Closed orubel closed 3 weeks ago
Need to store session cookie and check that it is being used.
Things like 'Curl' could bypass rate limiting entirely merely by not using a cookie.
So by checking if a cookie is being used for session and rejecting connection if none is sent, we can enforce proper procedure and good connection
This has to be implemented/enforced/tested first prior to rate limiting
done.tested.committed.
orubel
commented
3 weeks ago orubel
commented
3 weeks ago
Need to store session cookie and check that it is being used.
Things like 'Curl' could bypass rate limiting entirely merely by not using a cookie.
So by checking if a cookie is being used for session and rejecting connection if none is sent, we can enforce proper procedure and good connection
This has to be implemented/enforced/tested first prior to rate limiting