blob42
/
searxng
forked from Archives/searxng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
6,989 Commits
10 Branches
17 Tags
41 MiB
whitelist-ratelimiter
mine
gh-pages
master
dependabot/pip/master/flask-babel-3.0.0
translations
dependabot/pip/master/mock-5.0.1
dependabot/pip/master/yamllint-1.29.0
dependabot/pip/master/pylint-2.15.10
dependabot/pip/master/sphinx-6.1.3
v1.0.0
v0.18.0
v0.17.0
v0.16.0
v0.15.0
v0.14.0
v0.13.1
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6122afdd98'
${ noResults }
Commit Graph

14 Commits (6122afdd984b430d4fa39b3fb4030ad573f592b1)

Author SHA1 Message Date
blob42 6122afdd98 whitelist_ratelimiter: @dalf patch 
- it calls ip_address and ip_network only once for the settings.
- init_whitelist to make tests easier
- get_remote_addr get the IP address for the function is_accepted_request
- for reference: https://esd.io/blog/flask-apps-heroku-real-ip-spoofing.html
 1 year ago
blob42 04121beb10 limiter_whitelisting: extra checks and fallback to no whitelisting 1 year ago
blob42 bbc52eb9d5 limiter_whitelisting: add tests, update doc 1 year ago
blob42 e3ceff4302 limiter_whitelisting: allow ip and subnet whitelisting #add 2127 
- add a new condition to bypass the rate limiter for whitelisted ips
- the whitelisting condition has the highest priority
 1 year ago
Alexandre Flament b971167ced move searx.shared.redisdb to searx.redisdb 2 years ago
Alexandre Flament fe419e355b The checker requires Redis 
Remove the abstraction in searx.shared.SharedDict.
Implement a basic and dedicated scheduler for the checker using a Redis script.
 2 years ago
Léon Tiekötter 221740f76e
[mod] limiter plugin: Accept-Encoding handling 
Only raise "suspicious Accept-Encoding" when both "gzip" and "deflate" are missing from Accept-Encoding.
Prevent Browsers which only implement one compression solution from being blocked by the limiter plugin.
Example Browser which is currently blocked: Lynx Browser (https://lynx.invisible-island.net)
 2 years ago
mrpaulblack 38385e48cf fix: return body on limiter block so there is not just a blank page 2 years ago
Markus Heiser 4b185f0e11 [mod] plugins/limiter.py - use searx.redislib.incr_sliding_window 
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
 2 years ago
Émilien Devos 66b77c46c7
Fix typo 2 years ago
Markus Heiser 37493b0a1e [doc] add some documentation about the limiter plugin (and redis) 
Requested-by: https://github.com/searxng/searxng/discussions/993#discussioncomment-2396914
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
 2 years ago
Alexandre Flament d1b7debac6 [limiter] update 2 years ago
Alexandre Flament b99ccd7c02 plugin limiter: check only /image_proxy and /search 
also adjust the number of req/time
 2 years ago
Alexandre Flament f79b0fce06 [enh] limiter plugin 
can replace filtron:
* rate limite the number of request per IP and per (IP, User-Agent)
* block some bots

use Redis
data stored in Redis never contains the IP addresses, only HMAC using the secret_key

Co-authored-by: Markus Heiser <markus.heiser@darmarit.de>
 2 years ago