Status: Accepted
Owner: brainslog
Labels: Component-Diameter Type-Enhancement Priority-Medium
SubComponent-DIAMETER-Stack DIAMETER-1.4.0.CR3 Roadmap-Fix Security
New issue 3167 by brainslog: Mobicents Diameter Stack: Limit/Clean Peer
Table
http://code.google.com/p/mobicents/issues/detail?id=3167
When a peer connects to the mobicents stack, it is added to the Peer Table.
When disconnected the entry is still present since it may be a temporary
disconnection and data associated (such as statistics) is to be kept.
But this can represent a potential security flaw against DoS attacks, by
connecting from different peers, to overload the peer table, causing every
lookup to take longer and eventually end in an Out of Memory error.
Possible solutions:
1. Limit the size to a specific value and clean disconnected entries once
it is reached;
2. Have a periodic task to scan the peer table for disconnected entries
(eventually looking for last access time)
