Dave, while your solution works for a fairly large number of cases, I see at least two flaws: it blocks EVERYONE from the entered IP address, and doesn't account for "shifting" / non-permanent IP users. (Apologies, all of my alternative solutions fall back upon inspecting user-entered identification fields, which aren't consistently supported by guestbook packages...)

ttfn - Mike / Pax ... Kihe

I agree. Do you have a suggestion as how you could tweak Apache to include those cases?

You can use cookies to track the troll and deny access to your pages.

This can be a little tricky, because you don't know in advance the new IP of the troll. One solution is to seek for words only the troll uses, and atach a special cookie to identify the computer the troll is using.

Implementetion in PHP is probably the easiest way to do it.

You can use cookies to track the troll and deny access to your pages.

This can be a little tricky, because you don't know in advance the new IP of the troll. One solution is to seek for words only the troll uses, and atach a special cookie to identify the computer the troll is using.

Implementing it in PHP is probably the easiest way to do it.

get your cgi to look up a list of banned words!

i can not on block her

I use Typepad to blog, and I'd like to block specific users from accessing my blog. Since i"m not hosting on Apache, do you know of any way that I could block people from visiting? Thanks!

I'm afraid you can't do that with Typepad. You can block specific people from adding comments (if you know their IP addresses) but you can't block people from *reading* your site. Sorry!

Hi Dave,

My problem is slightly different. When I look through my site's log, I see that I'm getting hundreds of hits from spam addresses in my "links from external addresses" list. I'm not sure whether the point of the spam hits is just to have webmasters check out their referrers and in that way generate traffic to their website, or whether (more likely) the idea is to have their sites show up in my log, in the hopes that the log is linked to the main site, so they can increase their Google rankings. In any case, I'm getting tired of manually listing all the offending URLs in my htaccess file.

My question, therefore, is: does anyone publish a list of spam URLs that webmasters can add to their htaccess files? Or, even better, is there some service such as AdBlock that tracks the spammers and that you can somehow route your htaccess files to check?

Any thoughts would be most welcome!
Thanks,
Martin

BTW, here's my current .htaccess file

Order Allow,Deny
Allow from All
Deny from web4u.gb.com
Deny from uaeecommerce.com
Deny from 8gold.com
Deny from fidelityfunding.net
Deny from houseofsevengables.com
Deny from crepesuzette.com
Deny from popwow.com
Deny from condodream.com
Deny from canadianlables.net
Deny from 911easymoney.com
Deny from lucky7.to
Deny from 20six.co.uk
Deny from www.whymarketing.info
Deny from free-online-dating.18.to
Deny from byondspeed.com
Deny from brasilbeachhouses.com
Deny from muscle-food.com
Deny from shayanashop.com
Deny from tinnisexshop.com
Deny from tinni-lingerie.com
Deny from happiezz.com
Deny from miltontwins.iblogs.com
Deny from freevideos.iblogs.com
Deny from ebook2buy.com
Deny from livedatematch.com
Deny from d-daystore.com
Deny from talented-doctor.com
Deny from just-pills.com
Deny from metasart.com
Deny from dianejones.com
Deny from birchfieldharriers.org
Deny from pills-sale.com
Deny from furnituredeals.org
Deny from mobilewifi.com
Deny from 3brothersonline.com
Deny from casino-run.com
Deny from posterstm.com
Deny from casino-denotation.com
Deny from osagedata.com
Deny from poker-scan.com
Deny from villarentalbali.com
Deny from seat208.com

Dave,
We have a guestbook people from all over the world come, ask for prayer, leve messages and all these are more then welcomed. But now we have someone leving ads. They always start with a link address. I do not know a lot about computers and do not know how to block this from happening on our guestbook. This morning we had 40 and before the day is over, it could reach 100 or more. We have to go in and delete them. We would like to block them so they can never come on. Don

Martin and Don, I'm afraid to say that at some level the spammers win this war because you'd have a prohibitively long list of domains to block and that still wouldn't work because spam tools can "spoof" or pretend to be from other domains entirely. :-(

Further, open tools like guest books are just an invitation for trouble, I'm sorry to say, so unless you can change your guestbook system to leave entries as "unpublished" until you manually approve them, you're probably better off disabling the guest book entirely.

Both of these answers are terrible and I greatly miss the free and open nature of the Internet as it was years ago and every entry to a guest book was a voice from the great unknown and highly anticipated. But as far as I can see, there's no going back. :-(

// Block IP address script- By JavaScriptKit.com (http://www.javascriptkit.com)
// For this and over 400+ free scripts, visit JavaScript Kit- http://www.javascriptkit.com/
// This notice must stay intact for use.

//Enter list of banned ips, each separated with a comma:
var bannedips=["23.23.23.23", "11.11.11.11"]

var ip = ''

var handleips=bannedips.join("|")
handleips=new RegExp(handleips, "i")

if (ip.search(handleips)!=-1){
alert("Your IP has been banned from this site. Redirecting...")
window.location.replace("http://www.google.com")
}

You will need to change the 23.23 and 11.11 of course. This works great for the most part, but if they have a changing ip address you will have to block a lot more.

