> Is there a > way for apache to catch these requests before passing it to php? Is it > more efficient for apache to handle this than php? 2 x yes. I think you could probably use <LocationMatch> and ban all access with "Deny from all". /Per Jessen, Zürich -- Thanks for replying Per. Isn't "Deny from all" more to do with apache accessing local files on my server? These images aren't on my server, and the requests aren't trying to access images on my server. What I see are requests using the php script on my server to try access an image file (or html or txt or php) on someone else's server. I was hoping there's a way to tell apache to block requests where id=non_numeric. Cheers Arno -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php