Re: [PLUG] My domain's .htaccess file is giving me fits (Charlie Li)

george on 8 Dec 2017 17:47:01 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] My domain's .htaccess file is giving me fits (Charlie Li)

From: george@georgesbasement.com
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] My domain's .htaccess file is giving me fits (Charlie Li)
Date: Fri, 08 Dec 2017 17:46:45 -0800
Cc: George Langford <george@georgesbasement.com>, Charlie Li <ml+PLUG@vishwin.info>
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=georgesbasement.com; s=default; h=Message-ID:Subject:Cc:To:From:Date: Content-Transfer-Encoding:Content-Type:MIME-Version:Sender:Reply-To: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=OGkNlJr7Qfs7DHNpeu12akB0vcnCr3kLhzGaWdkFryc=; b=gGZnFenUijQ+7MHkH18TfsNGE DLGVSD57b565vwVivll5a/ZkDe5amsHYZuWj8PlUobTJge9PIpl3L6ck1OMYL6MDaTRdxqFkFalDn O0255Mha87hJOBG4nyRXp3xUdOq6Q1eW3diZADMu6TWzfIXP8HQE3KsLgiIyx13M6Khwit2dtaeXG rNOkSRBuDT1/rXA7KcKQmROoapXMTF62mXK91qbytv5HkhCG4CE88EShbdRU8jSqboq3N/bDf1WWf vW9drfVtBl3sHE64bQbd5yQczeURyD23cfCGZVzDPNDxfvuv0rA/spHJRA2xbch5lzKP6p6j1hPe+ xpnigMUaQ==;
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Roundcube Webmail/1.3.1

Hello Charlie, Rich & plug -

Charlie wrote in reply:

On 7 December 2017 18:26:21 GMT-05:00, Rich Kulawiec wrote:
The place to do this is in the perimeter router and/or in thefirewall,not at the web server. Why? (1) it's easier (2) it's moreefficient
I almost suggested almost exactly this, but I had a feeling Georgedoesn't
have access to anything lower than .htaccess.
Charlie Li
Sent from Android

You betcha - trapped on a shared server. My ISP hadn't even told meabout

the change in server S/W until I pestered them.

But all is not lost ... On Dec.6 I sent an email to cPanel's supportteam

about the obfuscation caused by the conversion of IP addresses to their
canonical names, which gave generic names like example.com which aren't

parsable, and _within hours_ the conversion stopped. Maybe a coincidence?


That changed the problem of one to fix my .htaccess file, which I did by
truncating all the repetitive stuff (to eliminate typo's) and then

commenting out various sections until I could reload my domain's homepagesuccessfully, and then putting back stuff, one section at a time, untilall

the errors were apparent. Google and the various Apache 2.4 assistance

pages helped immensely. I then rebuilt the full 100K .htaccess file andit

worked the first time.

One difficulty emerged: Cannot express the range of IP addresses at aserverwith the simple difference between the top and bottom of the range -it'seither a single IP address or the CIDR notation, nothing else. I wasleftwith one IP range for which neither whois nor Domain Dossier could tellme

the CIDR notation ... out of almost three thousand blocked IP's.

I also found a bit of nastiness that had crept in:

<Files 403.shtml>
order allow,deny
allow from all
</Files>

No one likes this ...Don't let anyone under the age of consent see it...


Now I see a lot of 403 responses in my Recent Visitors logs; those had
disappeared with the use of the former versions of .htaccess and cPanel.

Best regards,
George Langford
george@georgesbasement.com
http://www.georgesbasement.com/

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Prev by Date: Re: [PLUG] My domain's .htaccess file is giving me fits
Next by Date: Re: [PLUG] Revision Control for the Rest of Us
Previous by thread: Re: [PLUG] My domain's .htaccess file is giving me fits
Next by thread: Re: [PLUG] Revision Control for the Rest of Us
Index(es):
- Date
- Thread