On Mon, 2004-08-16 at 07:26, Brian Dunning wrote: > Hi all, > > I have a simple PHP store, and it appears that someone is using it to > test credit card numbers. I'm getting a very high number of small > orders every day, but a lot more declines. My merchant provider > suggests blocking that person's IP address, but that's not practical > since it's dynamic. I'll get a lot of orders from one IP address for a > few hours, but then the address changes. > > I wonder if anyone has any experience with this, and if so, can you > suggest a way to deal with it? > > - Brian
Well, if they are trying multiple times you could add some logic in your code that redirects them to a "We have been monitoring you" type of message. ;-) Are you tracking the IP addresses in the database? Might consider building something that checks each new IP and see if the same IP has tried this a few times..and if so display a warning page. Might be enough to scare the person off. The other options is to collect a list of known IPs and contact the proper authorities with logs of this issue. -Robby -- /*************************************** * Robby Russell | Owner.Developer.Geek * PLANET ARGON | www.planetargon.com * Portland, OR | [EMAIL PROTECTED] * 503.351.4730 | blog.planetargon.com * PHP/PostgreSQL Hosting & Development ****************************************/
signature.asc
Description: This is a digitally signed message part
