Jump to content

Archived

This topic is now archived and is closed to further replies.

alexman

deny an IP address and a whole subnet, but still access my site

Recommended Posts

Please have a look at my htaccess file below.

I have banned access of an IP from Ukraina: 46.119.118.152

I also deny all the subnet: 46.119.0.0/16

Despite of this, I can see he enter daily on my site.What is wrong in my htaccess?

I also have the same problems with IPs from China.

 

 

# Begin Ultimate SEO V2.2d

Options +FollowSymLinks

RewriteEngine On

 

# RewriteBase instructions

# Change RewriteBase dependent on how your shop is accessed as below.

# http://www.mysite.com = RewriteBase /

# http://www.mysite.com/catalog/ = RewriteBase /catalog/

# http://www.mysite.com/catalog/shop/ = RewriteBase /catalog/shop/

 

# Change the following line using the instructions above

 

 

RewriteBase /

 

RewriteRule ^(.*)-p-(.*).html$ product_info.php?products_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-c-(.*).html$ index.php?cPath=$2&%{QUERY_STRING}

RewriteRule ^(.*)-m-(.*).html$ index.php?manufacturers_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-pi-(.*).html$ popup_image.php?pID=$2&%{QUERY_STRING}

RewriteRule ^(.*)-by-(.*).html$ all-products.php?fl=$2&%{QUERY_STRING}

RewriteRule ^(.*)-t-(.*).html$ articles.php?tPath=$2&%{QUERY_STRING}

RewriteRule ^(.*)-a-(.*).html$ article_info.php?articles_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-au-(.*).html$ articles.php?authors_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-pr-(.*).html$ product_reviews.php?products_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-pri-(.*).html$ product_reviews_info.php?products_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-f-(.*).html$ faqdesk_info.php?faqdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-fc-(.*).html$ faqdesk_index.php?faqPath=$2&%{QUERY_STRING}

RewriteRule ^(.*)-fri-(.*).html$ faqdesk_reviews_info.php?faqdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-fra-(.*).html$ faqdesk_reviews_article.php?faqdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-i-(.*).html$ information.php?info_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-links-(.*).html$ links.php?lPath=$2&%{QUERY_STRING}

RewriteRule ^(.*)-pm-([0-9]+).html$ info_pages.php?pages_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-n-(.*).html$ newsdesk_info.php?newsdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-nc-(.*).html$ newsdesk_index.php?newsPath=$2&%{QUERY_STRING}

RewriteRule ^(.*)-nri-(.*).html$ newsdesk_reviews_info.php?newsdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-nra-(.*).html$ newsdesk_reviews_article.php?newsdesk_id=$2&%{QUERY_STRING}

RewriteRule ^(.*)-po-([0-9]+).html$ pollbooth.php?pollid=$2&%{QUERY_STRING}

# End Ultimate SEO V2.2d

 

########## Hardcore Security for osCommerce HTACCESS v1.0.1 ###########

########## AUTHOR: TE TAIPO - rohepotae@gmail.com ###########

## See readme.txt for instructions ###########

 

Options +SymLinksIfOwnerMatch

 

# disable the server signature

ServerSignature off

 

# set the server administrator email

SetEnv SERVER_ADMIN sales@@myshoplive.com

 

# ~~~~ START OF FILTERING ~~~~~ #

 

# secure htaccess and other files

 

<FilesMatch "(\.htaccess|\.htpasswd)$">

Order Allow,Deny

Deny from all

</FilesMatch>

 

# add whatever configuration files here that are hosted on your server

# that you want blocked

<FilesMatch "^(php\.ini|php5\.ini)$">

Order allow,deny

Deny from all

</FilesMatch>

 

# disable access to the osCommerce config.php

<Files ~ "includes/configure.php$">

deny from all

</Files>

 

# disable access to the osCommercce admin config.php

<Files ~ "myadmin/includes/configure.php$">

deny from all

</Files>

 

<IfModule mod_rewrite.c>

RewriteEngine On

RewriteBase /

 

# server request method

RewriteCond %{REQUEST_METHOD} !^(GET|POST|HEAD|OPTIONS) [OR]

 

# osCommerce 2.2x

RewriteCond %{THE_REQUEST} ^.*\.php/login\.php.*$ [NC,OR]

RewriteCond %{THE_REQUEST} ^.*login.php\?action\=backupnow.*$ [NC,OR]

 

# _REQUEST

RewriteCond %{THE_REQUEST} \?\ HTTP/1. [NC,OR]

RewriteCond %{THE_REQUEST} \/\*\ HTTP/1. [NC,OR]

