On Thu, Jan 05, 2017 at 10:23:18PM +0000, Always Learning wrote:
[...] The only method of preventing it compromising a site is to test the acceptable maximum length of the parameter (in this example '12345') and if exceeded block the IP address in iptables.
I'm honestly interested in what you mean by this.