client_max_header_size config directive

Eric Wong normalperson at
Sun Jun 12 18:26:38 EDT 2011

This new directive limits the maximum size of a request header for all

Default: 112 kilobytes (114688 bytes)

Lowering this will lower worst-case memory usage and mitigate some
denial-of-service attacks.  This should be larger than

The default value is carried over from Mongrel and Unicorn.

This requires unicorn 3.7.0+

This directive is NOT available in nginx, but is named similarly to
client_max_body_size (which Rainbows! also supports)

git clone git://
ref: commit 281ef555c40cf292809ad10d623d0571fafc790e

Eric Wong

More information about the rainbows-talk mailing list