英文:
It is insecure to expose my Azure Service Bus connection string?
问题
Title.
我可以考虑任何形式的DoS或有人发送垃圾消息以增加账单。
有什么想法?
查看谷歌,但我找不到任何信息。
英文:
Title.
I can think in any sort of DoS or someone spamming messages to increased the billing.
Any idea?
Look into google but I cant find anything.
答案1
得分: 2
是的,至少如果它包括密钥的话。为了增加账单而发送垃圾消息将是我最不担心的事情。假设有人阅读了所有传入的消息,这可能会成为潜在的安全问题。或者考虑有人发送恶意消息,引发各种麻烦。祝你好运去发现那个漏洞。
此外,将与使用的 Azure 基础设施有关的任何信息暴露给不需要知道的第三方对我个人来说是不可接受的。
英文:
Yes it is, at least if it includes the keys. Spamming messages to increase the bill would be the least of my worries. Say someone reads all the incoming messages, could be a potential security issue. Or consider someone sending rogue messages, causing all kinds of trouble. Good luck finding out that bug.
Also, exposing any information regarding the azure infrastructure in use to parties not needing to know would be a no-go for me personally.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论