DEPRECATION WARNING
This documentation is not using the current rendering mechanism and is probably outdated. The extension maintainer should switch to the new system. Details on how to use the rendering mechanism can be found here.
TIMTAB Bad Behavior¶
| Author: | Karsten Dambekalns |
|---|---|
| Created: | 2007-03-27T17:06:55 |
| Changed by: | Ingo Renner |
| Changed: | 2007-04-08T14:39:53 |
| Email: | typo3@ingo-renner.com |
| Info 2: | |
| Info 3: | |
| Info 4: |
TIMTAB Bad Behavior¶
Extension Key: timtab_badbehavior
Copyright 2007, Karsten Dambekalns <karsten@typo3.org>, Ingo Renner <typo3@ingo-renner.com>
This document is published under the Open Content Licenseavailable from http://www.opencontent.org/opl.shtml
The content of this document is related to TYPO3- a GNU/GPL CMS/Framework available from www.typo3.com
Table of Contents¶
TIMTAB Bad Behavior 1
Introduction 1
What does it do? 1
Screenshots 1
Installation 2
Configuration 2
Known problems 2
Bugs 2
Introduction¶
What does it do?¶
The extension intercepts any request to TYPO3 and checks whether the request is valid or seems to be coming from a spambot. If the request is considered invalid it is simply dropped. It immediately works after installing and loading the extension, and it doesn't need to be configured at all.
As a result the extension is completely transparent to the extensions used (thus the extension key is misleading – it was simply invented to be used with the TIMTAB extension) and the way the website is set up.
The extension is based on the Bad Behavior scripts published at http://www.bad-behavior.ioerror.us/ and integrates them into TYPO3.
Screenshots¶
Since the extension works completely in the background, there is no output. The only place where one can see it is doing it's work is the root page:
Log entries generated by timtab_badbehavior in list view.
This is also the easiest way to check if the extension works, and what gets blocked. Simply show the Key/Cause column in the list view, and sort by that column. A cause of 00000000 (logged in verbose mode only) means the request was not blocked, all other codes result in the request being blocked. Clicking the edit icon shows the details of the request: 
timtab_badbehavior log entry details.
You can see the remote IP address, details about the request, the HTTP headers sent and a detailed explanation why the request was blocked. Installation ------------
Simply import the extension through the extension manager and install it. There are two settings that can be set in the extension manager, see below for a description.
Configuration¶
There are two settings that can be changed through the extension manager:
timtab_badbehavior settings in the EM.Verbose HTTP request logging Logs every request
Strict checking Enables more strict checking and blocks more spam. The downside is, that the risk of false positives is raised. This may lead to blocking of legitimate requests. You should only use this, if regular checking still allows to much spambot requests to reach your site.
Known problems¶
None.
Bugs¶
Please use the bug tracker at http://bugs.typo3.org/ to submit any bugs you find in this extension (or near it) to the project tx_timtab .
TIMTAB Bad Behavior - 2