On 13/10/2006 18:37, "Patrick Stack" <lists at adeptassociates.net> wrote:
> Anyone know the syntax for banning a block of IP addresses in .htaccess?
>> I want to deny access to all IPs from 218.98.32.0 to 218.98.63.255 as
> I'm getting tons of comment spam from this Chinese source.
> Is there a way to deny with a single line, or do I have to put each one
> on a separate line like so:
> deny from 218.98.32.
> deny from 218.98.33.
> deny from 218.98.34.
> deny from 218.98.35.
> deny from 218.98.36.
> deny from 218.98.37.
> deny from 218.98.38.
> deny from 218.98.39.
> deny from 218.98.40.
> deny from 218.98.41.
> and so on?
>> I've googled and read extensively online but haven't come across an
> answer yet.
Try this:
http://www.debianhelp.co.uk/fail2ban.htm
Quote : "What is Fail2ban ?
Monitors (in daemon mode) or just scans log files (e.g. /var/log/auth.log,
/var/log/apache/access.log) and temporarily bans failure-prone addresses by
updating existing firewall rules. Currently, by default, supports ssh/apache
but configuration can be easily extended for scanning the other ASCII log
files. Firewall rules are given in the config file, thus it can be adopted
to be used with a variety of firewalls (e.g. iptables, ipfwadm)."
I've no experience with it though, I googled ;-0
http://fail2ban.sourceforge.net/wiki/index.php/Downloads
> Patrick Stack
Regards
Conor
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
