Kryptronic Software Support Forum

Mr. Pink · 07-02-2006 15:13:48

Some jerk is bombing my store with fake orders, every day. This is a list of IP addresses that he used:

165.21.154.11
165.21.154.111
165.21.83.246
165.21.83.240
165.21.83.230
165.21.83.247
203.124.2.55
203.120.68.66
203.120.68.67
203.120.68.71
192.169.41.46
192.169.41.40
192.169.41.33

I blocked each one of these IPs through my Control Panel IP Deny Manager, but he is still able to access my site. If i block 192.169.41.40, next time he'll access the site with 192.169.41.33, for example.

I know there is a way to block a range of IPs, rather than individual IPs. Does anyone know how this is done?

Any other ideas how I can deal with this?

Any help is appreciated....

Ed_H · 07-02-2006 15:34:22

Not sure about your control panel, but via .htaccess you could block, for example:

anything from 192.169.41.xx

by leaving out the last digits and leaving the trailing dot, eg.

<Files ~ "^.*$">
order allow,deny
deny from 192.169.41.
allow from all
</Files>

So those pesky

192.169.41.46
192.169.41.40
192.169.41.33

from Singapore would all be denied.

You could be even more stringent and do

<Files ~ "^.*$">
order allow,deny
deny from 192.169.
allow from all
</Files>

and so on.

Mr. Pink · 07-02-2006 19:29:47

First of all, thank you for the information, so far. I do need to ask a couple of question, for clarification.

I am assuming that the .htaccess file you are referring to is the .htaccess file in my public_html directory. Correct?

Assuming that this is correct, here is what this file looks like, at this time (I have a couple of other IPs denied, as you can see, for other reasons):

Code:

<Files 403.shtml>
order allow,deny
allow from all
</Files>

deny from 68.127.237.128
deny from 217.60.165.6
deny from 165.21.154.11
deny from 165.21.154.111
deny from 165.21.83.246
deny from 165.21.83.240
deny from 165.21.83.230
deny from 165.21.83.247
deny from 192.169.41.46
deny from 192.169.41.40
deny from 192.169.41.33
deny from 203.124.2.55
deny from 203.120.68.66
deny from 203.120.68.67
deny from 203.120.68.71

So, my main question is, what should my .htaccess file look like, after I implement your changes, and still keep the other 2 IPs on the banned list?

Thank you...

Ed_H · 07-03-2006 09:48:04

Yes, the .htaccess in your root directory... It would look like this:

Code:

<Files 403.shtml>
order allow,deny
allow from all
</Files>

deny from 68.127.237.128
deny from 217.60.165.6
deny from 165.21.154
deny from 165.21.83.
deny from 192.169.41.
deny from 203.124.2.
deny from 203.120.68.

To ban more broadly:

Code:

<Files 403.shtml>
order allow,deny
allow from all
</Files>

deny from 68.127.237.128
deny from 217.60.165.6
deny from 165.21.
deny from 192.169.41.
deny from 203.

It's always a good idea to check the ip ranges of the offending ISPs at and ensure you're not banning potentially friendly ip's.

jungle juice · 07-03-2006 12:05:52

I had unwelcome visitors (may be a robot) who download (visted) all my pages and ran up my bandwidth couple of times a month.
Besides blocking IPs, is there other ways to stop these spammers? Anyone have any experience in these sitiuation? Please help!!

Mr. Pink · 07-03-2006 12:13:48

Ed_H,

Thank you very much.

Ed_H · 07-03-2006 12:45:25

Mr. Pink - you can call me 'Nice Guy Eddie' - and you're very welcome.

jungle juice - Besides banning by ip address, if you're on Apache and know the USER_AGENT you can use mod_rewrite in your .htaccess to forbid them.

Kryptronic Software Support Forum

#1 07-02-2006 15:13:48

How To Block A Spammer?

#2 07-02-2006 15:34:22

Re: How To Block A Spammer?

#3 07-02-2006 19:29:47

Re: How To Block A Spammer?

Code:

#4 07-03-2006 09:48:04

Re: How To Block A Spammer?

Code:

Code:

#5 07-03-2006 12:05:52

Re: How To Block A Spammer?

#6 07-03-2006 12:13:48

Re: How To Block A Spammer?

#7 07-03-2006 12:45:25

Re: How To Block A Spammer?

Board footer