Closed orubel closed 3 weeks ago
Need to store session cookie and check that it is being used.
Things like 'Curl' could bypass rate limiting entirely merely by not using a cookie.
So by checking if a cookie is being used for session and rejecting connection if none is sent, we can enforce proper procedure and good connection
This has to be implemented/enforced/tested first prior to rate limiting
done.tested.committed.
Need to store session cookie and check that it is being used.
Things like 'Curl' could bypass rate limiting entirely merely by not using a cookie.
So by checking if a cookie is being used for session and rejecting connection if none is sent, we can enforce proper procedure and good connection
This has to be implemented/enforced/tested first prior to rate limiting