| Author |
 Topic  |
|
Andy Humm
Average Member
United Kingdom
908 Posts |
 Posted - 04 September 2008 : 11:38:17
|
I have the IPGate Mod installed and set an IP ban for a bot (93.174.93.230) that is continually using the site. It appears they are trying to access the page (post.asp?method=Topic&FORUM_ID=1) every couple of minutes. Despite entering them for a banned user, they still appear on the site log. I have robots.txt file which has the following:
User-agent: *
Disallow: /forum/
Disallow: /forumtest/
Disallow: /cgi-bin/
Disallow: /database/
Disallow: /forum/post.asp
User-agent: Twiceler
Disallow: /
Is there a method to ensure that when an IPGate ban is set that they do not access the site at all, thus using up bandwidth.< |
|
|
HuwR
Forum Admin
United Kingdom
20600 Posts |
Posted - 04 September 2008 : 12:36:38
|
how do you know it is using bandwidth ? just because it tries to access a page doesn't necesarily mean it does, just that it has tried.
robots.txt files are only useful if the bot in question actually conforms to the standards, if it doesn't the robots.txt file will have no effect whatsoever.
if you have full access to IIS on the server you can exclude the IP from IIS altogether.< |
 |
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 04 September 2008 : 13:48:27
|
Ok thank you
Does the IPGate Mod actually stop an IP accessing the forum or just record the fact it/the user is trying to access. I have also added the IP address to the admin_ban_ip.asp page (Ban Users Mod). I was hoping not to see the address on the log seeing as bot mods have the address in the ban listing..< |
|
|
|
HuwR
Forum Admin
United Kingdom
20600 Posts |
Posted - 04 September 2008 : 15:03:27
|
I can still type post.asp?method=Topic&FORUM_ID=1 into my browser, I will just get redirected probably, but it would still be recorded in your log that I connected to post.asp?method=Topic&FORUM_ID=1 even if I never saw the pages content.
I have no idea what ipgate does.< |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 04 September 2008 : 15:43:54
|
| IPGate Mod link< |
|
|
|
Classicmotorcycling
Development Team Leader
Australia
2085 Posts |
Posted - 04 September 2008 : 17:02:18
|
Andy,
Why install a mod if you do not understand what it does.. If you set it up, it will do a "bandage" block, but is not fully effective. There are always ways around it. The MOD might be OK for tricking the non-computer savy person, but someone who have been dealing with networks for even a short time can get around it. No point sending Huwr to the link to download the MOD, it only shows him the same information that you already have.
I deal with high end computers and networks on a daily basis, and the only true way to protect your computer or website is to not have it connected to a network. The only other way where you want others to connect to a website is to make sure that your web page code is secure by making sure there is no holes in it, and that the system that you are using has the latest security patches on it.< |
Cheers,
David Greening |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 04 September 2008 : 17:45:00
|
Hi Dave
Thank you for your response. I installed IPGate on the proviso/understanding that if we entered an IP address of a 'so called' known spammer then hopefully that IP user would be negated from the forum pages in toto.
Obviously, ready various posts since the installation, that does not appear to be the case. You mention: 'There are always ways around it' and 'make sure that your web page code is secure by making sure there is no holes in it'. That is why I thought the IPGate Mod would resolve the issue. There appears to be doubt whether the robots.txt really works effectively too. It would be sound if the bots stayed away from the forum package then we would not keep getting numerous false recordings of active users and slowing it down probably.
Thank you once again
< |
|
|
|
gpctexas
Junior Member
320 Posts |
Posted - 04 September 2008 : 17:50:37
|
| Ipgate will log the page being accessed, but it will display a the banned message and not the content. If you do not want them showing in the log you need to use the redirect option and send them to a static page or another site. From what you are describing, they are accessing the page, but ipgate is intercepting and displaying the message. In your web site log and even ipgate will log that attempt on that page.< |
ipgate 2.4.4 RC3
http://www.gpctexas.net/ipgate_v244.zip |
Edited by - gpctexas on 04 September 2008 17:52:53 |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 04 September 2008 : 17:57:01
|
| Thank you gp, that explains it, and as Huwr indicated above if some one tries to access a page they would still be recorded in the log - given what you have said, if redirection is in place this is not the case. Cheers Andy< |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 04 September 2008 : 18:41:21
|
Just a quick formatting question, I notice all the dated formats with the IPGate Mod are displaying in 04/09/2008 dd/mm/yyyy I have tried to get the date display to show the same as the rest of the forum pages ie 4 Sep 2008 and fail.
Example of some of the date display code:
<td width="503" align="left" valign="baseline" <%=forumtable%>> <%= forumfont%>Records older than <%=DateAdd("d",(-1*StrIpgateExp), date())%> will be cleared<%= endfont %></td>
I tried changing the date to chkdate no avail..< |
Edited by - Andy Humm on 04 September 2008 18:41:52 |
|
|
|
Classicmotorcycling
Development Team Leader
Australia
2085 Posts |
Posted - 05 September 2008 : 06:41:21
|
Andy,
If a SPAMMER was blocked via IP Address, all they would need to, is go to a proxy Circumventor like this: https://www.stupidcensorship.com
There are thousands of them around the globe and my daughters have used most of them to get out past my blocking on the network and it gives them a different IP Address to access different sites. So that is why I said:
quote:
If you set it up, it will do a "bandage" block, but is not fully effective.
Try it, block your IP on your public facing test site and then come in from the Circumventor url and you will find that you can always get in to your site if you want to. Always a way around IP blocking.< |
Cheers,
David Greening |
|
|
|
Etymon
Advanced Member
United States
2396 Posts |
Posted - 05 September 2008 : 08:58:14
|
LOL! I hope you daughters use your genes in a good way!  < |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 05 September 2008 : 16:45:25
|
| Cheers David - educational thoughts! No hope to stop 'em then!< |
|
|
|
Classicmotorcycling
Development Team Leader
Australia
2085 Posts |
Posted - 05 September 2008 : 18:06:30
|
Correct Andy, there is no hope in stopping them fully and that is why I said:
quote:
the only true way to protect your computer or website is to not have it connected to a network
What I showed you with the Circumventor is a basic way around for the non-hacker, there are a lot more ways around it for a more experienced hacker/spammer.
Etymon, I sure hope so.  They started do this basic circumventing since they where 11 - 13 and are now 18 and 20 so they started rather young at trying to beat their father  and are loosing.   < |
Cheers,
David Greening |
|
|
|
Andy Humm
Average Member
United Kingdom
908 Posts |
Posted - 06 September 2008 : 03:30:01
|
| Dave, obviously you have an upper hand with experience, keeping the infiltrators so to speak at hand, maybe you could share so of the so called 'winning' techniques!, the we will keep 'daughters' at bay!< |
|
|
|
HuwR
Forum Admin
United Kingdom
20600 Posts |
Posted - 06 September 2008 : 03:55:31
|
quote:
Originally posted by Andy Humm
maybe you could share so of the so called 'winning' techniques!, the we will keep 'daughters' at bay!
lock them in a dark cupboard < |
|
|
|
Topic |
|
Topic Locked
