OHS must be tuned to handle the operational requirements of the hosted application.

An XCCDF Rule

Details
Profiles

Description

A Denial of Service (DoS) can occur when the web server is so overwhelmed that it can no longer respond to additional requests. A web server not properly tuned may become overwhelmed and cause a DoS condition even with expected traffic from users. To avoid a DoS, the web server must be tuned to handle the expected traffic for the hosted applications.

ID: SV-221519r879806_rule
Version: OH12-1X-000307
Severity: Medium
References: CCI-002385
Updated: 5 days ago

Remediation Templates

Set the following directives appropriately for the server and application:
MaxClients
MPM Module
-worker (StartServers, MinSpareThreads, MaxSpareThreads, ThreadsPerChild)
Timeout
KeepAliveKeepAliveTimeout
MaxKeepAliveRequests
ListenBacklog
LimitRequestBody
LimitRequestFields
LimitRequestFieldSize
LimitRequestLine
LimitXMLRequestBody
LimitInternalRecursion

OHS must be tuned to handle the operational requirements of the hosted application.

Description

Remediation Templates

A Manual Procedure