[wp-trac] [WordPress Trac] #37763: Target server overload due to invalid RSS feed URL in RSS widget
WordPress Trac
noreply at wordpress.org
Fri Dec 30 15:29:29 UTC 2016
#37763: Target server overload due to invalid RSS feed URL in RSS widget
--------------------------+------------------------------
Reporter: bstovall | Owner: stevenkword
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: Feeds | Version: 4.6
Severity: normal | Resolution:
Keywords: needs-patch | Focuses: performance
--------------------------+------------------------------
Changes (by boonebgorges):
* keywords: needs-testing => needs-patch
Comment:
I just ran into a similar problem on a client site. In this case, the URL
entered into the RSS widget was the site URL itself. As suggested by
@stevenkword, 404-related tricks wouldn't address this issue.
SimplePie has internal caching for successfully parsed RSS feeds. Perhaps
in the WP RSS widget - or even lower in the stack, perhaps in
`fetch_feed()` - we can add our own caching (say, 10 minutes) for
"invalid" feeds (where "invalid" covers both 404s and documents that can't
be parsed as RSS). While not perfect, this would minimize the potential
for self-DoSing. What do others think?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/37763#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list