Blocking Whole Server Apache From China
Nov 20, 2008My server is getting a lot of spam robots registering as fake users into my forums (altho most emails are invalid
View 2 Replies
ADVERTISEMENT
Apache :: Configuring IP Blocking?
Apr 7, 2014I've been trying to figure out some IP blocking with no success. The environment is UNIX and Apache version is 2.2.22-14.
The site is on a hosted solution and doesn't have a firewall due to the virtualization software limitations. I've tried setting something similar to the following:
Code:
<Directory /home/username/mysite.com>
#IP Blocks
Deny from 1.2.3.1/24
Deny from 1.2.4.5
etc..
but with no success. I've also tried it in the <Location> tag with no success.
The way I'm testing this is editing the conf and then bouncing the apache server.
Apache :: Blocking Bad Bots With HTAccess - What Is The Right Syntax
Apr 23, 2015I am having a problem with blocking bots using .htaccess. I think I tried all possible syntax variants, yet all the bots that I am blocking get HTTP 200 response instead of 403 (I can verify it using access log).
I am using Apache 2.4 running on Ubuntu 14.04.2 with Plesk 12.0.18.
My AllowOverride is set to allow the use of .htaccess files, so .htaccess file gets loaded: when I make an error in .htaccess sysntax I can see the error in the error log and the webpages don't load. Besides, I have some "Deny from [IP address]" directives in the .htaccess and I see that these IPs get HTTP 403 response when access my site.
I spent hours trying different variants of .htaccess syntax (see below) and neither seems to work...
variant 0:
SetEnvIfNoCase User-Agent LivelapBot bad_bot
SetEnvIfNoCase User-Agent TurnitinBot bad_bot
Order allow,deny
Allow from all
Deny from env=bad_bot
[Code] ....
Apache :: Blocking Bots And Spam Referrers?
Apr 10, 2015If I know the IP range that I want to block the best option is to block it with IPTABLES. This works well when you want to block entire countries. But what happens when you want to block specific IPs rather than ranges? Is iptables still more effective than "deny from [IP]" in .htaccess? I read that you don't want iptables to grow too big as it slows performance, but I guess it is still more effective than having big .htaccess..?
When it comes to blocking spam bots or referrers, robots.txt is just a suggestion for bots, when I looked at my traffic logs I noticed that most bots don't even look at robots.txt file. As far as I understand the only option here is to use .htaccess
1. I am currently using this in my .htaccess:
SetEnvIfNoCase User-Agent *ahrefsbot* bad_bot=yes
SetEnvIfNoCase Referer fbdownloader.com spammer=yes
...
SetEnvIfNoCase Referer social-buttons.com spammer=yes
Order allow,deny
Allow from all
Deny from env=spammer
Deny from env=bad_bot
2. Apparently, there is another approach as per below:
# Deny domain access to spammers
RewriteEngine on
RewriteBase /
RewriteCond %{HTTP_USER_AGENT} queryseeker [OR]
RewriteCond %{HTTP_REFERER} ^(www.)?.*(-|.)?adult(-|.).*$ [OR]
...
RewriteCond %{HTTP_REFERER} ^(www.)?.*(-|.)?sex(-|.).*$
RewriteRule .* - [F,L]
Which approach is better #1 or #2? Any better alternative?
Finally, somebody suggested that you need to have both (as per example below). Is it true?
RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} ^rogerbot [OR]
RewriteCond %{HTTP_USER_AGENT} ^exabot [OR]
RewriteCond %{HTTP_USER_AGENT} ^MJ12bot [OR]
[Code] ....
Apache :: Blocking / Slow On Local Windows-system
Feb 15, 2013I have a website on a linux-server working fine with PHP/Apache. The page loads a lot of css/js/image-stuff (total 84 requests, 220k), it takes about 4 secs to load via internet.
Now I'm testing the same page locally on a Win7-64-system (Apache 2.2, PHP 5.4). The system is not very slow (8 GB RAM, SSD, i7-CPU), but loading the same page as above takes about 50 secs.
The Q is: What might be the problem?
- I turned off firewall and anti-virus.
- I used mod_status: 150 threads, max. 11 seems to be used during the loading of the page.
- I tried php5apache2_2.dll with TS-PHP 5.4 and mod_fcgid.so with NTS-PHP 5.4, but the loading-time kept almost the same.
