Get the most out of your Centmin Mod LEMP stack
Become a Member

CentOS 7 Beta Branch update inc/wpsetup.inc rate limit xmlrpc.php requests

Discussion in 'Centmin Mod Github Commits' started by eva2000, Apr 12, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    36,047
    7,907
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,189
    Local Time:
    5:07 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
  2. rdan

    rdan Premium Member Premium Member

    4,255
    1,034
    113
    May 25, 2014
    Ratings:
    +1,486
    Local Time:
    3:07 AM
    Mainline
    10.2
    What do you mean by burst by the way?
    Reading Nginx docs still not figure out the use of it :)

    I understand, having: rate=100r/s

    I'm limiting 100 request per seconds, but what about burst?
     
  3. rdan

    rdan Premium Member Premium Member

    4,255
    1,034
    113
    May 25, 2014
    Ratings:
    +1,486
    Local Time:
    3:07 AM
    Mainline
    10.2
  4. eva2000

    eva2000 Administrator Staff Member

    36,047
    7,907
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,189
    Local Time:
    5:07 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    was going to point to docs Module ngx_http_limit_req_module ;) :)

     
  5. rdan

    rdan Premium Member Premium Member

    4,255
    1,034
    113
    May 25, 2014
    Ratings:
    +1,486
    Local Time:
    3:07 AM
    Mainline
    10.2
    Don't worry I understand it now fully, but still can't mitigate large http attacks.
     
  6. eva2000

    eva2000 Administrator Staff Member

    36,047
    7,907
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,189
    Local Time:
    5:07 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    what type of attacks you getting ?
     
  7. rdan

    rdan Premium Member Premium Member

    4,255
    1,034
    113
    May 25, 2014
    Ratings:
    +1,486
    Local Time:
    3:07 AM
    Mainline
    10.2
    DDOS Layer 7 Attacks, HTTP stress attack I think.
     
..