|
From: | Chicken Trac |
Subject: | Re: [Chicken-janitors] #1073: Spiffy should signal request-header-fields-too-large upon (exn http line-limit-exceeded) |
Date: | Sun, 24 Nov 2013 12:07:08 -0000 |
#1073: Spiffy should signal request-header-fields-too-large upon (exn http line- limit-exceeded) -------------------------+-------------------------------------------------- Reporter: sjamaan | Owner: sjamaan Type: defect | Status: closed Priority: major | Milestone: someday Component: extensions | Version: 4.8.x Resolution: wontfix | Keywords: spiffy error-handling -------------------------+-------------------------------------------------- Changes (by sjamaan): * status: new => closed * resolution: => wontfix Comment: On second thought, let's not inform potential attackers any more than we have to. Just rudely disconnecting is the safest thing to do when someone is being rude in sending you bogus requests longer than you're willing to accept. It's a security setting after all! It's unfortunate for the clients that accidentally cross the limit. -- Ticket URL: <http://bugs.call-cc.org/ticket/1073#comment:4> Chicken Scheme <http://www.call-with-current-continuation.org/> Chicken Scheme is a compiler for the Scheme programming language.
[Prev in Thread] | Current Thread | [Next in Thread] |