Account registration limits (#206)

Artur Hefczyc opened 1 decade ago

Due Date
2015-09-01

Protect from abuse or DOS attack on a number of registered accounts within a period of time and on a number of registered accounts within a period of time from a single IP address. Looks like we experienced some kind of load tests on our system which resulted in 11k new accounts registered within a few houts/minutes....

Activities

Artur Hefczyc commented 1 decade ago

Estimate work effort for the feature so we can decide whether it can be done for 7.1.0 version.
Artur Hefczyc commented 1 decade ago

Bartosz, I need update on this ticket asap.
Bartosz Małkowski commented 1 decade ago

I have to implement Token Bucket algorithm for each IP.
Artur Hefczyc commented 1 decade ago

Ok, let's do it for 7.2.0 then.
Bartosz Małkowski commented 10 years ago
Implemented.

Configuration:

sess-man/plugins-conf/jabber\:iq\:register/registrations-per-second=10

It allows for 10 registrations from single IP per second.

If limit will be exceeded then NOT_ALLOWED error will be returned.
Daniel Wisnewski commented 10 years ago

If this feature is complete, should we include it in 7.1.0?
Artur Hefczyc commented 10 years ago

Yes,

Bartosz, is this task completed? Status is set to "In Progress".
Bartosz Małkowski commented 10 years ago

Ouch. I forgot to change status, sorry.

Feature is implemented.
Login to comment

Type	New Feature
Priority	Normal
Assignee	Artur Hefczyc
RedmineID	1361
Version	tigase-server-7.1.0
Estimation	0
Spent time	0

Issue Votes (0)

Watchers (0)

Reference

tigase/_server/server-core#206