this post was submitted on 07 Jun 2024
65 points (100.0% liked)
Linux
5326 readers
194 users here now
A community for everything relating to the linux operating system
Also check out [email protected]
Original icon base courtesy of [email protected] and The GIMP
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Nice rate limiting
In the old days we called it tar pitting.
Tell me in the old days there were other things that could happen. Like feathering somebody after tar pitting. I dont know what that would've meant. Maybe servers ridiculing an attacker or something.
Tar pitting sounds way more fun than rate limiting >.>
Could be a feature where servers would add your IP to a list, and send it to the clients (like a list somewhere in case of a website)
Then clients would start sending random metasploit-esk requests to those IPS
I think it's supposed to evoke an image of an animal getting trapped in a tarpit.
IIRC, originally it was adding a delay on SMTP connections to keep spammers busy.
https://verifalia.com/help/email-validations/what-is-smtp-tarpitting
First time I hear that term, interesting
You should look into it. Network tarpitting has an interesting history.
https://en.m.wikipedia.org/wiki/Tarpit_(networking)
So we‘re making fail2ban obsolete for this usecase?
Yes, if that's the only reason one is using
fail2ban
. Honestly, I won't miss it.