这是indexloc提供的服务,不要输入任何密码
Skip to content

[fix] limiter / botdetection: remove http_connection method #2893

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 1, 2023
Merged

[fix] limiter / botdetection: remove http_connection method #2893

merged 1 commit into from
Oct 1, 2023

Conversation

@return42
Copy link
Member

@return42 return42 commented Oct 1, 2023

@return42
[fix] limiter / botdetection: remove http_connection method
3d2d5fa 
Related:

- searxng#2892 (comment)

Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
@return42 return42 merged commit d56b31d into searxng:master Oct 1, 2023
@return42 return42 deleted the limiter-connection-close branch October 1, 2023 18:24
@unixfox
Copy link
Contributor

unixfox commented Oct 2, 2023
edited
Loading

While this may fix some issues with uwsgi, removing this rule reduce the effectiveness of the bot protection.

I have seen many many bots sending the connection close header on my server. And this rule have blocked a lot of bots.

return42
return42 commented Oct 3, 2023
View reviewed changes
searx/botdetection/limiter.py
Comment on lines 51 to 56
http_accept,
http_accept_encoding,
http_accept_language,
http_connection,
http_user_agent,
ip_limit,
ip_lists,
Copy link
Member Author

@return42 return42 Oct 3, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have seen many many bots sending the connection close header on my server. And this rule have blocked a lot of bots.

After #2894 has been reviewed & merged we can consider to make this rules configurable in the limiter.toml.

@unixfox
Copy link
Contributor

unixfox commented Oct 3, 2023

Forgot to say that I'm using NGINX for this rule not the official bot limiter in searxng.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@return42 @unixfox