Slashdot Mirror

← Back to Stories (view on slashdot.org)

AWS Load Balancer Sends 2 Million Netflix API Reqs To Wrong Customer

Posted by Soulskill on Saturday October 29, 2011 @05:54AM from the close-does-not-in-fact-count dept.

rsk writes "Amazon Web Services' Elastic Load Balancer is a dynamic load-balancer managed by Amazon. Load balancers regularly swapped around with each other which can lead to surprising results; like getting millions of requests meant for a different AWS customer. Using ELBs can result in AWS unintentionally introducing a man-in-the-middle (attack) into your application environment. Most AWS users do not realize this can happen and have not secured against it."

1 of 58 comments (clear)

Min score:

Reason:

Sort:

Re:Charge both ways! by TooMuchToDo · 2011-10-29 06:23 · Score: 1, Informative

Actually, they didn't write the load balancer. They just bought F5s and integrated them with their infrastructure to change their configurations programmatically.