RewriteCond %{THE_REQUEST} %20HTTP/1. [NC,OR]

RewriteCond %{THE_REQUEST} cgi-bin [NC,OR]

RewriteCond %{THE_REQUEST} (showimg=|cookies=|passwd) [NC,OR]

RewriteCond %{QUERY_STRING} (file_get_contents\(|setcookie\() [NC,OR]

RewriteCond %{QUERY_STRING} (\,0x3a\,|unescape\(|fromcharcode|pwtoken_get|php_uname|passthru\() [NC,OR]

RewriteCond %{QUERY_STRING} (eval\%28|eval\%2528|eval\(|base64_(en|de)code[^(]*\([^)]*\)|base64_encode.*\(.*\)) [NC,OR]

RewriteCond %{QUERY_STRING} (JHs\=|replace\(|return\%20clk|boot\.ini|php\/password_for|announce\?info_hash) [NC,OR]

RewriteCond %{QUERY_STRING} (\_START\_|\=alert\(|mysql\_query|\.\.\/cmd|rush\=|EXTRACTVALUE\(|phpinfo\() [NC,OR]

RewriteCond %{QUERY_STRING} (\/frameset|\$\_SESSION|\$\_REQUEST|\$HTTP\_|mosConfig\_|inurl\:|\/iframe|onload\=) [NC,OR]

RewriteCond %{THE_REQUEST} (allow_url_fopen|\%23include\+\<|get_defined_vars\(|\%22\'\%2f|error_reporting\(0\)) [NC,OR]

RewriteCond %{THE_REQUEST} (fwrite\(|waitfor\%20delay|shell_exec|gzinflate\(|prompt\(|php_value\%20auto) [NC,OR]

RewriteCond %{THE_REQUEST} (onmouseover|onmousedown|ct\(this) [NC,OR]

RewriteCond %{THE_REQUEST} (ftp\:\/\/|1\=1\-\-|current\_user\(\)|\%3Cform|sha1\(|self\/environ) [NC,OR]

RewriteCond %{THE_REQUEST} (\<\%3Fphp|\%\%|1\+and\+1|\/iframe|\$\_GET|document\.cookie|onload\%3d|onunload\%3d) [NC,OR]

RewriteCond %{THE_REQUEST} (\%00|hex\_ent|ob\_starting|PHP\_SELF|etc\/passwd|shell\_exec|data\:\/\/|\$\_SERVER|\$\_POST) [NC,OR]

RewriteCond %{THE_REQUEST} (\%bf\%5c\%27|\%bf\%27|\%ef\%bb\%bf|\%8c\%5c|\%a3\%27) [NC,OR]

RewriteCond %{THE_REQUEST} (\=0\^\() [NC,OR]

RewriteCond %{THE_REQUEST} (\@\@datadir|\@\@version|version\(\)|localhost|\}\)\%3B|Set\-Cookie|\%253C\%2Fscript\%253E) [NC,OR]

RewriteCond %{THE_REQUEST} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]

 

# http referer

RewriteCond %{HTTP_REFERER} (<|>|'|%0A|%0D|%00) [NC,OR]

 

# mysql related

RewriteCond %{QUERY_STRING} (null\,null|outfile|load_file) [NC,OR]

RewriteCond %{QUERY_STRING} union([^a]*a)+ll([^s]*s)+elect [NC,OR]

RewriteCond %{QUERY_STRING} (order).*(by).*(\%[0-9A-Z]{0,2}) [NC,OR]

RewriteCond %{QUERY_STRING} (waitfor|delay|shutdown).*(nowait) [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(ascii\(|bin\(|benchmark\(|cast\(|char\(|charset\(|collation\(|concat\(|concat_ws\(|table_schema) [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(conv\(|convert\(|count\(|database\(|decode\(|diff\(|distinct\(|elt\(}encode\(|encrypt\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(extract\(|field\(|floor\(|format\(|hex\(|if\(|in\(|information_schema|insert\(|instr\(|interval\(|lcase\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(left\(|length\(|load_file\(|locate\(|lock\(|log\(|lower\(|lpad\(|ltrim\(|max\(|md5\(|mid\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(mod\(|now\(|null\(|ord\(|password\(|position\(|quote\(|rand\(|repeat\(|replace\(|reverse\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(right\(|rlike\(|row_count\(|rpad\(|rtrim\(|_set\(|schema\(|sha1\(|sha2\(|sleep\(|soundex\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(space\(|strcmp\(|substr\(|substr_index\(|substring\(|sum\(|time\(|trim\(|truncate\(|ucase\() [NC,OR]

