Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use Rack Attack to denylist and or throttle IPs / Bots #1346

Open
zaziemo opened this issue Feb 5, 2024 · 2 comments
Open

Use Rack Attack to denylist and or throttle IPs / Bots #1346

zaziemo opened this issue Feb 5, 2024 · 2 comments
Assignees
@zaziemo

Comments

@zaziemo
Copy link
Member

zaziemo commented Feb 5, 2024

No description provided.

maren-myc pushed a commit that referenced this issue Feb 5, 2024
@zaziemo
Install rack attack with basic configuration
ce68f96 
to throttle requests and to be safe for most bad requests.

[#1346]
@zaziemo zaziemo mentioned this issue Feb 5, 2024
Merged
maren-myc pushed a commit that referenced this issue Feb 5, 2024
@zaziemo
Change default behaviour of pagy overflow
de99fa8 
to :empty_page to prevent the last page always showing up when
bots crawl page numbers that do not exist.

[#1346]
zaziemo added a commit that referenced this issue Feb 19, 2024
@zaziemo
Reduce requests to 1 per second per IP
41e68c0 
[#1346]
@zaziemo zaziemo mentioned this issue Feb 19, 2024
Merged
@zaziemo
Copy link
Member Author

zaziemo commented Feb 19, 2024

More inspiration to refine:
Bildschirm­foto 2024-02-19 um 19 37 39
Bildschirm­foto 2024-02-19 um 19 40 57

@zaziemo zaziemo self-assigned this Mar 5, 2024
@zaziemo
Copy link
Member Author

zaziemo commented Apr 2, 2024

Refine rack attack config and disallow path /topics

maren-myc pushed a commit that referenced this issue Apr 2, 2024
@zaziemo
Block access to deprecated path
674d746 
since some bots do not respect the robots.txt and pollute the logs.

[#1346]
@zaziemo zaziemo mentioned this issue Apr 2, 2024
Merged
@zaziemo zaziemo changed the title Use Rack Attack to blacklist and or throttle IPs / Bots Use Rack Attack to denylist and or throttle IPs / Bots May 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@zaziemo zaziemo

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@zaziemo