Skip to content

shipharbor/analytics-service

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
errors.js
errors.js
 
 
index.js
index.js
 
 
package.json
package.json
 
 

Repository files navigation

analytics-service

Lil analytics service.

Routes

GET /ping   Query the service to see if it's responding to requests
PUT /log    Persist a log event to the database

Environment

PORT  Number  Port to listen on
DB    String  Location where the DB should be written to

Making DDOS slightly harder

Generally analytics logs aren't particularly sensitive to write to - at worst there'll be skewed data which can be filtered in post-processing. To make it slightly harder though, it's recommended to add at least a little hurdle. An example approach of this would be to include a set-cookie directive on the first request to the site (e.g. index.html). This would include something like an encrypted timestamp that can only be decoded by the service. By checking that the timestamp was recent, a lot of trivial DDOSsing and accidental write scenarios would be mitigated. This doesn't prevent any directed attacks, for which more elaborate methods such as IP banning (e.g. fail2ban and the like should be deployed).

See Also

License

MIT

About

Lil analytics service

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

12 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages