~nickbp/kapiti#8: 
Implement rate limiter for incoming queries

At the moment the server just listens to localhost. Before allowing non-localhost access*, would make sense to at least have some basic rate limiting for incoming queries. Maybe there's something off-the-shelf for this?

* But probably still just allowing requests from LAN IP ranges until after #14 and possibly #15

Also worth pointing out that an upstream firewall or similar could provide this as a stopgap.

Status
REPORTED
Submitter
~nickbp
Assigned to
No-one
Submitted
4 months ago
Updated
4 months ago
Labels
Low Priority

~nickbp 4 months ago

I'm now somewhat leaning towards just saying "hey maybe don't expose this on the internet". I'm also thinking that any rate limiter implementation would need to be carefully thought out as it otherwise risks creating problems for people, even in LAN situations. But I'll leave this open as a longer-term wishlist item.

~nickbp referenced this from #13 4 months ago

~nickbp referenced this from #14 4 months ago

~nickbp referenced this from #27 4 months ago

Register here or Log in to comment, or comment via email.