[.htaccess] Blocco parziale SPAM -

[Napster]

Leggendo su vari topic noto che molti hanno lo stesso problema...Lo SPAM!!!!
Questo permette di diminuirlo un'po'...

TI tanto in tanto aggiornerò questo thread con gli ultimi IP e bot...visitatelo spesso!!!


- Per creare il file .htaccess:

• Connettetevi via FTP o andate su www.net2ftp.com
• Inserite i vostri dati di accesso
• Andate nella root del sito
• Create un nuovo file chiamato .htaccess (notate il puntino.)
• Inserite le seguenti righe
• Salvate tutto

Codice PHP:

#php_flag register_globals 0
#php_flag register_globals off
#php_flag magic_quotes_gpc on
#Options +FollowSymlinks

ErrorDocument 400 /errors.php?code=400
ErrorDocument 401 /errors.php?code=401
ErrorDocument 403 /errors.php?code=403
ErrorDocument 404 /errors.php?code=404
ErrorDocument 500 /errors.php?code=500

RewriteEngine On
#This may cause isues with subdirs and so I have not enabled it.
#RewriteBase /

##################################
# Block Hacking Attempts - BEGIN #
##################################
##################################
# CONDITIONS
##################################
# STRICT CONDITION
#RewriteCond %{QUERY_STRING} ^.*(phpbb_root_path|album_root_path|module_root_path|mx_root_path|upi2db_file_path).*$
# LESS STRICT CONDITION
RewriteCond %{QUERY_STRING} ^.*(phpbb_root_path=|album_root_path=|module_root_path=|mx_root_path=|upi2db_file_path=).*$
##################################
# REWRITE
##################################
# FORBIDDEN
#RewriteRule ^.*$ - [F,L]
# REDIRECT TO LOCALHOST
RewriteRule ^.*$ http://127.0.0.1/ [redirect,last]
##################################
##################################
# Block Hacking Attempts - END   #
##################################


# SANTY
RewriteCond %{HTTP_REFERER} ^.*$
RewriteRule ^.*%27.*$ http://127.0.0.1/ [redirect,last]
RewriteRule ^.*%25.*$ http://127.0.0.1/ [redirect,last]
RewriteRule ^.*rush=.*$ http://127.0.0.1/ [redirect,last]
RewriteRule ^.*echr.*$ http://127.0.0.1/ [redirect,last]
RewriteRule ^.*esystem.*$ http://127.0.0.1/ [redirect,last]
RewriteRule ^.*wget.*$ http://127.0.0.1/ [redirect,last]
RewriteCond %{HTTP_COOKIE}% s:(.*):%22test1%22%3b
RewriteRule ^.*$ http://127.0.0.1/ [R,L]
# Prevent perl user agent (most often used by santy)
RewriteCond %{HTTP_USER_AGENT} ^lwp.* [NC]
RewriteRule ^.*$ http://127.0.0.1/ [R,L]
RewriteCond %{HTTP_REFERER} ^.*$

# This ruleset is to "stop" stupid attempts to use MS IIS expolits on us
# NIMDA
RewriteCond %{REQUEST_URI} /(admin?cmd?httpodbc?nsiislog?root?shell).(dll?exe) [NC]
RewriteRule !(error.php|robots.txt) /error.php?mode=nimda [L,E=HTTP_USER_AGENT:NIMDA_EXPLOIT,T=application/x-httpd-cgi]
#RewriteRule .* - [F,L]

# CODERED
RewriteCond %{REQUEST_URI} /default.(ida?idq)$ [NC,OR]
RewriteCond %{REQUEST_URI} /.*.printer$ [NC]
RewriteRule !(error.php|robots.txt) /error.php?mode=codered [L,E=HTTP_USER_AGENT:CODERED_EXPLOIT,T=application/x-httpd-cgi]
#RewriteRule .* - [F,L]

