Application layer denial of service attack refers to application layer DDOS. DDOS is also called distributed denial of service. It is different from network layer DDOS. Since it occurs at the application layer, the TCP three-way handshake has been completed, the connection has been established, and initiated The attacking IP addresses are all real.
Application Layer Denial of Service Attack
DDOS Introduction
DDOS is also called distributed denial of service, and its full name is Distributed Denial of Service. DDOS originally uses reasonable requests to cause resource overload, resulting in service unavailability
Network layer DDOS: forge a large number of source IP addresses and send a large number of SYN packets to the server, because the source address It is fake, will not respond, and consumes a lot of server resources (CPU and memory)
Application layer DDOS
Application layer DDOS is different from network layer DDOS. Due to the occurrence At the application layer, the TCP three-way handshake has been completed, the connection has been established, and the IP addresses that launched the attack are all real
CC attacks: continuously launched against some application interfaces that consume large resources Normal requests to consume server-side resources
Limit request frequency: Make a request frequency limit for each client in the application
For more related technical articles, please visit PHP中文网!
The above is the detailed content of What is an application layer denial of service attack?. For more information, please follow other related articles on the PHP Chinese website!