You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
An initial value of SETTINGS_MAX_CONCURRENT_STREAMS is no limit and a server can receive massive HEADERS from a malicious client before synchronization of the first SETTINGS.
These requests are legitimate but it is a risk of denial of service attack and need to be described in the security section.
The text was updated successfully, but these errors were encountered:
While settings changes are outstanding, there are things that a peer might be able to do that is not provably bad and can therefore be exploited to generate excessive work.
An initial value of SETTINGS_MAX_CONCURRENT_STREAMS is no limit and a server can receive massive HEADERS from a malicious client before synchronization of the first SETTINGS.
These requests are legitimate but it is a risk of denial of service attack and need to be described in the security section.
The text was updated successfully, but these errors were encountered: