I dont think you can do much on the geocities site, on your own you could try to protect the bandwith of serving this guy the images though.

Well, my bandwidth really isn't the issue.

I'm not sure I want to hose this guy with something like blackflag for sitegrabbers (heh) but it would help if I could slow a sitegrabber down long enough so that the Geocities site isn't knocked offline.

I don't know if that's possible. For one thing, I guess I don't understand so well how sitegrabbers work. I know wget would probably keep going if it got 301's and come back to them later -- annoying to the user, but wouldn't solve the problem. Hmm.

(The page on the Geocities site has links to about 100 images, and about 50 of them are on my server. If you were running recursive wget, it would probably try every single link on that page before it tried any link beyond.)

You can try slowing it down on your server with mod_throttle or a page that tells them they're bad with some sleep's inside (if you can use PHP/Perl). I think that phpmyadmin had something that prints an X-Sleep: dummy header every 30 seconds or so to prevent the other side from disconnecting.

I doubt wget will loop back from one page to another and back to the same.

So you think wget follows up on a 301 immediately? Or is it incapable of following them at all?

Thanks for some food for thought.

I like the sleep idea. You can make the script sleep for awhile which will hang his browser up then make it die. Before you kill the script, print out a SQL error message. He'll think something is wrong with your server and most likely leave shortly after. Telling him he's a bad person will probably not reform him but instead make him want to do more harm. An imitated server problem will allow you to get back at him and he won't realize what's happening.

Nice idea BlueSky, I'd never have though of printing and SQL error message... although there are some kind of people who would love to see such a message but usually they don't do such things, or am I wrong?

You're right. In most cases, you don't want any SQL errors printed. I was just suggesting something to make him think there's a server problem so he goes away for awhile. You could display like a 500 error or the lockout message Geocities gives instead. The sleep though is an ace idea.

Do you think the abusive user is a competitor intentional draining the bandwidth of the Geocities account?

I don't like the sleep idea. Many site grabbers pull multiple pages a second and won't slow down to wait for a page to load before making a new request. And if I remember correctly sleeper scripts will cause delays on all cgi procceses running on the server which would effect the visitors on your site as well.

I would block the abusive member from grabbing the images from your server. Tell your friend to place a hidden link on each one of his pages that points to a trap script on your server and to contact Geocities about blocking the abusive visitor from his site.

Do you think the abusive user is a competitor intentional draining the bandwidth of the Geocities account?

Nope, just an idiot, the apprentice using a wizard's tool ineptly.

If I thought it was malicious--whoa, we'd be in another ballgame altogether. (But that would be fine. I'd just out the malingerer to everyone within the little hobby widgets community and they'd be stung for life. Long memories there.)