RewriteCond %{QUERY_STRING} (union|and|position).*(select).*(unhex\(|upper\(|_user\(|user\(|values\(|varchar\(|version\(|xor\() [NC,OR]

 

# cookies

RewriteCond %{HTTP_COOKIE} (<|>|'|%0A|%0D|%27|%3C|%3E|%00) [NC,OR]

RewriteCond %{HTTP_COOKIE} (eval\%28|eval\%2528|eval\(|information_schema) [NC,OR]

RewriteCond %{HTTP_COOKIE} (null\,null|outfile) [NC,OR]

RewriteCond %{HTTP_COOKIE} union([^a]*a)+ll([^s]*s)+elect [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(ascii\(|bin\(|benchmark\(|cast\(|char\(|charset\(|collation\(|concat\(|concat_ws\(|table_schema) [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(conv\(|convert\(|count\(|database\(|decode\(|diff\(|distinct\(|elt\(}encode\(|encrypt\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(extract\(|field\(|floor\(|format\(|hex\(|if\(|in\(|information_schema|insert\(|instr\(|interval\(|lcase\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(left\(|length\(|load_file\(|locate\(|lock\(|log\(|lower\(|lpad\(|ltrim\(|max\(|md5\(|mid\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(mod\(|now\(|null\(|ord\(|password\(|position\(|quote\(|rand\(|repeat\(|replace\(|reverse\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(right\(|rlike\(|row_count\(|rpad\(|rtrim\(|_set\(|schema\(|sha1\(|sha2\(|sleep\(|soundex\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(space\(|strcmp\(|substr\(|substr_index\(|substring\(|sum\(|time\(|trim\(|truncate\(|ucase\() [NC,OR]

RewriteCond %{HTTP_COOKIE} (union|and|position).*(select).*(unhex\(|upper\(|_user\(|user\(|values\(|varchar\(|version\(|xor\() [NC,OR]

 

# LFI and session hijacking

RewriteCond %{QUERY_STRING} \=(\.\./\.\.//?)+ [OR]

RewriteCond %{QUERY_STRING} \=(\.\.//\./?)+ [OR]

RewriteCond %{QUERY_STRING} \=(\.\.\\\.\./?)+ [OR]

RewriteCond %{QUERY_STRING} \=(\.\.\\\\\./?)+ [OR]

RewriteCond %{QUERY_STRING} \/tmp\/sess_ [NC,OR]

RewriteCond %{QUERY_STRING} php:\/\/filter\/read=convert\.base64-(en|de)code\/ [NC,OR]

 

# if expose_php is set to on

RewriteCond %{QUERY_STRING} \=PHP[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12} [NC]

 

RewriteRule ^(.*)$ - [F,L]

</IfModule>

 

# ~~~~ END OF FILTERING ~~~~~ #

# OPTIONAL EXTRAS

# Uncomment and use.

# If Error 500 encountered then comment out

 

# disable directory browsing, if error 500 encountered then comment out

# Options All -Indexes

 

# prevent folder listing, if error 500 encountered then comment out

# IndexIgnore *

 

# php_value session.use_trans_sid 0

 

# auto keep the config file read only

# chmod configure.php files 444

 

# turn off magic_quotes_gpc

# <ifmodule mod_php4.c>

# php_flag magic_quotes_gpc off

# </ifmodule>

 

 

 

 

 

# filter for most common exploits

 

RewriteCond %{HTTP_USER_AGENT} libwww-perl [OR]

 

RewriteCond %{QUERY_STRING} tool25 [OR]

 

RewriteCond %{QUERY_STRING} cmd.txt [OR]

 

RewriteCond %{QUERY_STRING} cmd.gif [OR]

 

RewriteCond %{QUERY_STRING} r57shell [OR]

 

RewriteCond %{QUERY_STRING} c99 [OR]

 

 

# ban spam bots

 

RewriteCond %{HTTP_USER_AGENT} almaden [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Anarchie [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^ASPSeek [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^attach [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^autoemailspider [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^BackWeb [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Bandit [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^BatchFTP [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot@yahoo.com [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Buddy [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^bumblebee [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^CherryPicker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^CICC [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Collector [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Copier [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Crescent [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Custo [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^DA [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^DIIbot [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^DISCo\ Pump [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Download\ Wonder [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Downloader [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Drip [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^DSurf15a [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EasyDL/2.99 [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR]

 

RewriteCond %{HTTP_USER_AGENT} email [NC,OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EmailCollector [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^FileHound [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]

