I would recommend checking out a rack based solution such as https://github.com/kickstarter/rack-attack
On Tue, Apr 29, 2014 at 9:19 PM, railsnerd <rails.n...@gmail.com> wrote: > > Hi > > If I have a blog url structure, something like > www.blog.com/12343/Hello-World > > I'm happy to cache that page entirely at the CDN > > But concerned that my low-dynamo app might be easily exposed to attackers > by simply making many calls to blog posts that don't exist that always make > a Heroku request because the CDN wont have them cached. > > It would be easy to rapidly request a sequence of fake blog post urls that > hit my little dynamos and also database. > > > > > What are the strategies to deal with this?? > > Can the CDN impose rules? Can Heroku help in any way? > > > cheers > > > -- > -- > You received this message because you are subscribed to the Google > Groups "Heroku" group. > > To unsubscribe from this group, send email to > heroku+unsubscr...@googlegroups.com > For more options, visit this group at > http://groups.google.com/group/heroku?hl=en_US?hl=en > > --- > You received this message because you are subscribed to the Google Groups > "Heroku Community" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to heroku+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/d/optout. > -- -- You received this message because you are subscribed to the Google Groups "Heroku" group. To unsubscribe from this group, send email to heroku+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/heroku?hl=en_US?hl=en --- You received this message because you are subscribed to the Google Groups "Heroku Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to heroku+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
