refactor: update default security configuration parameters

- Increase MaxConnectionsPerHour from 100 to 1000 to allow for higher traffic.
- Raise MaxGlobalConnections from 1000 to 5000 to accommodate more simultaneous connections.
- Adjust BurstThreshold from 20 to 100 for improved handling of traffic spikes.
- Extend HandshakeTimeout from 30 seconds to 60 seconds for better connection establishment.
- Increase IdleTimeout from 5 minutes to 30 minutes to allow longer idle connections.
- Update MaxViolationsPerHour from 5 to 10 to enhance security monitoring.
- Add a new trusted network range (103.108.0.0/16) to the existing list for expanded access control.

Author: theboringhumane

server/internal/middleware/security.go

@@ -36,16 +36,21 @@ type SecurityConfig struct {
 func DefaultSecurityConfig() SecurityConfig {
 	return SecurityConfig{
 		MaxConnectionsPerIP:   10,
-		MaxConnectionsPerHour: 100,
+		MaxConnectionsPerHour: 1000,
 		ConnectionWindow:      time.Hour,
-		MaxGlobalConnections:  1000,
-		BurstThreshold:        20,
+		MaxGlobalConnections:  5000,
+		BurstThreshold:        100,
 		BurstWindow:           time.Minute,
-		HandshakeTimeout:      30 * time.Second,
-		IdleTimeout:           5 * time.Minute,
+		HandshakeTimeout:      60 * time.Second,
+		IdleTimeout:           30 * time.Minute,
 		BlacklistDuration:     time.Hour,
-		MaxViolationsPerHour:  5,
-		TrustedNetworks:       []string{"172.16.0.0/12", "10.0.0.0/8", "192.168.0.0/16"},
+		MaxViolationsPerHour:  10,
+		TrustedNetworks: []string{
+			"172.16.0.0/12",
+			"10.0.0.0/8",
+			"192.168.0.0/16",
+			"103.108.0.0/16",
+		},
 	}
 }