Mod Sec

Block USerAgent dengan Mod Security

Hadi Suwantoro

Jika anda menemukan terlalu banyak request berdasarkan useragent misalnya seperti

66.27.207.84 – – [11/Jul/2014:14:00:46 +0700] “POST /xmlrpc.php HTTP/1.1” 200 751 “-” “Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5)”

Maka anda dapat memblokirnya dengan cara

SecRule REQUEST_HEADERS:User-Agent “WinHttpRequest” “log,id:9900002020,msg:’tidak boleh di disable'”

selamat mencoba.

No related posts.

Leave a Reply

Your email address will not be published. Required fields are marked *