Last modified: 2007-05-21 15:53:32 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T11992, the corresponding Phabricator task for complete and up-to-date bug report information.
Bug 9992 - Security enchancement against hammering a wiki.
Security enchancement against hammering a wiki.
Status: RESOLVED DUPLICATE of bug 993
Product: MediaWiki
Classification: Unclassified
User blocking (Other open bugs)
unspecified
All All
: Normal enhancement (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2007-05-21 15:16 UTC by Wiredtape
Modified: 2007-05-21 15:53 UTC (History)
1 user (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description Wiredtape 2007-05-21 15:16:37 UTC
As far as I know there is no protection against someone trying to open multiple edits and submitting them all at once. I can foresee a security risk here, someone could open multiple edits and submit them all with blocks of text, which could eventually cause a server crash or if you are using a shared-host, a max-out of bandwidth or max-out of space. 

A simple timer counting amount of seconds between each submit, and blocking things under 10 seconds, for instance...

Thank you.
Comment 1 Aryeh Gregor (not reading bugmail, please e-mail directly) 2007-05-21 15:53:32 UTC

*** This bug has been marked as a duplicate of bug 993 ***

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links