NYCPHP Meetup

NYPHP.org

[nycphp-talk] Urgent: Help in Defending Attack

Guilherme Blanco guilhermeblanco at gmail.com
Thu Feb 28 11:09:25 EST 2008 

Also, you can check for the USER_AGENT the attacker is using. if it's
not any known, redirect to 404.
But this is perfectly overwritable via curl... so don't trust too much this one.



Regards,

On Thu, Feb 28, 2008 at 1:08 PM, Guilherme Blanco
<guilhermeblanco at gmail.com> wrote:
> You're received an spider attack.
>
>  The first thing to do is to disable the access to this page. Create a
>  robots.txt in your main website and disallow it.
>  You can take an example by accessing www.google.com/robots.txt
>
>  The second stage is to prevent bad spiders from read the robots as its
>  destination router.
>
>
>  One thing that can help you is a quick read of my portuguese talk I
>  gave at PHP Conference Brazil 2007 to know a bit more about it. Google
>  can easily translate it to you. Here is the URL:
>  http://www.prophp.com.br/downloads/phpconf2007/spiders_crawlers_no_php.zip
>
>
>  Also, you can change your entry.php to _entry.php, and ask a JS
>  confirmation at the beginning of the page... if user click yes,
>  redirect... not, move to 404. This will lead the spider bot into a
>  crazy situation and will go down in this request. By subsequenting
>  going down, the spider can stop. Try this one...
>
>
>  Regards,
>
>
>
>  On Thu, Feb 28, 2008 at 12:50 PM, Randal Rust <randalrust at gmail.com> wrote:
>  > On Thu, Feb 28, 2008 at 8:18 AM, Guilherme Blanco
>  >  <guilhermeblanco at gmail.com> wrote:
>  >
>  >  > Randal... try this one...
>  >
>  >  >  function getClientIp()
>  >
>  >  event if i can run this function, how am i going to get the IP?
>  >
>  >  i can't dump it into the DB, and the mailserver is down as well.
>  >
>  >  --
>  >
>  >
>  > Randal Rust
>  >  R.Squared Communications
>  >  www.r2communications.com
>  >  _______________________________________________
>  >  New York PHP Community Talk Mailing List
>  >  http://lists.nyphp.org/mailman/listinfo/talk
>  >
>  >  NYPHPCon 2006 Presentations Online
>  >  http://www.nyphpcon.com
>  >
>  >  Show Your Participation in New York PHP
>  >  http://www.nyphp.org/show_participation.php
>  >
>
>
>
>
>
> --
>  Guilherme Blanco - Web Developer
>  CBC - Certified Bindows Consultant
>  Cell Phone: +55 (16) 9166-6902
>  MSN: guilhermeblanco at hotmail.com
>  URL: http://blog.bisna.com
>  São Carlos - SP/Brazil
>



-- 
Guilherme Blanco - Web Developer
CBC - Certified Bindows Consultant
Cell Phone: +55 (16) 9166-6902
MSN: guilhermeblanco at hotmail.com
URL: http://blog.bisna.com
São Carlos - SP/Brazil

More information about the talk mailing list