Webhook spam causes Denial-of-Service #1

New Issue

Closed

opened 2022-03-02 23:01:44 +00:00 by julia · 1 comment

julia commented 2022-03-02 23:01:44 +00:00

Copy Link

I've seen some people spam the /submit endpoint, causing the Webhook to get ratelimited which will result in a Denial-of-Service of the send message function.
An easy way to fix this would be to check if the length < 1.
I may create a pull request once I have enough time to read myself into the code and write a patch.

I've seen some people spam the /submit endpoint, causing the Webhook to get ratelimited which will result in a Denial-of-Service of the send message function. An easy way to fix this would be to check if the length < 1. I may create a pull request once I have enough time to read myself into the code and write a patch.

julia commented 2022-03-02 23:03:58 +00:00

Author

Copy Link

While I'm at it: It would be a good idea to check for the POST method and if any other method is used return a 405 Method Not Allowed error.

While I'm at it: It would be a good idea to check for the `POST` method and if any other method is used return a `405 Method Not Allowed` error.

Ghost referenced a pull request that will close this issue 2022-03-02 23:17:25 +00:00

Fix your code #2

TheRed closed this issue 2022-03-09 20:50:58 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

Labels

Clear labels

No items

No Label

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: TheRed-Software/Website#1

No description provided.