Skip navigation
kahsbnxasxwasx
kahsbnxasxwasx
Currently Being Moderated

How to limit the size of the connection method parameter

Aug 11, 2012 3:43 PM

I connected an FMS server like var nc = new NetConnection ();
                                                  nc.connect ("rtmfp :/ / localhost: 61018/zy/1", a);
But how to restrict the size of the parameter a, assuming that this a set to a 10GB object, or a very large byte, I found that the server received. This allows the hacker attacks, Is there any way to limit the size of this a, I hope that does not exceed 100KB.

477 Views   1 Reply   Latest reply: Michael Thornburgh, Aug 11, 2012 7:18 PM
 
Replies
  • Michael Thornburgh
    Currently Being Moderated
    1. Michael Thornburgh,
    Aug 11, 2012 7:18 PM   in reply to kahsbnxasxwasx
    Report

    RTMFP encodes low-level messages in a manner compatible with RTMP messages. RTMP messages are length-field limited to 16MB (24 bits), and there is an artificial software limit somewhat less than that (approximately 10MB if i recall correctly).

     

    it should not be possible to send a connect message to an RTMFP or RTMP server exceeding about 10MB.

     

    ByteArray is limited to 4GB, and can't be serialized to AMF beyond 512MB (29 bits).

     

    also keep in mind that for an RTMFP or RTMP server to receive such a large message, that many bytes must be sent to it from somewhere (you).

     
    |
    Mark as:
Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Answers + Points = Status

  • 10 points awarded for Correct Answers
  • 5 points awarded for Helpful Answers
  • 10,000+ points
  • 1,001-10,000 points
  • 501-1,000 points
  • 5-500 points