Looking at the "network-tab" in FF or Chrome, I found that a lot of subqueries get a timing like this:
Blocking: 11.96 s
Sending: 0
Waiting: 1 ms
Receiving: 6ms
So the loss of time seem to be in the "blocking"-section. I first thought of something like "limited number of TCP-Connections", but as said above, on the same system the page is remotly loaded fast enough almost without these "blocking"-parts.
Apache :: Security Challenge - Rejecting Specific Requests Without Blocking IP
Jan 21, 2014I have been trying to solve a big problem for the last 2 weeks with one of our servers.
The client using our system (web based w/ apache and php) is a contact center firm. They have about 120 operators, all connect to our websever with the same IP.
We have been suffering DoS attacks from some of these operators. This are simple, browser attacks , namely 5 or 10 operators will just hold F5 key and bombard the server with requests when they shouldnt.
We did manage to produce a php protection which will recognize the multiple requests and blacklist the user, but its "too late" because the request have already been sent and processed by the webserver.
We use the user ID in the system to control who should be blacklisted, so this is all dependent on our own authentication.
Ideally, we need something EXACTLY like mod_evasive, but for rejecting single requests instead of blocking the IP. Exemplifying : if a user calls the same url, 5 times, in a 3 second spawn, we will reject every next request for 30 seconds, but only the requests by that user.
If the webserver can make any use of it, the user id is stored in a cookie.
Server Email Blocking <?>
Mar 9, 2008I recently signed up a new client to my dedicated server - The minute they switched over to my server, it seems that all hell broke loose. (I'm going to refer to them as "Company A")
Company A called me up and said that one of their employees was getting a huge amount of SPAM and that after a day or two, they were having issues with their E-mail.
I looked at my logs and it showed something unusual-
LOGIN FAILED, user=myclientuser@companya.com, ip=[::ffff:XX.XXX.170.47]: 110 Time(s)
When I explained this to Company A, they ran some virus checks on their computers and 3 out of 5 computers had viruses on them.
They claim to have fixed the viruses but now, they cannot send e-mails to specific clients.
I checked their I.P. against blacklists and they are using Comcast cable internet at their location and I cleared their only blacklisting (spamhaus.org).
I'm still getting calls that Company A cannot e-mail a few of their clients and just to make sure it's not JUST them, I tried to send a test e-mail to the same clients as Company A.
The e-mails from me were rejected due to time-out.
HERE IS MY QUESTION:
Is this an issue on MY end that must be taken care of *OR* is it due to the fact that they had viruses on their computers and now they are blocked because the virus tried to attack everybody in THEIR e-mail address book?
None of my other clients are complaining of e-mail issues or that e-mails are getting kicked back. Just Company A.
Blocking IP Addresses At Server Level
May 4, 2008I've been carrying some weird hours lately, so I'm able to see activity on my sites that I normally don't see.
Certain IPs are trying to diddle their things into my server and need the boot. It's not consistent (ie not happening every 5, 10 mins)... it's periodically throughout the months. I'll see an IP I blocked 2 months ago just randomly show up at 4:30am and try accessing the same files it was probing during it's last visit. Assuming this is just some sort of bot, can I block it permanently?
I know APF has a collection system that purges an IP list to keep it from bloating, and I had PSM do some hardening so I'm not entirely sure about the workings of APF firewall. So far my IP blocks are blank (which is a good sign!), but I'd like to add some nuisances to it, to keep their crap from appearing in my error logs anymore as "Denied by Server Configuration"
My question is: Can I block people at server level permanently? I do not want their IP being taken out with the purge list that comes by every so often.
Stop Your Server From Blocking Googlebot
May 21, 2008If your server is blocking googlebot from finding your robots.txt file, how do you configure your firewall to unblock it?
I've searched through Google and I've seen may people just say your firewall is blocking it, but none mention how to really stop it from doing that. Like does Google have an IP it uses, and if so, what is the IP you should whitelist for your server?
As I keep getting that message: Network unreachable: robots.txt unreachable
and I'm sure it's due to a firewall issue, just have no idea how to fix that.
Blocking Traffic To And From Server Destinations
Feb 26, 2007I was wondering if it is possible to block traffic to and from a server with iptables.
Like for example a user transferring files with his ftp client to another server x.x.x.x (FXP)....
been trying with these rules here:
iptables -IINPUT -s x.x.x.x -j DROP
iptables -I OUTPUT -s x.x.x.x -j DROP
iptables -I FORWARD -s x.x.x.x -j DROP
But still the user can transfer to the server destination...
