Forum Moderators: phranque
I'm having difficulty blocking that without blocking valid UAs.
here's an example from the logs:
###.###.###.###- - [31/Jan/2007:12:34:35 -0600] "GET /images/file.png HTTP/1.1" 304 - "-" "Mozilla/4.0 (compatible;)"
I've tried these and it didn't get blocked:
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/4\.0\ (compatible;)$ [NC]
RewriteRule .* - [F]
RewriteCond %{HTTP_USER_AGENT} "Mozilla\/4\.0\ (compatible;)" [NC]
RewriteRule .* - [F]
RewriteCond %{HTTP_USER_AGENT} "Mozilla/4\.0\ (compatible;)" [NC]
RewriteRule .* - [F]
SetEnvIfNoCase User-Agent (compatible;)$ banned
SetEnvIfNoCase User-Agent "Mozilla/4.0 (compatible;)" banned
And this one that of course blocked almost everyone:
SetEnvIfNoCase User-Agent "(compatible;)" banned
I tried searching but the final ) gets filtered out of every search I tried so finding the answer is proving to be difficult.
(Edited to disable smilies)
[edited by: LunaC at 6:10 pm (utc) on Feb. 1, 2007]
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/4\.0\ \(compatible;\)$ [NC]
RewriteRule .* - [F]
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/4\.0\ \(compatible\;\)$ [NC,OR]
RewriteRule .* - [F,L]
But my log shows,
217.33.165.nnn - - [12/Mar/2008:08:40:18 -0400] "GET /default.css HTTP/1.1" 200 5821 "-" "Mozilla/4.0 (compatible;)"
It seems, that my rewrite rule is not working.
Thanks in advance for any comment/suggestion
As
\(compatible\;\)$
Will see later, if it works now.
As
RewriteCond %{HTTP_USER_AGENT} ^Mozilla/4\.0\ \(compatible;\)$ [NC,OR]
RewriteRule .* - [F,L]
Please, somebody help me.
The literal parentheses must be escaped for the pattern to match:
Hey Jim,
I don't generally use Rewrites for UA's rather mod_SetEnvIf.
Just for clarification, is there a difference between the "escape" requirements of these two modules?
I have lines in mod_SetEnvIf that have been functioning for an eternity without use-requiring "escape" of parentheses.
Thanks.
Don
You don't need the L on the rule either.
Why not try the example posted above by the forum moderator?
Please, somebody help me.
What do your error logs say?
Are these the only lines in you htaccess?
Have you turned on "Rewrite on" previous to this line?
Jim
As it is the last rule, so i have a L there.
To Wilderness, yes i have
Options +FollowSymLinks
RewriteEngine on
as the first line.
Could not understand, what you asked me to check in my error log, as the request is getting code 200.. will there be anything there?
And many thanks to everyone for your help.
As
In that case, go through the list of blocked user-agent RewriteConds, and be sure that you have a [OR] on every one of them except the last.
[L] used with [F] is redundant, as mod_rewrite stops processing immediately if the conditions for a Forbidden response are met. See the mod_rewrite documentation of [F] flag processing.
Assuming you've made the regular-expressions pattern changes suggested above, and have checked that all User-agent patterns are [OR]ed, then there is nothing wrong with the rule itself. Look for previous rules in this or any .htaccess files above this one which could be by-passing this rule by stopping mod_rewrite processing, or by internally rewriting the URL.
You could also try using only the code I provided above as a stand-alone rule, and move it up in your .htaccess file(s) a few rules at a time. If it starts working when moved toward the top of the file, then the problem is between that point and your original access-control rule.
Jim
and have checked that all User-agent patterns are [OR]ed
The problem was lying there. I added a new rewrite condition, but forgot to [OR]ed it, which was causing the problem. Now it is working perfectly. :)
Once again, Hats off to you Jim and three cheers for WebmasterWorld.
As
