Guymon » Mod_Rewrite als Web-Firewall

Stoppt die Vorratsdatenspeicherung! Jetzt klicken &handeln!

Willst du auch an der Aktion teilnehmen? Hier findest du alle relevanten Infos und Materialien:

You are reading

July 2, 2008
Tags apache, firewall, mod_rewrite, Security.
No comments yet
Mod_Rewrite als Web-Firewall

Mod_Rewrite als Web-Firewall

In Episode 109 von PaulDotCom werden einige rewrite Rules für Apache vorgestellt, die Webanwendungen um einiges sicherer machen.

RewriteEngine on

	RewriteLogLevel 3

	RewriteLog /var/log/apache2/rewrite.log

	RewriteCond %{REQUEST_METHOD} ^(HEAD|TRACE|DELETE|TRACK) [NC,OR]

	RewriteCond %{THE_REQUEST} ^.*(\\r|\\n|%0A|%0D).* [NC,OR]

	RewriteCond %{HTTP_REFERER} ^(.*)(<|>|'|%0A|%0D|%27|%3C|%3E|%00).* [NC,OR]

	RewriteCond %{HTTP_COOKIE} ^.*(<|>|'|%0A|%0D|%27|%3C|%3E|%00).* [NC,OR]

	RewriteCond %{REQUEST_URI} ^/(,|;|:|<|>|">|"<|/|\\\.\.\\).{0,9999}.* [NC,OR]

	RewriteCond %{HTTP_USER_AGENT} ^$ [OR]

	RewriteCond %{HTTP_USER_AGENT} ^(java|curl|wget).* [NC,OR]

	RewriteCond %{HTTP_USER_AGENT} ^.*(winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner).* [NC,OR]

	RewriteCond %{HTTP_USER_AGENT} ^.*(libwww|curl|wget|python|nikto|scan).* [NC,OR]

	RewriteCond %{HTTP_USER_AGENT} ^.*(<|>|'|%0A|%0D|%27|%3C|%3E|%00).* [NC,OR]

	RewriteCond %{QUERY_STRING} ^.*(;|<|>|'|"|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|cast|set|declare|drop|update|md5|benchmark).* [NC,OR]

	RewriteCond %{QUERY_STRING} ^.*(localhost|loopback|127\.0\.0\.1).* [NC,OR]

	RewriteCond %{QUERY_STRING} ^.*\.[A-Za-z0-9].* [NC,OR]

	RewriteCond %{QUERY_STRING} ^.*(<|>|'|%0A|%0D|%27|%3C|%3E|%00).* [NC]

	RewriteRule .* - [F]

Possibly related posts (automatically generated)

Comments are closed

Copyright © 2004–2009. All rights reserved. – Impressum

RSS Feed. This blog is proudly powered by Wordpress and uses Modern Clix, a theme by Rodrigo Galindez.