Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Disable TimeoutAcceptor when TSL is enabled #954

Merged
merged 1 commit into from
Aug 7, 2024
Merged

Disable TimeoutAcceptor when TSL is enabled #954

merged 1 commit into from
Aug 7, 2024

Conversation

josecelano
Copy link
Member

The TimeoutAcceptor es a custom acceptor for Axum that sets a timeput for making a request after openning a connection.

It does not work when TSL is enabled.

This commit disables it, therefore the app does not have any way to avoid a DDos attacks where clients just open connections without making any request.

@josecelano josecelano added this to the v3.0.0 milestone Jul 5, 2024
@josecelano josecelano self-assigned this Jul 5, 2024
@josecelano josecelano requested a review from da2ce7 July 5, 2024 10:36
@codecov Codecov
Copy link

codecov bot commented Jul 5, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 77.10%. Comparing base (0a04dde) to head (222fa42).

Additional details and impacted files 
@@             Coverage Diff             @@
##           develop     #954      +/-   ##
===========================================
- Coverage    77.14%   77.10%   -0.04%     
===========================================
  Files          185      185              
  Lines        10058    10063       +5     
===========================================
  Hits          7759     7759              
- Misses        2299     2304       +5

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@da2ce7
Copy link
Contributor

da2ce7 commented Jul 13, 2024

ACK 38bb7cd

@da2ce7 da2ce7 added the Needs Rebase Base Branch has Incompatibilities label Jul 13, 2024
da2ce7 added a commit to da2ce7/torrust-tracker that referenced this pull request Jul 13, 2024
@da2ce7
Merge torrust#954: Disable TimeoutAcceptor when TSL is enabled
71b8dc0 
38bb7cd feat: disable TimeoutAcceptor when TSL is enabled (Jose Celano)

Pull request description:

  The TimeoutAcceptor es a custom acceptor for Axum that sets a timeput for making a request after openning a connection.

  It does not work when TSL is enabled.

  This commit disables it, therefore the app does not have any way to avoid a DDos attacks where clients just open connections without making any request.

ACKs for top commit:
  josecelano:
    ACK 38bb7cd
  da2ce7:
    ACK 38bb7cd

Tree-SHA512: 5c46333b7301d7469566df36d8c082ff139e61ff5ade214b6a232b7635f4add0e3a61e4e098e99215306ea2f49c0c5a1d6473777e5282455642f9600c5ac2d4b
@josecelano
feat: disable TimeoutAcceptor when TSL is enabled
222fa42 
The TimeoutAcceptor es a custom acceptor for Axum that sets a timeput
for making a request after openning a connection.

It does not work when TSL is enabled.

This commit disables it, therefore the app does not have any way to
avoid a DDos attacks where clients just open connections without making
any request.
@josecelano josecelano force-pushed the disable-time-acceptor-when-tsl-is-enabled branch from 38bb7cd to 222fa42 Compare August 7, 2024 13:28
@josecelano
Copy link
Member Author

ACK 222fa42

@josecelano
Copy link
Member Author

ACK 38bb7cd

I forgot to merge this.

@josecelano josecelano merged commit 7ac1556 into torrust:develop Aug 7, 2024
17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@da2ce7 da2ce7 da2ce7 approved these changes

Assignees

@josecelano josecelano

Labels
Needs Rebase Base Branch has Incompatibilities
Projects
None yet
Milestone
v3.0.0
Development

Successfully merging this pull request may close these issues.
2 participants
@josecelano @da2ce7