Mobile app version of vmapp.org
Login or Join
Barnes591

: Where can I redirect exploit scanning bots? I get a lot of those exploit scanning bots like the ones looking for a WordPress login (which I don't have) or guessing other exploitable URLs.

@Barnes591

Posted in: #Botattack #Redirects #Security #WebCrawlers

I get a lot of those exploit scanning bots like the ones looking for a WordPress login (which I don't have) or guessing other exploitable URLs.

Where is a sensible place to redirect them to via .htaccess - is there some URL that can slow them down or analyse their IP? I've tried a honeypot quick link but that seems to have failed after 1 day.

10.01% popularity Vote Up Vote Down


Login to follow query

More posts by @Barnes591

1 Comments

Sorted by latest first Latest Oldest Best

 

@Pierce454

I guess you want to prevent bad bots from scanning your website(s). I think you should do it from htaccess. It will prevent bad scanning bots for visiting your website and return a 403 Forbidden. you can block them according to their User agent. The first line means that it will block a vistor without user agent:

RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} ^$ [OR]
RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]
RewriteCond %{HTTP_USER_AGENT} ^Bot mailto:craftbot@yahoo.com [OR]
RewriteCond %{HTTP_USER_AGENT} ^Zeus
RewriteRule ^.* - [F,L]


In your logs, you can spot http user agents from bad bots and add it to this list.

10% popularity Vote Up Vote Down


Back to top | Use Dark Theme