# User-Agents with no privileges (mostly spambots/spybots/offline downloaders that ignore robots.txt)
# These bots are anoying website harvesting tools, webdownloaders, and a few misc annoyances.
RewriteCond %{HTTP_USER_AGENT} ^[A-Z]+$ [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^(AcoiRobot|FlickBot|webcollage) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^(Alligator|DA.?[0-9]|DC-Sakura|Download.?(Demon|Express|Master|Wonder)|FileHound) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} .*almaden.* [OR]
RewriteCond %{HTTP_USER_AGENT} anarchie [NC,OR]
RewriteCond %{HTTP_USER_AGENT} AsiaNetBot [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*attach.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ATHENS [NC,OR]
RewriteCond %{HTTP_USER_AGENT} autohttp [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*BackWeb.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Bandit.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} bew [NC,OR]
RewriteCond %{HTTP_USER_AGENT} BlackWidow [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Bot mailto:craftbot@yahoo.com [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.Browses [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Buddy.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Bullseye [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ChinaClaw [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Collector.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Copier.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Crawler.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Crescent [NC,OR]
RewriteCond %{HTTP_USER_AGENT} curl [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Deweb [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Digimarc [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Digger [NC,OR]
RewriteCond %{HTTP_USER_AGENT} digout4uagent [NC,OR]
RewriteCond %{HTTP_USER_AGENT} DIIbot [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^DiscoPump.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} DISCo pump [NC,OR]
RewriteCond %{HTTP_USER_AGENT} dloader(NaverRobot) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Download Demon [NC,OR]
RewriteCond %{HTTP_USER_AGENT} "^Download" [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Downloader.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} "DTS Agent" [OR]
RewriteCond %{HTTP_USER_AGENT} EasyDL/d.d+ [OR]
RewriteCond %{HTTP_USER_AGENT} eCatch [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ecollector [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Educate Search [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EirGrabber [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EmailCollector [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EmailSiphon [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EmailWolf [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EO Browse [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.Eval [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^(Express|Mister|Web).?(Web|Pix|Image).?(Pictures|Collector)? [NC,OR]
RewriteCond %{HTTP_USER_AGENT} extractor [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ExtractorPro [NC,OR]
RewriteCond %{HTTP_USER_AGENT} EyeNetIE [NC,OR]
RewriteCond %{HTTP_USER_AGENT} fastlwspider [NC,OR]
RewriteCond %{HTTP_USER_AGENT} FEZhead [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Fetch [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Fetch API Request [OR]
RewriteCond %{HTTP_USER_AGENT} ^(Flash|Leech)Get [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Franklin Locator [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^(Fresh|Lightning|Mass|Real|Smart|Speed|Star).?Download(er)? [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Full Web Bot [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^(Gamespy|Go!Zilla|iGetter|JetCar|Net(Ants|Pumper)|SiteSnagger|Teleport.?Pro) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Getleft [NC,OR]
RewriteCond %{HTTP_USER_AGENT} GetRight [NC,OR]
RewriteCond %{HTTP_USER_AGENT} GetURL [NC,OR]
RewriteCond %{HTTP_USER_AGENT} GetWebPage [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^GornKer [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*gotit.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Gozilla [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} go-ahead-got-it [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Grabber.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*GrabNet.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Grafula [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Harvest [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*HMView.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} HTML Works [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*HTTrack.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ia_archiver [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Image.?(fetch|Stripper|Sucker) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} IncyWincy [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Industry Program [NC,OR]
RewriteCond %{HTTP_USER_AGENT} InterGET [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Internet Explore 5.x [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^InternetNinja.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Internet Ninja [NC,OR]
RewriteCond %{HTTP_USER_AGENT} InternetSeer.com [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Irvine [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^JetCar.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} JOC Web Spider [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*JOC.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} KWebGet [NC,OR]
RewriteCond %{HTTP_USER_AGENT} larbin [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Likse.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^LinkWalker [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*LWP [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Mag-Net.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Magnet.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} MCspider [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Memo.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Microsoft URL [NC,OR]
RewriteCond %{HTTP_USER_AGENT} MIDown tool [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Mirror.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Missauga Locator [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mister PiX [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Monster [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mozilla.*NEWT [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mozilla/3.0.+Indy Library [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mozilla/3.Mozilla/2.01 [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mozilla/4.0$ [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Mozzilla [NC,OR]
RewriteCond %{HTTP_USER_AGENT} MSIECrawler [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^NASA Search 1.0$ [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Navroad.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} NearSite [NC,OR]
RewriteCond %{HTTP_USER_AGENT} net.?(ants|attache|Carta|mechanic|spider|vampire|zip) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} NICErsPRO [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ninja [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Octopus [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Offline.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} OpaL [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Openfind [NC,OR]
RewriteCond %{HTTP_USER_AGENT} OpenTextSiteCrawler [NC,OR]
RewriteCond %{HTTP_USER_AGENT} PackRat [NC,OR]
RewriteCond %{HTTP_USER_AGENT} PageGrabber [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Papa Foto [NC,OR]
RewriteCond %{HTTP_USER_AGENT} pavuk [NC,OR]
RewriteCond %{HTTP_USER_AGENT} PICgrabber [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*pcBrowser.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Plucker [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Pockey.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Production Bot [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Program Shareware [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*prospector [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^psbot [OR]
RewriteCond %{HTTP_USER_AGENT} PushSite [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Reaper.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Recorder.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ReGet [NC,OR]
RewriteCond %{HTTP_USER_AGENT} RepoMonkey [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Rover [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Rsync [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Siphon.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^Scooter-W3.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ScoutAbout [NC,OR]
RewriteCond %{HTTP_USER_AGENT} searchterms.it [NC,OR]
RewriteCond %{HTTP_USER_AGENT} semanticdiscovery [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Shai [NC,OR]
RewriteCond %{HTTP_USER_AGENT} sitecheck [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Snake.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} Spegla [NC,OR]
RewriteCond %{HTTP_USER_AGENT} SpiderBot [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Stripper.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Sucker.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*SuperBot.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} SuperHTTP [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.Surf [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Surfbot.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} SurfWalker [NC,OR]
RewriteCond %{HTTP_USER_AGENT} tAkeOut [NC,OR]
RewriteCond %{HTTP_USER_AGENT} tarspider [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Teleport.* [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Templeton [NC,OR]
RewriteCond %{HTTP_USER_AGENT} UtilMind [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Vacuum.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} VoidEYE [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Web.?(Auto|Cop|dup|Fetch|Filter|Gather|Go|Leach|Mine|Mirror|Pix|QL|RACE|Sauger) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} web.?(bandit|collector|devil|downloader|hook|mole|reaper|sucker|site|snake|stripper|weasel) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Web.?(site.?(eXtractor|Quester)|Capture|Snake|ster|Strip|Stripper|Suck|vac|walk|Whacker|ZIP) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^WebEMailExtrac.* [OR]
RewriteCond %{HTTP_USER_AGENT} web.by.mail [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Wget.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Whacker.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^.*Widow.*$ [OR]
RewriteCond %{HTTP_USER_AGENT} w3mir [NC,OR]
RewriteCond %{HTTP_USER_AGENT} WhosTalking [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Widow [NC,OR]
RewriteCond %{HTTP_USER_AGENT} WUMPUS [NC,OR]
RewriteCond %{HTTP_USER_AGENT} www.pl [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Xaldon WebSpider [NC,OR]
RewriteCond %{HTTP_USER_AGENT} XGET [NC,OR]
RewriteCond %{HTTP_USER_AGENT} Yandex [NC,OR]
RewriteCond %{HTTP_USER_AGENT} zeus [NC,OR]
RewriteCond %{HTTP_USER_AGENT} ^Zeus.*Webster [OR]

