From owner-freebsd-questions@FreeBSD.ORG Tue May 8 20:09:21 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id D132216A402 for ; Tue, 8 May 2007 20:09:21 +0000 (UTC) (envelope-from ray@stilltech.net) Received: from pd4mo1so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.freebsd.org (Postfix) with ESMTP id B088913C447 for ; Tue, 8 May 2007 20:09:21 +0000 (UTC) (envelope-from ray@stilltech.net) Received: from pd3mr1so.prod.shaw.ca (pd3mr1so-qfe3.prod.shaw.ca [10.0.141.177]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JHQ001LUNYNAP30@l-daemon> for freebsd-questions@freebsd.org; Tue, 08 May 2007 14:08:47 -0600 (MDT) Received: from pn2ml2so.prod.shaw.ca ([10.0.121.146]) by pd3mr1so.prod.shaw.ca (Sun Java System Messaging Server 6.2-7.05 (built Sep 5 2006)) with ESMTP id <0JHQ006U9NYKNP50@pd3mr1so.prod.shaw.ca> for freebsd-questions@freebsd.org; Tue, 08 May 2007 14:08:46 -0600 (MDT) Received: from [192.168.0.102] ([70.65.134.12]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JHQ00CWZNYH7W00@l-daemon> for freebsd-questions@freebsd.org; Tue, 08 May 2007 14:08:45 -0600 (MDT) Date: Tue, 08 May 2007 14:08:37 -0600 From: Ray In-reply-to: <20070508195759.GC33045@in-addr.com> To: freebsd-questions@freebsd.org Message-id: <200705081408.38367.ray@stilltech.net> MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7bit Content-disposition: inline References: <2BEB30C2-C9C5-43AB-9DCA-5C9A1B0AC2C0@axis.nl> <405942B8-7714-4F57-914F-24F12DFB206A@axis.nl> <20070508195759.GC33045@in-addr.com> User-Agent: KMail/1.9.5 Subject: Re: How to make Apache (2.2.4) less greedy, or Sendmail less polite? [semi-solved] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ray@stilltech.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 May 2007 20:09:21 -0000 On Tuesday 08 May 2007 1:57 pm, Gary Palmer wrote: > On Tue, May 08, 2007 at 02:51:45PM +0200, Olaf Greve wrote: > > The questions: > > -Can anyone recommend me proper anti spam authorities to whom I can > > report the IP addresses that caused the issues on my machine? > > 99.9999999999% of the hits will be from zombie PCs which have one or > more virus infections. Reporting them might get the ISP to get their > customer to clean up their PC, but I doubt it. You can try. > > > -At present, in Apache I have added: > > > > Order deny,allow > > Deny from all > > > > Can anyone tell me of a good way to only ever allow calls to this > > script coming from the proper previous script, or should this be > > handled from PHP itself? > > Perhaps this question isn't very clear, but what I'm looking for is a > > way to block any and all direct calls to this script, that originate > > from anywhere but from the photography site itself. > > > > Can anyone help me perhaps with those two thingies? > > You cannot assume the referrer header is truthful. The only way to try > to do this is to have a hidden form field on the photography site with > a randomly generate number in it. The number should also be stored in the > session. If the number in the session does not match the number in the > hidden form field, refuse the post. > > If you want to be really nasty, randomise the hidden field name also. and if you're ultra paranoid, encrypt the number in the session. Ray > > But basically you need to start researching PHP security - none > of these issues are new and are addressed in a variety of books and > online documents. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"