Paolo Insogna

Paolo Insogna

TalkTalk

"The tale of avoiding a time-based DDOS attack in Node.js"

Web applications are commonly vulnerable to several Distributed Denial of Service attacks, sometimes in unexpected ways. An example is the SlowLoris attack, an exploit that leads to service interruption by simply sending the data to the server as slowest as possible. In this talk I will tell the tale of how it took almost 13 years for Node to be completely protected by SlowLoris attack. I will also show that sometimes prioritizing performance can lead to incorrect fixes that can result in a false sense of protection.


TalkTalk
Date:
05 Oct 2022
Time:
08:30 UTC | 08:30 UTC
Length:
25 min
Add to CalendarShare on TwitterView talk info

"Node.js Member, Senior Developer at NearForm, Full-Stack Expert and Polyglot Developer. RPG and LARP addicted and nerd on lot more. From Campobasso, Italy.
| NearForm"

About Paolo

Node.js Member, Senior Developer at NearForm, Full-Stack Expert and Polyglot Developer. RPG and LARP addicted and nerd on lot more. From Campobasso, Italy.

The speakers