httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From James Moe <ji...@sohnen-moe.com>
Subject [users@httpd] Redirecting suspicious search probes
Date Mon, 19 Dec 2011 22:38:06 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,
  apache v2.0.52
  We get a lot a suspicious search probes that generate entries in the
error log of the "File does not exist" persuasion. At times the sheer
quantity of bogus messages buries any useful error messages.
  In an effort to unburden the error log I redirect such requests to
nowhwere in the <.htaccess> file with rules similar to:

RedirectMatch /(mysql|php)manager http://nowhere.invalid/
Redirect permanent /sellebriglie http://nowhere.invalid/

I have ended up with a lot of these ("a lot" is about 130).
  Blocking IP addresses is useless since the addresses are always
changing.
  We have several related sites served from the same host, all of
which suffer the same probing. I have been updating each <.htaccess>
file as the probe patterns change; a PITA.

1. Is this a reasonable way of handling undesirable search probes?
2. Is there an "include"-style statement for <.htaccess> so I only
need to update a single master redirect list?

- -- 
James Moe
moe dot james at sohnen-moe dot com
520.743.3936
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk7vvM4ACgkQzTcr8Prq0ZNDTwCePYh8WINEWmCct0veMYmpByYs
ALYAoKQf2sHACd3GXRxvO0ZshtxR8kPN
=zGIn
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message