Return-Path: Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: (qmail 64618 invoked from network); 14 Oct 2010 00:34:33 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 14 Oct 2010 00:34:33 -0000 Received: (qmail 72337 invoked by uid 500); 14 Oct 2010 00:34:32 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 72256 invoked by uid 500); 14 Oct 2010 00:34:32 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 72248 invoked by uid 99); 14 Oct 2010 00:34:32 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 14 Oct 2010 00:34:32 +0000 X-ASF-Spam-Status: No, hits=0.7 required=10.0 tests=SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (nike.apache.org: local policy) Received: from [194.242.35.75] (HELO dns-factory.at) (194.242.35.75) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 14 Oct 2010 00:34:24 +0000 Received: from [172.17.100.7] apache@gknw.net [84.63.39.183] by dns-factory.at with NetMail SMTP Agent $Revision: 8582 $ on Novell NetWare via secured & encrypted transport (TLS); Thu, 14 Oct 2010 02:33:55 +0200 Message-ID: <4CB65014.6040802@apache.org> Date: Thu, 14 Oct 2010 02:34:28 +0200 From: Guenter Knauf User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.2.9) Gecko/20100915 Lightning/1.0b2 Thunderbird/3.1.4 MIME-Version: 1.0 To: dev@httpd.apache.org Subject: Re: Making mod_authz_host less opaque References: <4CB627FC.6050900@redfish-solutions.com> In-Reply-To: <4CB627FC.6050900@redfish-solutions.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable X-Virus-Checked: Checked by ClamAV on apache.org Am 13.10.2010 23:43, schrieb Philip Prindeville: > I recently tried to use mod_setenvif and mod_geoip to block access from= > countries rife with hackers. > > I wasn't able to get it to work (see my posting on users). works for me: # Configuration for mod_geoip GeoIPEnable On GeoIPDBFile "/var/lib/GeoIP/GeoIPCity.dat" SetEnvIf GEOIP_COUNTRY_CODE US BlockCountry SetEnvIf GEOIP_COUNTRY_CODE DE BlockCountry Deny from env=3DBlockCountry # End of mod_geoip. G=FCn.