4.2 Enabling resource limits

Information

Sybase ASE provides a means of resource limiting via the allow resource limits
configuration parameter. This functionality is disabled by default. When it is enabled, the
server applies limits to user sessions.

It is recommended that this setting is enabled to mitigate against denial of service and data
mining attacks. This setting should be thoroughly tested on non-production servers to
ensure that it does not interfere with normal application behavior.

Rationale:

Resource limiting may be a useful defense against potential attacks aimed at denial of
service or data mining attacks (e.g. through SQL Injection).

Solution

Connect to the ASE server as a user with the sa_role and execute the following SQL
statement to enable resource limits. Note that the ASE Server must be restarted for
this configuration to take effect.

exec sp_configure 'allow resource limits', 1

See Also

https://workbench.cisecurity.org/files/1612