Hi Jim and everyone!
First Happy New Year to all, and best wishes for 2007!
My problem is I have one site (out of a few!) that is getting hit rather hard by Referrer Spammers. I have no idea why, the referrer logs and all are password protected. I guess once they start, they just never stop...
So I have a rewrite rule to send them to oblivion... but part of it does not work, or work as I would expect.
One pattern I have noticed is two or three random letters either before or after the word casino (and other words, to be honest). Here is what I had to get these guys:
RewriteRule ^/.* /cgi/#*$!xx.cgi [NC,PT,L]
And yet, some of these are still getting through. So, what did I do wrong here?
On to the broader problem of spammers in log files, here is some of what I have found.
I have tried banning IP addys, but they are from all over- must be using proxies. It is much easier to try and match words than to gather ip addys.
It seems to rotate, a few weeks of casino, poker, keno, and then a few weeks of cialis, viagra and percocet.
Seems weird, but they are hitting me on one of my lowest hit sites- not on the bigger sites. I have all my sites on consecutive IP's- seems weird they have only targeted one.
They do NOT give up.
Does anyone have any effective way of dealing with these spammers?