httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rich Bowen <rbo...@rcbowen.com>
Subject Re: [users@httpd] Implement request white list in Apache
Date Fri, 08 Jul 2016 12:53:07 GMT
Well, yes, you could do it with mod_rewrite. You could also presumably use
a proxypassmatch as part of your tomcat setup if the whitelist is simple
enough to express it as one regex. I expect, though, that mod_security will
give you the biggest ! for your $ in a nontrivial scenario.
On Jul 8, 2016 08:28, "Marat Khalili" <mkh@rqc.ru> wrote:

> You can do this with mod_rewrite:
>
>     RewriteCond %{REQUEST_URI} !^allowed_url_1$
>     RewriteCond %{REQUEST_URI} !^allowed_url_2$
>     ...
>     RewriteCond %{REQUEST_URI} !^allowed_url_N$
>     RewriteRule .* - [F,L]
>
>
> --
>
> With Best Regards,
> Marat Khalili
>
>
> On 08/07/16 13:53, Joice Joseph wrote:
>
> Hi All,
>
> Can someone help me to make the Apache in such a way that It will block
> all the request filter by default and process only those specified requests
> to tomcat server.
>
> --
> ​​
> ​Cheers​
>
>
> *Joice Joseph *
>
>
>

Mime
View raw message