Hello,
I’m a new bridge relay operator and have been reading about the compression bomb messages in my logs. I understand that they aren’t much to worry about. I’m getting this log message regularly every 60~65 seconds in what seems like an obvious malicious actor. Even if the attack is futile, is it worth banning this IP using a tool like fail2ban? If so, should the IP be added to the log message.
Thanks for your input / discussion.