]> Sergey Matveev's repositories - public-inbox.git/commit
projects / public-inbox.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 42fe10a) | patch
imap: prioritize AUTH=ANONYMOUS clients
authorEric Wong <e@80x24.org>
Mon, 8 Aug 2022 23:16:47 +0000 (23:16 +0000)
committerEric Wong <e@80x24.org>
Tue, 9 Aug 2022 16:41:49 +0000 (16:41 +0000)
commit6bfbb1d477d1adf40fa15a9f6e326f01cf966fc9
tree56dcd892a1301c85c66539317a7e83828877d38etree
parent42fe10a95f0bac3beea2fc277c604158d3275d1fcommit | diff
imap: prioritize AUTH=ANONYMOUS clients

...by deprioritizing clients using a username + password.

As IMAP provides AUTH=ANONYMOUS for designating anonymous
access, we'll rely on it as a heuristic for favoring "good"
clients.  Clients using a username + password seem to (more
often than not) be malicious and looking for info which doesn't
belong in public inboxes.

This copies the technique used by WWW + -httpd to deprioritize
expensive mbox.gz downloads.
lib/PublicInbox/DS.pm diff | blob | history
lib/PublicInbox/IMAP.pm diff | blob | history
lib/PublicInbox/IMAPD.pm diff | blob | history
My patches to https://public-inbox.org/public-inbox.git