I am developing an application, and have URLs in the format www.example.com/some_url/some_parameter/some_keyword . I

Question

0

Asked: May 10, 20262026-05-10T15:10:11+00:00 2026-05-10T15:10:11+00:00

I am developing an application, and have URLs in the format www.example.com/some_url/some_parameter/some_keyword . I

0

I am developing an application, and have URLs in the format www.example.com/some_url/some_parameter/some_keyword. I know by design that there is a maximum length that these URLs will have (and still be valid). Should I validate the URL length with every request in order to protect against buffer overflow/injection attacks? I believe this is an obvious yes but I’m not a security expert so perhaps I am missing something.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

score 0 · Answer 1 · 2026-05-10T15:10:11+00:00

2026-05-10T15:10:11+00:00Added an answer on May 10, 2026 at 3:10 pm

If you are not expecting that input, reject it.

You should always validate your inputs, and certainly discard anything outside of the expected range. If you already know that your URL’s honestly won’t be beyond a certain length then rejecting it before it gets to the application seems wise.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am developing an application, and have URLs in the format www.example.com/some_url/some_parameter/some_keyword . I

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply