[wp-trac] [WordPress Trac] #11685: Search flood exploit

WordPress Trac wp-trac at lists.automattic.com
Fri Jan 1 19:44:22 UTC 2010


#11685: Search flood exploit
--------------------------+-------------------------------------------------
 Reporter:  scribu        |       Owner:  ryan
     Type:  defect (bug)  |      Status:  new 
 Priority:  normal        |   Milestone:  3.0 
Component:  Security      |     Version:      
 Severity:  normal        |    Keywords:      
--------------------------+-------------------------------------------------

Comment(by Viper007Bond):

 I don't see how this is valid. You can throw random query strings onto any
 website to create load (search query or not). To prevent this would
 require logging of page requests by IP address and all that stuff and
 that's the job of a HTTPD in my option.

 Recommend closing as invalid.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/11685#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list