Doofinder logo

Support Documentation

Search icon
Visit Doofinder Learn icon

Visit Doofinder Learn

Cover the core skills to become a certified expert in Doofinder

 Inspiration Library icon

Inspiration Library

Ignite your creativity with our collection of real-world use cases

Security

How can I prevent bot attacks?

First, let's get this sorted!

How does bots attack? Bots attack your website, not Doofinder directly. Specifically they attack through your internal or native search. When a bot searches your site, it sends those searches to Doofinder, causing an increase in consumption. This happens because of how your plugin is configured to replace your site's internal search with Doofinder.

To fix this in the long run, it is crucial to make your site more secure. To do this, you can use tools like Cloudflare and IP blacklists to prevent bots from spamming your searches, among any other security measures you can implement to prevent bots from reaching your site.

We strongly recommend updating the Doofinder plugin and Layer to the latest version, in case of deprecated plugin version and/or use of V7 layer.

Plugins: If you're using any of these plugins, explore the links below for further assistance.

  • Prestashop: Be sure to 'unhook' the productSearchProvider hook module. Click the link below for step-by-step instructions.
    'Hooks Management'.

My website requires access credentials

You can include the access credentials in the URL of the feed so that it can be indexed, for example:

http: // usr: psw @ server / Tests

You can also include our IPs so that those credentials are not required. Our IPs:

Europe: 54.171.4.216

USA: 52.2.218.41

Asia: 18.143.220.25

What's doofinder user agent?

Doofinder/4.0 (+http://www.doofinder.com)

Which are the Doofinder IPs?

The Doofinder IPs are:

Europe: 54.171.4.216

USA: 52.2.218.41

Asia: 18.143.220.25

Allowlisting Doofinder's IP

Doofinder IP addresses must be allowlisted to ensure our products function correctly. Please add our IPs to your server and firewall systems, such as Cloudflare.

Our integrations communicates server-to-server, and security systems verify the sender’s IP address. If the IP is not allowlisted in firewalls or services such as Cloudflare, requests may be blocked even if authentication credentials are valid.

Doofinder and the Data Usage

In an effort to respect user privacy and comply with current regulations, Doofinder has chosen to use LocalStorage instead of cookies for storing relevant data on the user’s browser. To know more, click here.

Did you find this page helpful?