Harden Exchange Server against malicious actors spamming it with requests #90

fl0rek · 2023-10-04T09:46:01Z

ExchangeServerHandler spawns new tasks for Store operations for most of the received requests. Investigate ways of mitigating danger of us getting overwhelmed by huge number of requests.

libp2p allows us to limit number of incoming streams negotiating the connection
https://docs.rs/libp2p/latest/libp2p/swarm/struct.SwarmBuilder.html#method.max_negotiating_inbound_streams

for the connected streams we can track the number of in-flight requests and drop the ResponseChannel to close the connection, if we're getting overwhelmed.

The text was updated successfully, but these errors were encountered:

zvolin · 2024-10-04T17:38:41Z

this is now not needed as we no longer spawn but put futures in FuturesUnordered. connection limits is separate case tracked in #330

fl0rek mentioned this issue Oct 4, 2023

Implement ExchangeServerHandler #72

Merged

zvolin added this to the pre - light node in browser milestone Oct 30, 2023

zvolin added this to Lumina Oct 30, 2023

zvolin moved this to Todo in Lumina Oct 30, 2023

zvolin removed this from the pre - light node in browser milestone Nov 13, 2023

zvolin closed this as completed Oct 4, 2024

github-project-automation bot moved this from Todo to Done in Lumina Oct 4, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Harden Exchange Server against malicious actors spamming it with requests #90

Harden Exchange Server against malicious actors spamming it with requests #90

fl0rek commented Oct 4, 2023

zvolin commented Oct 4, 2024

Harden Exchange Server against malicious actors spamming it with requests #90

Harden Exchange Server against malicious actors spamming it with requests #90

Comments

fl0rek commented Oct 4, 2023

zvolin commented Oct 4, 2024