"Mod_security" that can also be used for trackback spam banning



It seems that there is "mod_security" in the module that makes Apache secure. It is a mechanism that is classified as so-called Web Application Firewall (WAF), but it is very powerful. Filtering is possible for all IN and OUT requests (including HTTPS) including header, GET, POST, and response. Log of POST which can not be recorded usually can be recorded.

By using this function, trackback spam can also be deleted on the server side, so PHP etc can be processed before judging and the load by track back spam will be lightened.

Details of setting etc. are as follows. It's also easy to set up as you can also download a black list for mod_security.
The official website is below.

ModSecurity (mod_security) - Open Source Web Application Firewall
http://www.modsecurity.org/

If you read the following two pages you will be able to perform basic installation.

Secure Your Apache With mod_security | HowtoForge - Linux Howtos and Tutorials
http://www.howtoforge.com/apache_mod_security

Protecting Web servers with mod_security (Part 1)
http://www.softek.co.jp/Sec/mod_security1.html

For further detailed settings refer to the following Japanese manual.

ModSecurity 1.9 - Stable - rev 1 manual

Easy trackback basics of avoiding spam.

Journal InTime - referer spam overflow in mod_security (2)
http://shugo.net/jit/20040928.html

In addition, various blacklists for mod_security can be downloaded from the following site, so it becomes quite useful thing just by copying.

Got Root: mod_security rules

It is updated regularly, so check it out.

in Software, Posted by darkhorse_log