Details
The maxHttpHeaderSize limits the size of the request and response headers defined in bytes.
Rationale:
Limiting the size of the header request can help protect against Denial of Service (DoS) requests.
Solution
Set maxHttpHeaderSize for each connector in $CATALINA_HOME/conf/server.xml to the appropriate setting.
maxHttpHeaderSize=’8192′
Default Value:
The default is 8192 bytes.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.