After reading a blog entry on Sean C’s blog i decided to rework part of Ray’s blogging application that i’m using to give myself some sort of protection against blog spam - should i ever experience it.
Previously, logged comments didn’t include the IP address of the submitter - I’ve now edited the tblBlogComments table to include a remote_addr field for the IP of the submitter. I’ve also added a new table tblBannedIPs, so if a nasty comment is added i can click on a new link ‘Ban this IP’ on the comments page and the IP will be added to the table. Application.cfm now includes a test to see if cgi.remote_addr of the client is in the tblBannedIPs table and if so no further execution occurs. Mail informing me of a new comment added now has a one click link to remove the comment if i feel it neccessary.
December 23rd, 2003 at 12:00 am
Don’t forget that they spoof IP addresses so IP banning may not work.
December 29th, 2003 at 12:00 am
Remember, dial-up users often have a different IP address each time they connect to their ISP.