Rack::Attack

Protect your Rails and Rack apps from bad clients. Rack::Attack lets you easily decide when to allow, block and throttle based on properties of the request. Rack middleware for blocking & throttling abusive requests. Tackling each curious anomaly that threatens your site’s reliability saps developer productivity and happiness. Rack::Attack lets you throttle abusive requests with just a few lines of code. For the security of our users, we have a stricter throttle for login attempts. This makes it very time consuming for attackers to guess users’ passwords. We also use the IPCat ruby library to detect requests from well-known datacenters. Rack::Attack can also track requests without blocking them. We rely on Rack::Attack to let developers quickly track and throttle requests. It helps keep our site reliable, so we can spend more energy building better features. We’re glad to make it publicly available to the open-source community.

Features

Limit the number of requests that can be made per IP address
Rack::Attack can also track requests without blocking them
Name your custom blocklist and make your ruby-block argument return a truthy value if you want the request to be blocked
Block all requests from misbehaving clients
Throttle state is stored in a configurable cache
Name your custom throttle

Project Samples

Project Activity

See All Activity >

License

MIT License

Follow Rack::Attack

Rack::Attack Web Site

User Reviews

Be the first to post a review of Rack::Attack!

Additional Project Details

Programming Language

Ruby

Related Categories

Ruby Security Software

Registered

2021-11-04

Similar Business Software

TrustCaptcha

TrustCaptcha protects your website from bots and spam—without frustrating users. Unlike traditional CAPTCHAs that rely on image puzzles and clicks, TrustCaptcha works invisibly in the background. It activates as users type, completing before they hit submit—reducing bounce rates and improving...

See Software
RingCaptcha

Validate leads and block bad actors with our reliable and simple SMS & Voice 2FA product, so you can engage your worldwide customers. RingCaptcha’s two-factor authentication (2FA) provides an initial screen to block fake leads while our backend code goes one step further, identifying and...

See Software
Control D

Control D is a customizable DNS filtering and traffic redirection platform that leverages Secure DNS protocols like DNS-over-HTTPS, DNS-over-TLS and DNS-over-QUIC, with support for Legacy DNS. - Block malicious threats - Block unwanted types of content network wide (ads & trackers, IoT...

See Software
Google Cloud Platform

Google Cloud is a cloud-based service that allows you to create anything from simple websites to complex applications for businesses of all sizes. New customers get $300 in free credits to run, test, and deploy workloads. All customers can use 25+ products for free, up to monthly usage...

See Software
Fraud.net

Fraudnet's AI-driven platform empowers enterprises to prevent threats, streamline compliance, and manage risk in real-time. Our sophisticated machine learning models continuously learn from billions of transactions to identify anomalies and predict fraud attacks. Our unified solutions:...

See Software
UTunnel VPN and ZTNA

UTunnel provides Cloud VPN, ZTNA, and Mesh Networking solutions for secure remote access and seamless network connectivity. ACCESS GATEWAY: Our Cloud VPN as a Service offers swift deployment of Cloud or On-Premise VPN servers. It utilizes OpenVPN and IPSec protocols, enables policy-based...

See Software

Report inappropriate content

Rack::Attack

Rack middleware for blocking & throttling

Get an email when there's a new version of Rack::Attack

Features

Project Samples

Project Activity

Categories

License

Follow Rack::Attack

User Reviews

Additional Project Details

Programming Language

Related Categories

Registered