magnify

FAQ

Q: I have been blocked by Bad Behavior! What do I do?

A: In extremely rare circumstances, Bad Behavior may block actual human visitors. Bad Behavior was designed to target robots, not people. If this happens, the profile presented by your browser matched that seen from actual malicious robots. In some cases, this is caused by over-aggressive personal firewall/browser privacy software. In other cases, this is caused by improperly configured Web proxy server software.

First, make a note of the technical support key and e-mail address shown on the error page. Then click the link to “fix it yourself” for suggestions on how you may be able to resolve the problem.

If you continue to have trouble, contact the e-mail address on the error page and be sure to provide the technical support key. This will allow the site administrator to tell you what you need to do to resolve the problem.

If you are the site administrator receiving a trouble report from a user, contact me and provide the technical support key and a copy of the logs which Bad Behavior stores in the database showing the IP address which was blocked. I will provide further assistance until the trouble is resolved. If using phpMyAdmin to export log entries, please export them in SQL format.

Q: Will Bad Behavior cause my site to load more slowly?

A: Maybe by a few milliseconds, but you won’t notice it. Bad Behavior has been split into several PHP files so that only the particular checks needed to analyze a given HTTP request are loaded. This speeds up execution time over the usual approach of putting everything in a single PHP file. Bad Behavior has been tested on high-traffic (100,000+ pageviews per day) sites where any slowdown would be noticed immediately, and passed these tests with flying colors. Bad Behavior is capable of handling hundreds of page views per second on a well-configured Web server. Under certain circumstances, you may find that Bad Behavior actually causes your site to load faster. See the next question.

Q: Will Bad Behavior reduce my site’s bandwidth usage?

A: Absolutely! This is one of the reasons for Bad Behavior’s existence. By preventing spambots and other malicious bots from ever accessing any of your pages, your bandwidth usage and server load will drop significantly. How much depends on how many malicious bots visit your site regularly. On higher traffic sites which pay a premium for bandwidth or CPU time, this may well decrease your web hosting bill. It can also help prevent a denial of service where your Web host shuts off your account because spambots were using up all the available resources.

Q: Does Bad Behavior block search engines such as Google?

A: No. Bad Behavior permits search engines which respect robots.txt and do not make excessive numbers of requests within a short time period. Google, Yahoo, Bing and most other search engine crawlers do not trigger Bad Behavior. If you notice that a search engine crawler has been banned by Bad Behavior, you can be certain that it was wasting your resources, not obeying robots.txt, or both.

Q: A spammer got past Bad Behavior! What now?

A: Bad Behavior targets robots which leave spam on blogs, forums, and other PHP-based software. If a spambot was able to post successfully, please check the following first.

Is Bad Behavior properly installed and enabled? I have received many reports of spammers getting past Bad Behavior, but upon investigation it turned out that Bad Behavior had been disabled or not installed properly.

If the above did not solve your problem, then please turn on verbose logging, wait for the spammer to post once more, and then send me a trouble report. Include the Bad Behavior verbose log entries matching the spammer’s IP address, which you can obtain from phpMyAdmin. (Please do not send all the entries in the log! Search the bad_behavior table for the spambot’s IP address and export only those entries. Also, please do not send me the Apache logs; they do not include enough detail.) I can use this detailed information to analyze the spambot and block further attempts in the next release of Bad Behavior. If using phpMyAdmin to export log entries, please export them in SQL format.

Q: I don’t use WordPress; can I still use Bad Behavior?

A: Yes! As part of Bad Behavior’s modular design, we have provided a generic interface where Bad Behavior can be easily ported to virtually any PHP-based blog, forum, wiki or CMS. In fact, some ports are already available. If your PHP-based software is not listed, you may need a little PHP knowledge to get it fully integrated into your software, however. Look for a detailed porting guide to be published here soon!

10 Responses

  1. I wonder if Bad Behavior is actually blocking Google on my site. I applied for Ad Sense and Google said they couldn’t find any content on my site. I use the rich snippet checker, and each time the tool says Google is getting empty pages. My Bad Behavior logs are full of entries where “User-Agent claimed to be Googlebot, claim appears to be false.”

    These all stem from an IP address of 108.162.226.195

  2. HI- How can I allow Bad Behavior to accept “allow remote form posting”?
    I am posting remotely to my site and it is not letting me. Otherwise, I appreciate this plugin very much! Thank you

  3. Daithi Coombes

    Hi,

    I have multiple wordpress installations on the same server. One of these has a plugin that acts as a command control center to the others using phpCurl form submissions to login.

    Is there anyway I can add an exception in Bad Behaviour to allow phpCurl form submissions from the command control center. Maybe add an exception rule for ip xx.xx.xx.xx ?

    regards,
    David

    • Daithi,

      Yes, you can whitelist your server’s own IP address (but this is safe ONLY IF you are the only person using the server).

      The best solution is to contact the author of the other plugin and ask them to fix the plugin so that it sends a proper User-Agent string.

  4. SP1

    Is there a way to purge the log?

    • SP1,

      The log purges itself of entries older than 7 days. This housekeeping is performed only when spammers visit your site and only on their requests (to slow them down further). If you have a very low (spam) traffic site, your log may extend beyond 7 days for a while until your traffic picks up.

  5. SP12

    Oh, I did have one more question. I use wordpress multisite. Can I network active this plugin or should I do it site by site?