kyprizel / testcookie-nginx-module

simple robot mitigation module using cookie based challenge/response technique. Not supported any more.
http://kyprizel.github.com/testcookie-nginx-module/
524 stars 139 forks source link

Possible change HTTP 200 OK while testing browser ? #68

Open Mecanik opened 5 years ago

Mecanik commented 5 years ago

I noticed that when a human/bot access a link the response code is 200 while the checking. Is it possible to change to something like 503 instead ?

Most ddos scripts and bots will fail if response not 200, and by returning 200 it's not best idea.

Thanks!

Mecanik commented 5 years ago

I forgot to add, this is happening when using custom template ( with javascript ).

Mecanik commented 5 years ago

I have tested testcookie_refresh_status 503; however this is not ok, because after browser validation every time you come back to the website you will get 503 and then redirect...

Any ideas ?