the port it's running on (8080) and issue a malformed HTTP
>request, I can kill the server. Does anyone else experience this?
>
>i.e.
>
>% telnet www 8080
>GET /<press return>
><press return>
>
>The server goes down for the count after this.
>
>-j
>
>
>
>_______________________________________________
>Zope maillist  -  Zope@zope.org
>http://lists.zope.org/mailman/listinfo/zope
>**   No cross posts or HTML encoding!  **
>(Related lists - 
> http://lists.zope.org/mailman/listinfo/zope-announce
> http://lists.zope.org/mailman/listinfo/zope-dev )
>
>
>  
>