Hi Bram!
On Mi, 01 Mai 2013, Bram Moolenaar wrote:
I think we can be rather strict. If a human is doing a lot of work, we
can ask him to try again in 4 hours. And send us a message that this
happened, so that we can tune the limit. Perhaps for specific cases.
I think it just happened:
Thanks for reporting - looks like he finally suceeded - and didn't read
the message ..
Hi xingchao,
(this mail also goes to vim_dev mailinglist)
If you cannot upload, you should see a message instead.
Due to attacks we've limited actions to 15 POST requests by IP.
Another global limit does
Marc Weber wrote:
I've introduced a total limit of 500 POST requests within 4h which is
slightly more than POST requests happen within 24h on an average day
(380 posts in 24h)
Thus if a bot uses multiple IPs, he should still fail soon
(unfortunately everybody else, too) - I think its more
Excerpts from John Beckett's message of Wed May 01 04:29:16 +0200 2013:
124 user accounts, including text fields intended to probe for
bugs that might be exploited to break in to the system.
The bot did at least 20 login attemps per second !
http://www.vim.org/account/register.php
I've added a
This still does not protect agains resource exhaustion (mysql users
exceeded - which appened). There are modules for apache to prevent
excessive site usage by bot like attacks. Maybe we should propose
sourcreforge to set them up?
Marc Weber
--
--
You received this message from the vim_dev
I've introduced a total limit of 500 POST requests within 4h which is
slightly more than POST requests happen within 24h on an average day
(380 posts in 24h)
Thus if a bot uses multiple IPs, he should still fail soon
(unfortunately everybody else, too) - I think its more importatnt to
protect
