I guess if I got into the code I might change where Guardian looks for .htaccess, but not having done that it's located where Guardian defaults to see it: .../cgi-bin/yabb2/
The premise of the .htaccess file is to lock out the world and only Allow the U.S., so all the IP's in the file make it over a meg long, so I won't post the whole file here, but I'll give you the head and foot, as that's where Guardian makes it's changes:
Quote:Head of file:
<Limit GET HEAD POST>
order allow,deny
# Country: UNITED STATES
# ISO Code: US
# Total Networks: 40,389
# Total Subnets: 1,531,462,904
allow from 3.0.0.0/8
allow from 4.0.0.0/8
allow from 6.0.0.0/8
allow from 7.0.0.0/8
allow from 8.0.0.0/8
allow from 9.0.0.0/8
allow from 11.0.0.0/8
blah blah hundreds later...
End of file:
allow from 216.255.160.0/20
allow from 216.255.176.0/20
allow from 216.255.192.0/19
allow from 216.255.240.0/20
#
#deny from all
Deny from 129.121.96.85
Deny from 91.224.246.87
deny from 98.197.94.83
deny from 173.236.25.162
deny from 207.126.165.187
</Limit>
Above is a Guardian untouched file. I've turned off Guardian's ability to alter the file so when I get an offending user I manually add them as you see in the closing deny from's before the file end.
Crap, you know what? I just figured out what it's doing, so I beg forgiveness for not showing the Guardian alteration because you guys will back me up on this without seeing it.
Guardian, when it adds an offending user wants to deny the offenders ip. It strips the header on the file and adds its own and Guardian's ORDER statement turns around the logic so that it states:
order deny,allow;
which turns the logic around backassward and now opens the gates for the world to walk through, as it appends the offensive ip to the list.
If you guys don't agree with me on that epiphany, I'll gladly finish the work and allow Guardian to alter the file, but I think you'll agree it's not necessary.
With that, what I need to do is get into the Guardian template?, is there one?... and alter the line that writes the ORDER statement to the file and that should cure the problem.
Any dissension to the premise?