Analyst20721h ago

HTTP/2 Bomb Attack Disrupts Web Servers in Seconds

A home computer on a typical 100Mbps connection can cripple a vulnerable server in mere seconds using a new technique called the HTTP/2 Bomb, which cleverly combines two known weaknesses in HTTP/2 server configurations. This potent attack can be unleashed quickly, leaving servers inaccessible.

https://osintsights.com/http2-bomb-attack-disrupts-web-servers-in-seconds?utm_source=mastodon&utm_medium=social

#Http2Bomb #DenialOfService #Hpack #Slowloris #WebServers

HTTP/2 Bomb Attack Disrupts Web Servers in Seconds

Learn how the HTTP/2 Bomb attack disrupts web servers in seconds by combining known weaknesses, and find out how to protect your server from this threat now.

OSINTSights
Analyst2071d ago

HTTP/2 Bomb Vulnerability Targets Major Web Servers with Remote DoS Exploit

A newly discovered HTTP/2 Bomb vulnerability can be exploited to launch a remote Denial of Service (DoS) attack on major web servers, taking advantage of a weakness in the default HTTP/2 configuration. This flaw cleverly combines a compression bomb and a Slowloris-style hold to target HPACK, HTTP/2's header-compression…

https://osintsights.com/http2-bomb-vulnerability-targets-major-web-servers-with-remote-dos-exploit?utm_source=mastodon&utm_medium=social

#Http2Bomb #DenialOfService #RemoteExploit #Vulnerability #WebServers

HTTP/2 Bomb Vulnerability Targets Major Web Servers with Remote DoS Exploit

Learn how the HTTP/2 Bomb vulnerability exploits major web servers with a remote DoS attack and protect your site now with expert security tips and fixes today.

OSINTSights
Show threadMilesMar 27
Like, ok, I get it, bots will scrape my site. I work in a library. Please, take my info. But this level of traffic is causing timeouts on my server and I don't like that--it reduces availability for flesh-and-blood visitors. #bots #webservers #systemslibrarian
MilesMar 27

Looking at the visits logs for my small server based in Connecticut that serves up Connecticut-focused content:

Huh, that sure is an increase over the normal background roar of bot traffic.
Dang it, Thailand! Also, dangit Philipinnes, Taiwan, and Hong Kong.Anyways, off to see if there's a more granular way to block these bots than blocking the whole country. (I can't even block by IP--each request has a fresh one.) #bots #webservers #systemslibrarian

Interesting LinksMar 26

Stopping Web Server Abuse with Fail2Ban
"At 4am yesterday morning I was awake. Luckily so, as I checked my email and saw a warning that my VPS had been running at 199% CPU for two hours. I went into my office and checked the logs…"

#HowTo #WebServers #fail2ban #ComputerSecurity

Stopping Web Server Abuse with Fail2Ban

At 4am yesterday morning I was awake. Luckily so, as I checked my email and saw a warning that my VPS had been running at 199% CPU for two hours. I went into my office and checked the logs. Someone…

Something Odd!
N-gated Hacker NewsJan 22
Ah, Macron's magical plan to zap €300B from across the Atlantic back to Europe. 🌍💸 Too bad it's as real as this "article" which is just a page full of bot accusations. 🤖🚫 Maybe it's time to invest in better web servers instead. 💻🔥
https://old.reddit.com/r/europe/comments/1qjtvtl/macron_says_300_billion_in_european_savings_flown/ #MacronPlan #EuropeTech #BotAccusations #WebServers #Investment #HackerNews #ngated
QCCEクリスJan 15

How to Prevent AI from Scraping your Content ― off of your website and webserver.

An instruction manual from 2024.

First layer of defence against the EvilArts🤖 is a file on your web server, robots.txt

There's also a json method of updating the file, incl. an ai.robots.txt github repo.

Lots of helpful suggestions in here ― including, sebond layer.

https://lorenzodewaele.com/posts/how-to-prevent-ai-from-scraping-your-content/

#NoAI #NoBots #DataProtection #DataSecurity #PrivacyMatters #WebServers #WebsiteHosting

N-gated Hacker NewsJan 10
Ah, the elusive dream of zero heap allocation wrapped in the obscure magic of OxCaml—a language loved by three people and their pet camel 🐪. Because who doesn't want to parse HTTP/1.1 with a tool so #experimental that it might just parse your sanity instead? 🤯 The future of web servers is... secure? 🤔
https://github.com/avsm/httpz #zeroHeapAllocation #OxCaml #HTTP1_1 #webServers #HackerNews #ngated
GitHub - avsm/httpz: Zero heap allocation HTTP server using OxCaml. v experimental!

Zero heap allocation HTTP server using OxCaml. v experimental! - avsm/httpz

GitHub
Chema Alonso Dec 11
El lado del mal - W3Techs: Estadísticas de WebServers en Internet a finales de 2025: Nginx, Cloudflare Server & Apache https://www.elladodelmal.com/2025/12/w3techs-estadisticas-de-webservers-en.html #Cloudflare #Apache #Web #IIS #NGINX #WebServers #WebTrends
W3Techs: Estadísticas de WebServers en Internet a finales de 2025: Nginx, Cloudflare Server & Apache

Blog personal de Chema Alonso ( https://MyPublicInbox.com/ChemaAlonso ): Ciberseguridad, IA, Innovación, Tecnología, Cómics & Cosas Personasles.

N-gated Hacker NewsNov 27, 2025
Physicists at #CERN have apparently discovered the groundbreaking art of baffling web servers, achieving the elusive "429 Too Many Requests" paradox. 🤯✨ Meanwhile, #antihydrogen remains as elusive as coherent error messages from support teams. 🙃💻
https://phys.org/news/2025-11-physicists-antihydrogen-breakthrough-cern-technique.html #Physics #WebServers #Discovery #429TooManyRequests #SupportTeams #HackerNews #ngated
Physicists drive antihydrogen breakthrough at CERN with record trapping technique

Physicists from Swansea University have played the leading role in a scientific breakthrough at CERN, developing an innovative technique that increases the antihydrogen trapping rate by a factor of ten.

Phys.org