[SOLVED] Preventing unauthorized domains from pointing to my website
Hey guys,
I have just come across an issue whereby another domain is showing up on Google SERP as our domain. The HOST command shows that the domain has IP address of one of my domains (dedicated IP).
How can I go about restricting other domains from pointing to our server/IP ?
I have initially added an additional VirtualHost directive in http.conf as the first entry (before anything else):
(using Varnish cache, hence 8080)
This, theoretically, forces apache to deny ALL incoming queries - unless the Host is one of those explicitly named later on in the http.conf (under another VirtualHost directive).
Is this enough?
Are there any other measures I should be undertaking?
How do I prevent this from happening with SSL connections? (I tried an additional VirtualHost directive on 443 but it didn't allow any SSL connection - even my own).
Also, I had to manually add this into http.conf and issued
to try and enforce this into any cPanel updates to apache - it looks like it added without issue.
Hey guys,
I have just come across an issue whereby another domain is showing up on Google SERP as our domain. The HOST command shows that the domain has IP address of one of my domains (dedicated IP).
How can I go about restricting other domains from pointing to our server/IP ?
I have initially added an additional VirtualHost directive in http.conf as the first entry (before anything else):
(using Varnish cache, hence 8080)
Code:
<VirtualHost *:8080>
ServerName default-unauth-domain
<Location />
Order allow,deny
Allow from googlebot.com
Allow from 127.0.0.1
</Location>
</VirtualHost>Is this enough?
Are there any other measures I should be undertaking?
How do I prevent this from happening with SSL connections? (I tried an additional VirtualHost directive on 443 but it didn't allow any SSL connection - even my own).
Also, I had to manually add this into http.conf and issued
Code:
/usr/local/cpanel/bin/apache_conf_distiller --update
Last edited:
