[hunchentoot-devel] handle-static-file
Frank Schorr
franks-muc at web.de
Mon Dec 8 10:47:42 UTC 2008
> -----Ursprüngliche Nachricht-----
> Von: "Hans Hübner" <hans at huebner.org>
> Gesendet: 08.12.08 11:36:47
> An: "General interest list for Hunchentoot and CL-WEBDAV" <tbnl-devel at common-lisp.net>
> Betreff: Re: [hunchentoot-devel] handle-static-file
> On Mon, Dec 8, 2008 at 10:38, Frank Schorr <franks-muc at web.de> wrote:
> > Made a (create-folder-dispatcher-and-handler "/pdf/" "c:/..../pdf/")
> > When I direct the browser to .../pdf/doesnotexist, the server sends a 404. OK
> > But .../pdf/* generates "illegal use of wild pathname" .
> >
> > Call to INVOKE-DEBUGGER
> > Call to SIGNAL
> > Call to PROBE-FILE
> > Call to HUNCHENTOOT:HANDLE-STATIC-FILE
> > Call to HUNCHENTOOT::PROCESS-REQUEST
> > Call to HUNCHENTOOT::PROCESS-CONNECTION
> > Call to (HARLEQUIN-COMMON-LISP:SUBFUNCTION MP::PROCESS-SG-FUNCTION MP::INITIALIZE-PROCESS-STACK)
> >
> > I can handle this on my side, but I think it is a risk.
>
> Why do you think it is a risk? What is risked?
>
> -Hans
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
The risk is the bad guy sending many of these requests, the server will create a same number of threads, all hanging in the debugger, until a limit is reached.
I believe 404 would be the correct response for requesting file "*" which is not present.
Frank
____________________________________________________________________
Psssst! Schon vom neuen WEB.DE MultiMessenger gehört?
Der kann`s mit allen: http://www.produkte.web.de/messenger/?did=3123
More information about the Tbnl-devel
mailing list