On Wed, Mar 6, 2024 at 2:45 PM Michael Banck <mba...@gmx.net> wrote: > In order to at least make case 2 not worse for exponential backoff, we > could maybe disable it (and just wait for auth_delay.milliseconds) once > MAX_CONN_RECORDS is full. In addition, maybe MAX_CONN_RECORDS should be > some fraction of max_connections, like 25%?
(Our mails crossed; hopefully I've addressed the other points.) I think solutions for case 1 and case 2 are necessarily at odds under the current design, if auth_delay relies on slot exhaustion to do its work effectively. Weakening that on purpose doesn't make much sense to me; if a DBA is uncomfortable with the DoS implications then I'd argue they need a different solution. (Which we could theoretically implement, but it's not my intention to sign you up for that. :D ) --Jacob
