Add rack_attack gem to stop attackers in their tracks

portagenetwork / roadmap

Developed by the the Alliance in collaboration with University of Alberta, DMP Assistant a data management planning tool, forking the DMP Roadmap codebase

MIT License

6 stars 1 forks source link

Add rack_attack gem to stop attackers in their tracks #141

Closed lagoan closed 5 months ago

lagoan commented 2 years ago

We should look into adding the rack-attack gem to stop malicious activity probing for attacks.

Use DMPTool's initializer configuration as a starting point for our implementation.

https://github.com/CDLUC3/dmptool/blob/v3.4.0-beta/config/initializers/rack_attack.rb

pengyin-shan commented 1 year ago

Had a conversation with Brian and he said he submitted a PR for this, and it will be in a future release (4.0.3 or 4.0.4). DMP Assistant can wait till then to update or check out codes for this specific feature from the main codebase after release.

aaronskiba commented 1 year ago

The rack-attack gem exists in upstream release v4.1.0 (here).