Thanks. I was hoping to find an elegant solution that stored the Ips in the application scope for the length of the session timeout and then gracefully removed the banned Ips once the session timed out. I have an idea on what to do, but was looking for a little guidance as I am new to app.cfc and all of its methods. Regards, CV.
-----Original Message----- From: Claude Schneegans [mailto:[EMAIL PROTECTED] Sent: Thursday, August 07, 2008 10:14 AM To: CF-Talk Subject: Re: HELP! SQL Injection Attack! >>Claude, could you possibly share your code that stores the bad IP addresses for a period of time to prevent these useless http requests? Thanks, CV. Well, I'd be happy to, but it is a rather complete and complicated system. It works for all sites/domains on the CF server, uses a database, and is mainly oriented toward bad and unwanted bots elimination. The spam and SQL injection detection is only a small part of it. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:310362 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
