I'd imagine one could crush the server with pathological rewrite regexps too. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		sk5t on Sept 18, 2017 \| parent \| context \| favorite \| on: Optionsbleed – HTTP OPTIONS method can leak Apache... I'd imagine one could crush the server with pathological rewrite regexps too.

hannob on Sept 18, 2017 [–]

You can, and it's very unfortunate that the apache devs don't consider these things vulnerabilities. (I reported a DoS via password hashes a while ago.)

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact