Page MenuHomePhabricator
Differential D8713

Rate limit requests by IP
ClosedPublic
Actions

Authored by epriestley on Apr 7 2014, 12:20 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Apr 20, 6:44 PM
Unknown Object (File)
Feb 14 2024, 11:06 PM
Unknown Object (File)
Feb 13 2024, 10:00 PM
Unknown Object (File)
Feb 6 2024, 10:11 AM
Unknown Object (File)
Feb 4 2024, 5:05 PM
Unknown Object (File)
Feb 4 2024, 5:05 PM
Unknown Object (File)
Jan 22 2024, 8:33 AM
Unknown Object (File)
Jan 22 2024, 8:33 AM
View All Files
Subscribers
chad
epriestley

Details

Reviewers
btrahan
Maniphest Tasks
Restricted Maniphest Task
Commits
Restricted Diffusion Commit
rP4d0935ba5e69: Rate limit requests by IP
Summary

Fixes T3923. On secure.phabricator.com, we occasionally get slowed to a crawl when someone runs a security scanner against us, or 5 search bots decide to simultaneously index every line of every file in Diffusion.

Every time a user makes a request, give their IP address some points. If they get too many points in 5 minutes, start blocking their requests automatically for a while.

We give fewer points for logged in requests. We could futher refine this (more points for a 404, more points for a really slow page, etc.) but let's start simply.

Also, provide a mechanism for configuring this, and configuring the LB environment stuff at the same time (this comes up rarely, but we don't have a good answer right now).

Test Plan

Used ab and reloading over and over again to hit rate limits. Read documentation.

Diff Detail

Repository
rP Phabricator
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

epriestley updated this revision to Diff 20661.Apr 7 2014, 12:20 AM
epriestley retitled this revision from to Rate limit requests by IP.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: btrahan.
epriestley added a task: Restricted Maniphest Task.
Herald added a subscriber: epriestley.Apr 7 2014, 12:20 AM
epriestley updated this revision to Diff 20662.Apr 7 2014, 12:21 AM
  • Spell "preamble" correctly.
chad added a subscriber: chad.Apr 7 2014, 12:30 AM

146_bender-fighting.gif (455×468 px, 17 KB)

chad added a comment.Apr 7 2014, 12:30 AM

Don't piss off the robots!

btrahan accepted this revision.Apr 7 2014, 5:28 PM
btrahan edited edge metadata.
btrahan added inline comments.
support/PhabricatorStartup.php
764

documentation*

This revision is now accepted and ready to land.Apr 7 2014, 5:28 PM
epriestley closed this revision.Apr 9 2014, 1:36 AM
epriestley updated this revision to Diff 20700.

Closed by commit rP4d0935ba5e69 (authored by @epriestley).

epriestley mentioned this in T12612: Design (and possibly implement) production rate limiting controls.Apr 21 2017, 2:02 PM

Revision Contents
Changeset List

PathSize
3 lines
src/
docs/
user/
configuration/
3 lines
114 lines
support/
252 lines
webroot/
27 lines

Diff 20700

View Options

.gitignore

Loading...
View Options

src/docs/user/configuration/configuration_guide.diviner

Loading...
View Options

src/docs/user/configuration/configuring_preamble.diviner

Loading...
View Options

support/PhabricatorStartup.php

Loading...
View Options

webroot/index.php

Loading...
Phabricator · Built by Phacility