Join the community today
Become a Member

CentOS 7 Beta Branch update inc/wpsetup.inc rate limit xmlrpc.php requests

Discussion in 'Centmin Mod Github Commits' started by eva2000, Apr 12, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    48,483
    11,110
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,300
    Local Time:
    8:31 AM
    Nginx 1.21.x
    MariaDB 10.x
  2. rdan

    rdan Premium Member Premium Member

    5,226
    1,307
    113
    May 25, 2014
    Ratings:
    +2,009
    Local Time:
    6:31 AM
    Mainline
    10.2
    What do you mean by burst by the way?
    Reading Nginx docs still not figure out the use of it :)

    I understand, having: rate=100r/s

    I'm limiting 100 request per seconds, but what about burst?
     
  3. rdan

    rdan Premium Member Premium Member

    5,226
    1,307
    113
    May 25, 2014
    Ratings:
    +2,009
    Local Time:
    6:31 AM
    Mainline
    10.2
  4. eva2000

    eva2000 Administrator Staff Member

    48,483
    11,110
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,300
    Local Time:
    8:31 AM
    Nginx 1.21.x
    MariaDB 10.x
    was going to point to docs Module ngx_http_limit_req_module ;) :)

     
  5. rdan

    rdan Premium Member Premium Member

    5,226
    1,307
    113
    May 25, 2014
    Ratings:
    +2,009
    Local Time:
    6:31 AM
    Mainline
    10.2
    Don't worry I understand it now fully, but still can't mitigate large http attacks.
     
  6. eva2000

    eva2000 Administrator Staff Member

    48,483
    11,110
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,300
    Local Time:
    8:31 AM
    Nginx 1.21.x
    MariaDB 10.x
    what type of attacks you getting ?
     
  7. rdan

    rdan Premium Member Premium Member

    5,226
    1,307
    113
    May 25, 2014
    Ratings:
    +2,009
    Local Time:
    6:31 AM
    Mainline
    10.2
    DDOS Layer 7 Attacks, HTTP stress attack I think.