What security flaws?
In other words, I'm grasping at straws here doing anything I can think of that might fix my issues.
What if the unwanted visitor is from a different country and keeps changing their IP? Provided your website isn’t intended for visitors from that country, you can easily use the GeoIP tool to block that country. Just add the below code to the top of your .htaccess file.
# Add countries you wish to deny here
SetEnvIf GEOIP_COUNTRY_CODE CO DenyCountry
SetEnvIf GEOIP_COUNTRY_CODE EG DenyCountry
SetEnvIf GEOIP_COUNTRY_CODE HI DenyCountry
Allow from all
Deny from env=DenyCountry
Minimally it should help, AFAIK that uses local data which poses a problem because it needs to be up to date. The other issue is it still needs to process the IP which still consumes resources. That's for every IP, not just the ones it's blocking. You need to edit what they provided. That's blocking Egypt, Columbia and I'm not sure what last one is. This will block China:
Code: Select all
SetEnvIf GEOIP_COUNTRY_CODE CN DenyCountry