# IE's "make available offline" mode
RewriteCond %{HTTP_USER_AGENT} MSIECrawler [OR]

# Unknown bot
RewriteCond %{HTTP_USER_AGENT} ^NG [OR]

# You may want to enable these lines below to disallow php and perl scripts to access your site
#RewriteCond %{HTTP_USER_AGENT} ^.*PHP.*$ [OR]
#RewriteCond %{HTTP_USER_AGENT} ^.*libwww-perl [NC,OR]

# Ignorant user trying to edit my site
RewriteCond %{HTTP_USER_AGENT} FrontPage [OR]
#This one will ban everything microsoft. Use with caution.
RewriteCond %{HTTP_USER_AGENT} ^(Microsoft|MFC).(Data|URL|WebDAV|Foundation).(Access|Control|MiniRedir|Class) [NC,OR]

# MSOffice
RewriteCond %{REQUEST_URI} ^/(MSOffice|_vti) [NC,OR]

# Various
RewriteCond %{REQUEST_URI} ^/(bin/|cgi/|cgi-local/|cgi-bin/|sumthin) [NC,OR]
RewriteCond %{THE_REQUEST} ^GET http [NC,OR]
RewriteCond %{REQUEST_URI} /sensepost.exe [NC,OR]
RewriteCond %{REQUEST_METHOD}!^(GET|HEAD|POST) [NC,OR]

