Forum Moderators: open
I've read about .htaccess, but from what I understand about it, the server has to be a UNIX server. I don't know if 1and1 is like that or not. Can anyone help me or perhaps point me in the right direction? I'm not having much luck with the search. I appreciate it! Its for ocdetails.com if that is something that helps. I don't know if a whois on the site would tell you anything. I really do appreciate the help in advance. I'm still learning. :)
That script doesn't seem to work. I've tried placing it in the head of the page and banning my own IP. It still lets me in.
<html>
<head>
<title>Test SSI redirection based on IP address</title>
<!--#if expr="$REMOTE_ADDR = 'nnn.nnn.nnn.nnn'" -->
<META HTTP-EQUIV="Refresh" CONTENT="1; URL=index.htm">
<!--#endif -->
<script type="text/javascript">
// IP Redirect
var ip = '<!--#echo var="REMOTE_ADDR"-->'
document.writeln(ip)
if (ip == 'nnn.nnn.nnn.nnn')
location.replace('index.htm')
</script>
</head>
<body>If the IP matches, a meta redirect tag is written in.<br>
So this still works with JS-disabled.There is also a JS-based redirection as a 2nd line of defence,<br>
just in case the meta fails to work.Really, this is best done with ASP, PHP
</body>
</html>
the server has to be a UNIX server. I don't know if (the hosting company) is like that or not
Email the hosting company's technical support with this problem and they'll tell you. ;)
Depending on their setup, you may even be able to do this in the control panel. Before testing flaky Javascript solutions to this problem, you should talk to your host who will help you through the process for your particular server.
.htaccess is by far the best way in these cases.
Whether your domain is on one of their apache servers is, however, a separate question. As someone else noted, email the tech folks at your host with the question, referencing your specific domain. They'll know without having to guess.
Jim
There are a lot of things you need to be aware of if you're trying to do this with Javascript.
First off, IPs come in two flavors, dynmaic and static. There are not enough IPs to go around and so unless you pay a little extra for a static IP, you will have a dynamic IP. Dynamic IPs change depending on the ISP. Ours has changed as often as once a day to once a month. So banning an IP may or may not be effective.
You should check your apache logs to ensure that the abuser is coming from the same IP address. If you ban the user and they appear again with a new IP, remove the old IP (unless they end up coming from that IP as well, but doubtful).
Apach uses files called .htacess. No file name, just an extension. Your FTP can filter hidden files by adding -a to the command que.
If you're on an OS that can't create a file without a name then download it from your server. Edit the following...
*************
<Files 403.shtml>
order allow,deny
allow from all
</Files>
deny from 167.#*$!.x.x
*************
403.shtml should be changed to your 403 file respectively. Make sure you do not leave an ip listed too long. The same ip address may migrate from a bum in his underwear to a 700K a month laywer looking to spend big money on your site.... well high hopes at least! :D
