I just came from playing with my own stuff. For my splash engine, I solved
externally from nginx, converting call to db layer to static resources in
configuration arrays: just to fire your ideas, eg. if you know cvs has any
cashing mechanism by reading files or diffs that it a way to solve. I then
investigate further my code.5mode.com and I found to already have the famous if
{ ($http_user_agent ~* bot) return 403; }. And I applied it to the other
websites heavy loaded. All the recents hits came from Windows and Edge,
indeed.... I then underline that you can easily limit the connection rate per
ip and host in nginx, possibly per webserver and not locking down the affected
webapp that, as already said, is not exactly waiting for the last breath to go
down under attack.
-Dan
------
bsdload.com - Repo: https://code.5mode.com
Please reply to the mailing-list, leveraging technical stuff.
