You can call the getCoverArt view and specify an arbitrarily large size parameter, which will generate a large image and tie up server resourced for up to a minute. The only upper limit seems to occur when the album art thread crashes from the excess memory usage.
Example call:
/rest/getCoverArt.view?v=1.6.0&c=subweb&f=json&size=9001&id=<album art id>
getCoverArt.view unfiltered parameters can lead to DOS
Moderator: moderators
3 posts
• Page 1 of 1
getCoverArt.view unfiltered parameters can lead to DOS
by zapt0 » Mon Jan 16, 2012 1:08 am
- zapt0
- Posts: 41
- Joined: Tue Apr 26, 2011 8:49 pm
Re: getCoverArt.view unfiltered parameters can lead to DOS
by ytechie » Mon Jan 16, 2012 8:10 am
You do realize though that you need to add the username and password to the url?
-
ytechie - Posts: 547
- Joined: Sun Dec 12, 2010 5:05 am
- Location: Manhattan, New York
Re: getCoverArt.view unfiltered parameters can lead to DOS
by zapt0 » Mon Jan 16, 2012 3:23 pm
ytechie wrote:You do realize though that you need to add the username and password to the url?
Absolutely, this only works if you already have access to an account on the server, but considering some servers are public it's still a problem.
- zapt0
- Posts: 41
- Joined: Tue Apr 26, 2011 8:49 pm
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 27 guests