I've been trying to block the litefinder malicious bot which scours our site
every day and tries to access pages with the incorrect case, thus causing
crazy amounts of errors to get thrown.

We have an Apache 2.2.4 front end using mod_jk to load balance against 9
Tomcat instances on 6 separate machines.

I have an .htaccess file that blocks based on user agent along with some
known ip addresses for the bot.  This works correctly for all static
content.  That is, when I change my browser's user agent to "litefinder",
and access the site, I am denied all gif, jpg, css, js, etc files.  However,
all the dynamic content is passed on to Tomcat without honoring the rules in
.htaccess, thus not solving my problem.

My question is basically, how do I/can I make Apache enforce my deny rules
even for JkMount'ed data?  If you need more info, I'm happy to provide.

Thanks!
Aaron 

==========================

Here is the .htaccess file in my webroot:

#block litefinder malicious crawler
SetEnvIfNoCase User-Agent LiteFinder stayout=1
Order Allow,deny
Allow from all
Deny from env=stayout
Deny from 208.101.44.3
Deny from 209.160.65.42
Deny from 209.62.109.178
Deny from 216.40.220.34
Deny from 216.40.222.50
Deny from 216.40.222.66
Deny from 216.40.222.82
Deny from 216.40.222.98
Deny from 67.19.114.226
Deny from 67.19.250.26
Deny from 70.85.113.242
Deny from 74.53.243.226
Deny from 74.53.243.242
Deny from 74.53.244.18
Deny from 74.53.249.34
Deny from 74.86.209.74
Deny from 74.86.249.98
Deny from 75.125.18.178
Deny from 75.125.47.162
Deny from 75.125.52.146
Deny from 84.19.176.208
Deny from 87.118.118.111
Deny from 87.118.98.57
Deny from 87.118.98.62

Here is the relevant section from my httpd.conf

<VirtualHost ****:80>
    DocumentRoot ****
    ServerName *****
    JkMount /jkstatus/* status
    JkMount /* v3lb
    JkMount /captcha/Captcha.jpg v3lb
    JkUnMount /member/bzzmap/*.xml v3lb
    JkUnMount /member/bzzmap/*.swf v3lb
    JkUnMount /manager/* v3lb
    JkUnMount /images/* v3lb
    JkUnMount /awstats/* v3lb
    JkUnMount /img/* v3lb
    JkUnMount /js/* v3lb
    JkUnMount /*.gif v3lb
    JkUnMount /*.png v3lb
    JkUnMount /*.pdf v3lb
    JkMount /captcha/* v3lb
    JkUnMount /member/campaigns/*.jpg v3lb
    JkUnMount /*.css v3lb
    JkUnMount /*.html v3lb
    JkUnMount /*.mov v3lb
    JkUnMount /*.wmv v3lb
    JkUnMount /*.rm v3lb
    JkUnMount /*.ram v3lb
    #JkUnMount /*.swf v3lb
    JkUnMount /*.mpeg v3lb
    JkUnMount /*.mpg v3lb
    JkUnMount /*.mp3 v3lb
    JkUnMount /*.xml v3lb
    JkMount /dwr v3lb
    ErrorLog logs/www.error_log
    CustomLog logs/www.access_log combined
</VirtualHost>


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to