Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

SECURITY: Disable MessageBus::Diagnostics. 

MessageBus::Diagnostics allows anyone with access to carry out certain
operations that may result in a denial of service. The impact of this is
greater on multisiite clusters.
This commit is contained in:
Alan Guo Xiang Tan 2021-12-17 14:24:32 +08:00
parent e6480bbb04
commit bd034485d7
1 changed files with 0 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
config/initializers/004-message_bus.rb
View File

@ -130,7 +130,6 @@ else
end end
MessageBus.cache_assets = !Rails.env.development? MessageBus.cache_assets = !Rails.env.development?
MessageBus.enable_diagnostics
if Rails.env == "test" || $0 =~ /rake$/ if Rails.env == "test" || $0 =~ /rake$/
# disable keepalive in testing # disable keepalive in testing