How To See If An IP Belongs To A Spammer or Scraper

In the last few months I have made a few posts about fighting spammers and scrapers with custom Mod Security rules, and in those posts I always add the warning: Watch your logs closely so that you don’t inadvertently block real humans.  So this raises the question: What do you check your logs for?

How to check an IP address

These are some of the things that I look at when determining if an IP address belongs to a spammer, a scraper, or a real human being.  There is no 100% hard and fast rule or way to know for sure how legitimate every IP address is, but after you’ve done this for a while, you start to get pretty accurate.Catching a Spammer or Scraper's IP addressThe first thing to do is get the IP address that you’re dealing with.  If you’re using WordPress the UserOnline plugin will display the IP address of recent visitors.  If you use Drupal there are also a few Modules but I usually just look for errors in the logs that scrapers and spammers often generate.  Of course the best way is to look into your raw web-server logs.

Once I get a Continue reading

Use Mod Security To Block IP Address Based On A Word List

Mod Security is both powerful and flexible in the ways that you can use it to stop spammers, scrapers and even trolls.  Not only can you stop them from posting or accessing a web page but by integrating Mod Security with CSF, you can block their IP address indefinitely.  If you aren’t familiar with the basics of Mod Security or how to use it with Continue reading

Block Spammer Sign Ups with Drupal Access Rules

If you are fighting spammers constantly signing-up and creating fake and spammy accounts at your Drupal site, one way to fight them (amongst many) is to use Drupal Access Rules with wildcards to block them from creating accounts. These same rules will also prevent them from signing-in if they have already Continue reading