mirror of
https://github.com/rails/rails.git
synced 2022-11-09 12:12:34 -05:00
4ace047c91
We were planning to remove this middleware because we thought it could make easier to attacker to do a Time Attack. However, while Rack::Runtime can indeed be used to know how long a request took, and compare with other requests, it doesn't provide any information that can't be found in the total time of the request as well. Instead of removing the middleware, we decided to keep it, and direct users to instead of removing it, use its information to uncover actions that are vulnerable to Time Attack. This reverts commit |
||
---|---|---|
.. | ||
abstract | ||
assertions | ||
controller | ||
dispatch | ||
fixtures | ||
journey | ||
lib | ||
routing | ||
support | ||
abstract_unit.rb |