I noticed today that a specific user decided to create an account and spam the search on one of our websites. Also with this we've witnessed a performance hit today as well, but I don't know if it is related. Is there a recommended way that I can prevent this from happening? The spam attack in question is below. Thank you!
Everything between a [ and ] are just variables that I entered.
Thanks for your advice, nopaccelerate. I found out this was coming from a single IP address and blocked it from IIS. Everything immediately returned to normal after that. Because it's easy for anyone to change their IP address I guess I'm just wondering if this is the recommended way to do it or if there is a better way?