I also made it so that people that are blocked are logged under a different log, so once in a while I'll check this log and when there are repeated attempts I can do something more serious.
I was able to do that before, but it was less obvious. We hardly get people trying very hard at attacking us, but there is plenty of referrer spammers and people searching for cheap IIS and Pearl exploits. Basically these are attempts that we don't really have to worry about, and most of them are probably automated, but at least I can block them and save bandwidth.
I need to start an internet security company or something.
Archived topic from Iceteks, old topic ID:2654, old post ID:21816