Refused connections are now mainly due to spam protection, which requires some adaptions to avoid causing issues to legitimate requests.
The update spam score should consider
- higher penalisation for requests sent within a short time frame (targeting fraudulent requests which are not allowed with the clients)
- quicker "cool down" when no requests are received for a certain amount of time