Welcome! Log In Create A New Profile

Re: cookie bomb - how to protect?

Forum List Message List New Topic Print View

Valentin V. Bartenev

January 19, 2014 11:48AM

On Sunday 19 January 2014 11:06:58 mex wrote:
[..]
> i checked it, and it works, i get the following error back:
>
> 400 Bad Request
>
> Request Header Or Cookie Too Large
>
> my question: is there a generic way to check the size of such headers like
> cookies etc
> and to cut them off, or should we live with such malicious intent?
>
[..]

You can include into this "Request Header Or Cookie Too Large" error page
a JS script that will clear cookies.

wbr, Valentin V. Bartenev

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx

Reply Quote

RSS

Subject	Author	Posted
cookie bomb - how to protect?	mex	January 19, 2014 11:06AM
Re: cookie bomb - how to protect?	coderman	January 19, 2014 11:36AM
Re: cookie bomb - how to protect?	coderman	January 19, 2014 11:40AM
Re: cookie bomb - how to protect?	mex	January 19, 2014 04:42PM
Re: cookie bomb - how to protect?	coderman	January 19, 2014 07:48PM
Re: cookie bomb - how to protect?	Valentin V. Bartenev	January 19, 2014 11:48AM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 293

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018