I recently Googled an old techie friend and discovered she now has a company, and she made her email address at her company's website public. So I sent her an email, and got no reply. A few days later, I found that when I tried to go to her website my browser said it didn't exist ("cannot find" etc). Before assuming the worst; i.e. that she selectively blocked me-- I was wondering, IS this what my browser would say in such a situation? Or would it instead be something like "access denied"?
Her site has been in this condition for a couple of days now, so I don't know what's going on. I don't want to come across like an obsessive by going to the library and trying to contact her on a machine there. But I don't want to prematurely give up trying to reach her, either. She is an open-source guru, so she's probably quite capable of doing very sophisticated blocks. That being the case, is it technically possible for her block to look the way I described above?

I just read the posting from Van Casey on 12/1/06. I have a similar issue in that a site for the Club managers Association of America (www.cmaa.org)does not open when I click on it. I notified their techies and they said I needed to relax my security on my computer. I did that but to no avail. When I called a friend, he was able to access their site. So my question is WHAT TO DO? I cannot believe that a national organization would just seleectively block someone from accessing their site. Please help. Much appreciated.

can i block a whole bunch of IPs by using the *? for example

<Directory /what/ever>
Order Allow,Deny
Allow from all
Deny from 10.1.2.*
</Directory>

Hey, I am wondering if there is a way to block a specific user from accessing my blog due to troll related matters :( I am using a blogger site (www.blogname.blogspot.com). I am purchasing a .net domain in a few days for it though but i will still be on blogger. I dont wan to have to add readers because they come and go (in their thousands) so it would be a pain in the *** to have to allow them all just to stop one troll :(

i've been looking for a method to stop a chinese search engine that partially downloads my podcast files, thereby wasting my bandwidth. i've looked at DOZENS of sites that either tell me the format of .htaccess or offer tho generate one based on ip input, but even on this page the syntax is different on each!
Dave, you have an example of

Order Allow,Deny
Allow from all
Deny from 10.1.2.3

however i've seen people instruct me to use

order allow,deny
deny from 192.168.0.1
allow from all

and even

order allow,deny
deny from 203.156.187.225
allow from all

how/why is the same purpose syntacted so many different ways? can they all really work? because those second two dont. does this whole process assume you are on dedicated hosting? i've seen it said that this file can be placed in any content directory and it will work specifically on that directory. well i put it at the root of my shared hosting /html directory and zippo.

Thanks for the tip! I'll use these against competitors researching our website.

question i am looking for a program that when i am in a chat room i can block or remove someone from the room as we all know chat rooms have there share of jerks and some sites just dont care or they try but are not fully prepared or set up we have this one who is very very disrespectfull to everyone and i am trying to figure out how i can stop this abuse also help this site out as it is a great site can you help me if so please respond thank you

Hello!
in my case the user change ip or fake ip, how i to get his MAC to deny or block acess the site?

Hi Dave (big fan, even if newly so)-

Today, I tried to visit the www site of my former employer, in order to show a new employee how our services differed. I was shocked to find out that not only did the site not load, but also that a message, stating: [403 Forbidden - You don't have permission to access / on this server. Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.___Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rehl5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at http://websitenameundisclosed.com (please understand my desire for privacy here) Port80] was in place of the site content. After further investigation, "we" discovered that every IP address/Computer using my wireless network was subject to the same forbidden status, except for a brand new Nextbook tablet (that had never before today been connected to the network). ***As a side note: a Lenovo tablet that has previously accessed the same network received the same "forbidden" message as all other computers.

From here, we began to reach out to others outside of this wireless network, in order to confirm or deny that such was or was not true of other non-associated-with-my-wireless-network IP Addresses/Computers in different parts of the city, country, etc. - all were able to access the site with NO PROBLEMS. While I agree with much of your advice regarding the foreboding of certain access to a site (especially in the case of someone intent on causing harm and/or havoc for a particular company through its url), something about this feels "odd" at best and potentially illegal (given censorship laws in the US). Is it really legal (I read your disclosure regarding your "advice" as concerns the legality of such matters and therefore know that you are only giving your non-legal opinion) to deny access to a universally accessible site to one or more IP addressed (or networks) that is otherwise accessible to all? And further, don't I have ample right to be concerned that ANY computer that has accessed the www via my wireless network has been somehow "tagged" and forbidden? It seems so very invasive and disconcerting - at best.

I guess, at the end of the day, the above is my primary concern - that of some extremely concise and clear identification and manipulation of my particular wirelesss network & any IP addresses associated with it, regardless of whether they have even ever accessed the specific url in the past. I am glad that you are out there, appreciate your advice and generosity of energy and knowledge and so look forward to hearing from you. Thank you much.