USERAGENT BLOCK how

[bacanak]

I searched the forum but could not find any info

I wanna Block "Attacker" from accesing my server all headers with " attacker" should be dropped
please advice thnx

 

[mistwang]

Please use URL rewrite for now, Apache compatible BrowserMatch will be added soon.

 

[brrr]

Please use URL rewrite for now, Apache compatible BrowserMatch will be added soon.

Bump.

Has this feature arrived? I can't find it.

If it never arrived, what would a v3.3.14 Request Filter rule look like that, for example, performed the same as the following in an Apache http.conf:

BrowserMatchNoCase ^Jakarta badbot
<Files *>
Order Allow,Deny
Allow from all
Deny from env=badbot
</Files>

?

 

[brrr]

Sorry - should have searched forum: request filter rule answered here:

http://www.litespeedtech.com/support/forum/showthread.php?t=1618&highlight=request+filter
Example Request Filter rule:

SecFilterSelective HEADER_USER_AGENT ^Jakarta

Checked and working.

 

[aww]

Another vote for BrowserMatch

IE8 is going to practically require BrowserMatch to not break existing webpages.

Should be simple to impliment no? It's just a matter of testing the requested string against the user-agent?

 

[mistwang]

Since you can implement the same logic with a rewrite rule, we don't see the need for supporting BrowserMatch explicitly.

 

[aww]

Remember the idea is to be as completely compatible with existing htaccess files as possible.

I want to be able to use something as simple as this:

BrowserMatch MSIE ie8-support
Header set X-UA-Compatible IE=7 env=ie8-support