Blocking users from anonymous proxy servers

Discussion in 'Security' started by noodleandy, Oct 25, 2007.

0
  1. #1
    I'd like to prevent users from anonymous proxy servers accessing my site, to cut down on click fraud.

    Using environment variables in PHP:
    REMOTE_ADDR, HTTP_VIA, HTTP_X_FORWARDED, HTTP_X_FORWARDED_FOR, HTTP_CLIENT_IP

    ...I am able to detect legitimate transparent proxies and simple anonymous proxy servers, but Distorting and Elite Proxies will slip through the cracks.

    Are there any freely available lists of known Distorting and Elite Proxy addresses I can add to my .htaccess file?

    Or any other suggestions on how to counteract this?
     
    noodleandy, Oct 25, 2007 IP
  2. inworx

    inworx Peon

    Messages:
    4,860
    Likes Received:
    201
    Best Answers:
    0
    Trophy Points:
    0
    #2
    You could disable POST requests from any other domains except your website's and one which you'd like to allow.
     
    inworx, Oct 26, 2007 IP
  3. Fash

    Fash Peon

    Messages:
    37
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #3
    It's very unlikely that you'll be able to catch ALL of the anonymous proxies visiting your website because no blacklist can keep up to date all the time. If only want to block something like TOR, there are lists of TOR end nodes that you can add to your .htaccess.
     
    Fash, Oct 27, 2007 IP
  4. toby

    toby Notable Member

    Messages:
    6,923
    Likes Received:
    269
    Best Answers:
    0
    Trophy Points:
    285
    #4
    inworx, can you explain how can we stop the POST?
     
    toby, Nov 14, 2007 IP
  5. anone.gmail.com

    anone.gmail.com Peon

    Messages:
    1
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    1
    #5
    Or you could stop being a little bitch.
    People in oppressive countries can only access the internet through proxies.
    Think about them.
    -Anon
     
    anone.gmail.com, Oct 28, 2016 IP