Need to find out an efficient way to stop trackback spam
Posted: Mon Aug 20, 2007 7:56 pm
I use Site5.com to host my websites. My personal website was blocked several times by Site5.com (a webhosting provider) because of resource usage issues in last few months.
Finally, I found that trackback spam costed lots of server resources (including database connection resources). So I added an Apache rewrite rule to stop trackback requests:
2 days ago, I got an technical email from Site5 telling me that my websites were blocked again because of DDoS attack which was overloading the server:
I emailed back Site5.com and told them that actually it's not DDoS attack but trackback spam, and I had tried my best to protect the server by forbidding trackback requests.
Site5.com replied me later saying "Although you may be redirecting the requests through mod_rewrite, the connections are still coming in to the server and using mod_rewrite uses additional server resources. If your account is constantly being posted to, it will still use a considerable amount of resources."
Finally, I promised them that "I will try to figure out a better way (if could) to stop using too much server resources", and they turned on my websites.
So, my question is, how can I stop trackback spam in a more efficient way (to save more server resources)? I prefer not to change URLs. Thanks.
Finally, I found that trackback spam costed lots of server resources (including database connection resources). So I added an Apache rewrite rule to stop trackback requests:
Code: Select all
# http://httpd.apache.org/docs/1.3/mod/mod_rewrite.html#RewriteRule
RewriteCond %{REMOTE_ADDR} !^MY_SERVER_IP$
RewriteCond %{SCRIPT_FILENAME} comment\.php
RewriteCond %{QUERY_STRING} type=trackback
RewriteRule (.*) - [F] Code: Select all
80.11.24.11 - - [18/Aug/2007:05:34:01 -0400] "POST /blog/comment.php?type=trackback&entry_id=3354 HTTP/1.0" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:01 -0400] "POST /blog/comment.php?type=trackback&entry_id=3781 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:01 -0400] "POST /blog/comment.php?type=trackback&entry_id=3161 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3761 HTTP/1.0" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=2809 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3058 HTTP/1.0" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3089 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3227 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3065 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3699 HTTP/1.0" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3380 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:02 -0400] "POST /blog/comment.php?type=trackback&entry_id=3672 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3032 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=2809 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3089 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3227 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3165 HTTP/1.0" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=2945 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3584 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3714 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3418 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3106 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3240 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:03 -0400] "POST /blog/comment.php?type=trackback&entry_id=3593 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=2905 HTTP/1.0" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=2945 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3741 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3418 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3453 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3431 HTTP/1.1" 403 - "-" "-"
125.103.6.230 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3053 HTTP/1.0" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3561 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3593 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=2809 HTTP/1.0" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3584 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:04 -0400] "POST /blog/comment.php?type=trackback&entry_id=3562 HTTP/1.0" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3320 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3561 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3275 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3661 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3470 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:05 -0400] "POST /blog/comment.php?type=trackback&entry_id=3660 HTTP/1.1" 403 - "-" "-"
62.215.3.45 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3551 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3320 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3275 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3425 HTTP/1.0" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3611 HTTP/1.0" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3714 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3661 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3470 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:06 -0400] "POST /blog/comment.php?type=trackback&entry_id=3660 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3551 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3106 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3453 HTTP/1.1" 403 - "-" "-"
221.232.159.112 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3431 HTTP/1.1" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3756 HTTP/1.0" 403 - "-" "-"
80.11.24.11 - - [18/Aug/2007:05:34:07 -0400] "POST /blog/comment.php?type=trackback&entry_id=3032 HTTP/1.0" 403 - "-" "-"Site5.com replied me later saying "Although you may be redirecting the requests through mod_rewrite, the connections are still coming in to the server and using mod_rewrite uses additional server resources. If your account is constantly being posted to, it will still use a considerable amount of resources."
Finally, I promised them that "I will try to figure out a better way (if could) to stop using too much server resources", and they turned on my websites.
So, my question is, how can I stop trackback spam in a more efficient way (to save more server resources)? I prefer not to change URLs. Thanks.
