Proxy Blocking

[LawsHosting]

Straight to the point. Is this the most effective way to block 99% of proxies?:

RewriteCond %{HTTP:VIA} !^$ [OR]
RewriteCond %{HTTP:FORWARDED} !^$ [OR]
RewriteCond %{HTTP:USERAGENT_VIA} !^$ [OR]
RewriteCond %{HTTP:X_FORWARDED_FOR} !^$ [OR]
RewriteCond %{HTTPROXY_CONNECTION} !^$ [OR]
RewriteCond %{HTTP:XPROXY_CONNECTION} !^$ [OR]
RewriteCond %{HTTP:HTTP_PC_REMOTE_ADDR} !^$ [OR]
RewriteCond %{HTTP:HTTP_CLIENT_IP} !^$
RewriteCond %{HTTP_REFERER} !(.*)allowed-domain.tld(.*) #allow certain sites
RewriteRule ^(.*)$ - [F]

Thoughts?

 

[ranz]

I remember reading somewhere that not all proxies "identify" themselves as proxy. So this will work on only the "ethical" proxies

I'll try and dig this info up - as we were researching a security block for people who were trying to masquerade themselves on a forum we hosted, and they used proxies.

There is also a site which lists the "known" proxy servers.

 

[LawsHosting]

This research is really for my personal use/sites, as recently I've been having a fair amount of dodgy orders (paypal chargebacks etc), and when I check the IP's, most are proxied - I know some ppl use proxies as legit reasons but really if they're ordering domains/hosting, why use proxies.......