Skip to main content

All Questions

Tagged with
Filter by
Sorted by
Tagged with
-1 votes
1 answer
638 views

how block this spam bot using htaccess?

I have this spam bot showing in google analytics (screen capture). I tried blocking it using this htaccess configuration RewriteCond %{HTTP:Accept-Language} (Trump) [NC] RewriteRule .* www.google....
hunter99's user avatar
  • 101
0 votes
0 answers
81 views

Centos Apache sending spam from my server [duplicate]

This question is not a duplicate of the other, the other is general, this is very specific. my question is similar to - Who or what is sending spam from my server ( CentOS / Apache / suPHP ) but ...
Joelio's user avatar
  • 187
2 votes
2 answers
3k views

Apache access log full of unauthorized and suspicious requests, how to take action

I have setup a small tiny VPS for my own website. Since it was live, I see many suspicious activity in the access.log file. When I was on a shared hosting I did not have access to this file and ...
Dumbo's user avatar
  • 115
0 votes
0 answers
141 views

How to block referral source on apache with special characters?

I've been getting referral spam on my site. I've tried several options to block it, but it still hits it. I think it has to do with being special characters on the referral? This is the referral ...
smorhaim's user avatar
  • 229
0 votes
0 answers
431 views

mod_evasive: Stop attacks against wp-login.php

i would like to stop attacks against some user's WordPress-installations on my server. This is an example of an attack: 91.208.65.12 - - [20/Oct/2015:10:33:08 +0200] "POST /wp-login.php HTTP/1.0" ...
MyFault's user avatar
  • 933
-4 votes
1 answer
700 views

How to detect which PHP script is sending SPAM [duplicate]

A php script is sending tons of emails. I want to detect what is the source. All emails are sent by the use www-data which the user used by apache. When I check process, I have this result : www-data ...
Dougui's user avatar
  • 167
2 votes
0 answers
52 views

How To Stop Apache Logging Client Denied By Server Errors [duplicate]

I get an annoying amount of spam traffic from the Ukrane, Russia, Korea etc. I have setup rules in my .htaccess file to block all of these countries and it's working great. The problem i have now is ...
Dan Hastings's user avatar
0 votes
1 answer
1k views

Block an http referrer on the server level

I am seeing multiple fake http referrers to several sites on my server, which for the most part doesn't bother me, except that they distort visitor stats. I have filtered the questionable domains out ...
Matthew S's user avatar
  • 209
2 votes
3 answers
228 views

Block people searching for server admin pages

Occasionally I flip through our (apache) access log and I often come across people trying to fish for admin pages. For example, they are trying to access pages like: /wp-login.php /administrator/...
Hubbo's user avatar
  • 23
0 votes
1 answer
452 views

Apache2 Mod_spamhaus Whitelist

We are using Apache2 mod_spamhaus and many customers were banned using the "Post" method. There is no way to deny mod_spamhaus ban continuously our customers making false positive or ban ...
User-N's user avatar
  • 265
1 vote
0 answers
182 views

Email spam/hack and odd apache logs around the same time

A friend of mine started getting failed delivery notices yesterday (June 23rd, 2014) on all of his domain e-mails, and so he asked me to look into it. I have been looking through various logs and his ...
Thomas F.'s user avatar
  • 111
11 votes
2 answers
15k views

How can I test if my apache server is an open proxy?

Is there a curl command that will validate if a server is acting as an open proxy? I've tried curl --proxy http://<my server>:80 http://yahoo.com But the response from apache is: ...
Will's user avatar
  • 362
0 votes
2 answers
170 views

Dealing with Apache spam

I am recieving a lot of suspicious requests which cause Apache to use a lot of memory (over 1GB) [Mon Feb 24 09:48:29 2014] [error] [client 120.37.238.125] PHP Fatal error: Allowed memory size of ...
vojty's user avatar
  • 3
2 votes
1 answer
125 views

Simulating spam request?

