changed: when a client doesn't send a session cookie we can instead of ban just use a temporary session

added: config option: // the way we behave when no_session_cookie_treshold limit is exceeded // 0 - if a client doesn't send a session cookie again then use a temporary session // (other sessions from this IP address are not affected) // 1 - add this IP address to ban list and create a temporary session // (this will block other sessions from this IP address too) // default: 0 int no_session_cookie_ban_mode; git-svn-id: svn://ttmath.org/publicrep/winix/trunk@996 e52654a7-88a9-db11-a3e9-0013d4bc506e
2014-11-25 12:02:22 +00:00
parent c9bf20201b
commit f875bd2944
6 changed files with 26 additions and 11 deletions
--- a/core/config.cpp
+++ b/core/config.cpp
@@ -223,7 +223,8 @@ void Config::AssignValues(bool stdout_is_closed)
 	session_key_renew_time			= Size(L"session_key_renew_time", 172800); // 2 days
 	broken_encoded_cookie_treshold	= Size(L"broken_encoded_cookie_treshold", 2);
 	session_hijacking_treshold		= Size(L"session_hijacking_treshold", 128);
-	no_session_cookie_treshold		= Size(L"no_session_cookie_treshold", 1000);
+	no_session_cookie_treshold		= Size(L"no_session_cookie_treshold", 128);
+	no_session_cookie_ban_mode		= Int(L"no_session_cookie_ban_mode", 0);

 	compression				= Bool(L"compression", true);
 	compression_page_min_size = Size(L"compression_page_min_size", 512);