[nycphp-talk] Best way to handle LimitRequestBody $_REQUESTlimitation
Ajai Khattri
ajai at bitblit.net
Tue Jun 22 11:45:04 EDT 2004
Phillip Powell wrote:
> Allowances for .htaccess are, for now, only for error handling (although
> I might allow for specialized .htaccess to free up LimitRequestBody to
> unlimited per client request).
>
Just wanted to point out, there's a good reason Apache has a limit set
by default - setting it to unlimited effectively opens up the web server
for a denial of service attack by uploading massive files that tie up
the server and fill up the disk...
--
Aj.
Systems Administrator / Developer
More information about the talk
mailing list