aggressive blocking on /auth/github

2015-11-19 19:24:18 +01:00 · 2015-11-19 19:24:18 +01:00 · 28ff2f6848
commit 28ff2f6848
parent 480aac2171
1 changed files with 1 additions and 1 deletions
--- a/lib/travis/api/attack.rb
+++ b/lib/travis/api/attack.rb
@ -44,7 +44,7 @@ class Rack::Attack
  # Ban time:     5 hours
  # Ban after:    10 POST requests within five minutes to /auth/github
  blacklist('hammering /auth/github') do |request|
-     Rack::Attack::Allow2Ban.filter(request.identifier, maxretry: 10, findtime: 5.minutes, bantime: bantime(5.hours)) do
+     Rack::Attack::Allow2Ban.filter(request.identifier, maxretry: 2, findtime: 5.minutes, bantime: bantime(5.hours)) do
       request.post? and request.path == '/auth/github'
     end
  end