Critical Vulnerability in WebLogic Plug-In for Apache

Oracle issued an advisory regarding a critical security problem in its WebLogic Server. If you're using the platform, then you need to implement a workaround to gain the necessary protection.

ITPro Today

July 31, 2008

1 Min Read
ITPro Today logo in a gray background | ITPro Today

Oracle issued an advisory regarding a critical security problem in its WebLogic Server. If you're using the platform, then you need to implement a workaround to gain the necessary protection.

You can either configure the server's LimitRequestLine parameter to 4,000 since you probably won't need to use URLs that are longer than 4,000 bytes. Or, you can integrate mod_security for defense. The former is easier of course since mod_security is relatively complex. But for better all-around protection mod_security is the obvious solution.

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like