cloud-hosting-platform/haproxy-manager-base
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Simplify tarpit implementation for HAProxy 3.0 compatibility
All checks were successful
HAProxy Manager Build and Push / Build-and-Push (push) Successful in 52s
Details

Browse Source 
- Remove unsupported set-timeout tarpit directives
- Use fixed 30s global tarpit timeout (reduced from 60s)
- Keep escalation tracking via gpc1 for monitoring repeat offenders
- HAProxy 3.0 doesn't support variable tarpit timeouts per request

The escalation level (gpc1) is still tracked and visible in monitoring
but all tarpits use the same 30s delay.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
jknapp
2025-08-25 06:33:21 -07:00
parent 2cd1db7461
commit 0a4995266c
2 changed files with 6 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
templates/hap_header.tpl
View File

@@ -45,6 +45,6 @@ defaults
timeout server 10m
timeout http-keep-alive 120s
timeout check 10s
timeout tarpit 60s # Maximum tarpit time for exploit scanners
timeout tarpit 30s # Tarpit delay for detected scanners (fixed in HAProxy 3.0)
maxconn 3000