I previously posted about using the mod_geoip Apache module to control web access via .htaccess files or server configuration adjustments (i.e. editing httpd.conf.) Here we are adding the mod_security Apache module into the mix.
Wait! if we can control access via mod_geoip why do we need mod_security?
The simple answer is…. you don’t need it – but [...]
|
|||||
|
This is a 2D-barcode containing the address of our |
The GOOD news – using the GeoIP module (mod_geoip.c.) can be quite simple. The module provides much more than simply a relatively easy means to manage web server access – it opens up some opportunities for data mining. Well, it happened to Google (and a number of other companies in late 2009, early 2010) – hackers reached deep? into the information trove. So, who cares? This goes on constantly, yes? I recently found that some users could not access this site due to what seemed to be ‘false positive’ matches in the mod_security rule base. In this particular instance the rule was one for ‘backdoor’ or ‘trojan’ access attempts. |
||||
|
Copyright © 2010 Dale Reagan - All Rights Reserved 209 queries. 1.852 seconds. |
|||||