Extra Script For .htaccess

The time now is Fri 30 May, 2025 23:11 • All times are UTC + 1 Hour [DST enabled]

Extra Script For .htaccess

Page 1 of 1

Joined: August 2006
Posts: 217
Location:

London

Extra Script For .htaccess

Hi there,

I was wondering if it was worth adding the code below to the .htaccess file, or is it already featured?

Code: [Download] [Hide] [Select]

########## Begin - Rewrite rules to block out some common exploits

#                              

# Block out any script trying to set a mosConfig value through the URL

RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|%3D) [OR]

# Block out any script trying to base64_encode crap to send via URL

RewriteCond %{QUERY_STRING} base64_encode.*(.*) [OR]

# Block out any script that includes a <script> tag in URL

RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]

# Block out any script trying to set a PHP GLOBALS variable via URL

RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR]

# Block out any script trying to modify a _REQUEST variable via URL

RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2})

# Send all blocked request to homepage with 403 Forbidden error!

RewriteRule ^(.*)$ index.php [F,L]

# 

########## End - Rewrite rules to block out some common exploits

#1 Mon 08 Jan, 2007 00:02

Sponsors	Icy Phoenix is an open source project, you can show your appreciation and support future development by donating to the project.

Mighty Gorgon Luca Libralato Joined: August 2006 Posts: 7192 Location: Borgo San Michele	Re: Extra Script For .htaccess Good suggestion... added... ____________ Luca SEARCH is the quickest way to get support. Icy Phoenix ColorizeIt - CustomIcy - HON
#2 Mon 08 Jan, 2007 14:36

Joined: August 2006
Posts: 217
Location:

London

Re: Extra Script For .htaccess

Here's a few more Spam Bots

Code: [Download] [Hide]

RewriteCond %{HTTP_REFERER} ^(.*)appraiserseek.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)beyonddc.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)soltyra.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)wrongsideoftown.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)estranky.cz(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)bramjnet.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)voila.fr(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)anonym.to(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)infobox.ru(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)porndors.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)atspace.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)funpic.de(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)skynet.be(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)kokoom.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)jeeran.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)blog.cz(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)forumw.org(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)gfxgfx.net(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)fateback.com(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)volny.cz(.*)$ [OR]
 
RewriteCond %{HTTP_REFERER} ^(.*)thecanalgallery.com(.*)$

#3 Mon 08 Jan, 2007 18:15

Mighty Gorgon Luca Libralato Joined: August 2006 Posts: 7192 Location: Borgo San Michele	Re: Extra Script For .htaccess Thanks... too late for the beta, but ok for next release... ____________ Luca SEARCH is the quickest way to get support. Icy Phoenix ColorizeIt - CustomIcy - HON
#4 Mon 08 Jan, 2007 18:42

jz Joined: August 2006 Posts: 217 Location: London	Re: Extra Script For .htaccess No prob, untill the final I'll probable have a few more
#5 Thu 11 Jan, 2007 00:51

Mighty Gorgon Luca Libralato Joined: August 2006 Posts: 7192 Location: Borgo San Michele	Re: Extra Script For .htaccess jz wrote: [View Post] No prob, untill the final I'll probable have a few more We are waiting for them... ____________ Luca SEARCH is the quickest way to get support. Icy Phoenix ColorizeIt - CustomIcy - HON
#6 Thu 11 Jan, 2007 02:31

Page 1 of 1

Was this topic useful?

Link this topic
URL
BBCode
HTML

The time now is Fri 30 May, 2025 23:11 • All times are UTC + 1 Hour [DST enabled]

Permissions List

You cannot post new topics
You cannot reply to topics
You cannot edit your posts
You cannot delete your posts
You cannot vote in polls
You cannot attach files
You can download files
You cannot post calendar events

Icy Phoenix

Extra Script For .htaccess

Was this topic useful?

Was this topic useful?