![]() |
|
|
Issue Type:
|
Improvement
|
Assignee:
|
Nicolas De Loof
|
Components:
|
git-plugin |
Created:
|
13/Jan/15 11:00 PM
|
Description:
|
If all Jenkins jobs are configured for polling of <URL of the Git repository>, then invoking curl on the following URL will spawn builds for all of the jobs:
Since this URL doesn't require authentication even for secured Jenkins, any user can (accidentally) cause Denial of Service while all Jobs run for an arbitrary <commit ID>. There may be hundreds of jobs configured for polling, so this can clog up the build queue for a long time.
|
Project:
|
Jenkins
|
Priority:
|
Major
|
Reporter:
|
Karl Ostmo
|
|
|
|
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators.
For more information on JIRA, see: http://www.atlassian.com/software/jira
|
--
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit
https://groups.google.com/d/optout.