Apache under attack and eating resources?
Devon H. O'Dell
dodell at sitetronics.com
Sun Sep 28 23:36:58 PDT 2003
>I forgot to mention I was running mod_php4 from the ports. I don't think any
>scripts changed in the last few weeks, but I'll have a look into it. Any idea
>what kind of script bugs could cause PHP to tear things down like this, other
>than the classic loop from hell?
>
>Thanks!
>
> - Philip
>
>
PHP does a pretty good job from protecting against this. Installing
mod_php4 from ports will also turn on the --enable-memory-limit switch,
which causes PHP to terminate if more than x MB RAM are taken (this
shouldn't segfault Apache). The "classic loop from hell" should also be
undoable, since PHP has a 60 second execution time limit. You might want
to run your httpd process in gdb to see what's going on when stuff
segfaults. If this is indeed a problem with PHP, I'm sure the developers
would like to hear about it ASAP!
--Devon
More information about the freebsd-security
mailing list