On 8/10/06, Marc Perkel <marc@xxxxxxxxxx> wrote:
Joshua Slive wrote: > On 8/10/06, Marc Perkel <marc@xxxxxxxxxx> wrote: >> I'm running Apache 2.2. Here's what I want to do. I want to restrict >> access based on a failed reverse host lookup. For example, if the IP of >> the client fails revers lookup I want then to not be able to post. >> >> Can that be done? > > There's probably some module that does this, but a quick hack would be > HostnameLookups On > SetEnvIf Remote_Host [0-9]$ noname=1 > <Location /> > Order deny,allow > Deny from env=noname > </Location> > > This *will* slow down your server. > > Joshua. > I'm already looking up host names and it seems fast enough. How would I do this so that only POST is denied. I'm trying to reduce comment spam on blogs and BBS boards.
Inside the <Location> block, wrap the Order and Deny directives in a <LimitExcept GET OPTIONS>. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|