On Wednesday, 15 March 2017 at 08:57:53 UTC, Sönke Ludwig wrote:
Improvements implemented by now:

- Authorization and time limit (5min client facing, 15min server facing) is now enforced for editing and deleting comments - The page must be queried first before any action is allowed (prevents trivial command line batch "attacks", as well as trivial spam automation) - The main comment form is minimized by default (only the text area, single-line height) - Maximum height of comments limited (will show scroll bars if exceeded)
- Temporal boosting limited to hours instead of days
- E-mail and website length limited
- Message contents don't overflow the content area
- Displayed comment count corrected


The load balancer you were working on. Was it intended to handle DDoS attacks and what is the current status.

Reply via email to