>>This appears to be a botnet-driven attack. Blocking addresses may be problematic in that case.
Why do you all want to interpret this as a final solution? Blocking an IP will NOT block ANY attack, it will just stop the current attack from THIS address, period. But it is safer than letting the malbot try every page it can find,... until it does find one in which CFQUERYPARAM was forgotten. >>If you're using CFQUERYPARAM as well, this doesn't really add any protection to the database. If you're not, the protection it does add is far from complete. Again, that's really my concern with your proposal. I use this method ONLY in the case an url.variable is supposed to contain an integer value. And in THAT CASE only, and for that variable only, the CFQUERYPARAM is useless, because if the variable contains anything else than a numeric, the query will never get executed anyway. CFQUERYPARAM is a nice and powerful feature, but it makes SQL code more difficult to read, so the best is to use it only when it is really necessary. For me, using CFQUERYPARAM systematically for every parameter is as stupid as never using it at all. -- _______________________________________ REUSE CODE! Use custom tags; See http://www.contentbox.com/claude/customtags/tagstore.cfm (Please send any spam to this address: [EMAIL PROTECTED]) Thanks. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:309401 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
