Ticket #232 (new defect)

Opened 3 years ago

Last modified 7 months ago

Lighty does not truncate oversize requests in logs

Reported by: root@turingstudio.com Assigned to: jan
Priority: normal Milestone:
Component: core Version:
Severity: normal Keywords:
Cc: root@turingstudio.com Blocking:
Need Feedback: 0

Description

Some asshole was blasting my producton machine with what appeared to be buffer overflow attempts, whee.

But - lighty dumped the entire request (many thousands of characters not in ascii :) into the logfile, instead of (correctly) truncating the request. It shold also restrict the characters that make it into logs, though I'm not sure what rules to use.

I just grepped out those requests, ran mergelog again, and nothing complained after that.

Attachments

Change History

11/29/2007 08:13:54 PM changed by Calomel

  • blocking changed.
  • pending changed.

I have seen the same problem as a client sends a 65K SEARCH request.

68.48.72.252 - - [02/Nov/2007:21:27:00 -0400] "SEARCH / (65KB of binary data) HTTP/1.1" 501 678 "-" "-"

Is there any way to limit the request method size ??

Add/Change #232 (Lighty does not truncate oversize requests in logs)




Change Properties