The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

mod_sec - best way to ID user agents to block?

Discussion in 'Security' started by WorkinOnIt, Aug 3, 2016.

Tags:
  1. WorkinOnIt

    WorkinOnIt Well-Known Member

    Joined:
    Aug 3, 2016
    Messages:
    94
    Likes Received:
    5
    Trophy Points:
    8
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Hi Forum

    I am new here so greetings to all !

    I'm working on the best way to identify and stop bad user agents. I've read multiple threads and googled a lot - so far it seems there is no "clear" or obvious best practice so to speak.

    At the moment I've implemented a mod_sec rule to include a txt file with a list of known bad bots etc.... but looking at logs of various user accounts on the server there appear to be a lot of hits from unknown spiders and bots - so how do you mitigate these in the txt file if you don't have a user agent name? What would be the best way to target "unknown bots"

    Also - where would one find a list of bad user agents to block?

    Thank you
     
    #1 WorkinOnIt, Aug 3, 2016
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    37,064
    Likes Received:
    1,287
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You can use the term "user agent list" on a search engine and find several results with lists of user agents that you may want to block. One of the third-party URLs in the results that looks helpful is:

    Identify and block bad robots from website

    Thank you.
     
    #2 cPanelMichael, Aug 4, 2016
(You must log in or sign up to post here.)
Loading...
Similar Threads - mod_sec best user
  1. Sametto Chan

    What is different mod_security and mod_security2?

    Sametto Chan, Aug 8, 2017, in forum: EasyApache
    Replies:
    3
    Views:
    76
    Sametto Chan
    Aug 8, 2017
  2. Jasleen

    Mod_Security with CRS

    Jasleen, May 30, 2017, in forum: Security
    Replies:
    9
    Views:
    201
    fuzzylogic
    May 31, 2017
  3. Nirjonadda

    Mod_Security Vendors

    Nirjonadda, Apr 16, 2017, in forum: Security
    Replies:
    3
    Views:
    257
    Nirjonadda
    Apr 17, 2017
  4. stevenvsi

    Unable to disable mod_security per domain in user interface

    stevenvsi, Apr 11, 2017, in forum: Security
    Replies:
    9
    Views:
    384
    cPanelMichael
    Apr 11, 2017
  5. caisc

    Mod_Security rule to mitigate constant GET and POST request attack

    caisc, Feb 25, 2017, in forum: Security
    Replies:
    6
    Views:
    351
    quizknows
    Mar 7, 2017

Share This Page