ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

Block by string

https://mail.forum.configserver.com/viewtopic.php?t=6846

Page 1 of 1

Block by string

Posted: 05 Aug 2013, 13:59
by nemke
It would be nice if you would add block/unblock by string in CSF, iptables example:

iptables -t raw -A PREROUTING -m string --algo bm --string string_that_you_are_filtering -j DROP

Re: Block by string

Posted: 07 Aug 2013, 13:10
by nemke
Here is a link from WHT thread were using this kind of block helped with DDoS post/get attacks

http://www.webhostingtalk.com/showthrea ... 234&page=3

as he noticed that all attacks had user agent string of IE 6.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited