Prevent Santy with htaccess?

Discussion in 'Apache' started by kusadasi-guy, Dec 27, 2004.

0
  1. #1
    Shawn recommend for preventing santy that

    as i as i know that htaccess file prevent infamous browser access to the website. am i correct?

    And, it may close the access to googlebot, msnbot, yahoobot ..etc?
     
    kusadasi-guy, Dec 27, 2004 IP
  2. flawebworks

    flawebworks Tech Services

    Messages:
    991
    Likes Received:
    36
    Best Answers:
    1
    Trophy Points:
    78
    #2
    This shouldn't affect robots at all, unless they're indicated. It's preventing the user agent lwp (which is a perl module that can be used with a script to get files) from accessing your site.
     
    flawebworks, Dec 27, 2004 IP
  3. kusadasi-guy

    kusadasi-guy Peon

    Messages:
    83
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #3
    Thank You so much!
     
    kusadasi-guy, Dec 27, 2004 IP
  4. subnet_rx

    subnet_rx Well-Known Member

    Messages:
    141
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    138
    #4
    I thought Santy only affects phpBB forums?
     
    subnet_rx, Dec 28, 2004 IP
  5. GuyFromChicago

    GuyFromChicago Permanent Peon

    Messages:
    6,728
    Likes Received:
    529
    Best Answers:
    0
    Trophy Points:
    0
    #5
    No, it exploits php...which phpbb happens to use.
     
    GuyFromChicago, Dec 28, 2004 IP
  6. Will.Spencer

    Will.Spencer NetBuilder

    Messages:
    14,789
    Likes Received:
    1,040
    Best Answers:
    0
    Trophy Points:
    375
    #6
    This work-around does not work against today's new Santy variant which spoofs User-Agent.

    Also, Santy appears to exploit the phpBB highlight vulnerability -- but may not exploit the php unserialize vulnerability.
     
    Will.Spencer, Dec 30, 2004 IP
  7. GuyFromChicago

    GuyFromChicago Permanent Peon

    Messages:
    6,728
    Likes Received:
    529
    Best Answers:
    0
    Trophy Points:
    0
    #7
    Do you know what user agent(s) Santy is spoofing?
     
    GuyFromChicago, Dec 30, 2004 IP