Bug#585709: web interface access being rejected

Sun, 13 Jun 2010 02:45:24 -0700 

Package: ntop
Version: 3:3.3-11+b2

If I leave ntop running in a browser, it eventually reloads. After
some time, the ntop server starts to complain loudly and rejects the
requests:

  ntop[2911]:   clearing lockout for address 2a01:198:4e2:0:f:3d00:d8e3:4fae
  ntop[21899]:   **ERROR** Buffer too short @ webInterface.c:646 (increase to 
at least 1080)
  ntop[21899]:   **ERROR** Buffer too short @ webInterface.c:646 (increase to 
at least 1063)
  ntop[2911]:   **ERROR** URL security: 
'/st%3CTD%20%20ALIGN=RIGHT%3E77.56.166.1%3C/TD%3E%3CTD%20%20ALIGN=RIGHT%3E00:01:5C:32:8F:C1%3C/TD%3E%3CTD%20%20ALIGN=RIGHT%20NOWRAP%3E%C2%A0%3C/TD%3E%3CTD%20%20ALIGN=RIGHT%20NOWRAP%3E%C2%A0%3C/TD%3E%3CTD%20%20ALIGN=LEFT%3E%3CIMG%20ALIGN=ABSMIDDLE%20SRC='
 rejected (code=4)(client=2a01:198:4e2:0:f:3d00:d8e3:4fae)
  ntop[2911]:   **ERROR** Rejected request from address 
2a01:198:4e2:0:f:3d00:d8e3:4fae (it previously sent ntop a bad request)
  ntop[2911]:   **ERROR** Rejected request from address 
2a01:198:4e2:0:f:3d00:d8e3:4fae (it previously sent ntop a bad request)
  ntop[2911]:   **ERROR** Rejected request from address 
2a01:198:4e2:0:f:3d00:d8e3:4fae (it previously sent ntop a bad request)
  ntop[2911]:   **ERROR** Rejected request from address 
2a01:198:4e2:0:f:3d00:d8e3:4fae (it previously sent ntop a bad request)
  ntop[2911]:   **ERROR** Rejected request from address 
2a01:198:4e2:0:f:3d00:d8e3:4fae (it previously sent ntop a bad request)
  ntop[2911]:   clearing lockout for address 2a01:198:4e2:0:f:3d00:d8e3:4fae
  ntop[21979]:   **ERROR** Buffer too short @ webInterface.c:646 (increase to 
at least 1080)

I don't think there is anything I did wrong or that there's
a security event going on. It seems like the buffer is simply too
small. This may be due to IPv6, but I am not sure.

In any case, I'd appreciate if ntop didn't get quite so loud about
this problem and wouldn't reject subsequent requests. What do I have
to do to prevent it from thinking that I have malicious intents?

-- 
 .''`.   martin f. krafft <[email protected]>      Related projects:
: :'  :  proud Debian developer               http://debiansystem.info
`. `'`   http://people.debian.org/~madduck    http://vcs-pkg.org
  `-  Debian - when you have better things to do than fixing systems

Attachment: digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)

Reply via email to