-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mark,
On 5/7/12 5:21 PM, Mark Thomas wrote: >> Christopher Schultz wrote: > > Tomcat only processes these requests for Servlet 3.0 file upload > and there are already sufficient limits in place for that case to > prevent a DoS. Aah, right: multipart is only supported if the servlet has been marked as such, and therefore the developer knows to expect large mounts of data (and can configure such limits). The wildcard is the "casual multipart parsing" which allows any multipart request to be parsed without regard for such limits. Any limits (data size) imposed on the connector will be used in those cases, but "maximum number of parameters" is not one of them. I should probably update the documentation for that feature to make a note of this caveat. Thanks, - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk+oPgQACgkQ9CaO5/Lv0PDfsQCfenpODeLldl9RNBjyUPBfa/5u cZQAoJ06K0bQNIwOC6UWi9/ZzuQAU3CN =xodQ -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