I'm trying to test out some blacklist directives that I've just implemented., Is there a way to simulate spam requests?
fraxture's user avatar
  • 161
2 votes
1 answer
1k views

I'm getting 500s while LIMIT / block http POST request w/ Apache(

I'm trying to use core - Apache HTTP Server's <LIMIT> Directive to limit spamers from doing POST's to my website(s): <Limit POST> Order deny,allow Include /usr/local/...
alexus's user avatar
  • 13.5k
0 votes
2 answers
1k views

Prevent server beeing flooded with requests

I'm hosting a Wordpress-blog on an Apache server (shared hosting). For some reasons I've been receiving like 100 requests per second to xmlrpc.php for a few days. The access.log looks like this: ... ...
Hedge's user avatar
  • 163
1 vote
1 answer
1k views

Postfix server begins send spam immediately after starting

I've installed a postfix server on a debian OS & also I've installed apache 2.0 with PHP on same machine. Several days ago my server begun to send a lot of spam messages via postfix. I understood ...
Ehsan Khodarahmi's user avatar
2 votes
1 answer
242 views

Open Proxy Spam Traffic

I have an apache server that was misconfigured and left as an open proxy for a week. A bunch of requests for forwarding pay-per-click advertising started streaming in and using our server. This ...
Will's user avatar
  • 362
1 vote
1 answer
271 views

Recovering a server from being an open relay

One of our Mac Pro machines running Apache was inadvertently acting as a forward proxy with a public IP, after some organisation proxy rules changed. Consequently it was discovered by spammers and ...
brass-kazoo's user avatar
2 votes
3 answers
1k views

Force Apache2.2 to drop a request

Long story short we recently had an account on one of a shared hosts compromised, the issue has been resolved but the affected account is still being spammed with over a million requests a day to a ...
xzyfer's user avatar
  • 323
1 vote
3 answers
253 views

Comment Spam crashing Mediatemple dv Server

I have a dv (Dedicated Virtual) server at Mediatemple where I am hosting over 700 Wordpress blogs. Lately I have been facing a problem with comment spam wherein my the server memory utilization shoots ...
paganwinter's user avatar
2 votes
3 answers
384 views

Can Spammers get your email address if it's set as postmaster, webmaster, etc?

When you set-up a "postmaster" email in postfix/cyrus/dovecot/fetchmail, etc, or a web-master address in an apache vhost, can spammer's query your server and get that information? Or is it only for ...
Nick's user avatar
  • 4,646
82 votes
11 answers
91k views

Dealing with HTTP w00tw00t attacks

I have a server with apache and I recently installed mod_security2 because I get attacked a lot by this: My apache version is apache v2.2.3 and I use mod_security2.c This were the entries from the ...
Saif Bechan's user avatar
2 votes
5 answers
2k views

Google marks seemingly perfect emails as spam

First post - was directed here from stackoverflow! The problem: Google marks seemingly correctly formatted emails from my apache/postfix server as spam. Sample email as follows; (I have replaced my ...
GBC's user avatar
  • 475
1 vote
1 answer
56 views

Disallowing proxies from POSTing

I want to disallow proxies and spambots from posting in my website. What is the best way to do so? I've downloaded a blacklist and my first idea was to disable each of ips in my .htaccess file, but ...
user21690's user avatar
  • 177
2 votes
2 answers
468 views

How to gain control of growing log files in 3 separate directories on my VPS? [closed]

I've got a VPS account that I set up with lxadmin. I've got a stats file at /home/http/tanguay.info/stats/ which is filling up extremely fast. Looking in it, I see that there are 1000s of entries ...
Edward Tanguay's user avatar
0 votes
2 answers
973 views

Apache Rewrite Based on Mime Type

I’ve got a virtual host in my Apache config to deal with ads, spam, and malware sites. It works by having bad servers redirect to a specific loopback address that is mapped to the virtual host via the ...
Synetech's user avatar
  • 948
7 votes
7 answers
8k views

Equivalent to denyhosts, but for HTTP requests?

My web server (apache2) is continually pounded by malicious bots, asking for URLs like these: /blog/tag/pnphpbb2//index.php?name=PNphpBB2&file=posting&mode=quote/index.php?name=PNphpBB2&...
slacy's user avatar
  • 930
3 votes
2 answers
349 views

Dealing with referrer spam

One of our primary webservers, which runs Apache on Ubuntu, is coming under attack from heaps of referrer SPAM requests lately. There's enough of this that it is really sucking up our internet ...
Glenn's user avatar
  • 203