How to block some key words in my url for apache config?

Login or Register to Reply

 
Thread Tools Search this Thread
# 1  
Old 03-29-2018
Lightbulb How to block some key words in my url for apache config?

Hi Folks,

I am running a website and that needs to be tightened with security in terms of hacking... Whereas, In my URL, when i click on certain links the entire link as contains some words like below:
Code:
/control_panel
/controlpanel
/admin
/cms

Whereas, i need to block those words in apache config file, which can only be access internally. Let me know how to achieve this ..

-Siva

Last edited by rbatte1; 03-29-2018 at 06:27 AM..
# 2  
Old 04-22-2018
In general doing this manually would be folly but I know at least that there are efforts at blocking all "bad" bots (bots with recognisable user agents)

One example is: Apache Ultimate Bad Bot Blocker (find on github).

It uses BrowserMatchNoCase or similar to match user agents and put them in a list (set an environment variable for it) which then, as a whole, is denied.

There's little point in blocking known URLs your server doesn't have, as opposed to the bots that try to access the ones you *do* have.

So blocking the URLs is pointless (ineffective if you don't have them, and disruptive if you do have them), you will have to block the activity itself.

Many bots (most bots) do not actually identify as a common user agent, even the hacker-type bots will just use something recognisable.

Alternatively, when a known URL gets hit that requires password authentication fail2ban is often employed to block individual IPs.

Last edited by dryden; 04-22-2018 at 08:38 AM.. Reason: Automatic merging not acceptable
Login or Register to Reply

|
Thread Tools Search this Thread
Search this Thread:
Advanced Search

More UNIX and Linux Forum Topics You Might Find Helpful
Append query string via URL rewrite in apache kmaq7621 Web Development 1 11-24-2013 08:16 AM
Apache virtual host config vs global config problem freebird8z Red Hat 1 04-05-2013 11:33 AM
Apache vhosts config RewriteCond to ignore part of URL crmpicco Web Development 3 09-24-2012 02:07 PM
apache url redirection raghur77 Web Development 0 02-28-2012 10:14 AM
apache webserver url redirection raghur77 UNIX for Advanced & Expert Users 0 02-28-2012 10:11 AM
Apache Virtual URL wuschelz Web Development 3 02-04-2011 05:58 PM
Negate user space URL in Apache LostInTheWoods Web Development 0 12-02-2010 08:40 AM
redirecting a url on apache conf file shehzad_m Shell Programming and Scripting 0 05-06-2010 05:50 PM
Apache mod_rewrite: from 'friendly' url to actual path markericksen Web Development 2 09-06-2009 01:41 PM
APACHE rewrite / redirect URL ampo Web Development 2 10-27-2008 11:25 AM
APACHE rewrite / redirect URL ampo Cybersecurity 1 10-13-2008 05:27 AM
apache encode special characters in URL uttamhoode UNIX for Advanced & Expert Users 3 07-25-2008 02:58 AM
Apache, hiding the url blesets UNIX for Dummies Questions & Answers 2 07-12-2005 02:08 PM
Apache Config l008com UNIX for Dummies Questions & Answers 2 07-23-2002 06:54 PM