I've been trying to block the litefinder malicious bot which scours our site
every day and tries to access pages with the incorrect case, thus causing
crazy amounts of errors to get thrown.
We have an Apache 2.2.4 front end using mod_jk to load balance against 9
Tomcat instances on 6 separate machines.
I have an .htaccess file that blocks based on user agent along with some
known ip addresses for the bot. This works correctly for all static
content. That is, when I change my browser's user agent to "litefinder",
and access the site, I am denied all gif, jpg, css, js, etc files. However,
all the dynamic content is passed on to Tomcat without honoring the rules in
.htaccess, thus not solving my problem.
My question is basically, how do I/can I make Apache enforce my deny rules
even for JkMount'ed data? If you need more info, I'm happy to provide.
Thanks!
Aaron
==========================
Here is the .htaccess file in my webroot:
#block litefinder malicious crawler
SetEnvIfNoCase User-Agent LiteFinder stayout=1
Order Allow,deny
Allow from all
Deny from env=stayout
Deny from 208.101.44.3
Deny from 209.160.65.42
Deny from 209.62.109.178
Deny from 216.40.220.34
Deny from 216.40.222.50
Deny from 216.40.222.66
Deny from 216.40.222.82
Deny from 216.40.222.98
Deny from 67.19.114.226
Deny from 67.19.250.26
Deny from 70.85.113.242
Deny from 74.53.243.226
Deny from 74.53.243.242
Deny from 74.53.244.18
Deny from 74.53.249.34
Deny from 74.86.209.74
Deny from 74.86.249.98
Deny from 75.125.18.178
Deny from 75.125.47.162
Deny from 75.125.52.146
Deny from 84.19.176.208
Deny from 87.118.118.111
Deny from 87.118.98.57
Deny from 87.118.98.62
Here is the relevant section from my httpd.conf
<VirtualHost ****:80>
DocumentRoot ****
ServerName *****
JkMount /jkstatus/* status
JkMount /* v3lb
JkMount /captcha/Captcha.jpg v3lb
JkUnMount /member/bzzmap/*.xml v3lb
JkUnMount /member/bzzmap/*.swf v3lb
JkUnMount /manager/* v3lb
JkUnMount /images/* v3lb
JkUnMount /awstats/* v3lb
JkUnMount /img/* v3lb
JkUnMount /js/* v3lb
JkUnMount /*.gif v3lb
JkUnMount /*.png v3lb
JkUnMount /*.pdf v3lb
JkMount /captcha/* v3lb
JkUnMount /member/campaigns/*.jpg v3lb
JkUnMount /*.css v3lb
JkUnMount /*.html v3lb
JkUnMount /*.mov v3lb
JkUnMount /*.wmv v3lb
JkUnMount /*.rm v3lb
JkUnMount /*.ram v3lb
#JkUnMount /*.swf v3lb
JkUnMount /*.mpeg v3lb
JkUnMount /*.mpg v3lb
JkUnMount /*.mp3 v3lb
JkUnMount /*.xml v3lb
JkMount /dwr v3lb
ErrorLog logs/www.error_log
CustomLog logs/www.access_log combined
</VirtualHost>
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
