diff options
author | Loïc Hoguin <[email protected]> | 2013-01-06 19:49:01 +0100 |
---|---|---|
committer | Loïc Hoguin <[email protected]> | 2013-01-06 19:49:01 +0100 |
commit | a013becc66b50db038c1f7f3539040b4482bba18 (patch) | |
tree | 78b95a24fa5959a89125752b18d6c9ea42a0424f /examples/compress_response | |
parent | 638d0345d1c738a6a4e73ce291f5ca6bfa4d0b5d (diff) | |
download | cowboy-a013becc66b50db038c1f7f3539040b4482bba18.tar.gz cowboy-a013becc66b50db038c1f7f3539040b4482bba18.tar.bz2 cowboy-a013becc66b50db038c1f7f3539040b4482bba18.zip |
Add protection against slowloris vulnerability
This changes the behavior of the `timeout` protocol option to
mean "Time in which the full request line and headers must be
received". The default of 5s should be fine for all normal uses.
This change has no noticeable impact on performance and is thus
enabled by default for everyone. It can be disabled by setting
`timeout` to `infinity` although that is definitely not encouraged.
Inspired by the contribution from @naryl on github.
Diffstat (limited to 'examples/compress_response')
0 files changed, 0 insertions, 0 deletions