Re: [PATCH] Exponential backoff for auth_delay

From: Daniel Gustafsson <daniel(at)yesql(dot)se>
To: Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com>
Cc: Michael Banck <mbanck(at)gmx(dot)net>, Tomas Vondra <tomas(dot)vondra(at)enterprisedb(dot)com>, Nathan Bossart <nathandbossart(at)gmail(dot)com>, Abhijit Menon-Sen <ams(at)toroid(dot)org>, pgsql-hackers(at)lists(dot)postgresql(dot)org, 成之焕 <zhcheng(at)ceresdata(dot)com>
Subject: Re: [PATCH] Exponential backoff for auth_delay
Date: 2024-03-20 22:22:12
Message-ID: F043D4E9-C115-4FA1-8A86-05351BE94214@yesql.se
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

> On 20 Mar 2024, at 22:21, Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> wrote:
>
> On Wed, Mar 20, 2024 at 2:15 PM Jacob Champion
> <jacob(dot)champion(at)enterprisedb(dot)com> wrote:
>> I think solutions for case 1 and case 2 are necessarily at odds under
>> the current design, if auth_delay relies on slot exhaustion to do its
>> work effectively. Weakening that on purpose doesn't make much sense to
>> me; if a DBA is uncomfortable with the DoS implications then I'd argue
>> they need a different solution. (Which we could theoretically
>> implement, but it's not my intention to sign you up for that. :D )
>
> The thread got quiet, and I'm nervous that I squashed it unintentionally. :/
>
> Is there consensus on whether the backoff is useful, even without the
> host tracking? (Or, alternatively, is the host tracking helpful in a
> way I'm not seeing?) Failing those, is there a way forward that could
> make it useful in the future?

I actually wrote more or less the same patch with rudimentary attacker
fingerprinting, and after some off-list discussion decided to abandon it for
the reasons discussed in this thread. It's unlikely to protect against the
attackers we wan't to protect the cluster against since they won't wait for the
delay anyways.

--
Daniel Gustafsson

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Thomas Munro 2024-03-20 22:26:26 Re: Regression tests fail with musl libc because libpq.so can't be loaded
Previous Message Andres Freund 2024-03-20 22:20:57 Re: Trying to build x86 version on windows using meson