I'd made a post a couple of days ago which was a disaster in terms of a kilometer long .htaccess flicked from somewhere, and no clue on what it does. Armed only with persistence and the blessed net, I've made a new discovery. I can stop a lot of garbage with some careful research.

posting my learnings here (my .htaccess) to show where I've reached.

I now have ZERO garbage coming in. No referrer spam, no comment spam, no email form spam, no nothing (though it may be a bit early to celebrate)

ErrorDocument 404 /terror.htm
AddType application/x-httpd-php .htm .html .inc
RewriteEngine On
rewritecond %{the_request} ^[A-Z]{3,9}\ /index\.htm
RewriteRule ^index\.htm$ http://www.wide-aware.com/ [R=301,L]
SecFilterEngine On
SecFilterScanPOST on
SecFilterDefaultAction "deny,log,status:403"
SecFilterSelective POST_PAYLOAD "insurance¦insurence¦debt¦loan¦broker¦seller¦credit¦consolidation¦mortgage¦property"
SecFilterSelective POST_PAYLOAD "kylos¦roxtet¦spy-software¦viagra¦cialis¦phentermine¦tramadol¦canadianlabels¦8gold"
SecFilterSelective POST_PAYLOAD "texas-hold¦hold-em¦holdem¦condo¦sportsparent¦spoodles¦houseofseven¦newtruths¦popwow"
SecFilterSelective POST_PAYLOAD "pussy¦blogincome¦lillystar¦aizzo¦webdevsquare¦laser-eye¦escal8¦xopy¦vixen1¦linkerdome¦youradulthosting¦fick¦inkjet-toner"
SecFilterSelective POST_PAYLOAD "#*$!¦hilton¦adminshop¦devaddict¦iaea¦pills¦teen¦#*$!¦perfume-cologne¦italiancharmsbracelets¦shoesdiscount¦psnarones¦hasfun¦casino¦gambling¦poker¦porn¦sex¦paris¦gabriola¦nude"
# ban user-agents
SetEnvIfNoCase User-Agent "^(EmailCollector¦EmailSiphon¦EmailWolf¦WebEMailExtrac).*" banned
SetEnvIfNoCase User-Agent "^(BlackWidow¦ChinaClaw¦Custo¦DISCo¦Download\ Demon¦eCatch¦EirGrabber¦EmailSiphon).*" banned
SetEnvIfNoCase User-Agent "^(EmailWolf¦Express\ WebPictures¦ExtractorPro¦EyeNetIE¦FlashGet¦GetRight¦GetWeb\!).*" banned
SetEnvIfNoCase User-Agent "^(Go\!Zilla¦Go-Ahead-Got-It¦GrabNet¦Grafula¦HMView¦HTTrack¦Image\ Stripper¦Image\ Sucker).*" banned
SetEnvIfNoCase User-Agent "^(Indy\ Library¦InterGET¦Internet\ Ninja¦JetCar¦JOC\ Web\ Spider¦larbin).*" banned
SetEnvIfNoCase User-Agent "^(LeechFTP¦Mass\ Downloader¦MIDown\ tool¦Mister\ PiX¦Navroad¦NearSite¦NetAnts).*" banned
SetEnvIfNoCase User-Agent "^(NetSpider¦Net\ Vampire¦NetZip¦Octopus¦Offline\ Explorer¦Offline\ Navigator¦PageGrabber¦Papa\ Foto¦pavuk¦pcBrowser¦RealDownload).*" banned
SetEnvIfNoCase User-Agent "^(ReGet¦SiteSnagger¦SmartDownload¦SuperBot¦SuperHTTP¦Surfbot¦tAkeOut¦Teleport\ Pro).*" banned
SetEnvIfNoCase User-Agent "^(VoidEYE¦Web\ Image\ Collector¦Web\ Sucker¦WebAuto¦WebCopier¦WebFetch¦WebGo\ IS).*" banned
SetEnvIfNoCase User-Agent "^(WebLeacher¦WebReaper¦WebSauger¦Website\ eXtractor¦Website\ Quester¦WebStripper¦WebWhacker).*" banned
SetEnvIfNoCase User-Agent "^(WebZip¦Wget¦Widow¦WWWOFFLE¦Xaldon\ WebSpider¦Zeus¦curl\/7\.12\.3¦Java\/1\.).*" banned
