Douglas Muth on 17 Jul 2013 07:38:19 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] iptables: dropping bogus application-level content

On Wed, Jul 17, 2013 at 10:16 AM, Ron Mansolino <> wrote:
I'm trying to figure out a way to avoid having Apache process/log bogus requests.
(my "dev" server collects a lot of bullshit from around the globe that I have no need to service,
and I'm not worried about a performance hit). For example this doesn't work:

-A INPUT -p tcp -m tcp --dport 80 -m string --string "ZmEu" --algo bm --to 999 -j DROP

What is a more proper way to drop bogus agents, requests, etc?
I don't want to do this with mod_rewrite.

I don't know off the top of my head, but it being a dev server implies that very few people are accessing it.  Why not white list IPs on port 80?  That would be a pretty effective way to cut back on your traffic.

-- Doug

Philadelphia Linux Users Group         --
Announcements -
General Discussion  --