Firewall-Parser-Limits; Forbid-External-References (Deprecated); Front-Attachment-Format - IBM WebSphere XS40 Command Reference Manual

Datapower xml security gateway
Table of Contents

Advertisement

forbid Forbids external references. An external reference causes the XML parser to
ignore Ignores external DTD references, and replaces external entities with the

firewall-parser-limits

Indicates whether to use firewall-specific parser limitations.
Syntax
firewall-parser-limits {on | off}
Parameters
on
off
Guidelines
Parser limits protect against denial-of-service attacks that use malicious XML
documents that seek to exhaust system resources. With firewall-specific parser
limits enabled, incoming documents are evaluated using the values that are
defined by the attribute-count, bytes-scanned, and element-depth commands.
Related Commands
attribute-count, bytes-scanned, element-depth
Examples
v Enables firewall-specific parser limits.

forbid-external-references (deprecated)

Comments
This command has been deprecated. Use the external-references command.

front-attachment-format

Specifies the attachment format received from front end clients.
Syntax
front-attachment-format {dime | dynamic | mime}
Parameters
dime
abort.
empty string
Enables firewall-specific parser limits.
(Default) Uses the parser limits that are defined for the associated XML
Manager.
# firewall-parser-limits on
# attribute-count 512
# bytes-scanned 2097152
# element-depth 128
#
Indicates that client attachments are DIME-encapsulated documents.
Chapter 106. XML Firewall configuration mode
897

Advertisement

Table of Contents
loading

Table of Contents