SetEnvIfNoCase User-Agent "^(snap\.com¦Ken¦irider¦n_o_k_i_a¦airf¦Crazy\ Browser).*" banned
SetEnvIfNoCase User-Agent ".*(libwww¦rv\:1\.0rc¦rv\:0\.9).*" banned
SetEnvIfNoCase User-Agent ".*(athome021¦iopus¦YANDEX¦omni-explorer¦cupribot¦mtbot¦trackbot¦Firebird¦Phoenix¦LinkWalker).*" banned
#SetEnvIfNoCase User-Agent ".*(H010818¦MSIE\ 5\.5;\Windows\ NT\5\.0;¦Snoopy¦MSRBOT).*" banned
SetEnvIfNoCase User-Agent "^\)" banned
SetEnvIfNoCase User-Agent "^Microsoft\ URL\ Control.*" banned
SetEnvIfNoCase User-Agent ".*MSIE\ 4\.0.*" banned
##SetEnvIfNoCase User-Agent ".*MSIE\ 5\.0.*" banned
SetEnvIfNoCase User-Agent "^Opera\/4\..*" banned
SetEnvIfNoCase User-Agent ".*Opera\/4.*" banned
SetEnvIfNoCase User-Agent "^Opera\/5\..*" banned
SetEnvIfNoCase User-Agent ".*Opera\/5\..*" banned
SetEnvIfNoCase User-Agent "^Opera\/6\..*" banned
SetEnvIfNoCase User-Agent "^Opera\/7\.0.*" banned
SetEnvIf User-Agent ^$ banned
deny from env=banned
SetEnvIfNoCase REMOTE_ADDR ".*(160.218.168.144¦71.213.167.249¦122.35.79.166¦124.28.25.108¦194.214.141.14¦200.88.223.98¦202.157.175.222¦203.141.174.11).*" BadIP
SetEnvIfNoCase REMOTE_ADDR ".*( 210.0.177.88¦210.212.207.2¦211.48.62.48¦216.147.215.194¦216.255.177.218¦217.20.133.46¦219.23.20.207¦220.186.136.130¦220.88.123.39¦221.138.181.216¦221.184.191.177¦221.192.34.250¦222.119.75.218¦222.66.48.253).*" BadIP
SetEnvIfNoCase REMOTE_ADDR ".*(24.46.74.112¦59.163.57.195¦59.9.206.132¦60.217.227.145¦61.232.61.43¦61.240.111.196¦64.246.18.25¦66.232.107.234¦72.237.72.77¦75.126.132.170¦84.19.182.59¦85.255.119.75¦87.236.27.118¦87.236.27.222).*" BadIP
Deny from env=BadIP
SetEnvIfNoCase User-Agent "^Missigua Locator" bad_bot
SetEnvIfNoCase User-Agent "^PEAR HTTP_Request class" bad_bot
SetEnvIfNoCase User-Agent "^Java/1.4.1" bad_bot
SetEnvIfNoCase User-Agent "^Java/1.5.0" bad_bot
SetEnvIfNoCase User-Agent "^libwww-perl" bad_bot
SetEnvIfNoCase User-Agent "^Wells Search II" bad_bot
SetEnvIfNoCase User-Agent "^psycheclone" bad_bot
SetEnvIfNoCase User-Agent "^WEP Search 00" bad_bot
SetEnvIfNoCase User-Agent "ia_archiver" bad_bot
deny from env=bad_bot
SetEnvIfNoCase Referer ".*(insurance¦insurence¦discount¦debt¦loan¦broker¦seller¦credit¦money¦finance¦best¦consolidation¦mortgage¦property¦cash¦funding).*" Bad
SetEnvIfNoCase Referer ".*(kylos¦roxtet¦spy-software¦ionic-bonds¦iconsurf¦viagra¦cialis¦phentermine¦tramadol¦online¦canadianlabels¦8gold).*" Bad
SetEnvIfNoCase Referer ".*(texas-hold¦hold-em¦holdem¦condo¦sportsparent¦spoodles¦hotel¦houseofseven¦newtruths¦popwow).*" Bad
SetEnvIfNoCase Referer ".*(pussy¦blogincome¦lillystar¦aizzo¦webdevsquare¦laser-eye¦escal8¦xopy¦vixen1¦linkerdome¦youradulthosting¦fick¦inkjet-toner).*" Bad
Deny from env=Bad 

It can still be shortened I guess, but this has stopped everything that shouldn't come in, while regular comments can still be made by even unregistered users.

Yeah, I'm going a bit overboard with the happiness, and its time I stopped :D