This project is read-only.

Potential DOS with trackbacks and pingbacks?

Jun 11, 2008 at 6:14 AM
I've recently been working on the code that handles incoming trackbacks and pingbacks performs a request from the URL that is requesting the trackback or pingback... for example, Core.Web.HttpHandlers.TrackbackHandler.  I noticed that for both trackbacks and pingbacks, we perform a complete download of the requesting URL.  I understand that this is used to prevent spam.  I acutally agree that we are more at risk from spam than DOS (denial of service).  However, if the trackback/pingback request sends us a URL that includes a HUGE file, what impact will that have on our blog?
Jun 12, 2008 at 11:33 PM
Agree with you. I haven't tried it myself but it seems logical if the site being downloaded has a huge file, it will cause severe impact to the performance of our website.

Agus Suhanto