in reply to technical with IPs

nimdokk provided very good advice.

Additionally or indepently, using a honeypot is simple and effective. In your pages, place a link no user will ever click on (or even see). Anyone who follows that link is a robot. Any further request from that IPsession can be redirected to an error page.

In case the user uses a web accelerator that prefetched the honeypot, the error page should provide the means for the user to validate himself as a person. Captchas provide such a mean.

Replies are listed 'Best First'.
Re^2: technical with IPs
by duckyd (Hermit) on Oct 24, 2006 at 21:46 UTC
    As noted in the other posts, you don't want to block based on IP. One bad user behind a proxy (or NAT'd) shouldn't block all other users comming through the same proxy.

    I do like the idea of a honeypot link though :)

[reply]

In Section Seekers of Perl Wisdom