[Tilesathome] mass render requests
Andre Hinrichs
andre.hinrichs at gmx.de
Tue Dec 20 22:18:12 GMT 2011
Hi List!
Someone is sending mass render requests without giving a "Requested by"
and all requests with prio 2.
I consider this as a potential DOS (denial of service) attack since
normal rendering of changed tiles is blocked. In any case this makes no
sense.
We should think about a way of stopping DOS attacks.
I could think of two ways:
1.) Users have to authenticate to send render requests with prio 1 or 2.
2.) Users (IPs) can only send a maximum number of prio 2 requests just
like it is with prio 1 requests. The number of allowed prio 2 requests
should be higher of course (e.g. 1000).
What do you think?
Cheers
Andre
More information about the Tilesathome
mailing list