This website uses cookies

We use limited tracking features to help improve our site. We also share information about site usage with our advertising and analytics partners, who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services. By continuing to use our site, you are consenting to our use of cookies. For more information, please review our privacy policy.
Mugo Web main content.

Complex content management made easy

Mugo Web builds long-­lasting content-­based websites for businesses where content is key.

Our solutions empower you to better manage, monetize, and future-­proof your digital assets.

OUR WORK MUGO BLOG

Accessibility deadlines approach for US libraries 

Per ADA guidelines, public libraries in the United States should conform to WCAG 2.1 AA standards by April 26th, 2026. Learn more about accessibility guidelines, and how libraries can better support patrons through accessible content.

 

Read more about accessibility for libraries

 

Free webinar October 23rd, 2pm ET | 11am PT

Join us for a free, informative session about accessibility for public libraries.

 

Webinar registration
National library symbol (profile of a block shaped person reading a book) next to a block figure with arms and legs outstretched, with check mark overlaid. Arrows point between the two symbols.

New book club kit management system for libraries

Want to learn more about the new Mugo Library system for managing your library's book club kits? Sign up for a demo! 

Contact us for more information

CAPTCHA and Challenge actions in AWS

AWS recently introduced support for "CAPTCHA" and "Challenge" actions for their AWS Web Application Firewall (WAF).

The CAPTCHA action presents a puzzle to the end user and allows access to your website only if the presented puzzle is solved correctly. The puzzle is designed to be easily solved by humans but hard to solve for computers. The “Challenge” action silently checks if the request comes from a real person's internet browser or if the request is done by a bot or site crawler.

We’ve used this to help enhance the security of our clients’ sites, without limiting access to legitimate front-end users.  For example, before instituting the new AWS CAPTCHA, we had set a rule with inspection criteria that measured the rate of requests for a given end-user IP address. When the rate was too high, we applied a WAF “Blocking” rule for the given IP address.

We have now changed the rule action to "Challenge" which does not directly block the IP address, but tests the request as either a bot or a real end-user. Bots get blocked, and real end-users are still able to access the website. This allows us to make the rate-limiting rule (requests per minute) to be even more strict - allowing fewer requests per minute. We further customize this by making sure the action only triggers based on a combination of rate limits or regional criteria.

A computer screen with a puzzle and question mark displaying on the screen. Above the screen, a profile of a head containing a brain is facing a profile of a head containing a harddrive

Let's chat about your next project.

CONTACT US


Mugo Web
Unit 205, 332 Columbia Street
New Westminster, BC
V3L 1A6, Canada

Phone: 604-637-6396
E-mail: hi@mugo.ca

SAY HI
Clients
Portfolio Blog About Meet the Team Contact

Site Map

© 2008-2025 Mugo Web. All rights reserved. | Privacy Policy