LanX has asked for the wisdom of the Perl Monks concerning the following question:


Germany's biggest online-newspaper puplished today that most webservers are vulnerable because of hash-collisions in web-languages.

Since they didn't mention Perl, I did some investigation finding this publication

So Perl already fixed this in 2003 and the authors used this knowledge to attack the other languages ... xD

see also hash collision DOS

I remember that this issue was mentioned somewhere in the perldocs (IMHO regarding the unpredictable order of storing hash-values)...

Question: Can someone help me find the corresponding perldocs?

Cheers Rolf

  • Comment on DOS attack with hash collisions (Perl rulez)

Replies are listed 'Best First'.
Re: DOS attack with hash collisions (Perl rulez)
by RedElk (Hermit) on Dec 29, 2011 at 17:05 UTC

    This what you are looking for?

      Exactly! Thanks! :)

      Cheers Rolf