Details

    Description

      You are able to DOS the server through the className service (although it can take a while). This attack can occur over any period of time because data is persisted in the database.

      -Create a script to hit the className service. (.java script attached)
      It might take over 1 million entries before the server is dos'ed. (This will take forever...)

      Depending on the fix is done, this might be hard to test. So the way I've tested is to use a mysql script (attached) that inserts rows into the className table which is much faster.

      After the server gets DOS'ed, it's permanently DOS'ed until you delete all the entries in the className table. During startup Liferay will iterate through every className, which will take forever for 1 million enties, and memory will fill up before server even finishes starting up.

      Attachments

        1. className.sql
          0.6 kB
        2. test.java
          1.0 kB

        Issue Links

          Activity

            People

              paul.piao Paul Piao (Inactive)
              amos.fong Amos Fong
              Kiyoshi Lee Kiyoshi Lee
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:
                10 years, 19 weeks ago

                Packages

                  Version Package
                  6.0.X EE
                  6.1.1 CE GA2
                  6.1.20 EE GA2
                  --Sprint 11/12
                  6.2.0 CE M2