this post was submitted on 29 Apr 2025
447 points (97.5% liked)

Technology

69491 readers
4061 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
447
I use Zip Bombs to Protect my Server (idiallo.com)
submitted 1 day ago by some_guy@lemmy.sdf.org to c/technology@lemmy.world
79 comments fedilink hide all child comments
 

The one-liner:

dd if=/dev/zero bs=1G count=10 | gzip -c > 10GB.gz

This is brilliant.

(page 2) 29 comments
sorted by: hot top controversial new old
[–] melroy@kbin.melroy.org 11 points 1 day ago (1 children)

let me try..

[–] melroy@kbin.melroy.org 12 points 1 day ago (1 children)

Looks fine to me. Only 1 CPU core I think was 100%.

10+0 records in
10+0 records out
10737418240 bytes (11 GB, 10 GiB) copied, 28,0695 s, 383 MB/s
[–] melroy@kbin.melroy.org 10 points 1 day ago (1 children)

ow.. now the idea is to unzip it right?

nice idea:

if (ipIsBlackListed() || isMalicious()) {
    header("Content-Encoding: deflate, gzip");
    header("Content-Length: "+ filesize(ZIP_BOMB_FILE_10G)); // 10 MB
    readfile(ZIP_BOMB_FILE_10G);
    exit;
}
[–] mbirth@lemmy.ml 7 points 1 day ago

Might need some

if (ob_get_level()) ob_end_clean();

before the readfile. 😉

[–] UnbrokenTaco@lemm.ee 5 points 1 day ago (1 children)

Interesting. I wonder how long it takes until most bots adapt to this type of "reverse DoS".

[–] sugar_in_your_tea@sh.itjust.works 4 points 23 hours ago

Then we'll just be more clever as well. It's an arms race after all.

[–] Kolanaki@pawb.social 3 points 1 day ago* (last edited 1 day ago)

How I read that code:

"If the dev folder's bullshit is equal to 1 gram..."

[–] fmstrat@lemmy.nowsci.com 0 points 16 hours ago

This is why I use things like Docusaurus to generate static sites. Vulnerability injections are pretty hard when there's no code to inject into.

[–] frozenpopsicle@lemmy.dbzer0.com 0 points 17 hours ago

❤️

load more comments
view more: ‹ prev next ›