How to fix Slow HTTP POST vulnerability

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
damith
Posts: 44
Joined: Sat Sep 13, 2014 3:57 am

How to fix Slow HTTP POST vulnerability

Post by damith »

Hi,

The Zimbra server is (version 8.8.7 foss) installed on Centos(7.4). After a security audit, it is requested to fix the above issue on Zimbra. No documents were found thru google search or the Zimbra forum.

Issue
The web application is possibly vulnerable to a "slow HTTP POST" Denial of Service (DoS) attack. This is an application-level DoS that consumes server resources by maintaining open connections for an extended period of time by slowly sending traffic to the server.

Suggested solution
- to limit the size of the acceptable request to each form requirements
- establish minimal acceptable speed rate
- establish absolute request timeout for connection with POST request

Any help would be very much appreciated


Thanks
Damith :D :D :D :D
Top
phoenix
Ambassador
Ambassador
Posts: 27278
Joined: Fri Sep 12, 2014 9:56 pm
Location: Liverpool, England

Re: How to fix Slow HTTP POST vulnerability

Post by phoenix »

My question would be: why are you exposing http to the outside world when everyone should be using https only?
Regards

Bill

Rspamd: A high performance spamassassin replacement

Per ardua ad astra
Top
damith
Posts: 44
Joined: Sat Sep 13, 2014 3:57 am

Re: How to fix Slow HTTP POST vulnerability

Post by damith »

phoenix wrote:My question would be: why are you exposing http to the outside world when everyone should be using https only?

Thank you for the speed reply. It may be that mailscanner is installed on apache (httpd) without SSL.
Will do the needful to take it to https.
thanks


Thank
damith
Top
Post Reply

Return to “Administrators”