Tigase Forge
Dashboards
Projects
Pull Requests
Issues
Builds
Packages
Code Search
server-core
Code
Pull Requests
Issues
List
Boards
Iterations
Builds
Packages
Statistics
Child Projects
OneDev 11.5.2
Documentation Support & Bug Report RESTful API Incompatibilities License Agreement Check Update
Projects tigase _server server-core Issues #1288
"Multiple TLS requests, possible DOS attack" should not be logged as WARNING (#1288)
wojciech.kapcia@tigase.net opened 3 years ago 
[2021-09-19 02:00:56:141] [WARNING ] [       starttls-proc-0 ] StartTLS.process()               : Multiple TLS requests, possible DOS attack, closing connection: from=c2s@ip-172-31-0-99.us-west-2.compute.internal/172.23.0.2_5222_13.71.126.175_6528, to=sess-man@ip-172-31-0-99.us-west-2.compute.internal, serverAuthorisedStanzaFrom=Optional.empty, DATA=<starttls from="…@sure.im/…" xmlns="urn:ietf:params:xml:ns:xmpp-tls"/>, SIZE=86, XMLNS=urn:ietf:params:xml:ns:xmpp-tls, PRIORITY=NORMAL, PERMISSION=AUTH, TYPE=null, STABLE_ID=8570a28a-9fc7-475e-add2-4b0e8267cc98
wojciech.kapcia@tigase.net commented 3 years ago

Switched level from WARNING to FINE as while it could be possible to have multiple starttls requests, we don't advertise it in features after first time so the client is definitely doing something wrong…
issue 1 of 1
Type
Task
Priority
Normal
Assignee
wojciech.kapcia@tigase.net
Version
tigase-server-8.2.0
Spent time
30m
Issue Votes (0)
Login to vote
Watchers (0)
Reference
tigase/_server/server-core#1288
Please wait...
Page is in error, reload to recover