|Douglas Muth on 17 Jul 2013 07:38:19 -0700|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|Re: [PLUG] iptables: dropping bogus application-level content|
What is a more proper way to drop bogus agents, requests, etc?I'm trying to figure out a way to avoid having Apache process/log bogus requests.(my "dev" server collects a lot of bullshit from around the globe that I have no need to service,
and I'm not worried about a performance hit). For example this doesn't work:
-A INPUT -p tcp -m tcp --dport 80 -m string --string "ZmEu" --algo bm --to 999 -j DROP
I don't want to do this with mod_rewrite.
___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug