[
https://issues.apache.org/jira/browse/DIRSERVER-731?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12520813
]
Emmanuel Lecharny commented on DIRSERVER-731:
---------------------------------------------
Well, I have thought about implementing such a workaround, and it's not that
big (there is one place where we can do that in the code), but this won't solve
any DoS attack, as we must accept big objects like JpegPhoto. Those kind of
object, even if limited to a few hundred of Kb (!), will still be stored in
memory, and can kill the server fast.
However, we can implement this workaround first (let's say it can be done,
tests included, in one day), and start to think about streaming data for 2.0 (I
have started a branch for that, but it's a little bit too old now ...)
> Streaming big objects
> ---------------------
>
> Key: DIRSERVER-731
> URL: https://issues.apache.org/jira/browse/DIRSERVER-731
> Project: Directory ApacheDS
> Issue Type: Improvement
> Reporter: Emmanuel Lecharny
> Priority: Critical
> Fix For: 1.5.1
>
>
> We really need to implement a streming of big objects, like JpegPhoto,
> otherwise the server can be killed trying to manage them.
> The problem is that they are stored entirely in memory, and this is not an
> option for megabytes of data in a JVM. We should find a way to work with MINA
> to send bytes on the fly (for instance by packets of 8kb). The very same when
> we receive huge data : we should store them somwhere on the disk instead of
> creating a byte[] large enough to store the data.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
