Banning IPs on Surpass' firewall vs .htaccess

**MarkRH** · June 28th, 2007, 7:38 PM

I guess this is as good a place as any. Instead of denying IP addresses via my .htaccess (ones that keep trying to add things into my guestbook, even after they are banned via .htaccess), would it better to have Surpass just block them at the firewall so the server(s) don't even have to bother handling those bogus requests?

I dunno.. that may not be the best thing either since they usually do stop trying after awhile.

**removed** · June 28th, 2007, 7:41 PM

You should look into implementing this with your scripts:
http://www.projecthoneypot.org/httpbl.php

I did this with an old blog I no longer post on, but still get tons of spam with, and it worked amazingly. A++++, etc.

**MarkRH** · June 28th, 2007, 8:17 PM

Looks like the most I could do with that is copy their most active IP list into my .htaccess. The http:BL is an Apache 2 module it appears and the server is running Apache 1.3.37.. so wouldn't work on mine. Unless I'm missing something.

I do have image verification routines with my scripts so nothing ever gets into my guestbook and what not.

**davotoula** · June 29th, 2007, 9:13 AM

I sometimes find the SH firewall annoying. Random friends keep telling me they cannot access my web site, I check it and nothing wrong, SH checks it and nothing wrong.

After some traceroutes my friends IP gets put on the white list and all is fine.

Just makes me wonder how many other random visitors are denied due to the firewall?

I guess it's a price one has to pay to avoid DDos attacks and other nasties.

June 28th, 2007, 7:38 PM	#1 (permalink)
MarkRH Race Surpass Super #1 Joined in Jul 2006 Lives in Oklahoma City, OK Hosted on sh102 1,222 posts Gave thanks: 18 Thanked 86 times	Banning IPs on Surpass' firewall vs .htaccess I guess this is as good a place as any. Instead of denying IP addresses via my .htaccess (ones that keep trying to add things into my guestbook, even after they are banned via .htaccess), would it better to have Surpass just block them at the firewall so the server(s) don't even have to bother handling those bogus requests? I dunno.. that may not be the best thing either since they usually do stop trying after awhile. __________________ SH102 : Mark Headrick - Blog - Gallery Pelicar \| Company of Valor \| Mysstie Wolfestar

June 28th, 2007, 7:41 PM	#2 (permalink)
removed Surpass Abuse Admin Super #1 Joined in Mar 2005 Lives in Houston, TX Hosted on NONE 7,797 posts Gave thanks: 11 Thanked 278 times	You should look into implementing this with your scripts: http://www.projecthoneypot.org/httpbl.php I did this with an old blog I no longer post on, but still get tons of spam with, and it worked amazingly. A++++, etc. __________________ Unofficial IRC Channel: #surpass EFNet Unofficial = No official support. Support requests can be submitted to our helpdesk.

June 28th, 2007, 8:17 PM	#3 (permalink)
MarkRH Race Surpass Super #1 Joined in Jul 2006 Lives in Oklahoma City, OK Hosted on sh102 1,222 posts Gave thanks: 18 Thanked 86 times	Looks like the most I could do with that is copy their most active IP list into my .htaccess. The http:BL is an Apache 2 module it appears and the server is running Apache 1.3.37.. so wouldn't work on mine. Unless I'm missing something. I do have image verification routines with my scripts so nothing ever gets into my guestbook and what not. __________________ SH102 : Mark Headrick - Blog - Gallery Pelicar \| Company of Valor \| Mysstie Wolfestar

June 29th, 2007, 9:13 AM	#4 (permalink)
davotoula Surpass Fan Comfy Contributor Joined in Oct 2004 148 posts Gave thanks: 2 Thanked 2 times	I sometimes find the SH firewall annoying. Random friends keep telling me they cannot access my web site, I check it and nothing wrong, SH checks it and nothing wrong. After some traceroutes my friends IP gets put on the white list and all is fine. Just makes me wonder how many other random visitors are denied due to the firewall? I guess it's a price one has to pay to avoid DDos attacks and other nasties. __________________ David Kaspar \| SH60

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)