[webmasterworld.com...]

Have you thought of trying cookies? You could set a cookie for every visitor, then check the value of the cookie and if the cookie didn't exist you could just serve up a 403 or some other type of useless content.

Then you only have to worry about allowing the legitimate bots through which can be done by IP or their UA.

That thread looks great, however I'm on a Windows Server.

[webmasterworld.com...]

Thanks bcolflesh - I will look in to the IIS rewrite apps, as installing them would also fix up my dynamic?storefront nicely.

As a quick short term fix, do you know a comprehenive robots.txt that knocks off all the major scraper programs?

[webmasterworld.com...]

Most bad bots ignore the robots.txt file.

a comprehenive robots.txt that knocks off all the major scraper programs?

Try: [webmasterworld.com...] ;)

Bear in mind that many scraper programs ignore robots.txt completely, so you will still need to look at IP banning etc. as well as the above. Also, don'T just copy the list - you need to make you own judgement about the bots listed.

Too slow ;)

Yeah I have seen the 'Input your own User Agent ID' section of programs such as Web Reaper.

Seeing all these scrapers in my logs with their stock IDs makes me think that these thiefs are especially stupid, since by not spoofinf right off the bat they are calling my attention into to takin protective measures..

Maybe a no-go from the start will be enough to dissuade a percentage.

May I ask the purpose of strings such as:

User-agent: Mozilla/4.0 (compatible; MSIE 4.0; Windows XP)
Disallow: /

Why would you want to ban IE browsers.. or is this only to prevent spidering by such agents? confused.

...or is this only to prevent spidering by such agents?

Yes

I currently have the following tags in my sites pages:

<meta content="ARCHIVE" name="ROBOTS">
<meta content="ALL,INDEX,FOLLOW" name="ROBOTS">

Which one will trump the other, the robots.txt or these tags? Should I remove the meta tag declarations altogether?

Which one will trump the other, the robots.txt or these tags? Should I remove the meta tag declarations altogether?

the point is, as mentioned above, that most scrapers won't obey either robots.txt or robots metatags, so in the context of this thread, it is irrelevant.

Requiring a cookie isnt going to stop anything.. You can simply sniff the HTTP stream with a network analyzer to see what your browser is sending back and forth when viewing the site, then create your scrapper to request and provide the same info... if your site requires a cookie, the network analyzer will tell the scrapper exactly what cookies to write..

<meta content="ARCHIVE" name="ROBOTS">
<meta content="ALL,INDEX,FOLLOW" name="ROBOTS">

In both cases these meta tags are specifying the default for all robots: in other words, if you want the bots to index, follow and archive, you don't need to specify it. Those tags are therefore not required at all.