An observation about client certificates

Jason McBrayer jmcbray at carcosa.net
Sun May 17 22:47:02 BST 2020

Previous message (by thread): An observation about client certificates
Next message (by thread): Gemini server logging formats and practices
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sean Conner <sean at conman.org> writes:

>   Over the past hour, I've over 2,700 requests in my client torture test,
> specifically, test #22, leading into the "Redirect From Hell" portion.  If
> it was going any faster, I'd probably block it with the firewall, but my
> question to Dave is, what happens on your server when something like this
> happens?  You don't log the IP, so now what?  

Yeah, IMO you need to log IP addresses in case you need to blacklist
them either in the server or the firewall, in cases of abuse. If you
only kept hashes of addresses, you could check them in the server for
blocking, but it would not be as fast.

-- 
+-----------------------------------------------------------+  
| Jason F. McBrayer                    jmcbray at carcosa.net  |  
| If someone conquers a thousand times a thousand others in |  
| battle, and someone else conquers himself, the latter one |  
| is the greatest of all conquerors.  --- The Dhammapada    |

Previous message (by thread): An observation about client certificates
Next message (by thread): Gemini server logging formats and practices
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list