High load / memory use with lots of bruteforce attempt entries

[Skyr]

I've been experiencing extremely high load and memory usage both on MySql and the Apache process (I'm using the Docker image for Nextcloud 19.0.1 using Apache). The problem occurred especially when touching my webdav calendar (updates happened after dozens of seconds, if at all); other operations were a bit slowish, but not so strongly affected as the webdav stuff. After a restart, everything went calm - until the next calendar change.

On the website I was greeted with a "30 seconds delay due to bruteforce", which brought to my mind an experiment from a couple of days ago... and sure enough, I left my script running, which failed to login every 5 minutes. Inspecting the DB, I found 69447 rows in the oc_bruteforce_attempts table - almost all of them caused by my script (easy due to distinguish due to the username). After a delete from oc_bruteforce_attempts where ip="a.b.c.d";, 34 entries were left - and performance was back to normal.

So there seems some unholy interaction between the anti-bruteforce-plugin and the webdav interface...

[joshtrichards]

I've been experiencing extremely high load and memory usage both on MySql and the Apache process

Can you elaborate on what you define as "high memory usage"? Everyone defines this a bit differently.

So there seems some unholy interaction between the anti-bruteforce-plugin and the webdav interface...

The calendar stuff may may have interacted more heavily with the DAV interface, so it may have been more noticeable there.

Outside of the resource usage, it sounds like the brute force protection was behaving as expected.

[joshtrichards]

The new memcache based backend may help with this: #39870. It was added in v28.

[nextcloud-command]

This issue has been automatically marked as stale because it has not had recent activity and seems to be missing some essential information. It will be closed if no further activity occurs. Thank you for your contributions.