php - Prevent search abuse -

-

I'm unable to do something useful on this topic, so I appreciate the links to articles related to this topic, Or straight answers are here, either okay.

I am implementing a search system on a site in PHP / MySQL that has a lot of visitors, so I have some restrictions the length character of a visitor is allowed to enter the search field and two searches Required minimum time between Since I am new to these problems and why I do not really know the "real cause" why this is usually done, it is only my impression that the character applies to the minimum length to reduce the number of results in the database , And the spamming of the search system prevents the time between searches to prevent robots and slow down the site. Is it true?

And finally, the question of applying the minimum time between the two searches. Set a test cookie on the URL where redirect the user to

  • i where the search result should be
  • check if the test cookie is present or not
    • If not, the output is warned that it is not allowed to use the search system (possibly a robot) <
    • Check if a cookie Is present which indicates the time of last search
      • If it was low that 5 seconds ago,
      • Search
      • set the cookie at the last search for the current time
      • Output Search Results

        Is this the best way to do this?

        I understand that this means that the visitors who have been disabled will not be able to use the search system, but is this really a problem? I could not get the 2012 figures, but I got the information that 3.7% of people had disabled cookies in 2009. It seems that there is not much else and I think that these days may be less.

        "Only my impression is that to minimize the number of results to apply the character minimum length Is implemented for ". Your impression is absolutely correct, it reduces the number of possible outcomes, by compelling the user to think about it, what they want to find out.

        As far as your search is spam bots, you can apply it, the most used to be if you do not want to immediately show a captcha, you searched the user You can track the number of times (and through the session), and if the amount of X is within a specific time range, then present the captcha.

        I have implemented such a strategy with sites such as SA and Thichivite dynamite, where Captcha is not immediately given, but if any threshold is revealed then it will be provided.

    • Comments

    Post a Comment

    Popular posts from this blog

    excel vba - How to delete Solver(SOLVER.XLAM) code -

    -
    After opening several examples of macro / code written, I suddenly get stuck with a code that seems safe. Solver (SOLVER.XLAM) is doing this notation and I would like to remove it from my system. I do not think this is a relativant code. Can anyone tell me what should I do? I have already installed something to remove the password but Solver is still asking for password and I can not get rid of it! itemprop = "text"> Solver Excel is add-in If you want to delete it, then Excel Application & gt; Options & gt; Add-ins & gt; Search for 'Go to' button and gt; Uncheck the solver on the list like press something (I can not give you the exact path because I have the Polish version of Excel). Trying to open Solver's VBA code is not good because it There is allegedly copyright. Besides, I do not think Solver creates any disadvantages while working with Excel or VBA.
    Read more

    github - Teamcity & Git - PR merge builds - anyway to get HEAD commit hash? -

    -
    I have a team city build project with Gitbab VCS route, I have been triggered for both / head on PR and / Merge the referee. The annoying thing is that you can not do anything useful with the merged hash - it is not present in Gitobb. I want to exclude newsgate packages with head in gutub comet situations in the version number along with Hewash (Newsaging 7) for the music build, but against head hash. However, I can not see a way to get the head hashes while constructing that merge. I just want to head because it's useless - we only care about merge. (PR - Pull Request) This command works reliably while running One on / merge is git log --no-merge -1 ---- = '% h'
    Read more

    ios - Replace text in UITextView run slowly -

    -
    I have a UITextView and I change a word like the code at the end of UITextView.text: - (void) Replace TexttechWitWord: (NSString *) word {NSString * currentTextViewText = self.textView.text; CurrentTextViewText = [currentTextViewText stringByReplacingCharactersInRange: NSMakeRange ([self.textView.text length] - [word length], [word length]) withString: word; Self.textView.text = currentTextViewText; } Replacement work is fine, but it runs very slowly and very slowly when the textView now lengthens Is there any better way? I try the replacement range: with text for a week but still stuck. Not to know how to use it to replace it in your case. Please guide! Thanks in advance! This is an important job. As you are using an irreversible string and you are creating a very long string and before Assigned to NSString created from. NSString will be used instead of NSMutableString . - (UITableViewCell *) TableView: (UITableView *) Table View CellForOutPath: (NSIndex...
    Read more