Jump to:

18590 Posts in 4875 Topics by 2285 members

General Questions

SilverStripe Forums » General Questions » Please explain how this is not a security issue

General questions about getting started with SilverStripe that don't fit in any of the categories above.

Moderators: martimiz, Howard, Sean, Ryan M., biapar, Willr, Ingo, swaiba

Page: 1	Go to End
Author	Topic:	359 Views

brianmwaters

Community Member
5 Posts

Please explain how this is not a security issue

17 March 2011 at 11:19am

As I understand it, an attacker could easily send a request for /?flush=1 a few times a second, thereby overriding the sites caching mechanism, which could cause trouble on busy sites.
I'm aware that you're not supposed to post security issues here. However, I'm pretty confident that my understanding, as outlined above, is missing something.
Can someone fill me in on what I'm missing?
Martijn

Community Member
270 Posts

Re: Please explain how this is not a security issue

17 March 2011 at 12:35pm

This only works in Dev mode...

		359 Views
Page: 1	Go to Top

Meet our 2012 Google Summer of Code Students

Sigurd Magnusson is one of SilverStripe’s three co-founders. Sig is based in Wellington, New Zealand and works full-time at the SilverStripe headquarters. His efforts are focused on sales, marketing and fostering the open source community. Sig is also our go-to guy for all things...

Read on

Follow @SilverStripe

Quick links

Ask questions in our Forums

Learn all about our CMS

Download SilverStripe

Get tech answers from our Knowledge Base

Try SilverStripe yourself in our online demo

Get inspired: see our Community Showcase

Learn all about our the SilverStripe Framework

See all the free support options we offer

Stay up to date with our SilverStripe Newsletter

Want to know more about the company that brought you SilverStripe? Then check out SilverStripe.com

Comments on this website? Please give feedback.

Privacy Policy