-
Notifications
You must be signed in to change notification settings - Fork 19
Bad Egg Plugin
Nobody likes it when people don't play fair, the bad egg plugin is designed to limit the number of page requests from an individual ip address within a single minute, once the limit has been reached then the user will receive a 429 response.
Another check made by the bad egg plugin is that all web requests are scanned for hacking/sql injection techniques. This is based on a probability scale which the host application can use to help prevent attacks. Black/white Ip lists are available which enable the host to ban specific ip addresses.
The Bad Egg plugin can be configured using appsettings.json. Add an entry called BadEgg.Plugin, this has the following settings:
uint, Number of minutes information on an Ip address is stored in memory. Default 5 minutes.
uint, The http response code for Ip addresses which are banned. Default 400.
uint, The http response code for Ip addresses which have made too many requests. Default 429.
uint, The maximum number of requests an Ip address can make within 1 minute. Default 100.