[wp-trac] Re: [WordPress Trac] #4137: Pingback Denial of Service
possibility
WordPress Trac
wp-trac at lists.automattic.com
Tue Jul 3 11:02:37 GMT 2007
#4137: Pingback Denial of Service possibility
-----------------------------------------------------------+----------------
Reporter: foobarwp12 | Owner: pishmishy
Type: defect | Status: assigned
Priority: high | Milestone: 2.3 (trunk)
Component: Security | Version: 2.1.3
Severity: normal | Resolution:
Keywords: xmlrpc ddos possibility has-patch 2nd-opinion |
-----------------------------------------------------------+----------------
Changes (by pishmishy):
* keywords: xmlrpc ddos possibility => xmlrpc ddos possibility has-patch
2nd-opinion
Comment:
The attachment fixes the problem when allow_url_fopen has been set but
doesn't fix the problem when curl is used to fetch the source page. I
believe that this case can be fixed using callbacks but my PHP isn't up to
the task. I'm opening that part up to others.
--
Ticket URL: <http://trac.wordpress.org/ticket/4137#comment:5>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list