New to Boost and wandering if this is a bug or a setting that I've missed or misinterpreted. Coincidence or not - just deployed it into production a day ago, and in less than 24 hours we've had a brute force attack which shows in logs 1000's hits of something like this (all have to do with sql or phpmyadmin) "GET //phpMyAdmin-2.9.1/scripts/setup.php HTTP/1.0" 404 Please note the double '/' On top of that - Boost is now trying to recrawl them again with every run which results in all those 404's showing up again in dblog. Any suggestions?