commons-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jochen Wiedmann (JIRA)" <j...@apache.org>
Subject [jira] Commented: (FILEUPLOAD-75) [fileupload] create ThresholdingInputStream to prevent denial-of-service attacks
Date Mon, 01 Oct 2007 12:05:52 GMT

    [ https://issues.apache.org/jira/browse/FILEUPLOAD-75?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12531495
] 

Jochen Wiedmann commented on FILEUPLOAD-75:
-------------------------------------------

If you are interested in security questions, then you are surely already using one of the
provided limits, sizeMax (request), and fileSizeMax (item). In that case, you are already
shielded by the LimitedInputStream.



> [fileupload] create ThresholdingInputStream to prevent denial-of-service attacks
> --------------------------------------------------------------------------------
>
>                 Key: FILEUPLOAD-75
>                 URL: https://issues.apache.org/jira/browse/FILEUPLOAD-75
>             Project: Commons FileUpload
>          Issue Type: Improvement
>         Environment: Operating System: All
> Platform: Other
>            Reporter: Ralf Hauser
>            Priority: Minor
>
> possibly org.apache.commons.io.output.ThresholdingOutputStream or an equivalent
> inputstream could help not uploading megabytes if the permitted upload is only a
> few KB!

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message