2006年06月16日
.htaccessで海外スパムを遮断
サーバが重い状態が続いていたので、生アクセスログから、スパムと思われるトラックバックを探してみた。
探すことは、全然、簡単。mt-cgiのアクセスして403のエラーになっているものを調べればよい。これがまたたくさんあるあるある。
IPを調べると、やはり、韓国からが多い。串さしで韓国経由になってるだけかも知れませんが。
とにかく、アクセス元のプロバイダーのIPの範囲を調べ、そのIPでもアクセスを全て遮断することにした。
アクセスを遮断する一番手っ取り早い方法は、.htaccessファイルを使うこと。これで遮断すれば、普通のページすら見れない。インターネットは全世界ですが、ウチの場合、特に日本国内に限定しても全然差し支えないので。
一通り作った .htaccess ファイルは以下のとおりです。全て遮断したわけじゃないですが、これでかなり減りました。また、暇をみて deny from のIPを追加していこうと思います。
deny from 59.0.
deny from 59.1.
deny from 59.2.
deny from 59.3.
deny from 59.4.
deny from 59.5.
deny from 59.6.
deny from 59.7.
deny from 59.8.
deny from 59.9.
deny from 59.0.
deny from 59.11.
deny from 59.12.
deny from 59.13.
deny from 59.14.
deny from 59.15.
deny from 59.16.
deny from 59.17.
deny from 59.18.
deny from 59.19.
deny from 59.20.
deny from 59.21.
deny from 59.22.
deny from 59.23.
deny from 59.24.
deny from 59.25.
deny from 59.26.
deny from 59.27.
deny from 59.28.
deny from 59.29.
deny from 59.30.
deny from 59.31.
deny from 60.248.
deny from 63.64.
deny from 63.65.
deny from 63.66.
deny from 63.67.
deny from 63.68.
deny from 63.69.
deny from 63.70.
deny from 63.71.
deny from 63.72.
deny from 63.73.
deny from 63.74.
deny from 63.75.
deny from 63.76.
deny from 63.77.
deny from 63.78.
deny from 63.79.
deny from 63.80.
deny from 63.81.
deny from 63.82.
deny from 63.83.
deny from 63.84.
deny from 63.85.
deny from 63.86.
deny from 63.87.
deny from 63.88.
deny from 63.89.
deny from 63.90.
deny from 63.91.
deny from 63.92.
deny from 63.93.
deny from 63.94.
deny from 63.95.
deny from 63.96.
deny from 63.97.
deny from 63.98.
deny from 63.99.
deny from 63.100.
deny from 63.101.
deny from 63.102.
deny from 63.103.
deny from 63.104.
deny from 63.105.
deny from 63.106.
deny from 63.107.
deny from 63.108.
deny from 63.109.
deny from 63.110.
deny from 63.111.
deny from 63.112.
deny from 63.113.
deny from 63.114.
deny from 63.115.
deny from 63.116.
deny from 63.117.
deny from 63.118.
deny from 63.119.
deny from 63.120.
deny from 63.121.
deny from 63.122.
deny from 63.123.
deny from 63.124.
deny from 63.125.
deny from 63.126.
deny from 63.127.
deny from 64.232.
deny from 69.44.
deny from 69.45.
deny from 203.240.
deny from 203.241.
deny from 203.242.
deny from 203.243.
deny from 203.244.
deny from 203.245.
deny from 203.246.
deny from 203.247.
deny from 213.114.16.
deny from 213.114.17.
deny from 213.114.18.
deny from 213.114.19.
deny from 213.114.20.
deny from 213.114.21.
deny from 213.114.22.
deny from 213.114.23.
deny from 216.124.
deny from 216.125.
deny from 219.93.174.
deny from 220.72.
deny from 220.73.
deny from 220.74.
deny from 220.75.
deny from 220.76.
deny from 220.77.
deny from 220.78.
deny from 220.79.
deny from 220.80.
deny from 220.81.
deny from 220.82.
deny from 220.83.
deny from 220.84.
deny from 220.85.
deny from 220.86.
deny from 220.87.
deny from 222.96.
deny from 222.97.
deny from 222.98.
deny from 222.99.
deny from 222.100.
deny from 222.101.
deny from 222.102.
deny from 222.103.
deny from 222.104.
deny from 222.105.
deny from 222.106.
deny from 222.107.
deny from 222.108.
deny from 222.109.
deny from 222.110.
deny from 222.111.
deny from 222.112.
deny from 222.113.
deny from 222.114.
deny from 222.115.
deny from 222.116.
deny from 222.117.
deny from 222.118.
deny from 222.119.
deny from 222.120.
deny from 222.121.
deny from 222.122.
deny from 24.232.203.205
deny from 211.32.182.189
deny from 220.89.161.57
deny from 203.236.112.122
deny from 202.130.84.133
deny from 193.194.69.66
deny from 220.93.34.8
deny from 211.187.34.124
deny from 219.93.174.101
deny from 211.60.206.125
マスクを使えば、もっとすっきり書けると思うのですが、いまいちよく理解してません(汗)。
あと、サーバ自体が .htaccess ファイルを使えなければ、この方法は使えません。
2006年06月16日 11:13 | MovableTypeでサイト構築日記
トラックバック
このエントリーのトラックバックURL:
