From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net X-Spam-Level: X-Spam-ASN: X-Spam-Status: No, score=-4.2 required=3.0 tests=ALL_TRUSTED,BAYES_00, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, T_SCC_BODY_TEXT_LINE shortcircuit=no autolearn=ham autolearn_force=no version=3.4.2 Received: from localhost (dcvr.yhbt.net [127.0.0.1]) by dcvr.yhbt.net (Postfix) with ESMTP id 9EDE31F54E for ; Mon, 8 Aug 2022 23:16:48 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=80x24.org; s=selector1; t=1660000608; bh=wYk9OIxQNLVHSF9uafXag6PlZI3YKn81LY59YbkFJlg=; h=From:To:Subject:Date:From; b=kp0PzZGpwFI3AbtMUWNvxFZFWEJKo0Ebd2er5Z16GYK8N1NspP35+49VkrV4R+yr9 vBhqfnHhPbZ7Q7Up6IfaQq5BJKFZk+jpKRcPrzHABWx7Ol8kThhhI9ms7OIqgi5eUc FRJmulHtyzEw+qx0CDASho09ASo/uSUP0QLSx4wY= From: Eric Wong To: meta@public-inbox.org Subject: [PATCH 0/4] imap: reduce impact of bot scanners Date: Mon, 8 Aug 2022 23:16:44 +0000 Message-Id: <20220808231648.1954885-1-e@80x24.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit List-Id: There seems to be a fair amount of bot traffic scanning the IMAP(S) port on public-inbox.org using username+password logins (which we currently accept combination of). AUTH=ANONYMOUS traffic is probably more likely to be legit, and supported by mutt and lei, at least. To avoid breaking things for legitimate users using username+passwords, I've decided to deprioritize, but still allow traffic of clients using username+password logins. The initial prefix change is good regardless, since even legitimate AUTH=ANONYMOUS clients could've caused fairness problems with the aggressive pipelining to git-cat-file||Gcf2. Eric Wong (4): imap: limit ibx_async_prefetch to idle git processes imap: only give AUTH=ANONYMOUS clients prefetch imap: prioritize AUTH=ANONYMOUS clients README: recommend AUTH=ANONYMOUS on IMAP URLs README | 6 +++--- lib/PublicInbox/DS.pm | 2 +- lib/PublicInbox/GitAsyncCat.pm | 9 ++++----- lib/PublicInbox/IMAP.pm | 16 +++++++++++++--- lib/PublicInbox/IMAPD.pm | 7 +++++++ 5 files changed, 28 insertions(+), 12 deletions(-)