A while back we looked into using failtoban for http/https. Never
implemented it, but it does work well on our mail servers.
On 24/06/2024 22:57, James H. H. Lampert wrote:
On 6/24/24 12:03 PM, Tim Funk wrote:
Conversely, this is a good time for the developers to review
their server logging and tune it to be less verbose for these
normal exceptions. As well as implementing logging frameworks
and logging at the appropriate level (fatal through debug)
Thanks for your thoughts on the subject.
The primary problem isn't that the catalina.out file is enormous, nor
that the log messages are too verbose (if anything, they're not
verbose enough: a timestamp would help) ; it's that while the random
filenames were being tried, in quick succession, the CPU usage of the
JVM job skyrocketed, and legitimate traffic was probably having
trouble getting in.
--
JHHL
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
