≡ Menu

LimitRequestBody: Apache Limiting User Upload File Size

I‘d like to put limits on user(s) who are uploading files. How do I restricts the total size of the HTTP request body sent from the client under Apache 2 Web server?

To restricts the total size of the HTTP request body sent from the client use LimitRequestBody Directive. You can add this directive using .htaccess file or httpd.conf file under virtual host or directory configuration options. You can set value (in bytes) from 0 (unlimited) to 2147483647 (2GB) that are allowed in a request body.

For example, limit /var/www/vhost/cyberciti.biz/wp-uploads to 100K, you might use the following directive (add to .htaccess or httpd.conf file):

<Directory "/var/www/vhost/cyberciti.biz/wp-uploads">
    LimitRequestBody 102400 

Save and close the file. You need to restart or reload the httpd server as follows:
# service httpd restart
# service httpd reload

Share this tutorial on:

Your support makes a big difference:
I have a small favor to ask. More people are reading the nixCraft. Many of you block advertising which is your right, and advertising revenues are not sufficient to cover my operating costs. So you can see why I need to ask for your help. The nixCraft, takes a lot of my time and hard work to produce. If you use nixCraft, who likes it, helps me with donations:
Become a Supporter →    Make a contribution via Paypal/Bitcoin →   

Don't Miss Any Linux and Unix Tips

Get nixCraft in your inbox. It's free:

{ 4 comments… add one }
  • Firas Alfraih April 28, 2008, 9:28 am

    how can I restrict abuse the internet (heavy download) on my linux firewall

  • teo November 21, 2011, 7:12 am

    The example is a bit misleading, since most probably files being uploaded to the /wp-uploads directory will be uploaded via a request to a script which is in another folder (usually its parent).

  • Hosting en Chile July 10, 2012, 3:57 pm

    Thanks you, Greetings from Chile

  • Paul October 4, 2012, 10:00 pm

    It’s old, but it’s a high ranking on Google, so I’m going to correct slightly here: you don’t need to do an httpd restart. Do a reload – it saves resources and keeps everything online.

Security: Are you a robot or human?

Leave a Comment

You can use these HTML tags and attributes: <strong> <em> <pre> <code> <a href="" title="">

   Tagged with: , , , , , , , , , ,