 

RewriteCond %{HTTP_USER_AGENT} FrontPage [NC,OR]

 

RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^GetSmart [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^gigabaz [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Go\!Zilla [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^gotit [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Grabber [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^grub-client [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^HMView [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^HTTrack [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^httpdown [OR]

 

RewriteCond %{HTTP_USER_AGENT} .*httrack.* [NC,OR]

 

RewriteCond %{HTTP_USER_AGENT} ^ia_archiver [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Indy*Library [OR]

 

RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR]

 

RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^InternetLinkagent [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^InternetSeer.com [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Iria [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^JBH*agent [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^JustView [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^larbin [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^LexiBot [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^lftp [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Link*Sleuth [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^likse [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Link [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^LinkWalker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mag-Net [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Magnet [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Memo [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Microsoft.URL [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mirror [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*Indy [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*NEWT [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Mozilla*MSIECrawler [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^MS\ FrontPage* [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^MSFrontPage [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^MSIECrawler [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^MSProxy [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NetMechanic [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^NICErsPRO [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Ninja [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Openfind [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^pavuk [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Ping [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^PingALink [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Pockey [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^psbot [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Pump [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^QRVA [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^RealDownload [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Reaper [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Recorder [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Scooter [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Seeker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Siphon [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^sitecheck.internetseer.com [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SlySearch [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Snake [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SpaceBison [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^sproose [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Stripper [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Sucker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Szukacz [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^URLSpiderPro [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Vacuum [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[bb]andit [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^webcollage [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Web\ Downloader [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebEMailExtrac.* [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebHook [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebMiner [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebMirror [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Website [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Webster [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]

 

RewriteCond %{HTTP_USER_AGENT} WebWhacker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Wget [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Whacker [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Widow [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^x-Tractor [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Xenu [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Zeus.*Webster [OR]

 

RewriteCond %{HTTP_USER_AGENT} ^Zeus

 

RewriteRule ^.* - [F,L]

 

RewriteCond %{HTTP_REFERER} ^http://www.myshop.com$

 

RewriteRule !^http://[^/.]\.myshop.com.* - [F,L]

 

<Limit GET HEAD POST>

 

order deny,allow

#ukraina

deny from 46.119.0.0/16

deny from 46.119.118.152

allow from all

</Limit>

 

 

# ban domains

 

deny from .br.geocities.com

 

# deny most common except .php

 

<FilesMatch "\.(inc|tpl|h|ihtml|sql|ini|conf|class|bin|spd|theme|module|exe)$">

 

deny from all

 

 

 

# Disable .htaccess viewing from browser

 

<Files ~ "^\.ht">

 

Order allow,deny

 

Deny from all

 

Satisfy All

 

</Files>

 

</FilesMatch>

 

# Disable .htaccess viewing from browser

 

<Files ~ "^\.ht">

Order allow,deny

Deny from all

Satisfy All

</Files>

<Files 403.shtml>

order allow,deny

allow from all

</Files>

Share this post


Link to post
Share on other sites

@@alexman

 

Hi Alex,

 

You should try IP Trap addon. Its really very good addon which I always recommend to must have to be installed on any osCommerce store.


Like post..hit LIKE button.

 

osCommerce | Joomla | WordPress | Magento | SEO | CakePHP | CI

 

Guaranteed Website Speed Optimization!!

Share this post


Link to post
Share on other sites
<Limit GET HEAD POST>

 

The limit directive only blocks requests that are either GET, HEAD or POST requests. An attacker can send any request type they choose. If you are wanting to ban IPs try using it without the limit directive altogether.

 

order allow,deny

deny from xxx.xxx.xxx.xxx

allow from all

 

The limit directives purpose to restrict access to certain request types themselves rather than restrict users to a site. It has been widely misinterpreted by coders and has left many a website unguarded until recent updates to apache.

 

I also see you are using some experimental stuff I wrote a few years back. I would suggest you use osC_Sec addon itself rather than the htaccess code on a working shop. See the url for osC_Sec in my signature.


- Stop Oscommerce hacks dead in their tracks with osC_Sec (see discussion here)
- Another discussion about infected files ::here::
- A discussion on file permissions ::here::
- Site hacked? Should you upgrade or not, some thoughts ::here::
- Fix the admin login bypass exploit here
- Pareto Security: New security addon I am developing, a remake of osC_Sec in PHP 5 with a number of fixes
- BTC:1LHiMXedmtyq4wcYLedk9i9gkk8A8Hk7qX

Share this post


Link to post
Share on other sites

×