Re: [squid-users] Request header

From: Wei Keong <chooweikeong@dont-contact.us>
Date: Mon, 26 Aug 2002 10:15:29 +0800 (Singapore Standard Time)

Hi Henrik,

I've made the changes as mentioned and I got 24KB of 'y'.

2002/08/26 09:22:27| Request header is too large (24575 bytes)
POST http://update.shockwave.com/svc/shockmachine/ HTTP/1.0
Accept: , , Advanced Power Management supports, yyyyyyyyyy...
2002/08/26 09:22:27| Config 'request_header_max_size'= 20480 bytes

any idea what's is this? dos?
should i incease the request header and track the machine that sent the
request?
what's the sufficient request_header max size?

Thanks,
Wei Keong

On Fri, 23 Aug 2002, Henrik Nordstrom wrote:

> In src/client_side.c, try changing
>
> From:
>
> debug(33, 1) ("Request header is too large (%d
> bytes)\n",
> (int) conn->in.offset);
>
> To:
>
> debug(33, 1) ("Request header is too large (%d
> bytes)\n%s\n",
> (int) conn->in.offset, conn->in.buf);
>
>
> Regards
> Henrik
>
> Wei Keong wrote:
> >
> > Hi,
> >
> > Just want to have a better understanding on request header. My server
> > seems to have a lot of 'request header too large' and I am wondering if
> > there is anyway to confirm whether it's due to dos, buffer-overflow or
> > bugs.
> >
> > Is there anyway to log the request header to investigate? I tried using
> > log_mime_hdrs, but I cant tell much from it...
> >
> > 2002/08/23 10:41:34| Request header is too large (24575 bytes)
> > 2002/08/23 10:41:34| Config 'request_header_max_size'= 20480 bytes.
> >
> > # TAG: request_header_max_size (KB)
> > # This specifies the maximum size for HTTP headers in a request.
> > # Request headers are usually relatively small (about 512 bytes).
> > # Placing a limit on the request header size will catch certain
> > # bugs (for example with persistent connections) and possibly
> > # buffer-overflow or denial-of-service attacks.
> >
> > Rgds,
> > Wei Keong
>
Received on Sun Aug 25 2002 - 20:15:37 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:50 MST