id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
16827	validate CSRF token (Check length)	jedie	Raúl Cumplido	"I wonder that the CSRF token send from the client didn't be validated.

Don't know if a DOS attack is possible by sending many request with very long CSRF tokens?

IMHO it's a good idea to check the length before do anything with it. 

See also: https://groups.google.com/group/django-developers/browse_thread/thread/9fc008d2a3735bc2"	Bug	closed	CSRF	1.3	Normal	fixed			Ready for checkin	1	0	1	0	1	0