RE: [squid-users] Error:header-request-too-large

From: Chris Robertson <[email protected]>
Date: Wed, 10 Nov 2004 09:43:22 -0900

From squid.conf (squid2.5.STABLE7):

# TAG: reply_header_max_size (KB)
# This specifies the maximum size for HTTP headers in a reply.
# Reply headers are usually relatively small (about 512 bytes).
# Placing a limit on the reply header size will catch certain
# bugs (for example with persistent connections) and possibly
# buffer-overflow or denial-of-service attacks.
#
#Default:
# reply_header_max_size 20 KB

Previous versions of Squid had a default max size of 10 KB (which is what
you are seeing).

Chris

-----Original Message-----
From: Ali Abbas [mailto:ali.abbas@go4b.net]
Sent: Wednesday, November 10, 2004 9:22 AM
To: squid-users@squid-cache.org
Subject: [squid-users] Error:header-request-too-large

I am getting error:header-request-too-large messages in access logs of my
servers. Can anybody elaborate over the header size and what are the reasons
behind such request from the client side. Although for the time being the
errors is being monitored at the OS level by blocking the IP access to the
server of the client generating such requests. Is there anyway squid can
handle such issue itself. Its quiet obvious that Squid does not serve such
request however if I let the request pass squid directly to the gateway
router will the request be responded by the web server?

I am pasting the logs generated by access log and cache log file

Access Log Entry:

1100147107.366 3 xxxxxxxxx NONE/413 1612 NONE error:request-too-large -
NONE/- text/html

Cache Log Entries

2004/11/10 20:25:44| Config 'request_header_max_size'= 10240 bytes.
2004/11/10 20:25:44| Request header is too large (11680 bytes)
Received on Wed Nov 10 2004 - 11:43:24 MST

This archive was generated by hypermail pre-2.1.9 : Wed Dec 01 2004 - 12:00:01 MST