[Bug 98] New: new error code descriptions, continued from bugzilla@soe.ucsc.edu on 2005-10-12 (w3c-dist-auth@w3.org from October to December 2005)

From: <bugzilla@soe.ucsc.edu>
Date: Tue, 11 Oct 2005 23:32:18 -0700
To: w3c-dist-auth@w3.org
Message-Id: <200510120632.j9C6WIZa004340@ietf.cse.ucsc.edu>

http://ietf.cse.ucsc.edu:8080/bugzilla/show_bug.cgi?id=98

           Summary: new error code descriptions, continued
           Product: WebDAV-RFC2518-bis
           Version: -07
          Platform: Other
               URL: http://greenbytes.de/tech/webdav/draft-ietf-webdav-
                    rfc2518bis-07.html#rfc.section.11.8
        OS/Version: other
            Status: NEW
          Severity: normal
          Priority: P2
         Component: 11.  Use of HTTP Status Codes
        AssignedTo: joe-bugzilla@cursive.net
        ReportedBy: julian.reschke@greenbytes.de
         QAContact: w3c-dist-auth@w3.org


"This status code is particularly useful to respond to requests that the server
considers a denial-of-service attack, such as excessively large PROPFIND depth
infinity requests or requests in quick succession."

RFC2616 states (<http://greenbytes.de/tech/webdav/rfc2616.html#rfc.section.10.5.4>):

"The server is currently unable to handle the request due to a temporary
overloading or maintenance of the server. The implication is that this is a
temporary condition which will be alleviated after some delay."

Thus this is absolutely the wrong error class. If you don't want the client to
repeat the request, then signal a client error (4xx), not a server error (5xx).



------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.

Received on Wednesday, 12 October 2005 06:32:22 UTC