sjs/rack-attack
1
0
Fork 0
mirror of https://github.com/samsonjs/rack-attack.git synced 2026-04-27 15:07:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #23 from zmillman/master

Browse source 
Explain why README examples use 503 to distract attackers
This commit is contained in:
Aaron Suggs 2013-07-12 15:00:03 -07:00
commit 8ece6925aa
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
README.md
View file

@ -165,6 +165,8 @@ Customize the response of blacklisted and throttled requests using an object tha
```ruby ```ruby
Rack::Attack.blacklisted_response = lambda do |env| Rack::Attack.blacklisted_response = lambda do |env|
# Using 503 because it may make attacker think that they have successfully
# DOSed the site. Rack::Attack returns 401 for blacklists by default
[ 503, {}, ['Blocked']] [ 503, {}, ['Blocked']]
end end
@ -176,6 +178,8 @@ Customize the response of blacklisted and throttled requests using an object tha
env['rack.attack.match_data'] env['rack.attack.match_data']
].inspect ].inspect
# Using 503 because it may make attacker think that they have successfully
# DOSed the site. Rack::Attack returns 429 for throttling by default
[ 503, {}, [body]] [ 503, {}, [body]]
end end
``` ```