Search

GlobalSCAPE Knowledge Base

Protect against various forms of DDoS attacks in the Workspaces Drop-Off portal

Karla Marsh
EFT Express (SMB) & Enterprise

THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v7.4.2.4 and later

DISCUSSION

The following registry settings are available for EFT to protect against various forms of DDoS attacks in the Workspaces Drop-Off portal.

In HKEY_LOCAL_MACHINE\SOFTWARE\ WOW6432Node \GlobalSCAPE Inc.\EFT Server 7.4\, create the values below:

Create the EFT Server 7.4 key if it's not there.

Captcha:

Type: DWORD

Value name: MaxReCaptchaParallelRequests

Default Value: 30

Cached: yes

Backup/Restore: yes

Max Captcha request timeout in seconds:

Type: DWORD

Value name: MaxReCaptchaRequestTimeoutInSecs

Default Value: 30

Cached: yes

Backup/Restore: yes

Maximum anonymous uploads size in GB.

Drop-Off send and anonymous reply; Site connection limits and banned file types defined at Site level apply, i.e., Max connections from same IP, Max concurrent socket connections.

Type: DWORD

Value name: MaxAnonymousAllUploadsSizeInGB

Default Value: 10; 0 means no anonymous uploads allowed

Cached: yes

Backup/Restore: yes

In the odd case where MaxAnonymousAllUploadsSizeInGB is set to a value that is smaller than per message max limit, EFT will encounter the "max all message size limit" returning an appropriate error, and then on service startup or on change of "Per message max limit size," EFT will write to eft.log that there is a conflict: "MaxAnonymousAllUploadsSizeInGB is set to value that is LESS than the maximum allowed message size set under drop-off portal settings."

Maximum number of concurrent anonymous delivery requests that can occur on a Site at any one time.

The count of anonymous requests will include all forms of anonymous submissions, including Drop-Off and Reply portals. Also applies to case of anonymous reply. (i.e., where Send portal was used and recipient is anonymous and was granted permission to reply.)

Type: DWORD

Value name: MaxAnonymousRequests

Default Value: 50

Cached: yes

Backup/Restore: yes

Notes:

If WTC/Workspaces tries to upload file(s) greater than MaxAnonymousAllUploadsSizeInGB, EFT doesn't allow the upload based on the registry settings and hence uploads fail.

Maximum concurrent socket connections do not apply to anonymous connections.

(There is no 32-bit version because there is no 32-bit OS supported.)

Details
Last Modified: 5 Months Ago
Last Modified By: kmarsh
Type: HOTFIX
Article not rated yet.
Article has been viewed 14K times.
Options
Also In This Category
Tags