|
I had been using the ever popular Matt Wright's Perl Guestbook script that has been around for many years. I re-wrote a new one from scratch using PHP.. doing that alone has prevented all the attempts at running /cgi-bin/guestbook.pl as that no longer exists on my site.
The main thing I do now is generate a random 5 character gif image everytime the add entry page is loaded that the user has to enter into the form and must of course match. The correct random value is stored in a SESSION variable which gets passed to the form handling script. I also use a hidden field that contains the field names of the items that must be completed.
About 99 percent of the attempts fail because the SESSION variable itself does not exist (which tells me that it did not even call the script that generates the image) and about 1% are blocked because the hidden field name does not exist, which tells me they weren't even using my form.
I should save what they were trying to add in some file somewhere hmmm..
|