Ahhh...so there were other reasons for doing what you are doing....that makes much more sense.
As Dave already said....I too was concerned about your solution being put forward in a security context...because it's not. It is of course a valid way to deal with server load issues you have experienced by filtering out the garbage requests before they become an errors at the query end of things. ....and no...not retarded....just tactless ;-) Cheers - Bryan Stevenson B.Comm. VP & Director of E-Commerce Development Electric Edge Systems Group Inc. phone: 250.480.0642 fax: 250.480.1264 cell: 250.920.8830 e-mail: [EMAIL PROTECTED] web: www.electricedgesystems.com Notice: This message, including any attachments, is confidential and may contain information that is privileged or exempt from disclosure. It is intended only for the person to whom it is addressed unless expressly authorized otherwise by the sender. If you are not an authorized recipient, please notify the sender immediately and permanently destroy all copies of this message and attachments. On Mon, 2008-07-21 at 16:38 -0400, Claude Schneegans wrote: > >>.....and all hackers ALWAYS use the same IP....cause they'd never get > >>caught that way...hehe > > >>yes...that was meant to be sarcastic > > It does not look sarcastic to me, just may be a little retarded ;-) > > >>I see where you're coming from Claude, I just think (as Dave appears to) > that you're wasting your time.... > > I'm not waisting my time, I'm saving my server time. > At a certain time I use to have many errors in the "server too busy" or > "memory error" category. > > I also discovered that a huge amount of the traffic on my server was due > to robots, > so I decided to control more specifically this traffic. > I first optimized the "good robots" like Google, Yahoo, MSN etc using > pertinent <meta name="revisit-after" content="n Days"> tags and other > tricks. > > And I also tracked bad bots and fake browsers. > Just look at your logs, and you'll be amazed by the amount of traffic > caused by > - browsers that never request images, probably bots... > - "experimental robots" (I don't care if student experiment things, I > just don't want to be the guinea pig) > - robots that do not embed an address to explain why they are searching > your sites, > - robots that read all images to detect if one of them is copyrighted > and illegally used (huge traffic) > - Chinese robot that check if your site should be banned from China > because they talk about human rights, > - AND also spammers and hackers of course, > .... etc. > > So I designed my own robot detection tools, and spam or SQL injection > attempts are only extra tools > I use to classify robots and just a drop in the ocean of sh%$/? I'm > getting away. ;-) > .... and yes, my server is much more stable now. > and also, the statistics I show to my customers are realistic. > > Of course, I also use CFQUERYPARAM as an ultimate protection. > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:309413 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
