Tigase Forge
Dashboards
Projects
Global Views
Code Search
server-core
Code
Pull Requests
Issues
List
Boards
Iterations
Builds
Packages
Statistics
Child Projects
OneDev 11.9.3
Documentation Support & Bug Report RESTful API Incompatibilities License Agreement Check Update
Projects tigase _server server-core Issues #1288
"Multiple TLS requests, possible DOS attack" should not be logged as WARNING (#1288)
Wojciech Kapcia (Tigase) opened 4 years ago 
[2021-09-19 02:00:56:141] [WARNING ] [       starttls-proc-0 ] StartTLS.process()               : Multiple TLS requests, possible DOS attack, closing connection: from=c2s@ip-172-31-0-99.us-west-2.compute.internal/172.23.0.2_5222_13.71.126.175_6528, to=sess-man@ip-172-31-0-99.us-west-2.compute.internal, serverAuthorisedStanzaFrom=Optional.empty, DATA=<starttls from="…@sure.im/…" xmlns="urn:ietf:params:xml:ns:xmpp-tls"/>, SIZE=86, XMLNS=urn:ietf:params:xml:ns:xmpp-tls, PRIORITY=NORMAL, PERMISSION=AUTH, TYPE=null, STABLE_ID=8570a28a-9fc7-475e-add2-4b0e8267cc98
  • Wojciech Kapcia (Tigase) commented 4 years ago

    Switched level from WARNING to FINE as while it could be possible to have multiple starttls requests, we don't advertise it in features after first time so the client is definitely doing something wrong…

issue 1 of 1
Type
Task
Priority
Normal
Assignee
Wojciech Kapcia (Tigase)
Version
tigase-server-8.2.0
Spent time
0
Issue Votes (0)
Login to vote
Watchers (0)
Reference
tigase/_server/server-core#1288
Please wait...
Page is in error, reload to recover