* [PATCH 4/4] README: recommend AUTH=ANONYMOUS on IMAP URLs
2022-08-08 23:16 7% [PATCH 0/4] imap: reduce impact of bot scanners Eric Wong
@ 2022-08-08 23:16 6% ` Eric Wong
0 siblings, 0 replies; 2+ results
From: Eric Wong @ 2022-08-08 23:16 UTC (permalink / raw)
To: meta
public-inbox-imapd prioritizes AUTH=ANONYMOUS clients, nowadays,
since it's a good heuristic for legitimate client traffic.
---
README | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/README b/README
index 364ef7e0..01089314 100644
--- a/README
+++ b/README
@@ -117,16 +117,16 @@ on git@vger.kernel.org).
The archives are readable via IMAP, NNTP or HTTP:
nntps://news.public-inbox.org/inbox.comp.mail.public-inbox.meta
- imaps://news.public-inbox.org/inbox.comp.mail.public-inbox.meta.0
+ imaps://;AUTH=ANONYMOUS@public-inbox.org/inbox.comp.mail.public-inbox.meta.0
https://public-inbox.org/meta/
-AUTH=ANONYMOUS is supported for IMAP, but any username + password works
+AUTH=ANONYMOUS is recommended for IMAP, but any username + password works
And as Tor hidden services:
http://4uok3hntl7oi7b4uf4rtfwefqeexfzil2w6kgk2jn5z2f764irre7byd.onion/meta/
nntp://4uok3hntl7oi7b4uf4rtfwefqeexfzil2w6kgk2jn5z2f764irre7byd.onion/inbox.comp.mail.public-inbox.meta
- imap://4uok3hntl7oi7b4uf4rtfwefqeexfzil2w6kgk2jn5z2f764irre7byd.onion/inbox.comp.mail.public-inbox.meta.0
+ imap://;AUTH=ANONYMOUS@4uok3hntl7oi7b4uf4rtfwefqeexfzil2w6kgk2jn5z2f764irre7byd.onion/inbox.comp.mail.public-inbox.meta.0
You may also clone all messages via git:
^ permalink raw reply related [relevance 6%]
* [PATCH 0/4] imap: reduce impact of bot scanners
@ 2022-08-08 23:16 7% Eric Wong
2022-08-08 23:16 6% ` [PATCH 4/4] README: recommend AUTH=ANONYMOUS on IMAP URLs Eric Wong
0 siblings, 1 reply; 2+ results
From: Eric Wong @ 2022-08-08 23:16 UTC (permalink / raw)
To: meta
There seems to be a fair amount of bot traffic scanning the
IMAP(S) port on public-inbox.org using username+password logins
(which we currently accept combination of).
AUTH=ANONYMOUS traffic is probably more likely to be legit,
and supported by mutt and lei, at least.
To avoid breaking things for legitimate users using
username+passwords, I've decided to deprioritize, but
still allow traffic of clients using username+password
logins.
The initial prefix change is good regardless, since
even legitimate AUTH=ANONYMOUS clients could've caused
fairness problems with the aggressive pipelining to
git-cat-file||Gcf2.
Eric Wong (4):
imap: limit ibx_async_prefetch to idle git processes
imap: only give AUTH=ANONYMOUS clients prefetch
imap: prioritize AUTH=ANONYMOUS clients
README: recommend AUTH=ANONYMOUS on IMAP URLs
README | 6 +++---
lib/PublicInbox/DS.pm | 2 +-
lib/PublicInbox/GitAsyncCat.pm | 9 ++++-----
lib/PublicInbox/IMAP.pm | 16 +++++++++++++---
lib/PublicInbox/IMAPD.pm | 7 +++++++
5 files changed, 28 insertions(+), 12 deletions(-)
^ permalink raw reply [relevance 7%]
Results 1-2 of 2 | reverse | options above
-- pct% links below jump to the message on this page, permalinks otherwise --
2022-08-08 23:16 7% [PATCH 0/4] imap: reduce impact of bot scanners Eric Wong
2022-08-08 23:16 6% ` [PATCH 4/4] README: recommend AUTH=ANONYMOUS on IMAP URLs Eric Wong
Code repositories for project(s) associated with this public inbox
https://80x24.org/public-inbox.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).