Recent Topics

[2.x] Spamming my search function

Started by on May 11, 2008 – Contents updated: May 11, 2008

May 11, 2008 02:42    

My b2evolution Version: 2.x

I'm fed up with referrer hits like this one:

http://mattandcat.co.uk/reviews/index.php?s=SHGYFuehUfPQI&sentence=AND&submit=Search

These spammy hits are obviously machine-generated, put a load on my system, and achieve I don't know what. Sometimes I get dozens or hundreds at a time.

Any ideas how I could stop them? Could I test all incoming searches to make sure it really came from my search box?

Aug 24, 2008 18:40

You can block the spamming ips via htaccess.

Code

order allow,deny
deny from *ipadress*
allow from all

Aug 24, 2008 21:09

Thanks - not a bad solution, but in this case the IPs vary. Or rather they vary by session. One Ip will spam me with 20 or 30 hits, then a bit later another one does, usually a related Ip. And so on.

Aug 25, 2008 09:44

A *possible* solution is to change the <input name="s" to summat else "foo" for instance.

Then in _basic.config.php you could do something like :

PHP

<?php
if( !empty( $_GET['s']  ) || !empty( $_POST['s'] ) )
// if you wanna be flash, send a 403 header ;)
  die'sod off and stop wasting my cpu :|' );
}
if( !empty( $_GET['foo'] ) )
// set get
  $_GET['s'] = $_GET['foo'];
}
if( !empty( $_POST['foo'] ) )
// set get
  $_POST['s'] = $_POST['foo'];
}
?>

ish ;)

¥

Aug 25, 2008 12:50

I'm gonna give that a try. Thanks ¥.


Form is loading...

powered by b2evolution free blog software – This forum is powered by b2evolution CMS, a complete engine for your website.