Uhm, I lost a step here ...... not to be picky, but I need to understand..... usually if you are running behind apache or nginx those directives should discard the request "before" passing it to uwsgi, right ? It's good to set a limit also on uwsgi (one never knows what is coming), but if it's not "facing" the internet serving request, directives on the webserver should do the job just fine.
Or .... I completely missed the whole "embed cgi,fastci,scgi,uwsgi in a webserver" architecture :°°°°D Il giorno domenica 22 aprile 2012 21:16:34 UTC+2, Bruce Wade ha scritto: > > Ok thanks I will try that to see if it prevents the attack. > > On Sun, Apr 22, 2012 at 12:12 PM, Roberto De Ioris <[email protected]>wrote: > >> >> > Thanks, I know how to use the apache and nginx one but how to I set >> > limit-post in uwsgi? >> >> >> --limit-post 4096 >> >> to accept a maximum of 4k body >> >> >> > >> > On Sun, Apr 22, 2012 at 11:48 AM, Niphlod <[email protected]> wrote: >> > >> >> apache has LimitRequestBody directive, nginx has client_max_body_size, >> >> uwsgi has limit-post. >> >> >> >> >> >> >> >> >> >> >> >> Il giorno domenica 22 aprile 2012 17:09:17 UTC+2, Bruce Wade ha >> scritto: >> >> >> >>> chunk_size : >> >>> 100000 >> >>> dest : >> >>> <open file '<fdopen>', mode 'w+b'> >> >>> size : >> >>> 179 >> >>> src : >> >>> <mod_wsgi.Input object> >> >>> >> >>> On Sun, Apr 22, 2012 at 8:03 AM, Bruce Wade <[email protected]> >> >>> wrote: >> >>> >> >>>> Hi, >> >>>> >> >>>> It looks like someone on my site is trying to use a post submission >> to >> >>>> take down my server. Unfortunately for them we have multiple servers. >> >>>> >> >>>> How can I detect this kind of attack and just ignore it? Some how >> they >> >>>> are submitting a chunk size of 100000 which is killing my I/O on the >> >>>> server. >> >>>> >> >>>> -- >> >>>> -- >> >>>> Regards, >> >>>> Bruce Wade >> >>>> http://ca.linkedin.com/in/**brucelwade< >> http://ca.linkedin.com/in/brucelwade> >> >>>> http://www.wadecybertech.com >> >>>> http://www.fittraineronline.**com <http://www.fittraineronline.com> >> - >> >>>> Fitness Personal Trainers Online >> >>>> http://www.warplydesigned.com >> >>>> >> >>>> >> >>> >> >>> >> >>> -- >> >>> -- >> >>> Regards, >> >>> Bruce Wade >> >>> http://ca.linkedin.com/in/**brucelwade< >> http://ca.linkedin.com/in/brucelwade> >> >>> http://www.wadecybertech.com >> >>> http://www.fittraineronline.**com <http://www.fittraineronline.com> - >> >>> Fitness Personal Trainers Online >> >>> http://www.warplydesigned.com >> >>> >> >>> >> > >> > >> > -- >> > -- >> > Regards, >> > Bruce Wade >> > http://ca.linkedin.com/in/brucelwade >> > http://www.wadecybertech.com >> > http://www.fittraineronline.com - Fitness Personal Trainers Online >> > http://www.warplydesigned.com >> > >> >> >> -- >> Roberto De Ioris >> http://unbit.it >> > > > > -- > -- > Regards, > Bruce Wade > http://ca.linkedin.com/in/brucelwade > http://www.wadecybertech.com > http://www.fittraineronline.com - Fitness Personal Trainers Online > http://www.warplydesigned.com > >
