Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
Date: Fri, 23 May 2003 11:17:02 -0400
Content-Type: text/plain; charset=US-ASCII; format=flowed
Mime-Version: 1.0 (Apple Message framework v552)
From: WC -Sx- Jones <lists@insecurity.org>
To: users@httpd.apache.org
Content-Transfer-Encoding: 7bit
In-Reply-To: <005501c3213a$237d2650$dd700c0a@ccw>
Message-Id: <9B4E9BB4-8D31-11D7-94AB-0003930FDFC6@insecurity.org>
Subject: Re: [users@httpd] Will the server performance be affected very much?


On Friday, May 23, 2003, at 10:46  AM, ccw wrote:

> Hi, in order to prevent users from some specific IP addresses to 
> access my web site, I use "Deny From" followed with 538 IP addresses 
> in .htaccess(all are IP numbers with the format 'xx.xx.xx.xx/xx', for 
> example, '66.08.0.0/20'). My problem is, whether such a large group of 
> denied IP addresses in .htaccess will affect the server speed or 
> performance very much, since each time a user tries to access my 
> website, Apache server will compare his IP address with the denied IP 
> addresses? Thanks.


Some projects are better handled by a package designed for such a task.

google for PORTSENTRY  You will need to search for a source tarball, 
Cisco purchased the original makers and have been trying not to 
distribute it...

HTH  :)

http://insecurity.org/
_Sx____________________
  ('>    iudicium ferat
  //\   Have Computer -
  v_/_    Will Hack...

               \|/ ____ \|/
               "@'/ .. \`@"
               /_| \__/ |_\
                  \__U_/


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org