Re: Hacker changing URL string
On Feb 4, 5:08 pm, "angplange" <[email protected]> wrote:
> this is frustrating-- our server is getting pounded (and so running JRUN up to
> 100%) with some hacker changing the URL to different things. I'm running CFMX
> 6.1 on Windows 2003. Here's a sample of query strings that have been changed:
> ll&amp;View=all -->I've added a catch for these where it redirects them
> the main page, but this doesn't seem to stop them -->notice the
> ;amp;amp;amp;amp; in that last one.... None are the same IPs and hail from
> Russia, Portugal, etc. so I can't block the offending IP, and they're using a
> normal browser so I can't block by user-agent Any ideas?
You can add some web server (IIS/Apache...) re-write rules to validate
the URL even BEFORE it is passed to CF...