DEVHIDE
Login Or Sign up

Prevent XML DoS attack in ASP.NET webmethod

793 Views Asked by At

I have a following web method (ASP.NET, c# 4.0):

[WebMethod]
public XmlDocument NewQuote(string username, string password, XmlDocument xml)
{
   // process request
}

I was wondering how to prevent XML DoS attack (billion laughs, external entity, etc.), as XmlDocument is accepted as a parameter? Where and how do I prohibit DTD processing? It is obviously too late in the body of the web method.

Thanks!

asp.net web-services c#-4.0 denial-of-service
Original Q&A
1

There are 1 best solutions below

8
On

Put a logic that the user can only upload x amount of files or call that service x amount of times.

Related Questions in ASP.NET

Related Questions in WEB-SERVICES

Related Questions in C#-4.0

Related Questions in DENIAL-OF-SERVICE

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.