Today, Apache 2.2.20 released to in order to fix the DDOS vulnerability reported few days back.
Fix handling of byte-range requests to use less memory, to avoid denial of service. If the sum of all ranges in a request is larger than the original file, ignore the ranges and send the complete file.
For more Details:
https://www.apache.org/dist/httpd/Announcement2.2.html
Fix handling of byte-range requests to use less memory, to avoid denial of service. If the sum of all ranges in a request is larger than the original file, ignore the ranges and send the complete file.
For more Details:
https://www.apache.org/dist/httpd/Announcement2.2.html