In the logs appear entries:

access denied 10/02/2013 - 18:47 admin/index.php Anonymous (not verified)
page not found 10/02/2013 - 18:47 bitrix/admin/index.php Anonymous (not verified)
page not found 10/02/2013 - 18:47 administrator/index.php Anonymous (not verified)
page not found 10/02/2013 - 18:47 wp-login.php Anonymous (not verified)

Hostname is, for example - 195.175.30.134 (turk telecom) - this is a real case

How to block the work of web scanners?
How the module can do this? Preferably with a message to ISP :)

Thanks!

Comments

VMII’s picture

you can block that IP but I'd venture that at some point it becomes futile trying to ward off these things. You can look into the badbehavior.module for possibilities.

Val_Ery’s picture

VM
Thanks for the answer!

futile trying to ward off these things

I want to ask - why?

As I understand the situation. Spammers and scammers are executed in the script. To do this, use any web server. I see a problem in disguise. (proxies, fake IP, etc.) and therefore put forward the idea of sending letters to the holder of the address range.

Or is there another "pitfalls"?

I believe in the security of Drupal. But .. The age of My site - one month, it is not a frontpage. In night (I'm from Russia) had three similar search. From some French range - with special characters. And began to receive letters (by text headings - Netherlands) by e-mail.

P.S. badbehavior.module will be tested. Thanks

VMII’s picture

why - exactly for the reasons you stated.

therefore put forward the idea of sending letters to the holder of the address range.

There is no module that will do the above.

Val_Ery’s picture

VM,
OK. I get it! after itself wrote it.
Thanks

Ivan Simonov’s picture

Check path2ban module.

Val_Ery’s picture

Ivan Simonov
The best solution! Thank you.
Especially liked the ability to set the threshold.