[
https://issues.apache.org/jira/browse/JAMES-2190?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16209022#comment-16209022
]
Matthieu Baechler commented on JAMES-2190:
------------------------------------------
Of course it's a protocol layer concern, you are right.
I only don't agree about not checking for CLI : the admin can change the limit
if (s)he is not happy anyway.
> Any sieve script provided should be checked for its size to prevent DoS
> -----------------------------------------------------------------------
>
> Key: JAMES-2190
> URL: https://issues.apache.org/jira/browse/JAMES-2190
> Project: James Server
> Issue Type: Improvement
> Reporter: Matthieu Baechler
>
> Sieve scripts are basically files that will be handled by the server.
> It requires to fit in memory for being executed so it would make sense to
> ensure it's not too big before accepting or loading it so that it's not a DoS
> vector.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org
For additional commands, e-mail: server-dev-h...@james.apache.org
