Ave, Unfortunately my problem persists. The reason my script was recording "NULL" as IP address was because I was using $REMOTE_ADDR. When I started using the correct syntax, i.e., $SERVER['REMOTE_ADDR'], it actually did start recording the IP Address of the spammer. The problem is, the spammer is using multiple IP Address. His IP Address changes every 6 - 8 entries. I have so far recorded 5 different IP Addresses of the spammer. Although I can create a Database and keep adding his IP Address to the database, and run a check from the Guestbook script to scan against Blocked Addresses, It¹s not the most efficient method in the world. What other logic can I apply to automatically block the spammer? Or at least have a more efficient method of blocking the Spammer and his IP¹s? Thanks. On 3/30/06 8:41 AM, "Rahul S. Johari" <rjohari@xxxxxxxxxxxx> wrote: > Ave, > > Curt, thanks for your response. > >> Is this a common guestbook, like a 3rd party tool you got and added >> to the web site? If so, do they already have a solution in place >> with an add-on or such. > > No, actually it's a script I have written myself from scratch. And > unfortunately (or fortunately perhaps), I haven't ever run into this problem > before. > >> You really want to use $_SERVER['REMOTE_ADDR']; > > That is should, I agree! > > >> A common method (now adays) is have the form that is being posted >> provide a challange/response method (like CAPTCHA) to verify that >> someone is actually sitting there filling out the form instead of a >> script doing the work. >> >> One of the problems with this method is well it limits your >> "visually" impared audience from being able to add to the >> guestbook, since it requires a visual response to the challenge. >> >> Another method is to require javascript for a challenge response >> method, this of course limits your audience to those who have >> javascript enabled, and I'm not sure if it really 'visually >> impared' friendly. > > I have implemented both those methods in different scripts I have written > and maintain across different websites. Visual Confirmation using Image > Verification and JavaScript Confirmation. However, I honestly don't want to > add such an 'extra' step in my Guestbook for users who simply wish to put in > a nice comment about the site, at least not at this point, which is why I do > want to stay away from these methods for the Guestbook for now. > > Let me try a few other suggestions first and see how it goes, and then I'll > decide if I need to add more capabilities/security to the Guestbook. > > Thanks for your insight, always brain-enhancing. > > Rahul S. Johari > Coordinator, Internet & Administration > Informed Marketing Services Inc. > 500 Federal Street, Suite 201 > Troy NY 12180 > > Tel: (518) 687-6700 x154 > Fax: (518) 687-6799 > Email: rahul@xxxxxxxxxxxxxxxxxxxx > http://www.informed-sources.com > Rahul S. Johari Coordinator, Internet & Administration Informed Marketing Services Inc. 500 Federal Street, Suite 201 Troy NY 12180 Tel: (518) 687-6700 x154 Fax: (518) 687-6799 Email: rahul@xxxxxxxxxxxxxxxxxxxx http://www.informed-sources.com
