[Citrix ADC vulnerability CTX330728]

3 hours ago, John Francis1709160537 said:

So, this command would do both? I saw that my httpd.conf file had value 30 in it. Is this the default? So what does maxclient do here? Just need some info as I am trying to understand.

The command searches in httpd.conf for MaxClients parameter and puts the value in rc.netscaler. I used it to automate the change with ADM...

Yes, 30 seems to be the default value. "MaxClients" limits the Apache worker processes (i.e. client connections).

[Citrix ADC vulnerability CTX330728]

Both articles have been updated. ?

 

Example to get MaxClients from httpd.conf and add it to rc.netscaler:

echo "nsapimgr_wr.sh -ys maxclientForHttpdInternalService=$(awk '/^MaxClients/{print $2}' /etc/httpd.conf)" >> /nsconfig/rc.netscaler

[Citrix ADC vulnerability CTX330728]

Both articles have been updated. ?

[Citrix ADC vulnerability CTX330728]

Is 13.1 affected? It's not listed as affected but 13.1-4.43 is intended to address the vulnerabilities.

Already addressed with September releases but manual "maxclientForHttpdInternalService" configuration needed (CTX331588). ?

[NetScaler Unified Gateway and Exchange OWA 2016 Problem]

With normal Content Switching everything is fine.

By the way, I've removed

 

<add key="LogonSettings.SignOutKind" value="LegacyLogOff" />

 

in owa/web.config to bring the Logoff page back.  :)

[NetScaler Unified Gateway and Exchange OWA 2016 Problem]

Same problem with v11.0.64.34. The Content-Part doesn't load.