# Rude bot
RewriteCond %{HTTP_USER_AGENT} Atomz [OR]
RewriteCond %{HTTP_USER_AGENT} FlickBot [OR]
RewriteCond %{HTTP_USER_AGENT} "efp@gmx\.net" [OR]
RewriteCond %{HTTP_USER_AGENT} imagefetch [OR]
RewriteCond %{HTTP_USER_AGENT} "LINKS ARoMATIZED" [OR]
RewriteCond %{HTTP_USER_AGENT} "mister pix" [NC,OR]
RewriteCond %{HTTP_USER_AGENT} PersonaPilot [OR]
RewriteCond %{HTTP_USER_AGENT} Sqworm [OR]
RewriteCond %{HTTP_USER_AGENT} SurveyBot [OR]

# Dumb bot, doesn't know how to follow links, generates lots of 404s
RewriteCond %{HTTP_USER_AGENT} vayala [OR]

# Dumb bot
RewriteCond %{HTTP_USER_AGENT} "^Mozilla/4.0$" [OR]

# Cyveillance is a spybot that scours the web for copyright violations and ?damaging information? on
# behalf of clients such as the RIAA and MPAA. Their robot spoofs its User-Agent to look like Internet
# Explorer, and it completely ignores robots.txt. I have
# banned it by IP address.
RewriteCond %{REMOTE_ADDR} ^63.148.99.2(2[4-9]|[34][0-9]|5[0-5])$ [OR]
RewriteCond %{REMOTE_ADDR} ^63.226.3[34]. [OR]
RewriteCond %{REMOTE_ADDR} ^63.212.171.161$ [OR]
RewriteCond %{REMOTE_ADDR} ^65.118.41.(19[2-9]|2[01][0-9]|22[0-3])$ [OR]

# NameProtect peddles their ?online brand monitoring? to unsuspecting and gullible companies
# looking for people to sue. Despite the claims on their robot information page, they do not
# respect robots.txt; in fact, they spoof their User-Agent in multiple ways to avoid detection.
# I have banned them by User-Agent and IP address.
RewriteCond %{REMOTE_ADDR} ^12.148.196.(12[8-9]|1[3-9][0-9]|2[0-4][0-9]|25[0-5])$ [OR]
RewriteCond %{REMOTE_ADDR} ^12.148.209.(19[2-9]|2[0-4][0-9]|25[0-5])$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^NPBot    [NC,OR]

# Web Content International
RewriteCond %{REMOTE_ADDR} ^65.102.12.2(2[4-9]|3[01])$ [OR]
RewriteCond %{REMOTE_ADDR} ^65.102.17.(3[2-9]|[4-6][0-9]|7[01]|8[89]|9[0-5]|10[4-9]|11[01])$ [OR]
RewriteCond %{REMOTE_ADDR} ^65.102.23.1(5[2-9]|6[0-7])$ [OR]

# Wordtracker
RewriteCond %{REMOTE_ADDR} ^128.242.197.101$ [OR]

# Unknown
# unknown.Level3.net
RewriteCond %{REMOTE_ADDR} ^64.156.198.(6[89]|7[0-9]|80)$ [OR]

# host25x.keebler.com
RewriteCond %{REMOTE_ADDR} ^65.223.250.25[0-3]$ [OR]

# Turnitin spybot
RewriteCond %{REMOTE_ADDR} ^64.140.49.6([6-9])$ [OR]
RewriteCond %{HTTP_USER_AGENT} TurnitinBot [OR]

RewriteCond %{HTTP_USER_AGENT} ^.*FileHound.*$

# Used to send these bots to someplace else you can change the url to whatever you would like
#RewriteRule /* http://www.geocities.com/WestHollywood/Heights/3204/1home.html [L,R]
#RewriteRule !(errors\.php|robots\.txt) /errors.php?code=404 [L,E=HTTP_USER_AGENT:BAD_USER_AGENT]
# This could also be used to simply deny access to your site instead of the one above
RewriteRule .* - [F,L]

# Block if useragent and referer are unknown.
# the referer string will cause some problems with mozilla so it has been diabled
RewriteCond %{HTTP_REFERER} ^-$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^-$

