many company have a safe rule: a server should have a brute force cracking feature, but i found redis don't have it.so i suggest redis should have it.
Comment From: sundb
I don't quite understand what you mean, can you make more description?
Comment From: oranagra
you mean to ban connections from a certain source after a certain amount of failed attempts? in that case, it's probably not a wise idea to do that inside redis, even if we reject a connection right away, it'll still cause some overheads. SSH daemon doesn't have that feature either, instead people can use DenyHosts, fail2ban, etc, which integrates with the system to block the connections at an early stage. I suppose it could be a good solution for redis too, if that's what you're after. the complication would be to integrate them with the ACL LOG since redis doesn't print these failures to the log file.
Comment From: yossigo
Duplicate of #1241
Comment From: madolson
Voting we should close this and move the conversation to #1241
Comment From: oranagra
agree, let's track this effort in the other thread.