Attackers know this, and will often try to abuse search functions or other inputs in order to cause "catastrophic backtracking" on the server.