Topic: Is it possible to drop connections?

[alexerwin]

Is it possible to drop connections using apache? No return of a status code or anything else? People on my blacklist would encounter behavior. I tried using mod_security and it said in my log that drop is not implemented for Windows. I want to make it appear like port 80 is not listening to the request if the ip is on the blacklist.

Thanks

Alex

[James Blond]

You can't disallow a listen, but you can deny the access from your server with allow/deny

[code]
Order Deny,Allow
Deny from 192.168.0.1 192.168.0.5
Allow from all

[alexerwin]

I wanted to do this dynamically by looking up an entry in a database and simply not respond to a query on port 80 if the ip address is in the blacklist. I want to make it like server isnt even there.

I got a lot of crackers and hakkers trying to break into php modules. Even though I dont even run phpmysql, or the variety, I still want to black list these host and their bots.

[glsmith]

Hey alex,

Over time that list is going to get huge and slow down the server most likely.
I get those same attempts (we all do), you just learn to live with them and as long as you've protected your server good, those should not be a problem.

I do wish we could drop the connection. Apache 1.3 would just "not answer" if it was told not to answer using the deny/allow's .. but no such luck with 2.x

[alexerwin]

I havent played with it but its open source. Maybe if it has some accessible format for storage of blocked ip addresses, you could use Apache to "instruct" Netdefender to block that IP.