I'm so embarrassed to be asking for help on this again. I implemented mod-rewrite rules in my htaccess file, and checked several "user-agents" via the wannabrowser site. Everything seemed to be working fine (getting 403 errors).

Tonight I just checked again at wannabrowser and every user-agent I inserted was allowed full access. I'm completely confused.

Here's my file:

#htaccess file for mysite.com

ErrorDocument 404 /404.html
ErrorDocument 500 /500.html
ErrorDocument 403 /403.html

IndexIgnore *

<Files .htaccess>
order allow,deny
deny from all
</Files>

RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} ^(-?¦[A-Z]{10})$ [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Bandit [NC,OR]
---more bad robots---
RewriteCond %{HTTP_USER_AGENT} ^Zeus [NC]
RewriteCond %{HTTP_REFERER} ^http://www.iaea.org
RewriteRule!^403.html$ - [F,L]

Can anyone identify what I've done wrong? Between the first time I checked user-agents at wannabrowser (and got the 403 errors which led me to believe all was okay).. and now... the only thing I've changed is I've added a few new user agents. Also, just this evening I uploaded the trap.pl script for bad spiders - but I'm quite sure that has nothing to do with this because I tested with and without the script in my cgi-bin at wannabrowser. At the moment - it seems anyone can do anything they want at my site! [very dismayed!]

I know the mod-rewrite issues have been reviewed over and over and over again and you're probably all tired of this... nonetheless, can someone help identify what I've done wrong?

Many thanks.