Does Radicale have any rate limiting for bots brute forcing credentials? #1800
-
|
I'm using a LDAP backend and I'm concerned that the bots might start hammering my server. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
since 3.4.0 an authentication cache is available which can be controlled by options: https://github.com/Kozea/Radicale/blob/master/DOCUMENTATION.md#cache_logins and add also an delay in case of failed auhtentication. But this only prevents single threaded DoS attacks, more sophisticated protection needs to be done outside, e.g. by using https://github.com/Kozea/Radicale/wiki/Fail2Ban-Setup |
Beta Was this translation helpful? Give feedback.
-
|
Thanks, I'm only looking to stop the passive bots so I think the built in features will work for me. |
Beta Was this translation helpful? Give feedback.
since 3.4.0 an authentication cache is available which can be controlled by options: https://github.com/Kozea/Radicale/blob/master/DOCUMENTATION.md#cache_logins and add also an delay in case of failed auhtentication.
But this only prevents single threaded DoS attacks, more sophisticated protection needs to be done outside, e.g. by using https://github.com/Kozea/Radicale/wiki/Fail2Ban-Setup