This only applies to your site, I don't know how I'm going to protect my email; I'm using gmail. This sucks big-time.

Anyway. This is how you do it.

If you have an existing .htaccess file in your root, add this to it:



This is, of course, assuming you have RewriteEngine On[SIZE=7].

If you don't have it on, use this:



Where gwa-forbidden.html is the page you want people to see when they have been blocked.

Thank you for this tutorial! It is really great!


thank you.

I don't really know anything about rewriting, but to me this looks like anyone using the Google Accelerator would just get a "blocked" message, is that what this does?

I guess it would be handy if you're afraid cookies with sensitive data are being spread to others through the GA thing (I heard that could happen), but are there any other benefits to blocking GA users?

How do you mean, the GA says it ignores https sites, which I am glad to say gmail is!

Very nice! I have incorporated it into my site right away!
I have just a couple of questions tho;

How do I test it to see that it actually works? Do I need to Download GA and visit my site with it? (I am hoping I don't need to go that route, any other routes?)

Assuming some people don't have RewriteEngine installed with their PHP web server, couldn't you just use PHP (or ASP) to check the visitors IP, and if it is within the sub-net '72.14.192.*' then simply redirect the visitor to the forbidden page via HTTP Headers? (Would be more work, but it is another option).

I am only asking this because I don't really want to DL the GA and test the proposed solutions right now (somewhat busy), and to raise the same question for others to consider. Especially if others are using another web server which doesn't support the Rewrite Engine.

Yes, you are absolutely right - it will block the GA.

Well, the only benefit is to me, and registered users of my site blogs. It would be a sort of protection against account hijacking which I've heard has happened several times. I think that already justifies this.



Well, I'm much relieved to know that



Have not the slightest clue - ok, I have a bit of a clue, try pretending that your computer's IP is 72.14.192.something and testing it out using the method in this thread http://www.trap17.com/forums/test-php-page...net-t20432.html (the one that outlines how to install apache and run your own test server from your computer).

How you are going to pretend your IP is in that range, I have no clue.

More knowledgeable people, care to share some of that brain juice?

I just read that you can't download GWA anymore. Google's site says


But the question is of course if that is the real reason or if they've shut it down in order to fix the security issues.