On Wed, Apr 03, 2024 at 12:54:10PM -0500, Dennis Gilmore wrote:
An exception to this would be people building containers. Theytypically remove the metadata at the end of each build. So do not have it cached. However, the described behaviour would seem to be more widespread than some people building containers, which may indicate some other reason that a group of people are repeatedly grabbing the same data. It would be interesting to know if they are only getting repodata or also downloading rpms and other things.
Interesting thought! I just grepped for a few of the "abusive" hosts. These hosts are downloading packages, including some "basic" ones like perl, curl, python setuptools.
I'll relax the fail2ban rules a bit and see how things evolve over time. Maybe everyone needs to rebuild everything once now, which obviously causes a bit of traffic.