Limit HTTP response body size [New in Security Center 1.3 and updated in 1.5]
Configure the glide.http.response.get_body.limit.enabled and glide.http.response.get_body.limit properties to protect your instance against OutOfMemoryExceptions.
The glide.http.response.get_body.limit.enabled and glide.http.response.get_body.limit properties were introduced to enable new functionality that prevents OutOfMemoryExceptions from being thrown as a result of a request response being too large. OutOfMemoryExceptions can cause denial of service (DoS) attacks as well as other issues that may assist attackers in compromising an instance.
To protect your instance against these security vulnerabilities, ensure that glide.http.response.get_body.limit.enabled is set to true, and that glide.http.response.get_body.limit is no more than 524,288,000 megabytes (500 MB).
More information
| Attribute | Description |
|---|---|
| Configuration name | glide.http.response.get_body.limit.enabled and glide.http.response.get_body.limit |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | boolean |
| Recommended value | true |
| Default value | true |
| Category | File and resources |
| Security risk |
|
| Dependencies and prerequisites | None |
| Functional impact | This property reduces the chances of an OutOfMemoryException due to a customer accidentally loading a large file into memory. |