Re: YA Apache DoS attack

["Roy T. Fielding" <fi...@kiwi.ics.uci.edu>]

I didn't know about the merge problem, but the general issue of how
to restrict incoming bytes has been around for a while.  I've always
wanted a set of server config directives for

   MaxRequestURI
   MaxRequestFields
   MaxRequestFieldSize
   MaxRequestBody

but the overhead of setting up new config directives has stopped me.

....Roy