You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I would like to put in a request for an api endpoint to monitor the number of failed ssl api session authentication events during a time interval with the purpose of detecting ddos attacks against the OpenZiti Controller.
The text was updated successfully, but these errors were encountered:
The idea here is to give a ddos tool insight as to whether the controller is under attack and have the OS firewall block any tls session requests from sources that have not already authenticated at least once. The issue arises as to whether the above limiter protects the controller enough when it is hit by millions of authentication requests or does it still have waist process cycles denying them? If the answer is the controller has to waist CPU resources denying the requests to the point it becomes impaired. Then I would say that it does not meet the need. cc @mikegorman-nf
I would like to put in a request for an api endpoint to monitor the number of failed ssl api session authentication events during a time interval with the purpose of detecting ddos attacks against the OpenZiti Controller.
The text was updated successfully, but these errors were encountered: