zaclys/searxng
1
0
Fork 1
mirror of https://github.com/searxng/searxng synced 2024-01-01 19:24:07 +01:00
Code Issues Projects Releases Packages Wiki Activity
6989 commits 11 branches 17 tags 103 MiB
Commit graph

14 commits

Author SHA1 Message Date
blob42
6122afdd98 whitelist_ratelimiter: @dalf patch 
- it calls ip_address and ip_network only once for the settings.
- init_whitelist to make tests easier
- get_remote_addr get the IP address for the function is_accepted_request
- for reference: https://esd.io/blog/flask-apps-heroku-real-ip-spoofing.html
 2023-05-18 20:46:55 +02:00
blob42
04121beb10 limiter_whitelisting: extra checks and fallback to no whitelisting 2023-05-18 20:46:55 +02:00
blob42
bbc52eb9d5 limiter_whitelisting: add tests, update doc 2023-05-18 20:46:55 +02:00
blob42
e3ceff4302 limiter_whitelisting: allow ip and subnet whitelisting #add 2127 
- add a new condition to bypass the rate limiter for whitelisted ips
- the whitelisting condition has the highest priority
 2023-05-18 20:46:55 +02:00
Alexandre Flament
b971167ced move searx.shared.redisdb to searx.redisdb 2022-12-10 09:26:38 +01:00
Alexandre Flament
fe419e355b The checker requires Redis 
Remove the abstraction in searx.shared.SharedDict.
Implement a basic and dedicated scheduler for the checker using a Redis script.
 2022-11-05 12:04:50 +01:00
Léon Tiekötter
221740f76e
[mod] limiter plugin: Accept-Encoding handling 
Only raise "suspicious Accept-Encoding" when both "gzip" and "deflate" are missing from Accept-Encoding.
Prevent Browsers which only implement one compression solution from being blocked by the limiter plugin.
Example Browser which is currently blocked: Lynx Browser (https://lynx.invisible-island.net)
 2022-08-25 23:21:30 +02:00
mrpaulblack
38385e48cf fix: return body on limiter block so there is not just a blank page 2022-07-05 22:57:26 +02:00
Markus Heiser
4b185f0e11 [mod] plugins/limiter.py - use searx.redislib.incr_sliding_window 
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
 2022-05-30 11:10:30 +02:00
Émilien Devos
66b77c46c7
Fix typo 2022-05-10 20:45:59 +00:00
Markus Heiser
37493b0a1e [doc] add some documentation about the limiter plugin (and redis) 
Requested-by: https://github.com/searxng/searxng/discussions/993#discussioncomment-2396914
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
 2022-03-25 11:26:10 +01:00
Alexandre Flament
d1b7debac6 [limiter] update 2022-02-17 20:27:02 +01:00
Alexandre Flament
b99ccd7c02 plugin limiter: check only /image_proxy and /search 
also adjust the number of req/time
 2022-02-12 15:57:07 +01:00
Alexandre Flament
f79b0fce06 [enh] limiter plugin 
can replace filtron:
* rate limite the number of request per IP and per (IP, User-Agent)
* block some bots

use Redis
data stored in Redis never contains the IP addresses, only HMAC using the secret_key

Co-authored-by: Markus Heiser <markus.heiser@darmarit.de>
 2022-02-02 09:15:59 +01:00