If your site is on name-based shared web hosting, then it is by definition inaccessible via HTTP/1.0.
However, some legitimate user-agents, such as Googlebot, aqdvertise as HTTP/1.0 for compatibility reasons. They are actually using 'extended' HTTP/1.0, and can therefore access name-based virtual hosts.

So, a better way to reject these scrapers is to validate the Windows version. Since "Windows NT" by itself and not followed by a version number is invalid, that's an obvious way to catch them without blocking search engine robots.

Jim

Thanks for your reply. Yes, I should have said, the site is name based and not the default server site.

I seem to get a fair number of legitimate visitors with slightly unlikely user-agents, and I wouldn't normally want to refuse them just for that. What surprised me was to find a few **apparently** legitimate visitors (in addition to my scraping friend) presenting a combination of fake MSIE and HTTP/1.0.

Peter.

Your legitimate users may be connecting through HTTP/1.0 proxies -- old equipment at their work, for example.

I suggest you use the invalid user-agent screening as described above -- It has worked well for me on dozens of servers for 9+ years... I have never seen an example of a legitimate client with an invalid Windows version.

Jim

Yes, the use of proxies would explain the HTTP/1.0. For the invalid Windows user-agents, I'll follow your suggestion - as I have so many times in the past! Thanks again.

Peter.