Short Name |
HTTP:OVERFLOW:AUTH-OVFLW |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
http authorization overflow |
Release Date |
2004/01/23 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This protocol anomaly is an HTTP header with an authorization line that exceeds the user-defined maximum. HTTP Maximum Authorization default setting: 1K. You can change this setting in the IDP Manager: Select a security policy from Security Policies, select the Sensor Settings tab. Change Protocol Thresholds and Configuration > HTTP > Maximum Authorization length. For Netscreen-Security Manager, perform the following: In the device navigation tree, select Security > IDP SM Settings, select the Protocol Thresholds and Configuration tab. Under HTTP, click the Show button. Set the Maximum Authorization length to the new value and click OK.
Authorization strings that are larger than the administrator-defined maximum length value are protocol anomalies and should be detected.