Details

      Description

      You are able to DOS the server through the className service (although it can take a while). This attack can occur over any period of time because data is persisted in the database.

      -Create a script to hit the className service. (.java script attached)
      It might take over 1 million entries before the server is dos'ed. (This will take forever...)

      Depending on the fix is done, this might be hard to test. So the way I've tested is to use a mysql script (attached) that inserts rows into the className table which is much faster.

      After the server gets DOS'ed, it's permanently DOS'ed until you delete all the entries in the className table. During startup Liferay will iterate through every className, which will take forever for 1 million enties, and memory will fill up before server even finishes starting up.

        Attachments

        1. className.sql
          0.6 kB
        2. test.java
          1.0 kB

          Issue Links

            Activity

              People

              Assignee:
              paul.piao Paul Piao (Inactive)
              Reporter:
              amos.fong Amos Fong
              Participants of an Issue:
              Recent user:
              Esther Sanz
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Days since last comment:
                9 years, 26 weeks ago

                  Packages

                  Version Package
                  6.0.X EE
                  6.1.1 CE GA2
                  6.1.20 EE GA2
                  --Sprint 11/12
                  6.2.0 CE M2