Jump to:

23490 Posts in 18996 Topics by 2878 members

General Questions

SilverStripe Forums » General Questions » Please explain how this is not a security issue

General questions about getting started with SilverStripe that don't fit in any of the categories above.

Moderators: martimiz, Sean, biapar, Willr, Ingo, swaiba, simon_w

Page: 1
Go to End
Author Topic: 681 Views
  • brianmwaters
    Avatar
    Community Member
    5 Posts

    Please explain how this is not a security issue Link to this post

    As I understand it, an attacker could easily send a request for /?flush=1 a few times a second, thereby overriding the sites caching mechanism, which could cause trouble on busy sites.

    I'm aware that you're not supposed to post security issues here. However, I'm pretty confident that my understanding, as outlined above, is missing something.

    Can someone fill me in on what I'm missing?

  • Martijn
    Avatar
    Community Member
    271 Posts

    Re: Please explain how this is not a security issue Link to this post

    This only works in Dev mode...

    681 Views
Page: 1
Go to Top

Want to know more about the company that brought you SilverStripe? Then check out SilverStripe.com

Comments on this website? Please give feedback.