Sam Gleske on 17 Jul 2013 08:07:54 -0700
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
Re: [PLUG] iptables: dropping bogus application-level content
- From: Sam Gleske <email@example.com>
- To: "Philadelphia Linux User's Group Discussion List" <firstname.lastname@example.org>
- Subject: Re: [PLUG] iptables: dropping bogus application-level content
- Date: Wed, 17 Jul 2013 11:07:27 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=Nt0641tIa9yP7gxiwKCjg1nvh8VbJlI4EaUBzXJqivY=; b=dZ2b5mrIhmLuHtVJRF427vtaQjsvHW8CsJ82pEpnNUWwUQrA6tpXNtQyz8TbnB0rND Vyyux5wI1BL6Et24nrC/SiTJwv/d0BDYDpA77x8aREvvHTL0P28/elrNwo3MCkLZpu/o LRzmxIw+GtheZN5PNiTLIpONQ7FxTPyQ6l7wJdfV/5jOmw7r7RU64zsAKGm9DrByotHd P6Uqokz7TTduP/+ZswOF+fAESVliTHpUjBfRIWy+dkHcPx844Yb+eK82MpQqrmg6Mw1U OcPgwewbxGa8hbolm9jVku5UVskE0X+eu9gR7x+F5nZW+0GQmYnEx/1jBdwuiuBYZuTl /wXA==
- Reply-to: Philadelphia Linux User's Group Discussion List <email@example.com>
- Sender: firstname.lastname@example.org
If you're trying to limit the scope of traffic accessing your site then white listing is the way to go. .htaccess should only be used in cases where you have multiple virtual hosts on a single system and you must open up the port to a wider range of traffic for other virtual hosts (but not necessarily the one you wish to limit). And even then you shouldn't use .htaccess but modify the virtual host conf file for the virtual host located in /etc to account for this.
robots.txt isn't respected by any browser. It is designed to define rules for indexing robots of search engines. i.e. you don't want your site to show up in google at all or portions of it so this is when you create robots.txt.
Other than securely browsing your website you shouldn't be blocking any useragents to your content. If your application doesn't function in anything but one browser (oh god I hope not) then you should modify your application to throw up a warning to your user notifying them that they can't browse for a specific reason or that they need to change browsers. If you block their traffic for that reason they'll just assume your website is down and not come back.
How about you tell us what you're actually trying to accomplish? What's your end goal?
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug