Re: [PHP] IP Address Filtering - Problem Continues
Ave, I had to eliminate that option because his IP is varying drastically. There is no range, it's just drastically varying. I wouldn't be surprised if he's using an IP Spoofing script/program etcetera. On 4/5/06 11:16 AM, Jay Blanchard [EMAIL PROTECTED] wrote: You could always block a range of IP addresses, but you may cut out a legitimate user. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php Rahul S. Johari Coordinator, Internet Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: [EMAIL PROTECTED] http://www.informed-sources.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] IP Address Filtering - Problem Continues
Ave, I'm being left with lesser and lesser choices then to try CAPCHTA. I'm gonna look into it now and see if I need to implement this now. Thanks. On 4/5/06 3:52 PM, tedd [EMAIL PROTECTED] wrote: disclaimer Not that I promote CAPCHTA, but there are simple solutions that will slow down some spam while allowing some with vision problems to pass, such as -- http://www.xn--ovg.com/captcha -- namely, the graphic selection demo. Granted it's not the best, it doesn't solve everything, and I never said it did (at least no one can prove it) -- so don't whack me for it -- it's just a suggestion. /disclaimer tedd Rahul S. Johari Coordinator, Internet Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: [EMAIL PROTECTED] http://www.informed-sources.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] IP Address Filtering - Problem Continues
Ave, Unfortunately my problem persists. The reason my script was recording NULL as IP address was because I was using $REMOTE_ADDR. When I started using the correct syntax, i.e., $SERVER['REMOTE_ADDR'], it actually did start recording the IP Address of the spammer. The problem is, the spammer is using multiple IP Address. His IP Address changes every 6 - 8 entries. I have so far recorded 5 different IP Addresses of the spammer. Although I can create a Database and keep adding his IP Address to the database, and run a check from the Guestbook script to scan against Blocked Addresses, It¹s not the most efficient method in the world. What other logic can I apply to automatically block the spammer? Or at least have a more efficient method of blocking the Spammer and his IP¹s? Thanks. On 3/30/06 8:41 AM, Rahul S. Johari [EMAIL PROTECTED] wrote: Ave, Curt, thanks for your response. Is this a common guestbook, like a 3rd party tool you got and added to the web site? If so, do they already have a solution in place with an add-on or such. No, actually it's a script I have written myself from scratch. And unfortunately (or fortunately perhaps), I haven't ever run into this problem before. You really want to use $_SERVER['REMOTE_ADDR']; That is should, I agree! A common method (now adays) is have the form that is being posted provide a challange/response method (like CAPTCHA) to verify that someone is actually sitting there filling out the form instead of a script doing the work. One of the problems with this method is well it limits your visually impared audience from being able to add to the guestbook, since it requires a visual response to the challenge. Another method is to require javascript for a challenge response method, this of course limits your audience to those who have javascript enabled, and I'm not sure if it really 'visually impared' friendly. I have implemented both those methods in different scripts I have written and maintain across different websites. Visual Confirmation using Image Verification and JavaScript Confirmation. However, I honestly don't want to add such an 'extra' step in my Guestbook for users who simply wish to put in a nice comment about the site, at least not at this point, which is why I do want to stay away from these methods for the Guestbook for now. Let me try a few other suggestions first and see how it goes, and then I'll decide if I need to add more capabilities/security to the Guestbook. Thanks for your insight, always brain-enhancing. Rahul S. Johari Coordinator, Internet Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: [EMAIL PROTECTED] http://www.informed-sources.com Rahul S. Johari Coordinator, Internet Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: [EMAIL PROTECTED] http://www.informed-sources.com
RE: [PHP] IP Address Filtering - Problem Continues
[snip] The problem is, the spammer is using multiple IP Address. His IP Address changes every 6 - 8 entries. I have so far recorded 5 different IP Addresses of the spammer. Although I can create a Database and keep adding his IP Address to the database, and run a check from the Guestbook script to scan against Blocked Addresses, It¹s not the most efficient method in the world. What other logic can I apply to automatically block the spammer? Or at least have a more efficient method of blocking the Spammer and his IP¹s? [/snip] You could always block a range of IP addresses, but you may cut out a legitimate user. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] IP Address Filtering - Problem Continues
Jay Blanchard wrote: [snip] The problem is, the spammer is using multiple IP Address. His IP Address changes every 6 - 8 entries. I have so far recorded 5 different IP Addresses of the spammer. Although I can create a Database and keep adding his IP Address to the database, and run a check from the Guestbook script to scan against Blocked Addresses, It¹s not the most efficient method in the world. What other logic can I apply to automatically block the spammer? Or at least have a more efficient method of blocking the Spammer and his IP¹s? [/snip] You could always block a range of IP addresses, but you may cut out a legitimate user. I'm missing the beginning of this thread so maybe it's be mentioned before but is an image CAPTCHA not an option? (and yes I know the accesibility arguments against using CAPTCHA, and the fact that crap CAPCHTA can be broken by image recognition tools - but my pragmatic feeling is that it's often better than a bucket load of SPAM.) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] IP Address Filtering - Problem Continues
At 5:58 PM +0200 4/5/06, Jochem Maas wrote: Jay Blanchard wrote: [snip] The problem is, the spammer is using multiple IP Address. His IP Address changes every 6 - 8 entries. I have so far recorded 5 different IP Addresses of the spammer. Although I can create a Database and keep adding his IP Address to the database, and run a check from the Guestbook script to scan against Blocked Addresses, It's not the most efficient method in the world. What other logic can I apply to automatically block the spammer? Or at least have a more efficient method of blocking the Spammer and his IP's? [/snip] You could always block a range of IP addresses, but you may cut out a legitimate user. I'm missing the beginning of this thread so maybe it's be mentioned before but is an image CAPTCHA not an option? (and yes I know the accesibility arguments against using CAPTCHA, and the fact that crap CAPCHTA can be broken by image recognition tools - but my pragmatic feeling is that it's often better than a bucket load of SPAM.) disclaimer Not that I promote CAPCHTA, but there are simple solutions that will slow down some spam while allowing some with vision problems to pass, such as -- http://www.xn--ovg.com/captcha -- namely, the graphic selection demo. Granted it's not the best, it doesn't solve everything, and I never said it did (at least no one can prove it) -- so don't whack me for it -- it's just a suggestion. /disclaimer tedd -- http://sperling.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php