src/core/session/settings/REQ_MAX_HEADER_SIZE.py from nil0x42/phpsploit

src/core/session/settings/REQ_MAX_HEADER_SIZE.py

Summary

Maintainability

2 hrs

Test Coverage

Issues

"""
Set the maximum length of a single HTTP Header.

This setting is needed to tell phpsploit to generate HTTP
requests that are acceptable for the target server.

* EXAMPLE:
Most http servers allow up to 4KB of data per HTTP Header.
Therefore, if the server is configured to only allow up to
500 bytes Headers, phpsploit could fail to execute payloads
unless you change value of REQ_MAX_HEADER_SIZE to 500:
> set REQ_MAX_HEADER_SIZE 500

* NOTE:
If you encounter http error 500 or if payload execution fails,
you may need to lower the default limit of this setting.

* REFERENCES:
http://httpd.apache.org/docs/2.2/mod/core.html#LimitRequestFields
"""
import linebuf
import datatypes


linebuf_type = linebuf.RandLineBuffer


def validator(value):
    value = datatypes.ByteSize(value)
    if 250 > value:
        raise ValueError("can't be less than 250 bytes")
    return value


def default_value():
    return "4 KiB"