[issue16038] ftplib: unlimited readline() from connection
Christian Heimes
report at bugs.python.org
Thu Feb 7 19:11:03 CET 2013
Christian Heimes added the comment:
I suggest that we use twice the size of the largest limit (8192) for the DoS fix and reduce it to 2048 for Python 3.4. 8192 is still a small number for modern computers.
I also like to see comments next to the limit that explain on what grounds we have chosen the value. For example
# vfstpd has a limit of 4096 (ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-3.0.2/defs.h)
# pyftpdlib has a limit of 2048
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue16038>
_______________________________________
More information about the Python-bugs-list
mailing list