Re: [mod-security-users] SecResponseBodyLimit causing problems withwebmail.. suggestions?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] SecResponseBodyLimit causing problems withwebmail.. suggestions?
|
From: Ryan B. <Ryan.Barnett@Breach.com> - 2007-06-04 21:34:20
|
This directive is only used for those file types specified by SecResponseBodyMimeType directive. Other file types not specified will not be inspected. --=20 Ryan C. Barnett ModSecurity Community Manager Breach Security: Director of Application Security Training Web Application Security Consortium (WASC) Member CIS Apache Benchmark Project Lead SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC Author: Preventing Web Attacks with Apache =20 =20 > -----Original Message----- > From: mod...@li... [mailto:mod- > sec...@li...] On Behalf Of hanj > Sent: Monday, June 04, 2007 5:10 PM > To: mod...@li... > Subject: Re: [mod-security-users] SecResponseBodyLimit causing problems > withwebmail.. suggestions? >=20 > On Mon, 4 Jun 2007 16:44:10 -0400 > "Ryan Barnett" <Ryan.Barnett@Breach.com> wrote: >=20 > > You don't have to disable response body scanning, however you will need > > to increase your SecResponseBodyLimit setting. The default setting may > > not be adequate for your environment so you will need to adjust it > > accordingly. If you do temporarily increase it to a larger amount, you > > can then review your audit logs for the response Content-Length headers > > to get a better gauge of the body sizes. You could then restrict it > > back down to allow these legit responses. > > >=20 > Hello >=20 > I pumped it up to 134217728 based off of the mod_sec documentation. Do > I need to keep an eye on memory allocation, load, swap, etc by doing so? >=20 > Also, the old value was for 1/2MB, which seems weird, since I would > have definitely viewed responses larger than that (ie: images). Can you > explain what exactly that means, since I know I'm not understanding > this fully. >=20 > Thanks for the quick response and help the last few days... much > appreciated. >=20 > hanji >=20 > ------------------------------------------------------------------------ - > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users |