redis 6.2.7 cluster mode
I am using ACL to distinguish different system users to archive user isolation. To prevent memory corruption,i want to control and limit the memory usage of ACL users. Do you have good solutions?
Comment From: itamarhaber
Hello @isaacyang608
Redis doesn't support memory management for ACL users at this time.
Comment From: madolson
I agree, at least right now I don't think we're going to implement this.
Comment From: joyanhui
I agree, at least right now I don't think we're going to implement this.
I also need this functionality when replacing mqtt with redis. Is there a better solution than using maxmemory-clients?
Comment From: madolson
I also need this functionality when replacing mqtt with redis.
Can you explain in more detail what you are looking for? Right now maxmemory-clients is basically our suggestion.
Comment From: joyanhui
Can you explain in more detail what you are looking for? Right now maxmemory-clients is basically our suggestion.
Thank you for your reply. Is there a possibility? A malicious acl user can log in to redis multiple times and, within the permissions allowed, perform smaller memory footprint requests and commands than a normal user. Eventually, the maxmemory-clients limit is triggered, causing normal users to go offline
Comment From: madolson
A malicious acl user can log in to redis multiple times and, within the permissions allowed, perform smaller memory footprint requests and commands than a normal user.
Is there a reason you aren't using passwords to prevent malicious users from gaining access?
Comment From: joyanhui
There is also the case that the user writes a large amount of content under the key that has its own write permission, which can also cause problems. In this scenario, acl is required to limit the memory usage of users.