A blog author shares how their zipbomb-based bot defense strategy has become counterproductive. Sophisticated AI-driven bots now detect and ignore zipbombs while continuing to send requests, causing the server to effectively DDoS itself by serving large 10MB files to hundreds of concurrent requests. The author explains the technical details: Apache workers consuming 1.5GB RAM instead of the usual 2MB when serving zipbombs through PHP, leading to server crashes. The zipbomb defense has been disabled, and a new undisclosed strategy has been adopted to handle modern bot traffic.
Table of contents
Join my newsletterSort: