A quick post today showing some different ways to block visitors via their IP address. This can be useful for a variety of reasons, including stopping some stupid script kiddie from harassing your site, or preventing some creepy stalker loser from lurking around your forums, or even silencing the endless supply of angry trolls that never seem to get a clue. So many reasons why, and so many ways to block them.
This article, Stupid .htaccess Tricks, covers just about every .htaccess “trick” in the book, and easily is the site’s most popular resource. I hope that you find it useful, and either way thank you for visiting :)
What to do when you see the dreaded "Call to undefined function filter_var()" error message in your Apache logs. It's actually easier that it sounds but I recommend matching the version of the PHP source you download to that installed from your distro's official package.
How to configure Apache so that users need to authenticate to see any resources, but users accessing http[s]://localhost/ don't need to log in.
How to harden SSL support on your web server to mitigate attacks like BREACH, BEAST, and Lucky 13. Updated regularly.
An archived thread from the apache-dev mailing list about the webdav bug in the v2.4.x series where it conflicts with mod_dir. Specifically, mod_dir hijacks the PROPFIND HTTP method and causes the problem. The solution is to set "DirectoryIndex disabled" and "Dav On" in the block for the WebDAV share. apache ubuntu sysadmin howto workaround