[Juser] Changes due to Denial of Service Attacks
Peter Saint-Andre
stpeter at stpeter.im
Tue Sep 4 17:10:03 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 9/4/12 11:05 AM, Kevin Smith wrote:
> On Tue, Sep 4, 2012 at 12:43 AM, Rob Newton <robn at mirrabooka.com>
> wrote:
>> Since the recent denial of service attacks, I understand that
>> some measures were taken on the server side to prevent the
>> attacks. In particular, this notice:
>>
>> Below is the debug log. Can anyone see what the problem might
>> be? Would it be that Pidgin doesn't handle DNS SRV records
>> correctly?
>
> It's not that Pidgin doesn't support SRV (I believe it does) but
> that either it's configured not to use it, or the DNS servers it's
> using are broken.
>
>> (09:33:21) proxy: Attempting connection to 208.68.163.220
>> (09:33:21) proxy: Connecting to jabber.org:5222 with no proxy
>
> This is, as you surmised, not trying SRV.
>
> So either somewhere in the account config in Pidgin you'll find
> that you've got it set with a manual connect host of jabber.org,
> port 5222, or running
>
> dig -t srv _xmpp-client._tcp.jabber.org
>
> won't give you the three results it should.
The Pidgin developers assure me that their code supports proper SRV
lookups, and they have tested against jabber.org successfully of late.
So I think the issue here is most likely misconfiguration on the
client side (hardcoding "jabber.org" as the host to connect to).
Peter
- --
Peter Saint-Andre
https://stpeter.im/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iEYEARECAAYFAlBGNesACgkQNL8k5A2w/vzEUACfb0d/xaa4SIn04Ae2kqEJUN4t
BDoAn0pTzocRiMZkFTfTxiONTwFZf0bO
=QCiw
-----END PGP SIGNATURE-----
More information about the JUser
mailing list