Server Blocking Form Elements With Www., .com
Jul 10, 2007I have a wierd problem on my server. I'm updating an order with my php shopping cart script and notice some of the orders hang on updating. After research I discovered the orders that wont update are orders that have domain names in the textarea field. More specifically. www.yourdomain.com will just hang if I try to update them.
After further research I discovered the if I put an backslash it'll update no problem. IE: www.yourdomain.com
This only happens with domain names inside a textarea. I'm not sure if it's a php config setting, apache setting, my firewall, mod_evasive, mod_security. I've looked at all of them and can't seem to find what is blocking the script from updating just because of www.domainname.com in a textarea.
Blocking Scripts Like Rapidleech & Torrent On Server?
May 27, 2009Is there any way to block or monitor and find scripts such as rapidleech and other torrent upload scripts on a cPanel server?
View 2 Replies View RelatedHow Can I Remove List Of Blocking IPs On Iptable On My Server
Feb 1, 2008how can i remove list of blocking IPs on iptable on my server its over 100 IPs how can i remove it?
View 2 Replies View RelatedHow Can I Deny All Ip From China
Apr 10, 2009how can i deny all ip from china?
they want to ligin to my ssh but lfd ban their ip
China Based VPS
Jul 7, 2008As you might know if you read my other thread I'm often looking for VPS servers (at the moment Linux only), based around the world.
This weeks challenge for me is a china/hong kong based VPS, nothing too fancy, its only going to be used for small websites and as a proxy service for when we run ranking reports for our SEO clients.
Requirements
- English support if possible, although we do have some Chinese speakers in house.
- 128mb ram, 2gb disk space, 20gb transfer/mo
- CentOS 5 preferred, but any system with a working Yum or similar will do.
Budget
up to €30 a month, but could go higher if i had to.
Payment
-for various reasons we cannot use paypal at the moment, so even if its just paypal credit card processing they won't let us use it. This is something we are looking to solve but its not my dept so i'm stuck with it.
- We can pay by Visa Credit or Visa Debit cards, and if we really had to, bank transfer, but I'm told transfers to china are sometimes very tricky to get right.
I have had a look through the VPS offers forum but most of the china-related posts are from 2006 or so and so aren't relevant anymore.
Hosting China ...
Sep 9, 2008Does anyone have experiences with:
[url]
or with:
www.net.cn (Net.cn)
I'm searching for a good hosting service in mainland China...
Blocking Direct Access To A Server Side Script
Aug 14, 2007This topic has probably been covered many times. I am trying to block spam bots from direclty accessing scripts on my site. Measures I have taken thus far, also block my site pages that want are designed to use the scripts. This includes Hot Link Protection and a couple of directives in the .htaccess file.
how I can block direct access to my scripts?
How To Null Route China?
Mar 16, 2008I use geoip so that if ($country="CN") { die(); }
This works on my site. But for some reason I still get the occasional IP's through.
I looked at my Lighttpd server-status and I have 600 connections from 3 different IPs that come from China.
I typically use ./route add -host 222.221.81.3 reject as the way to block them, but it changes from time to time. The Chinese are using 90mbps of bandwidth and I want it to stop as they must be directly hotlinking my content.
How to null route large blocks from China? Please note I want to keep Hong Kong, Macau and Taiwan.
Hosting And Domain Name China
Sep 1, 2008For my future Chinese Bonsai website I am considering several options for hosting and domain names. Until now I have a US and an Amsterdam hosting (English version in the US and the Dutch, French and German in Amsterdam).
As the Chinese version will be non-political I think I prefer to host it in mainland China. Does anyone here knows a good webhosting that is not too cheap? I need 100Mb and some GB's (I guess under 5GB should be ok) of bandwidth.
Furthermore, I am not sure what domain name to choose. I have 4 options:
1. the name in pinyin (normal text) .com
2. the name in pinyin .cn
3. the name in Chinese characters .com
3. the name in Chinese characters .cn
If I choose to take a .com, would it matter to have this domain name registered in the US? This is cheaper than in China I think; however, it is important to me that the website is seen by Baidu as 100% Chinese (does it matter where a domain name is registered?)
Web Host Blocked In China
Apr 11, 2008I used Hostgator but my website was blocked in China.
