We're updating the issue view to help you get more done. 

Option to block anonymous logins from sending s2s packets

Description

As a measure to help mitigate DOS/SPIM style attacks, Openfire should have a property option that prevents anonymous logins from sending server 2 server packets. This would prevent an anonymous login from spamming another federated server. It would not stop the user from spamming users on the local server.

Environment

None

Acceptance Test - Entry

None

Activity

Show:
Daryl Herzmann
December 20, 2016, 3:52 PM

Punting to 4.2, a related change to prevent blacklisted outbound s2s hosts from consuming available threads helped in this general area of spammers

Fixed

Assignee

Guus der Kinderen

Reporter

Daryl Herzmann

Labels

Expected Effort

None

Ignite Forum URL

None

Components

Fix versions

Affects versions

Priority

Minor
Configure