[5.x] Statically cache 404s #10294
[5.x] Statically cache 404s #10294
Conversation
|
Forgive me if I've misunderstood this, but would this change not allow a nefarious actor to disable Statamic sites and their servers? For example: if Similarly to what this recent change is also trying to address: #10701 only I think the issue is larger than simple bloat but could be used maliciously. |
This isn't unique to 404 pages, you could visit any pages with query parameters and it'd cache each vartiation separately (provided the developer hasn't enabled Even without static caching, sending thousands of requests to a small website at the same time is likely to cause a DOS in other ways (like CPU, memory usage). |
|
@duncanmcclean I totally agree, and there is a change in the latest Statamic version to attempt to address the query strings aspect of this (I referenced in my comment). And your comment on more traditional DOS attacks is also valid. Also an attacker could more closely mimic what I've described just in access / error log entries too. But to have this enabled by default seems like an odd step when trying to limit the surface area for abuse is always a positive thing. |
|
The If the setting hasn't been added to a site's config file, it'll fall back to what we have in the |
|
@duncanmcclean Thanks for your prompt replies on this. I think I've perhaps misunderstood the purpose of the
So the static cache engine will add a new cache file for each 404 regardless of the Thanks for your help. |
Correct. With |
|
There still seems to be a problem here. Could a malicious actor write a simple loop to constantly request random URLs, forcing the 404 template to be regenerated over-and-over and crashing the server? This can happen naturally too with old domains - there could be tens of thousands of old URLs in Google indexes, which produces the same problem (more here). Maybe error templates should be cached once using a different method; i.e. cache the template and not the url? I think this is how Laravel does it by default, where as Statamic static caching is url based. |
|
Let us repeat:
So, enable that and the page won't be generated every time. The cached version will be loaded, which is faster. That's the whole point of this PR - so that bad actors can't do exactly what you've described. |
|
crap, sorry! Didn't read the full post. |
At the moment when you enable static caching and hit a 404-ing page, it does not get cached. If that 404-ing page is heavy, you could visit it repeatedly and increase the load on the server.
This PR has two parts. Both are only supported when using half measure, for now.
Allow caching 404s
This PR allows 404s to be statically cached when using half measure. This is automatic and doesn't require a setting. This likely didn't already exist because it's not possible when using full measure. We handle this by a simple check for whether half measure is being used.
Sharing errors
Additionally, this PR allows those 404s to be shared. For instance, the first time you encounter a 404, it will be rendered and cached. Then if you visit another 404ing page, it will serve the previously cached version regardless of the URL.
Each URL will have their own cache, but the rendering will be avoided. Subsequent 404s will just get copied from the result of the first one.
Since we can't know in the middleware if a cold page will be a 404 or not, we will manually retrieve it from the static cache just before Statamic would normally render the 404's view.