You might need it for futher discussions on certain topics.
It is good that you are aware of certain security issues of web-based software. Those kind and similar kinds of DOS attacks are possible with a lot of common web-based software. You can try to tear down all of them, if this is the point of your existance.
But am feeling well with my english grammar , and am not interested to learn more than this, coz i feel good with knowledge 4 language, plus the english, and it`s the most difficulty language in world (Hungarian,Hebrew,arabic,turkish) ... just try to learn 1 of them, then come with ur recommendation !!
The point is that u understand what am talking about (maybe), and the and still the solution waiting !
btw ... did u read the therad topic ,,, is was Ez crew, ez programmers !
There is a potential db flood with eZ publish, you're right about that. However you can lock this down by saying that anonymous users are not allowed to create any objects.
You can also lock down specific modules/functions in eZ publish to set up a site which does not allow for anything but read access.
I know this solution, but the better if we can lock down the draft system and versions for users.
I had made some section which request registered users, and if user have account he can flood also the DB with his account, he can make alot of drafts and copies of his account !
Can we stop the draft system and veriosns for users, from ini files ?
You must be logged in to post messages in this topic!