2015/07/13 on Yano's digital garage https://www.bravotouring.com/~yano/archives/2015/07/13/ Recent content in 2015/07/13 on Yano's digital garage Hugo en-us Mon, 13 Jul 2015 23:07:11 +0900 Apacheアクセス制限 https://www.bravotouring.com/~yano/diary/it/20150713_apache2.htm Mon, 13 Jul 2015 23:07:11 +0900 https://www.bravotouring.com/~yano/diary/it/20150713_apache2.htm <p><a href="http://internet.watch.impress.co.jp/docs/yajiuma/20150713_711323.html">サイトを丸ごとコピーして独自広告を追加するパクリサイト出現</a>という事だ。幸か不幸かまだコピられていないようなので、まずは<span class="Path">sites-enabled/*.conf</span>でアクセス制限をかけようかと思ったのだが、VirtualHost毎に制御する必要が無いどころかTCPの接続すら受付たくないので、<a href="https://wiki.ubuntu.com/UncomplicatedFirewall">ufw</a>でサクッと門前払いしてしまう事に。 <blockquote class="Log"> yano@vps:~$ sudo ufw insert 1 reject from 91.208.99.0/24<br/>Rule inserted<br/> yano@vps:~$ sudo ufw status<br/> Status: active<br/> <br/> To Action From<br/> -- ------ ----<br/> Anywhere REJECT 91.208.99.0/24<br/> Apache Full ALLOW Anywhere<br/> Dovecot Secure POP3 ALLOW Anywhere<br/> Dovecot POP3 ALLOW Anywhere<br/> Postfix ALLOW Anywhere<br/> Postfix SMTPS ALLOW Anywhere<br/> Postfix Submission ALLOW Anywhere<br/> iperf ALLOW Anywhere<br/> 123 ALLOW Anywhere<br/> DNS ALLOW Anywhere<br/> OpenSSH ALLOW Anywhere<br/> Apache Full (v6) ALLOW Anywhere (v6)<br/> Dovecot Secure POP3 (v6) ALLOW Anywhere (v6)<br/> Dovecot POP3 (v6) ALLOW Anywhere (v6)<br/> Postfix (v6) ALLOW Anywhere (v6)<br/> Postfix SMTPS (v6) ALLOW Anywhere (v6)<br/> Postfix Submission (v6) ALLOW Anywhere (v6)<br/> iperf (v6) ALLOW Anywhere (v6)<br/> 123 (v6) ALLOW Anywhere (v6)<br/> DNS (v6) ALLOW Anywhere (v6)<br/> OpenSSH (v6) ALLOW Anywhere (v6)<br/> <br/> yano@vps:~$ sudo ufw reload<br/> Firewall reloaded<br/> yano@vps:~$ </blockquote> </p>