Re: [users@httpd] Access control advice needed

2014-04-09 Thread Vávra Jan
There could be a problem with reverse dns records. Eg. a hostname www.example.com is translated to ip address x.x.x.x But if the Apache Server asks what is the name of x.x.x.x adress, it could get nothing or a response www.somethingelse.com. So this could be your problem. Jan. 2014-04-09 10:26

[users@httpd] OpenSSL "Heartbleed" Vulnerability (was:Re: [users@httpd] Access control advice needed)

2014-04-09 Thread Didier Spaier
On 09/04/2014 10:33, pratibha.dhank...@wipro.com wrote: Hi All, Can anyone please suggest steps to remove vulnerability *OpenSSL "Heartbleed" Vulnerability *in apache. -- Regards *Pratibha *** You shou

[users@httpd] OpenSSL "Heartbleed" Vulnerability (was:Re: [users@httpd] Access control advice needed)

2014-04-09 Thread Didier Spaier
On 09/04/2014 10:33, pratibha.dhank...@wipro.com wrote: Hi All, Can anyone please suggest steps to remove vulnerability *OpenSSL "Heartbleed" Vulnerability *in apache. -- Regards *Pratibha *** You shou

RE: [users@httpd] Access control advice needed

2014-04-09 Thread pratibha.dhankhar
Wednesday, April 09, 2014 1:57 PM To: users@httpd.apache.org Subject: Re: [users@httpd] Access control advice needed To be honest I don't want to end up having to maintain the IP blocks that correspond to the computers that are sending the requests, which is why I tried using the partial do

Re: [users@httpd] Access control advice needed

2014-04-09 Thread Ramon Casha
To be honest I don't want to end up having to maintain the IP blocks that correspond to the computers that are sending the requests, which is why I tried using the partial domain name. The apache documentation seems to suggest this would work: A (partial) domain-name Example:

Re: [users@httpd] Access control advice needed

2014-04-09 Thread Oren
Hi Ramon. Why use apache for the block and not a firewall? its not apache related but i think its a better way of doing that. You can add those addresses to blocking rules and reduce the load on the apache before they even reach it. I am not sure which os you use but there are simple ways of doi

Re: [users@httpd] Access control advice needed

2014-04-09 Thread Jan Vávra
Hello, try to use an IP address or subnet instead of .broad.pt.fj.dynamic.163data.com.cn Jan. Access control advice needed I have a website running drupal which is currently under a continuous botnet attack, which is causing major performance issues. I'm trying to use apache's access control

[users@httpd] Access control advice needed

2014-04-09 Thread Ramon Casha
I have a website running drupal which is currently under a continuous botnet attack, which is causing major performance issues. I'm trying to use apache's access control mechanism to block these requests. Two characteristics of the attack requests are that they all use HTTP/1.0, and a large perce