So do anyone know of any US web host that is NOT blocked in China ? For example, Dreamhost or any web host for that matter?
My Website Is Slow In China
Mar 14, 2008My customers are complaining that my web site is extremely slow in China. But I have never received any complain from outside China (I have talked to non-China users).
What could be the reason behind this? Or how can I find the root cause?
China Surfers Can't See My Website
Sep 11, 2008I have registered yayigarment.com with godaddy (2.5 weeks ago), and hosted with 50webs with a one liner to redirect to yayigarment.net
My customers from China get an invalid link when trying to surf to yayigarment.com
.CN - Domain Names For China, Is Now Just $12.99
May 28, 2007.CN - Domain names for China (irist.com), is now just $12.99
With China's recent accession to the World Trade Organization (WTO) the economy there is taking great strides towards global accessibility. .cn offers registrants the protection of a well-established brand name in what is certain to become one of the most lucrative marketplaces in the world, and begin making inroads into the Chinese marketplace.
irist . com/china-domain.php
Hosting From China Perspective
Nov 9, 2008I currently live in China and as most businesses in China do, they host outside of China because of the severe requirements of hosting in China are time consuming to accomplish.
I am currently hosting with godaddy.com and have been happy with them until now. This is the 2nd time my site has been blocked because my site is on a server with a porn site. They switched to a different server once now they refuse to do it again. I also suggested they offer porn-free servers (I would be willing to pay more) but they refused.
Now, I noticed that even godaddy.com is blocked from China. I really think they are missing out on Many business opportunities in China by not offering porn-free servers.
Plesk 12.x / Linux :: Gmail / Yahoo Blocking Messages From Server
Apr 13, 2015Every time my server tries to send mail to Gmails/yahoos - they reject it with the following message:
Code:
Apr 13 11:35:49 m1370 plesk sendmail[5009]: handlers_stderr: PASS
Apr 13 11:35:49 m1370 plesk sendmail[5009]: PASS during call 'limit-out' handler
Apr 13 11:35:49 m1370 plesk sendmail[5009]: handlers_stderr: SKIP
Apr 13 11:35:49 m1370 plesk sendmail[5009]: SKIP during call 'check-quota' handl er
Apr 13 11:35:49 m1370 postfix/pickup[1759]: C90FA61668: uid=48 from=<apache>
[Code] ....
I tried Qmail, same issue
Code:
Hi. This is the qmail-send program at m1370.contabo.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. It didn't work out.
<emailhere@gmail.com>:
2a00:1450:4013:0c00:0000:0000:0000:001b failed after I sent the message.
[Code] .....
Centos 6.6 + Plesk 12 Web Pro Edition
My server certainly did not spam Gmail servers, (my old server works fine sending email t gmail) I fear this has something to do with my "Postfix" configuration.
Best 25 Meg Dedicated Hosting In East China
Sep 9, 2008Are there any Chin hosting gurus out there than can tell the best 25 meg dedicated hosting in East China ?
View 1 Replies View RelatedColocation In China Or Hong Kong - Which Is Better
Nov 21, 2007I'm trying to get a full rack co-location services in China or Hong Kong. Co-location in Singapore is starting to get expensive...
Per additional 1 Mbps cost about USD 150 onwards. It's not feasible for us anymore.
Anyone has any suggestions which countries is better? And from which IDC? So far Asia Netcom and China Telcom seems to be the better choice. No 2 tier suppliers, e.g. Pacific Internet, they get their co-location from the above too.
1U Colo, 1 Mbps, 1 Amp Power In Major China Cities
Jun 11, 20071U colo, 1 mbps, 1 amp power in major China cities
Must have premium, mulit-homed bandwidth, with great connectivity to the US
Must have local cable TV cross-connect via coax, s-video, etc.
Prefer remote reboot
Some or all of the following:
Shanghai, Beijing, Chongqing, Tianjin, Wuhan, Harbin, Shengyang , Guangzhou
OK to have colo and cctv cross-connect in one or more cities - you dont have to do them all.
We do NOT need colo without the cctv availability.
Will need a /30 address space.
1 year minimum contract
"offshore" Vps - India, Russia, China
Jun 25, 2008please recomend me any vps providers in india, rusia, china and other offshore states.
i want >256MB RAM, >2GB HDD, pay via paypal, >300GB bandwidth, one or two IPs