10.11 Configure maxHttpHeaderSize

Information

The maxHttpHeaderSize limits the size of the request and response headers defined in bytes. If not specified, the default is 8192 bytes. Limiting the size of the header request can help protect against Denial of Service requests

Solution

Within $CATALINA_HOME/conf/server.xml ensure each connector is configured to the appropriate maxHttpHeaderSize setting.

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-5

Plugin: Unix

Control ID: ed6802db01a632db73fe68eb305324eb1124fb1b4666fe84b8757be55b21662d