# Used to send these bots to someplace else you can change the url to whatever you would like
#RewriteRule /* http://www.geocities.com/WestHollywood/Heights/3204/1home.html [L,R]
#RewriteRule !(errors\.php|robots\.txt) /errors.php?code=404 [L,T=application/x-httpd-cgi]
# This could also be used to simply deny access to your site instead of the one above
RewriteRule .* - [F,L]

# This ruleset is for formmail script abusers...
# We don't use Perl for Postnuke so this is not really needed.
RewriteCond %{REQUEST_URI} (mail.?form|form|form.?mail|mail|mailto).(cgi?exe?pl)$ [NC]
RewriteRule !(errors.php|robots.txt) /errors.php?code=404 [L,E=HTTP_USER_AGENT:FORMMAIL_EXPLOIT,T=application/x-httpd-cgi]

# Other Spam Bots
RewriteCond %{HTTP_REFERER} ^(.*)nflook.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)qmost.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)zless.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)pertest.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)bablover.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)semiwolf.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)dwgn.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)qway.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)elkam.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)ymore.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)feelor.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)emore.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)leenow.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)fun.org(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)wp.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)dmost.info(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)way.org(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)sun.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)jvl.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)4ap.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)mem.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)netster.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)map.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)ize.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)9cy.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)pages.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)fest.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)crossporn.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)pills.ru(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)jobs.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)ever.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)this.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)now.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)mb.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)ies.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)ting.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)sites.ws(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)lynx.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)town.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)harvard.edu(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)mb.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)vy.nu(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)yu.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)buddy4u.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)allinternal.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)asstraffic.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)bikinibabes.tv(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)andipink.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)eurosport.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)cel-blogs.org(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)sexy-babes.tv(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)wrongsideoftown.com(.*)$ [OR]
RewriteCond %{HTTP_REFERER} ^(.*)thecanalgallery.com(.*)$
#RewriteRule .* http://www.microsoft.com/ [F,R,L]
#RewriteRule !(errors\.php|robots\.txt) /errors.php?code=404 [L,E=HTTP_USER_AGENT:BAD_USER_AGENT]
RewriteRule .* - [F,L] 


Alcune MOD apposite per PHPbb:

Conferma Visuale con Agreed Modificato.

Limite login in caso di errori.

Anti Spam Bots.

Anti Spam ACP.

[Zanardi]

Di cosa si tratta? Limita l'accesso a certi IP? Come funziona questa cosa? Scusa ma sn poco pratico di queste cose... ma a rischio figuracce vorrei cercare di imparare qualcosa!

[Napster]

Si, oltre a coprire qualche Bug di alcuni EXPLOIT e BOT.
Limita l'accesso all'intero sito(se inserito nella root) a tutti quegli IP, User agent e referr.
Gli IP sono principalmente di Server PROXY e quindi tutti BOT, almeno che un utente "buono" si connetta via Proxy al tuo Forum...Ma stai certo che vuole fare qualcosa di male...
User-agent: Alcuni Bot hanno user-agent particolari, questi vengono bannati
HTTP_REFERER: Alcuni Bot vengono lanciati da alcuni siti. Se l'utente
proviene da uno di questi siti viene bannato!

Grazie a questa modifica si può limitare l'accesso completo, senza consumare inutilmente la propria banda
e dare quindi maggiori servizi efficienti agli utenti!

Lo uno dei miei siti e va alla grande (http://www.studenticroce.net).
Avevo accessi da tutte le parti del mondo (visti con Google Analytics), e appena ho fatto questa modifica sono spariti!

[Zanardi]

Quote:

Napster

Limita l'accesso all'intero sito(se inserito nella root) a tutti quegli IP, User agent e referr.
Gli IP sono principalmente di Server PROXY e quindi tutti BOT, almeno che un utente "buono" si connetta via Proxy al tuo Forum...Ma stai certo che vuole fare qualcosa di male...

