Leonardo Rochael Almeida wrote:
> I didn't check the sources to see what solution was finally given to the
> Version DoS attack, but I have a suggestion.
Jim commited a fix, which AFAICT, puts the issue to rest. What his
fix does is simply remove the version's db connections from the pool
if the
Hi,
I didn't check the sources to see what solution was finally given to the
Version DoS attack, but I have a suggestion.
The problem, IIUC, is that Zope needs to decide whether the Version
informaton it's receiving is valid without having access to ZODB data.
My suggestion is to disable Versions