[zope2-tracker] [Bug 257398] Re: PythonScripts: possible DOS attack via extensive memory usage
Hanno Schlichting
hanno at hannosch.eu
Thu Oct 28 09:06:27 EDT 2010
I changed some of the wording in the Zope 2 book to state this clearer.
The chapter on scripting Python did include a very clear statement for
the past number of years, so this shouldn't be any real news:
Despite these limits, a determined user could use large amounts of CPU
time and memory using Python-based Scripts. So malicious scripts could
constitute a kind of denial of service attack by using lots of
resources.
** Changed in: zope2
Status: Confirmed => Fix Released
** Changed in: zope2
Milestone: None => 2.13.0
** Visibility changed to: Public
** This bug is no longer flagged as a security vulnerability
--
PythonScripts: possible DOS attack via extensive memory usage
https://bugs.launchpad.net/bugs/257398
You received this bug notification because you are a member of Zope 2
Developers, which is subscribed to Zope 2.
More information about the zope2-tracker
mailing list