Skip to content

Commit

Permalink
block another bad ip
Browse files Browse the repository at this point in the history
  • Loading branch information
pookmish committed Feb 2, 2021
1 parent d2178b0 commit 72221cc
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 4 deletions.
1 change: 1 addition & 0 deletions docroot/.htaccess
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@
SetEnvIf AH_CLIENT_IP ^47\.241\.104\.252$ Deny_Host
SetEnvIf AH_CLIENT_IP ^161\.117\.235\.27$ Deny_Host
SetEnvIf AH_CLIENT_IP ^206\.189\.77\.91$ Deny_Host
SetEnvIf AH_CLIENT_IP ^161\.117\.176\.134$ Deny_Host
Order allow,deny
Allow from all
Deny from env=Deny_Host
Expand Down
9 changes: 5 additions & 4 deletions patches/.htaccess.patch
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
diff --git a/docroot/.htaccess b/docroot/.htaccess
index 6f9123d1..b403fab3 100644
index 6f9123d1..35d2847c 100644
--- a/docroot/.htaccess
+++ b/docroot/.htaccess
@@ -1,3 +1,22 @@
@@ -1,3 +1,23 @@
+# Block bad bots.
+# See https://docs.acquia.com/cloud-platform/arch/security/restrict/#cloud-blocking-by-ip.
+<ifmodule mod_setenvif.c>
Expand All @@ -17,6 +17,7 @@ index 6f9123d1..b403fab3 100644
+ SetEnvIf AH_CLIENT_IP ^47\.241\.104\.252$ Deny_Host
+ SetEnvIf AH_CLIENT_IP ^161\.117\.235\.27$ Deny_Host
+ SetEnvIf AH_CLIENT_IP ^206\.189\.77\.91$ Deny_Host
+ SetEnvIf AH_CLIENT_IP ^161\.117\.176\.134$ Deny_Host
+ Order allow,deny
+ Allow from all
+ Deny from env=Deny_Host
Expand All @@ -25,7 +26,7 @@ index 6f9123d1..b403fab3 100644
#
# Apache/PHP/Drupal settings:
#
@@ -62,6 +81,23 @@ AddEncoding gzip svgz
@@ -62,6 +82,23 @@ AddEncoding gzip svgz
<IfModule mod_rewrite.c>
RewriteEngine on

Expand All @@ -49,7 +50,7 @@ index 6f9123d1..b403fab3 100644
# Set "protossl" to "s" if we were accessed via https://. This is used later
# if you enable "www." stripping or enforcement, in order to ensure that
# you don't bounce between http and https.
@@ -139,6 +175,8 @@ AddEncoding gzip svgz
@@ -139,6 +176,8 @@ AddEncoding gzip svgz
RewriteCond %{REQUEST_URI} !/core/[^/]*\.php$
# Allow access to test-specific PHP files:
RewriteCond %{REQUEST_URI} !/core/modules/system/tests/https?.php
Expand Down

0 comments on commit 72221cc

Please sign in to comment.