cookie bomb - how to protect?

coderman coderman at
Sun Jan 19 16:38:49 UTC 2014

On Sun, Jan 19, 2014 at 8:35 AM, coderman <coderman at> wrote:
> ....
> i'd love to know of more elegant ways to handle this, with header
> specific handling - especially cookies, if possible...

the less better way to change this is:

a blunt aggregate rather than header or cookie specific constraints.

best regards,

More information about the nginx mailing list