Go Back   vb.org Archive > Community Central > Community Lounge
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 04-19-2016, 01:12 PM
Dr.CustUmz's Avatar
Dr.CustUmz Dr.CustUmz is offline
 
Join Date: Aug 2013
Location: USA
Posts: 647
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Ubuntu Server Firewall blocking

I've got my server all set up, and today I found the need to enable the firewall. I have spam-o-matic installed, i have configured my htaccess to

Code:
RewriteEngine on
RewriteCond %{HTTP_REFERER} ^http://*.vhoster\.org [NC,OR]
RewriteCond %{HTTP_REFERER} ^http://*vhoster\.org [NC,OR]
RewriteCond %{HTTP_REFERER} ^http://.*vhoster\.org [NC]
RewriteCond %{REMOTE_ADDR} ^91\.
RewriteRule .* - [F] 

order allow,deny
deny from 91.
deny from vhoster.org
deny from *vhoster.org
allow from all
something has to be wrong in that...

nothing is blocking this damn auto reg/post bot. well spam-o-matic's doing a good job keeping it from registering but, occasionally one slips through. its just annoying, and the problem is, the IP keeps changing.



so i enabled UFW and got that all set up but i cant figure out how to block "IPs begining with"

i have tried the following commands
Code:
ufw deny from 91*
Code:
ufw deny from 91/24
Code:
ufw deny from 91.*
Code:
ufw deny from 91
Code:
ufw deny from 91.
so how can i prevent this dang bot from accessing my site....?

--------------- Added [DATE]1461080252[/DATE] at [TIME]1461080252[/TIME] ---------------

I think this may have done it
Code:
ufw deny OUT from any to 91.200.12.64/32
ufw deny OUT from any to 91.200.12.0/22
ufw deny from 91.200.12.64/32
ufw deny from 91.200.12.0/22


htaccess:
Code:
RewriteEngine on
RewriteCond %{REMOTE_ADDR} ^91\.200\.12\.64$ [NC]
RewriteCond %{REMOTE_ADDR} ^91\.200\.(0*1+[2-5]+)\.([0-2]+[0-5]+[0-5]+)$
RewriteRule .* - [F,L]

order allow,deny
deny from 91.200.12.0/24
allow from all
and for a little more i threw this on the server
https://github.com/pushinginertia/ip...blacklist.conf

and added the ip ranges there too

anyone else got any more tips?
Reply With Quote
  #2  
Old 05-16-2016, 12:35 AM
Mattwhf Mattwhf is offline
 
Join Date: May 2016
Posts: 190
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I would suggest to improve your addons to protect your forum from spambots instead of blocking IP ranges.
Reply With Quote
  #3  
Old 07-30-2016, 06:24 PM
kerrghann's Avatar
kerrghann kerrghann is offline
 
Join Date: Jul 2012
Location: Hawaii
Posts: 45
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Mattwhf View Post
I would suggest to improve your addons to protect your forum from spambots instead of blocking IP ranges.
As Mattwhf has stated, all blocking IP ranges does is block legitimate users.

It was a good tactic back when Static IP addresses were common. Now a days almost everyone is on a dynamic IP address. Not to mention that spoofing an IP address isn't difficult at all.

I personally use a honeypot in conjunction with vB Bad Behavior.

There is a section in there called "http:BL API Key"

If you host your own server, you can set up a honeypot on it and then you'll receive your own API Key. In addition, if you're willing to, you can hide a link to my honeypot in your site (I generate you a quicklink or something) and then I'll let you use my API key. I'll need to look over Project Honeypots EULA to make sure this is alright, but I believe it should be.

Regardless, I have very little spam.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 04:55 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.03754 seconds
  • Memory Usage 2,189KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (8)bbcode_code
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (3)post_thanks_box
  • (3)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (3)post_thanks_postbit_info
  • (3)postbit
  • (3)postbit_onlinestatus
  • (3)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete