[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#379892: default config crawls the htdig.org website



severity 379892 normal
tags 379892 upstream wontfix
stop

On Wednesday 26 July 2006 04:07, Laurent Bonnaud wrote:
> Package: htdig
> Version: 1:3.2.0b6-1
> Severity: important
>
> in /etc/htdig/htdig.conf one reads:
>
> start_url:              http://www.htdig.org/
>
> If the Debian admin does not change this, each day the htdig.org
> website will be crawled.  Multiplied by the number of Debian
> installation left in this default state, this could cause a DDoS for
> the htdig.org website.

This is the upstream default, and it has been like that for a long time. 
I doubt that this package is popular enough to cause much disruption 
(and it will only go to htdig.org it if the 'run runding' debconf 
option is accepted). Also, I suspect that they would have complained by 
now, or changed their software's defaults, if it were an issue.

But still - you may yet have a point, since more KDE users might install 
htdig now that KHelpCenter searching is fixed in KDE 3.5.4 (coming 
soon). So I'll keep this bug open in case things go wrong.

Thanks,
Christopher Martin

Attachment: pgpXrRBrG2BEo.pgp
Description: PGP signature


Reply to: