[Operators] Potential distributed attack
Evgeniy Khramtsov
xramtsov at gmail.com
Sat Apr 14 04:26:57 UTC 2012
On 14.04.2012 01:02, Christian wrote:
> Hi,
>
> to protect me against such mass registrations I did set the number of
> seconds a client at a particular
> IP address must wait before it can register another account to 300
> seconds.
>
> This could be a problem with shared IPs. But 5 minutes should be no
> problem I think.
>
Doesn't work. Registration scripts traverse huge list of servers, so the
full cycle takes an hour or so to bypass such a restriction.
--
Regards,
Evgeniy Khramtsov, ProcessOne.
xmpp:xram at jabber.ru.
More information about the Operators
mailing list