I'm using rack-nocache for security reasons in an application, but I wasn't too keen on having the "Fri, 29 Aug 1997 02:14:00 EST" fingerprint sent with all of my headers, since that might leak information about what server tools we are using.
This commit generates a random RFC 1123 date occurring between 25 years ago and one month ago, and uses it instead for the "Expires" header.
Use a random date in the past for headers.
Is it weird that I don't want to merge this because I like Terminator reference @pkqk make me use?
Ahahah of course, I should've thought about it. I still think it makes it a more useful library, though :)
In the interest of keeping my easter egg alive I'll say there's no security through obscurity.
But I am interested in how you're using cache busting for security reasons?