Can you reject visitors based on their host w/php?

Anon

I've used PHP to authenticate before, and it got me thinking... if you can send a "Authorization required" message, can you reject people based on their host computer address?? For instance, if you wanted to reduce the amount of government surveliance traffic to your site, could you reject .gov, .mil and .us addresses? Any thoughts would be appreciated.

Anon

It would be easy enough to do this based on ip address. Then you would need a script to convert the ip address to a domain name. I've seen one of these but i don't remember where. After you have the domain name just do this this

explode (".",$domain);

then check to see if the last string the array = .mil .gov or .us
if it does issuse a header location for
somewere.in.the.government.gov

Anon

Geoff wrote:

For instance, if you wanted to reduce the amount of government surveliance traffic to your site, could you reject .gov, .mil and .us addresses? Any thoughts would be appreciated.

Something like:

if(ereg("[gov|mil|us]$",gethostbyaddr($REMOTE_ADDR)) {
do the auth stuff;
}

Keep in mind:

1) If anyone is truly trying to be sneaky, their IP is unlikely to resolve at all.

2) This will make php try to resolve every address, which will slow down your script (You can use $REMOTE_HOST if your apache is already resolving for logs)

Have fun,

Ken
PHP Jobs - http://www.kefta.com/job.html