>1) A setting that defines the number of failures required before an
IP
>gets added to SSLFailed
>2) The option to exclude certain IPs from being added to the
SSLFailed
>cache altogether
Option 1 makes no sense to me. In 99,99% of a failed SSL connection, all
other SSL connections from this host will also fail.
Option 2 will be available in the next release - how ever it is better fix
the SSL problem instead using such hacks.
If such a host goes crazy - it is the same like a SSL DoS attack to assp,
Thomas
Von: "Colin Waring" <[email protected]>
An: "'ASSP development mailing list'"
<[email protected]>,
Datum: 02.05.2014 00:01
Betreff: [Assp-test] SSLFailed Cache
Hi there,
Back in March last year I had an issue rear its head. The thread
concerning
it was titled "TLS fail cache". Unfortunately it has come back.
This issue is that a particular server seems to occasionally have a hiccup
when negotiating the SSL connection and as a result gets itself blocked
from
SSL. This server is configured to only use SSL so that emails are sent out
encrypted leaving it unable to send mail.
My request back then was to have settings to control how entries get into
the cache as follows:
1) A setting that defines the number of failures required before an
IP
gets added to SSLFailed
2) The option to exclude certain IPs from being added to the
SSLFailed
cache altogether
I am aware that I can add the IP to acceptallmail so that the server will
need to fail twice before being blocked but I'd rather not bypass all the
checks for it. I could really do with option 2) being available so that I
don't have to keep going in and removing the entry from the cache.
All the best,
Colin Waring.
------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos. Get
unparalleled scalability from the best Selenium testing platform
available.
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs
_______________________________________________
Assp-test mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-test
DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the
individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************
------------------------------------------------------------------------------
"Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE
Instantly run your Selenium tests across 300+ browser/OS combos. Get
unparalleled scalability from the best Selenium testing platform available.
Simple to use. Nothing to install. Get started now for free."
http://p.sf.net/sfu/SauceLabs
_______________________________________________
Assp-test mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/assp-test
