Software /
code /
prosody-modules
File
mod_limit_auth/README.markdown @ 5173:460f78654864
mod_muc_rtbl: also filter messages
This was a bit tricky because we don't want to run the JIDs
through SHA256 on each message. Took a while to come up with this
simple plan of just caching the SHA256 of the JIDs on the
occupants.
This will leave some dirt in the occupants after unloading the
module, but that should be ok; once they cycle the room, the
hashes will be gone.
This is direly needed, otherwise, there is a tight race between
the moderation activities and the actors joining the room.
author | Jonas Schäfer <jonas@wielicki.name> |
---|---|
date | Tue, 21 Feb 2023 21:37:27 +0100 |
parent | 2121:4916c1b6517f |
line wrap: on
line source
--- summary: Throttle authentication attempts with optional tarpit ... Introduction ============ This module lets you put a per-IP limit on the number of failed authentication attempts. It features an optioanal [tarpit](https://en.wikipedia.org/wiki/Tarpit_%28networking%29), i.e. waiting some time before returning an "authentication failed" response. Configuration ============= ``` {.lua} modules_enabled = { -- your other modules "limit_auth"; } limit_auth_period = 30 -- over 30 seconds limit_auth_max = 5 -- tolerate no more than 5 failed attempts -- Will only work with Prosody trunk: limit_auth_tarpit_delay = 10 -- delay answer this long ``` Compatibility ============= Requires 0.9 or later. The tarpit feature requires Prosody trunk.