Menu
▾
▴
Re: [Phpwiki-talk] Transclusion plugin
|
From: Joby W. <joby@u.washington.edu> - 2002-09-19 18:48:50
|
Reini Urban wrote: > Lawrence Akka schrieb: > >> Recursion: Whilst it is relatively easy (I guess) to detect if a page >> includes itself, what if a page1 includes page2 includes page1 ... >> Actually, this same problem applies to the Redirect plugin - see: >> http://phpwiki.sourceforge.net/demo/en/RedirectLoop. >> >> Possibility for DoS attacks? > > > does anyone knows more about endless redirect loops on the apache? > php has a timeout for this kind of beast, but apache not. > Yes, it can be an issue. Mainly because each redirect is a new session and thus apache thinks it is new. You can use mod_throttle and mod_bandwidth to mitigate the potential threat. Within PHP we could impliment a redirect counter so prevent too many redirects. jbw |
