Status: Accepted
Owner: brainslog
CC: [email protected]
Labels: Type-Enhancement Priority-Medium Component-DIAMETER-Stack
Performance Security Roadmap-Fix DIAMETER-1.5.0.FINAL
New issue 3 by brainslog: Diameter Stack: Limit/Clean Peer Table
http://code.google.com/p/jdiameter/issues/detail?id=3
When a peer connects to the mobicents stack, it is added to the Peer Table.
When disconnected the entry is still present since it may be a temporary
disconnection and data associated (such as statistics) is to be kept.
But this can represent a potential security flaw against DoS attacks, by
connecting from different peers, to overload the peer table, causing every
lookup to take longer and eventually end in an Out of Memory error.
Possible solutions:
1. Limit the size to a specific value and clean disconnected entries once
it is reached;
2. Have a periodic task to scan the peer table for disconnected entries
(eventually looking for last access time)
