top | item 45956180 (no title) fabrice_d | 3 months ago The billion laughs attack has well known solutions (basically, don't recurse too deep). It's not a reason to not implement DOCTYPE support. discuss order hn newest Ygg2|3 months ago > The billion laughs attack has well known solutions (basically, don't recurse too deep)You can then recurse wide. In theory it's best to allow only X placeables of up to Y size.The point is, Doctype/External entities do a similar thing to XSLT/XSD (replacing elements with other elements), but in a positively ancient way.
Ygg2|3 months ago > The billion laughs attack has well known solutions (basically, don't recurse too deep)You can then recurse wide. In theory it's best to allow only X placeables of up to Y size.The point is, Doctype/External entities do a similar thing to XSLT/XSD (replacing elements with other elements), but in a positively ancient way.
Ygg2|3 months ago
You can then recurse wide. In theory it's best to allow only X placeables of up to Y size.
The point is, Doctype/External entities do a similar thing to XSLT/XSD (replacing elements with other elements), but in a positively ancient way.