[
https://issues.apache.org/jira/browse/CASSANDRA-3017?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14139085#comment-14139085
]
Matt Stump commented on CASSANDRA-3017:
---------------------------------------
I would like to request a small limit by default, something on the order of
<100k. I would like users to acknowledge that they are potentially doing
something harmful, and possibly rethink their actions. Different limits should
be enforced for user and cluster level communication if at all possible because
it allows us to more effectively target and scold bad actors.
> add a Message size limit
> ------------------------
>
> Key: CASSANDRA-3017
> URL: https://issues.apache.org/jira/browse/CASSANDRA-3017
> Project: Cassandra
> Issue Type: Improvement
> Components: Core
> Reporter: Jonathan Ellis
> Assignee: T Jake Luciani
> Priority: Minor
> Labels: lhf
> Attachments:
> 0001-use-the-thrift-max-message-size-for-inter-node-messa.patch,
> trunk-3017.txt
>
>
> We protect the server from allocating huge buffers for malformed message with
> the Thrift frame size (CASSANDRA-475). But we don't have similar protection
> for the inter-node Message objects.
> Adding this would be good to deal with malicious adversaries as well as a
> malfunctioning cluster participant.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
