How to cut off referrer spam?

Discussion in 'Security' started by amanamission, May 19, 2008.

0
  1. #1
    For the past week or so, I have been getting 10,000+ hits a day from a single spamming website. I have added code to my .htacces to reject these hits and redirect them to the server, but it doesn't seem to work.

    here's what I'm using:

    RewriteCond %{HTTP_REFERER} ^http(s)?://(www\.)?evilsite.com/.*$ [NC,OR]
RewriteRule ^(.*) %{HTTP_REFERER} [R,L]
    Code (markup):
    Any idea on how I can better get rid of these jerks? They're ruining my stats, and I can't get rid of them. Also, I complained to the registrar, but I bet they don't move on these complaints.
     
    amanamission, May 19, 2008 IP
    zangief likes this.
  2. sarahk

    sarahk iTamer Staff

    Messages:
    28,807
    Likes Received:
    4,534
    Best Answers:
    123
    Trophy Points:
    665
    #2
    Not sure about the .htaccess but I wouldn't worry about your stats - they are private aren't they - they're not providing any benefit to these guys?!

    We all get referrer spam - I first noticed it back in 2003 - you'll waste alot of time and energy trying to block them all.
     
    sarahk, May 19, 2008 IP
  3. amanamission

    amanamission Notable Member

    Messages:
    1,936
    Likes Received:
    138
    Best Answers:
    0
    Trophy Points:
    210
    #3
    It's just one site, but it's at the verge of ddos, with 10,000+ hits a day.I have seen other websites with my script get suspended for the resources these spammers consume. It's slowing down the site affected and my CP to a noticeable degree. Referrer spam is one thing, but these hits are taking over my bandwidth.
    As far as my stats..I can't read them with 10,000 fake hits every day. I have no real information about my traffic with all this garbage taking up the logs.
     
    amanamission, May 19, 2008 IP
  4. and_y

    and_y Active Member

    Messages:
    287
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    58
    #4
    You may try to edit your htaccess and ban the ip address of the spamming site

    order allow,deny
    deny from xxx.xxx.xx.xx
    allow from all
     
    and_y, May 20, 2008 IP
  5. amanamission

    amanamission Notable Member

    Messages:
    1,936
    Likes Received:
    138
    Best Answers:
    0
    Trophy Points:
    210
    #5
    Yeah, that's the first thing I tried...the problem is the script, the file is being accessed to manipulate a ranking system I don't use and this site is not a member of anyway...but no matter what I do, they keep accessing that file, even if I delete it.
    Quite a few sites have lost hosting over this. The site isn't important to me, but I'd like to keep it live. However, if this doesn't stop, I'll have to take extreme measures so as not to upset my new host.

    EDIT: It looks as if I actually stopped it about twenty minutes ago, using some code provided on the script support forum. If you have this problem with the button.php on ATS Topsite, this link has the answer.

    As far as my issue, this topic can be closed next time a mod drops by. Thanks, this time the answer was a different forum.
     
    amanamission, May 20, 2008 IP
  6. SPARKS MAN

    SPARKS MAN Peon

    Messages:
    13
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #6
    see this threat
    i use the step in it
    i hope its help u

    forums.digitalpoint.com/showthread.php?t=854740

    regards
     
    SPARKS MAN, May 24, 2008 IP