sjs/rack-attack
1
0
Fork 0
mirror of https://github.com/samsonjs/rack-attack.git synced 2026-03-25 09:25:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

README: add performance section

Browse source
This commit is contained in:
Aaron Suggs 2013-03-06 16:39:02 -05:00
parent ecec8576ae
commit 733a506ced
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
README.md
View file

@ -154,6 +154,19 @@ You can subscribe to 'rack.attack' events and log it, graph it, etc:
puts req.inspect
end
## Performance
The overhead of running Rack::Attack is typically neglible (a few milliseconds per request),
but it depends on how many checks you've configured, and how long they take.
Throttles usually require a network roundtrip to your cache server(s),
so try to keep the number of throttle checks per request low.
If a request is blacklisted or throttled, the response is a very simple Rack response.
A single typical ruby web server thread can block several hundred requests per second.
If you need something more efficient but less flexible than Rack::Attack,
check out `iptables` and nginx's [limit_zone module](http://wiki.nginx.org/HttpLimitZoneModule).
## Motivation
Abusive clients range from malicious login crackers to naively-written scrapers.