bind9

mirror of https://github.com/isc-projects/bind9.git synced 2026-02-27 12:02:10 -05:00

History

Artem Boldariev 590e8e0b86 Make max number of HTTP/2 streams configurable This commit makes number of concurrent HTTP/2 streams per connection configurable as a mean to fight DDoS attacks. As soon as the limit is reached, BIND terminates the whole session. The commit adds a global configuration option (http-streams-per-connection) which can be overridden in an http <name> {...} statement like follows: http local-http-server { ... streams-per-connection 100; ... }; For now the default value is 100, which should be enough (e.g. NGINX uses 128, but it is a full-featured WEB-server). When using lower numbers (e.g. ~70), it is possible to hit the limit with e.g. flamethrower.		2021-07-16 11:50:22 +03:00
..
include	Remove LIB<*>_EXTERNAL_DATA defines	2021-07-06 05:33:48 +00:00
tests	Move the include Makefile.tests to the bottom of Makefile.am(s)	2021-06-24 15:33:52 +02:00
aclconf.c	Require 'ctx' to be non-NULL in cfg_acl_fromconfig{,2}	2021-01-28 01:54:59 +00:00
dnsconf.c	Remove LIB<*>_EXTERNAL_DATA defines	2021-07-06 05:33:48 +00:00
kaspconf.c	Add built-in dnssec-policy "insecure"	2021-04-30 11:18:38 +02:00
log.c	Remove LIB<*>_EXTERNAL_DATA defines	2021-07-06 05:33:48 +00:00
Makefile.am	tls and http configuration code was unnecessarily complex	2021-02-03 12:06:17 +01:00
namedconf.c	Make max number of HTTP/2 streams configurable	2021-07-16 11:50:22 +03:00
parser.c	Verify HTTP paths both in incoming requests and in config file	2021-07-16 10:28:08 +03:00