Mmm, beh intanto grazie, poi vediamo se ho capito bene... praticamente se mi collego da casa, (dall'Italia) funziona tutto a meraviglia, se mi collego da paesi sospetti mi nega l'accesso a priori, nel senso che è il server stesso che non propone i propri servizi a chi ha le caratteristiche descritte nel tuo codice. Questa è quindi una soluzione che possono adottare solo siti web con un pubblico ben definito, insomma, se ho un sito sul turismo mai e poi mai farei una cosa simile, no? (è solo x capirci, eh, nn ho un sito del genere)

Se questo è corretto, mi manca però da chiarire quello che intendevi parlando dei proxy! Cosa significa? Chiunque si colleghi da una biblioteca, un'università o comunque s'affacci ad internet passando da un proxy sarà chiuso fuori dal tuo sito web?

PS: la mia domanda nn è buttata lì a caso... ho un forum di studenti universitari... e puoi ben immaginare il mio problema.. 80% d'accessi con lo stesso ip e collegandosi ad un proxy!

[Napster]

No, forse non mi sono spiegato.
Limita l'accesso da quegli IP di server Proxy TOR!
Ovvero programmi fatti apposta per navigare anonimi.
Una scuola/università non li usa! Poichè tutti i PC sono collegati in rete.

Di solito i server PROXY di TOR sono tutti di paese stranieri, raramente ne trovi in Italia.
CMQ stai tranquillo che gli utenti "buoni" non vengono bloccati!!

[Napster]

Ho aggiornato il primo topic con alcune MOD.

[a]

Ma il codice ma mettere nel .htaccess deve essere settato in qualche maniera o è un semplice copia ed incolla?

[Napster]

basta che fai copia e incolla

[a]

Due domande:

- Io nel file ho già queste righe

RewriteRule [.]*-vf([0-9]*) viewforum.php?%{QUERY_STRING}&f=$1
RewriteRule [.]*-vp([0-9]*) viewtopic.php?%{QUERY_STRING}&p=$1
RewriteRule [.]*-vt([0-9]*) viewtopic.php?%{QUERY_STRING}&t=$1

le altre per bloccare lo spam le incollo di seguito a queste?


- per implementare questa "mod" con altri domini spam basta semplicemente aggiungerne altri di seguito a quelli già presenti?

[Napster]

Quote:

a

Due domande:

- Io nel file ho già queste righe

RewriteRule [.]*-vf([0-9]*) viewforum.php?%{QUERY_STRING}&f=$1
RewriteRule [.]*-vp([0-9]*) viewtopic.php?%{QUERY_STRING}&p=$1
RewriteRule [.]*-vt([0-9]*) viewtopic.php?%{QUERY_STRING}&t=$1

le altre per bloccare lo spam le incollo di seguito a queste?

Certo! Altrimenti dai qualche problema al friendly URL

Basta che incolli quelle righe dopo quelle attuali.

Quote:

- per implementare questa "mod" con altri domini spam basta semplicemente aggiungerne altri di seguito a quelli già presenti?

Forse intendevi "incrementare"...se si, basta che mantieni la struttura degli IP,Domini. In pratica non scriverli a casaccio. Scrivi le stringhe correttamente, adatte ad essere interpretate da Apache.

Ciao

[a]

Copiando e incollando mi da questo errore:

Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator, postmaster@clubmusiclovers.com and inform them of the time the error occurred, and anything you might have done that may have caused the error.

More information about this error may be available in the server error log.

[Napster]

Non saprei proprio...Prima ti funzionava tutto correttamente?
Prova a contattare il tuo hoster

[a]

Si senza quella parte che ho aggiunto il mod rewrite per esempio funziona correttamente !

[a]

a qualche altro questa compare il mio errore ?

[Zanardi]

Quote:

a

a qualche altro questa compare il mio errore ?

No!

Però:
- ho copiato il testo in un semplice file,
- l'ho rinominato .htaccess,
- l'ho copiato e incollato usando il browser internet explorer (ftp://....) su un dominio gratuito (sotto altervista.org) tanto x vedere se dava errori, prima d'nstallarlo sul sito definitivo

Risultato: nessun errore e subito dopo averlo copiato, uscendo ed accedendo di nuovo in ftp, vedo il file. Il giorno dopo non lo vedo più Sparito.

Ho riprovato con www.net2ftp.com e anche se mi dice FILE SALVATO /.htaccess, quando vado a rivedere la root del sito non esiste alcun file con quel nome.

C'è qualcosa che mi sfugge?!? C'è qualche rischio a giocare cn questo file sul dominio vero e proprio?


PS: cosa fanno le MOD che suggerisci? Vanno installate tutte?