[issue1745035] DoS smtpd vulnerability

Savio Sena report at bugs.python.org
Mon Nov 22 03:11:48 CET 2010

Savio Sena <savio.sena at acm.org> added the comment:

The attached patch adopts the minimalistic approach described in previous post. It pretends to implement Message Size Extension, defining a maximum message data size to 32M bytes and maximum command length to 512 bytes.

In my opinion this is the best way to accomplish a patch to the DoS issue alone. It's still a good idea though to implement full ESMTP support -- I know, I'm repeating myself. 

Please note this is my first patch. I'm new to Python and even though I made my best to be in conformance with the "standards" and good practices I may have missed something. Please review this patch with clinical eyes. 

For the records: this work is due to Python Bug Day. It worked to attract another curious developer. :-) This project is really awesome. Congratz you all. 

My best regards.

Added file: http://bugs.python.org/file19763/issue1745035-saviosena-101121.diff

Python tracker <report at bugs.python.org>

More information about the Python-bugs-list mailing list