Join the community today
Register Now

CentOS 7 Beta Branch update inc/wpsetup.inc rate limit xmlrpc.php requests

Discussion in 'Centmin Mod Github Commits' started by eva2000, Apr 12, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    53,811
    12,159
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,711
    Local Time:
    4:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
  2. rdan

    rdan Well-Known Member

    5,439
    1,399
    113
    May 25, 2014
    Ratings:
    +2,188
    Local Time:
    2:25 AM
    Mainline
    10.2
    What do you mean by burst by the way?
    Reading Nginx docs still not figure out the use of it :)

    I understand, having: rate=100r/s

    I'm limiting 100 request per seconds, but what about burst?
     
  3. rdan

    rdan Well-Known Member

    5,439
    1,399
    113
    May 25, 2014
    Ratings:
    +2,188
    Local Time:
    2:25 AM
    Mainline
    10.2
  4. eva2000

    eva2000 Administrator Staff Member

    53,811
    12,159
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,711
    Local Time:
    4:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    was going to point to docs Module ngx_http_limit_req_module ;) :)

     
  5. rdan

    rdan Well-Known Member

    5,439
    1,399
    113
    May 25, 2014
    Ratings:
    +2,188
    Local Time:
    2:25 AM
    Mainline
    10.2
    Don't worry I understand it now fully, but still can't mitigate large http attacks.
     
  6. eva2000

    eva2000 Administrator Staff Member

    53,811
    12,159
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,711
    Local Time:
    4:25 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    what type of attacks you getting ?
     
  7. rdan

    rdan Well-Known Member

    5,439
    1,399
    113
    May 25, 2014
    Ratings:
    +2,188
    Local Time:
    2:25 AM
    Mainline
    10.2
    DDOS Layer 7 Attacks, HTTP stress attack I think.