Re: [PLUG] My domain's .htaccess file is giving me fits

Charlie Li on 7 Dec 2017 08:37:22 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] My domain's .htaccess file is giving me fits

From: Charlie Li <ml+PLUG@vishwin.info>
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] My domain's .htaccess file is giving me fits
Date: Thu, 7 Dec 2017 11:37:05 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed; d=vishwin.info; h=subject :to:references:from:message-id:date:mime-version:in-reply-to :content-type; s=fuccboi12; bh=HfQhtjKL9Y2h4O2xitfMHiUEos22Nhecq hpFRBQZKRw=; b=HToi2JP/zY/0EpYKPo2UzzkM5faDUvyKxNYYkbd5j04uSqwvs ryvddD62Yyl95J1vri7mf1MTm26PLTyH60XEiCOXu0ZCz3qOeYKRBNjpk5VjB8gA Y2gl6dcYegM3fw8QlEgOjgQrzoQxH2mtvFZnq6QZSdPaCn1C2uM3LJBeQIwdpObz MJstA9sNH/LahsN0BrRf20l2f6Bpx1bnXMb6vz/pzE9/gtRXgbK85p6PzrIqRUrs N1hf/15+vx+7OLv+KRKxy7xSaHNDcpoXWDDyflfIOATBUeY4Fc7YoM0K560M7bkC +LtZpNLGiH8tQ/VPld2WlH6ePDevpEwfflFsQ==
Organization: PLUG
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.5.0

On 07/12/2017 11:23, george@georgesbasement.com wrote:
> Apache tells me that HostnameLookup is set to |on| by default in
> Apache 2.4, which doesn't make sense, because it slows down the
> server response. It also doesn't make sense because it hides the
> IP addresses of the Bad Guys. Maybe I can fix it with the following
> .htaccess directive for Apache 2.4:
> 
HostnameLookups is Off by default.

http://httpd.apache.org/docs/2.4/mod/core.html#hostnamelookups
> <Limit HEAD>
> Require all denied
> Require ip [redactedpersonal_IP_address]
> </Limit>
> 
You could put a whole bunch of Require not ip 198.51.100.0/24
directives, replacing the IP/range with the actual ones to block.

IPdeny has lists of IP blocks by country that you can use in your
configuration directives: http://www.ipdeny.com/ipblocks/
> or should I use this syntax, used by earlier versions of Apache ?
> 
Don't use that older syntax; it's deprecated unless you load the module
that sounds like auth_compat, and even that's practically deprecated.

-- 
Charlie "it must be slow season in Tuscon" Li

(This email address is for mailing list use only;
replace local-part with vishwin for off-list communication)

Attachment: signature.asc
Description: OpenPGP digital signature

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] My domain's .htaccess file is giving me fits
  - From: george@georgesbasement.com

Prev by Date: [PLUG] My domain's .htaccess file is giving me fits
Next by Date: Re: [PLUG] My domain's .htaccess file is giving me fits
Previous by thread: [PLUG] My domain's .htaccess file is giving me fits
Next by thread: Re: [PLUG] My domain's .htaccess file is giving me fits
Index(es):
- Date
- Thread