Message 24650

Author
ced
Date
2016-03-08.19:53:15
Message id
24650

Content

For me, performing a DDoS on an web application is not a security issue because any data are corrupted nor leaked.

Tryton as web application can not do anything to prevent DDoS, this has to be managed at the network level and/or at the server web level.

Also your patch doesn't fix any DDoS at all. An attacker will start new connection instead of waiting the 3 seconds.

About your metrics, I see no useful metrics. What is the rate of disk space filled? In how must time will a standard disk size be filled? I have the feeling that the log file is growing faster that the database because it is plain text with much more data.
I'm pretty sure that running the SQL query I gave when alert about disk space is raised is very enough.
History
Date User Action Args
2016-03-08 19:53:16cedsetmessageid: <1457463196.57.0.767696792982.issue5375@tryton.org>
2016-03-08 19:53:16cedsetrecipients: + bch, yangoon, nicoe, sharkcz, meanmicio, smarro, ajacoutot
2016-03-08 19:53:16cedlinkissue5375 messages
2016-03-08 19:53:15cedcreate

Showing 10 items. Show all history (warning: this could be VERY long)