Welcome to Centmin Mod Community
Become a Member

CentOS 7 Beta Branch update inc/wpsetup.inc rate limit xmlrpc.php requests

Discussion in 'Centmin Mod Github Commits' started by eva2000, Apr 12, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    54,519
    12,211
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,780
    Local Time:
    9:02 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  2. rdan

    rdan Well-Known Member

    5,446
    1,408
    113
    May 25, 2014
    Ratings:
    +2,201
    Local Time:
    7:02 AM
    Mainline
    10.2
    What do you mean by burst by the way?
    Reading Nginx docs still not figure out the use of it :)

    I understand, having: rate=100r/s

    I'm limiting 100 request per seconds, but what about burst?
     
  3. rdan

    rdan Well-Known Member

    5,446
    1,408
    113
    May 25, 2014
    Ratings:
    +2,201
    Local Time:
    7:02 AM
    Mainline
    10.2
  4. eva2000

    eva2000 Administrator Staff Member

    54,519
    12,211
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,780
    Local Time:
    9:02 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    was going to point to docs Module ngx_http_limit_req_module ;) :)

     
  5. rdan

    rdan Well-Known Member

    5,446
    1,408
    113
    May 25, 2014
    Ratings:
    +2,201
    Local Time:
    7:02 AM
    Mainline
    10.2
    Don't worry I understand it now fully, but still can't mitigate large http attacks.
     
  6. eva2000

    eva2000 Administrator Staff Member

    54,519
    12,211
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,780
    Local Time:
    9:02 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    what type of attacks you getting ?
     
  7. rdan

    rdan Well-Known Member

    5,446
    1,408
    113
    May 25, 2014
    Ratings:
    +2,201
    Local Time:
    7:02 AM
    Mainline
    10.2
    DDOS Layer 7 Attacks, HTTP stress attack I think.