[issue45795] urllib http client vulnerable to DOS attack
Senthil Kumaran
report at bugs.python.org
Thu Nov 18 01:03:39 EST 2021
Senthil Kumaran <senthil at python.org> added the comment:
> Timeout value should not be reset after client receives a data(bytes), because it can easily be abused to achieve DOS.
Interesting. I looked the server example.
Does clients like curl have something like this too?
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue45795>
_______________________________________
More information about the Python-bugs-list
mailing list