Configure The Number of Allowed Simultaneous Requests

Description

The MaxKeepAliveRequests directive should be set and configured to or greater by setting the following in /etc/httpd/conf/httpd.conf:

MaxKeepAliveRequests

Rationale

Resource exhaustion can occur when an unlimited number of concurrent requests are allowed on a web site, facilitating a denial of service attack. Mitigating this kind of attack will include limiting the number of concurrent HTTP/HTTPS requests per IP address and may include, where feasible, limiting parameter values associated with keepalive, (i.e., a parameter used to limit the amount of time a connection may be inactive).

ID: xccdf_org.ssgproject.content_rule_httpd_configure_max_keepalive_requests
Severity: Medium
References: WG110
Updated: about 1 year ago