Because my forum is locally focused I use .htaccess to ALLOW only U.S. ip's, to cut down on the spam kings of Russia and China and the like.

However; if I allow Guardian to add ip's banned because of harvesting or whatever, Guardian's altering of the file seems to cause it to fail so that my Russian antagonists and all others can once again access the site. The only real thing I see Guardian do is strip some of the header, but nothing that should effect operation. However it does append its bans after the allow list in a new section.

I thought the issue was the allow/deny order within .htaccess, having "deny from all" in the list. Removing "Deny from all" and getting my order correct fixed the raw list, but any change from Guardian opens the gates across the pond again, and these guys seem to sit at the gate.

Any ideas?

I guess if I got into the code I might change where Guardian looks for .htaccess, but not having done that it's located where Guardian defaults to see it: .../cgi-bin/yabb2/

The premise of the .htaccess file is to lock out the world and only Allow the U.S., so all the IP's in the file make it over a meg long, so I won't post the whole file here, but I'll give you the head and foot, as that's where Guardian makes it's changes:

Quote:


Above is a Guardian untouched file. I've turned off Guardian's ability to alter the file so when I get an offending user I manually add them as you see in the closing deny from's before the file end.

Crap, you know what? I just figured out what it's doing, so I beg forgiveness for not showing the Guardian alteration because you guys will back me up on this without seeing it.

Guardian, when it adds an offending user wants to deny the offenders ip. It strips the header on the file and adds its own and Guardian's ORDER statement turns around the logic so that it states:

order deny,allow;

which turns the logic around backassward and now opens the gates for the world to walk through, as it appends the offensive ip to the list.

If you guys don't agree with me on that epiphany, I'll gladly finish the work and allow Guardian to alter the file, but I think you'll agree it's not necessary.

With that, what I need to do is get into the Guardian template?, is there one?... and alter the line that writes the ORDER statement to the file and that should cure the problem.

Any dissension to the premise?

(Raises right arm and sniffs briefly twice.)  

Thanks for the suggestions Jon. I just happened across another Guardian file, so I'll see if I can figure the code out in there to mod it. It will be a simple fix when I find the line I'm looking for.

I just happened across a saved file after Guardian had altered it, so I will show exactly how Guardian is altering the ORDER line, usurping my inverted method of .htaccess, just so all can understand this thread with all the visuals.

The comment I'd make about my method with .htaccess is that, for me, it has really slammed the door shut on 90% of the world's spammers. What I found was that most of these guys were coming to me out of Russia, China, Latvia, etc. That opened the way for me to slam the border shut to America. Once again, because I am pandering to local traffic only to begin with, I can afford to make US only access the first rule using .htaccess. This method does however necessitate the reversing of the ORDER statement to acheive desired results, and does render Guardian no more than a barking sentry until I get the code fixed. But that still has it's application. It tells me when someone imposes and I can manually take corrective action until I can employ it to do the work once again.

Interestingly, most of these guys don't seem to be employing proxies, or if they do they are choosing offshore sites or something, cause they aren't getting through. I have noticed one or two proxy hits a day now tho, but the ip's in the list still only contain US sites.

Back on track to the benefits of this method with .htaccess: Before I employed this method of shutting the spammers out I had 20 or more hits a day with Pre-registration and Validated registration of these guys. After evoking this strategy, one or two of these a day max. And... I just looked at the registration log and I had a complete lull in undesirables registering from November 29th to today, tho the traffic has picked up to previous levels of one or two beginning again yesterday.

So it's not a cure-all, but it does limit spammers to being inside the country at least anyway, and we don't have near as many active as the rest of the globe it appears.

I do intend to employee one of the other options on top of this as well, to hopefully remove the one or two a day remaining.

This Topic was moved here from General Usage and Feature Troubleshooting by JonB.