Hi list, I have implemented an antibot js challenge for haproxy opensource
https://github.com/aderumier/haproxy-botnetchallenge It's using a totp token and a stick table to track autorisations with ip-useragent. Ideas are welcome to improve the js challenge itself (currently I simply do a ror13 to avoid scrapper to simply parse the html) the haproxy enterprise antibot use a random math/bitwise challenge, not sure how to implement something like this. (This is the first time I'm using lua, so maybe the code is not perfect) Regards, Alexandre
