HomeDevCentral
Diffusion ViperServ scripts 462b05704e0a

Count #wikipedia-fr excess flood botnet mitigation bans
462b05704e0aUnpublished
Actions

Unpublished Commit · Learn More

Repository Importing: This repository is still importing.

Description

Count #wikipedia-fr excess flood botnet mitigation bans

Summary:
We previously set a ban duration of one day, without any
insurance this value is optimal.

Alphos suggested we count banned clients by IP:

INSERT INTO excessfloodlog ( ipaddress, connectcount)
VALUES ( :ipaddress, 1 )
ON DUPLICATE KEY UPDATE connectcount = connectcount + 1;

As we strive for an immediate log but without network blocking
operation and as in the future similar protection could be
extended to other scenarii, including cloaks, we'll log hosts.

Fixes T518.

This commit introduces a database schema change:

CREATE TABLE `log_flood` (
  `host` varchar(255) NOT NULL DEFAULT '',
  `count` tinyint(3) unsigned DEFAULT NULL,
  `created` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
  `updated` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
  PRIMARY KEY (`host`)
) ENGINE=InnoDB;

Test Plan:

  • Watch #wikipedia-fr to notice when some bans are triggered
  • See if it's correctly logged in the database

Reviewers: dereckson

Projects: Dæghrefn, Wikimedia

Maniphest Tasks: T518

Differential Revision: http://devcentral.nasqueron.org/D33

Details

Provenance
derecksonAuthored on Jul 31 2015, 09:06
Differential Revision
D33: Count #wikipedia-fr excess flood botnet mitigation bans
Parents
rVIPER5dbcdb24a69d: Amend botnet migitation protection for #wikipedia-fr
Branches
Unknown
Tags
Unknown

Changes (1)

PathSize
Daeghrefn/

rVIPER462b05704e0a

View Options

Daeghrefn/Channel.tcl

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator