Hi - first of all, kudos for AVH FDAS! I've been running it now for over a month, as an "alternative" to Bad Behavior, and it's holding up very nicely - especially when used together with WP HashCash and Akismet.
Question: a few minutes ago I nearly had heart a stoppage, as I visited the front page of my site as a non-logged in visitor (i.e. with a browser without any active session or cookie) and I saw the dreaded "access blocked message" (uh oh) but when I looked at the reported "offender" IP address it was a completely different one! So, I typed the address of the most recent article and lo and behold, that too yielded a blocked message... With another reported IP address. To check, I opened up a different browser that was logged in as admin, and voilà: access was perfectly normal. And of course I checked "my" IP address (via
www.whatismyip.com but there are several of those out there) and "of course" my own IP came up. So, I was getting blocked messages for another IP...
That got me thinking. And a few seconds later, I realized it had to be caching: probably, a spammy visitor had triggered the blocked message, and somehow also triggered the caching of a page. Since botnets forge user agents, this isn't too surprising, but it created somewhat of a puzzling message that is presented to all visitors! (The solution here was very simple: clear the caches!)
So here's my question: is there a way that you can think of to communicate with WP caching mechanism (I'm using WP Super Cache but I suppose the standard WP caching method applies) and deny / prohibit caching of the "access blocked" message / page?
In any event: thanks again for the plugin, it's awesome!
