Rack attack would be a nice addition to TS. We could set up default rate limiting on the login pages and throttle requests for certain pages.