On Wed, Feb 2, 2011 at 9:24 AM, Martin Langhoff <martin.langh...@gmail.com>wrote:
> On Tue, Feb 1, 2011 at 6:28 PM, Anna <ascho...@gmail.com> wrote: > > My test XS at home has a FQDN and is open to the outside. Therefore this > is > > probably a pretty rare issue in XS land, but I thought I'd ask. > > In general, I'd keep it closed. It's not designed as a full internet > server. > > I do try to stay under the radar as much as possible. I don't post the URL anywhere. I'm not even listed on the wiki as a Jabber server, relying on word of mouth. And what fun is having an XO chat server if other folks can't join in? Also, playing around with Moodle and Statusnet and stuff like that is a lot more fun when there are other users. > > Here's my question - is the XS networking going to get wonky with 894 > extra > > iptables rules? > > Short answer - no. > > Great! I'm very glad to hear that. I still had bots with empty user agent strings originating from the UK, US, Italy, Spain, etc. And I wanted to go ahead and block all bots who identify themselves as such. I put this in /var/www/html/.htaccess SetEnvIf User-Agent ^-$ block=1 SetEnvIf User-Agent ^$ block=1 SetEnvIfNoCase User-Agent "(bot|spider|spyder|yahoo)" block=1 Order allow,deny Allow from all Deny from env=block Now all blank user agent strings and even Googlebot get a 403. (The User Agent Switcher addon for Firefox is quite handy to test that with.) I'll probably have to add to the user agent list, but that should take care of most of it for now. Anna Schoolfield Birmingham
_______________________________________________ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel