Message Board

http:BL Use/Development

ASP.NET 2.0 Web Service

Author: J.Olson2 (28 Jun 07 4:30pm)

I am an IT Consultant and I host web pages on my servers for clients. I did some searches and wanted to find a way for IIS to query the http:BL Database like the Apache Module does. And as most of you already know there is no such way so I decided to create a Web Service to query so all my sites can query the service instead of having to add the code to all the pages. Now this only works on websites that use ASP.NET (ASPX Extension) and it is written in VB.NET. It requires the use of the Global.asax page, and the Page Load events of the desired pages your want to protect. In each site's Global.asax file is where you pass YOUR http:BL Key and the user's IP Address.
Once a person initiates a session with the website they are checked against the http:BL Database, if they are safe a session variable is set to safe if they are not safe you can direct them to go where ever you want. This way if they try to go to another page in the site it will check the session variable instead of querying the database again. If anyone is interested in this please let me know and I will post ALL the code for the Web Service and a Sample Site that calls the webservice.

Re: ASP.NET 2.0 Web Service

Author: J.Dailey (13 Oct 07 8:48pm)

Sure there's a way to query the http:BL database like the Apache Module does in ASP.NET. You'd either write an IIS ISAPI filter or an ASP.NET HttpModule to intercept the request, perform the query and act accordingly.

It's a bit advanced, but it's definitely something that can be done. For example, I use an ISAPI filter for adding mod_rewrite functionality to IIS.

Re: ASP.NET 2.0 Web Service

Author: A.Dickerson (18 Oct 07 9:04am)

Hey J.Olson2

I'd love to see the code please could you post it. This will save me a lot of time writing it from scratch.

We currently have content spammers trying to post junk to a number of our websites and would like to implement this to help alleviate the problem.

Thanks in advance

Re: ASP.NET 2.0 Web Service

Author: E.Watts (5 Nov 07 7:18am)

This is using asp and AspDNS from serverobjects. - I think its now discontinued though, there are other ways I’m sure. any other implementations would be nice to see

<%
accesskey="ABCDEFGH"

Dim WordArray
WordArray = Split(Request.ServerVariables("REMOTE_ADDR"), ".")
ipaddy=WordArray(3) & "." & WordArray(2) & "." & WordArray(1) & "." & WordArray(0)
set WordArray=Nothing
dnsquery=accesskey & "." & ipaddy & ".dnsbl.httpbl.org"

' if you have serverobjects aspdns on the server then this will do the dns lookup:

Set DNSLook = Server.CreateObject("AspDNS.Lookup")
strRes = DNSLook.DNSLookup (dnsquery)
Set DNSLook =Nothing
%>
the reponse from the httpbl is stored in strRes

Re: ASP.NET 2.0 Web Service

Author: A.Harkleroad (26 Oct 08 9:06am)

FYI We are about to begin development of a native ASP.net 2.0 (control) module that can be used in .net applications, we have a couple of projects to finish before we start this one. I too have been inundated with garbage random letter comment spam (even with Captcha enabled) so it is a very high priority for us.

It will be released as open source so anyone can use it and benefit from it.

Allen

Re: ASP.NET 2.0 Web Service

Author: N.Grenon (21 Apr 09 12:39pm)

Any update on this module?

Re: ASP.NET 2.0 Web Service

Author: M.Dubreuil (29 Sep 09 11:23am)

Have you released it, I am interrested ?

Re: ASP.NET 2.0 Web Service

Author: N.Meldrum (30 Nov 09 11:00am)

I have just written a simple wrapper using c# for doing the lookup for the httpbl data and created a sample httpmodule...

was for our work website so will have to ask boss before opensourcing it... will provide details here if I get the go ahead.

Re: ASP.NET 2.0 Web Service

Author: M.Harden (26 Nov 11 7:37pm)

Any update to an IIS or ASP.NET version of http:bl?