Frank_Rizzo - 1:05 pm on Feb 21, 2013 (gmt 0)
The apostrophe is always at the end of the id no.
I filter out the full sql injection attempts but there are many requests for just the id with an apostrophe at the end.
The log file looks like this:
GET /faq/index.php?id=200%27 HTTP/1.1" 200
So a 200 is being returned and of course stored in the sitemap (whereas the full attempts are 403d and not sitemaped)
I got four weeks to decide / go ahead with this big change or not. Ranking well for the site 'theme' but not as good for the sportspersons profiles.