URL: https://github.com/freeipa/freeipa/pull/487 Author: npmccallum Title: #487: Limit request sizes to /KdcProxy Action: opened
PR body: """ Related: CVE-2015-5159 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/487/head:pr487 git checkout pr487
From cdbe075de7937a1bb671816a0177b09189af7bae Mon Sep 17 00:00:00 2001 From: Nathaniel McCallum <npmccal...@redhat.com> Date: Wed, 22 Jul 2015 14:18:16 -0400 Subject: [PATCH] Limit request sizes to /KdcProxy Related: CVE-2015-5159 --- install/conf/ipa-kdc-proxy.conf.template | 1 + 1 file changed, 1 insertion(+) diff --git a/install/conf/ipa-kdc-proxy.conf.template b/install/conf/ipa-kdc-proxy.conf.template index 9290ceb..4b9c716 100644 --- a/install/conf/ipa-kdc-proxy.conf.template +++ b/install/conf/ipa-kdc-proxy.conf.template @@ -27,4 +27,5 @@ WSGIScriptReloading Off Allow from all WSGIProcessGroup kdcproxy WSGIApplicationGroup kdcproxy + LimitRequestBody 100000 </Location>
-- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code