[web-devel] limiting POST

Kazu Yamamoto ( 山本和彦 ) kazu at iij.ad.jp
Fri Jan 6 03:07:58 CET 2012

Previous message: [web-devel] I just published a Wai+Persistent integration testing library (github, not hackage)
Next message: [web-devel] limiting POST
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello guys,

As you may know, "Denial of Service through hash table
multi-collisions" was disclosed:

	http://permalink.gmane.org/gmane.comp.security.full-disclosure/83694

The hashable package is affected but not affected to Yesod suite.
However, I guess we should provide size limitation of HTTP body on
POST to Warp.

# Of course, we should provide rate limiting, too.

--Kazu

Previous message: [web-devel] I just published a Wai+Persistent integration testing library (github, not hackage)
Next message: [web-devel] limiting POST
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the web-devel mailing list