issues with mirc script accessing our php script

dtra · 07-01-2005, 01:53 AM

hi all

i posted something about this before but couldn't get the response i was after
we are having a problem with a mirc script that is automatically logging into our site and submitting forms (these are one button form submits)

our forms are submitted using post
the mirc script is simulating a user in that it is actually sending post variables when logging in and also when submitting forms

one thing that i have thought of, but not sure whether it will have any effect is to use a session variable
if we use a session variable on the first page, and then check for it on the second page
will the mirc script also load that session variable when it loads our page
and will the session variable still exist when the mirc script "submits" the form

so the question is, can mirc scripts simulate session variables as well?

from what i can see (and i really don't undesrtand mirc script at all), it is using sockets to access our page, is there a way that we can prevent this particular script from accessing our site through sockets while allowing our own regular scripts to have access

it uses two ports 80, and 443

thanks
dave

mattLSO · 07-02-2005, 04:06 PM

A crude method, check its user-agent and block that in your script, the second, better method
is to use turing codes when a user posts or more conveniently logs in, so that a script, without
a human viewing the image cant post to your site. Lots of sites are doing this now
such as hotmail have added it to their login.

Here is a good place to start

http://us4.php.net/manual/en/function.imagejpeg.php

There are some good snippets to get you on your way, if you use php that is.

Regards

mattLSO · 07-02-2005, 04:30 PM