INFRA-207 civicrm.org should allow sketchy IPs to read content [httpbl]
The Drupal module httpbl
protects civicrm.org
from submissions if the IP address has some history of spamminess. However, there are reasonable cases where a visitor's IP has a history of spamminess (e.g. using Tor, using a large/multiuser proxy, or receiving a repurposed IP from a cloud-provider).
The current policy blocks all requests from such IPs -- even safe requests for marketing materials or downloads. Rather, we want to block requests which might create comments, nodes, users, or contacts. Simple rule of thumb -- allow HEAD/GET (and maybe OPTION) but block POST/PUT/DELETE.
This will probably require a patch to httpbl.module
.
Edited by bgm