-
mod_rewrite can recognize attempted exploits and invoke
specialized CGI scripts (or otherwise consign the spamer to perdition)
-
SetEnvIf can trigger on any RFC2616 header, including
such things as "User-Agent"
-
Custom Apache modules can do even more because they can
manage Apache's response to a request very early
-
Creation of HTTP "teergruben" ("tarpits" which respond
at a snail's pace and waste bots' time) is possible via this technique
-
Full power of Apache APIs available
-
But.... Much more knowledge is required
-
Modules are currently best written in C or mod_perl
-
See O'Reilly book: "Writing Apache Modules in Perl and
C"
|