Questions tagged [blocking]

121 questions
74
votes
16 answers

Why Block Port 22 Outbound?

I'm a programmer, and I have worked for a few clients whose networks block outgoing connections on port 22. Considering that programmers often need to use port 22 for ssh, this seems like a counterproductive procedure. At best, it forces the…
runako
  • 841
  • 1
  • 6
  • 6
12
votes
10 answers

Block Facebook for selected users

We have a few users here who are using Facebook during working hours and their productivity is through the floor, as a temporary measure I have remotely edited their hosts files to point facebook.com and its various subdomains to point to the…
Ben Gillam
  • 407
  • 4
  • 11
11
votes
2 answers

MySQL InnoDB database 'hangs' on selects

I'm trying to fix MySQL configuration on our server. Our app's specifics is that a lot of data is stored in single table (currently over 300 millions of rows). This table is used often for inserts (they come all the time). When i run a select query…
kaczor1984
  • 241
  • 1
  • 3
  • 11
9
votes
1 answer

Haproxy: reject traffic by user agent from file

I am trying to reject connections from specific user agents (by matching a substring of the user-agent header) using an haproxy ACL with -f option to read from a file. However it is not working, it runs as if the configuration is being ignored. Can…
raugfer
  • 221
  • 1
  • 2
  • 5
8
votes
4 answers

Allow a certain URL path with Squid

I'm using Squid 3.4 on Debian, and I want to know how to allow certain sub-URLs while banning the rest of them. Particularly, I want to ban access to reddit.com/* but allow access to reddit.com/r/foo/* and reddit.com/r/foo/ acl bad url_regex…
unsi
  • 81
  • 1
  • 1
  • 3
8
votes
4 answers

Separate Nginx access log file for certain requests only

As far as I can see Nginx supports by default 2 log files: error_log (tracks issues related to the Nginx server itself) and access_log (tracks requests processed by Nginx). Whilst it is possible to control the format of access_log with the…
Max
  • 3,373
  • 15
  • 51
  • 71
5
votes
2 answers

Squid Not Blocking SSL HTTPS Properly

So my goal here it to block only certain youtube channels. If I do: acl block_youtube dstdomain .youtube.com http_access deny block_youtube it blocks any access to youtube. if I do: acl block_youtube url_regex -i…
John
  • 157
  • 2
  • 10
5
votes
1 answer

How to check if a process is non-blocking in linux without using a stack tracer?

A multi-cpu server is running several processes. One process has a thread that should always be in a spinning state, using 100% of the CPU it's been assigned. My current method (besides asking the developer...) is using strace on the process which…
inetplumber
  • 680
  • 4
  • 9
5
votes
1 answer

Block a website on HTTPS and allow it on HTTP (to enforce Safesearch)

I would like to block some websites on their HTTPS version and allow them on HTTP. The main websites involved are Youtube and Google Images/Videos. This is because on the HTTP version, I can enforce the Safesearch filter on those platforms, whereas…
5
votes
2 answers

I have a blocking transaction, but no statement is shown

My SQL Server 2008 started hanging on simple queries, so I checked for blocking transactions, using the built-in All Blocking Transactions report. Sure enough, such a transaction exists. However, if I expand Blocking SQL Statement, I get a blank…
user82769
5
votes
2 answers

Squid: how to block websites for a particular IP address?

How to block websites for particular IPs by squid? Please give solution with example or configuration file.
Kumar
  • 823
  • 3
  • 20
  • 43
4
votes
1 answer

How do iptables work with NFQ in terms of traffic shaping in snort?

I'm trying to understand how iptables and NFQ work together with snort. The reason that I ask this is because from what I understand snort can be set to IPS via NFQ but if you have iptables there essentially firewall rules hence my question as what…
Danny
  • 41
  • 1
  • 4
4
votes
1 answer

Apache IPv4 deny directive blocks IPv6 addresses

Edit I have thought that excessive number of "deny" lines are confusing apache into blocking unlisted IPv4 addresses. But comment of @Ladadadada made me pinpoint the exact issue. You can read my old question below. The problem is, the following…
hayalci
  • 3,611
  • 3
  • 25
  • 37
4
votes
3 answers

Can i safely block all ports on my sever

I have a web server running pleks and get attacked a lot every day. I configured a firewall, and there are some predefined services such as www, and ftp, etc. I am planning to block all the ports except for the www port and the PLESK port. When I…
Saif Bechan
  • 10,892
  • 10
  • 40
  • 63
3
votes
2 answers

MySQL SELECT query hangs

On my server I have 6 MySQL databases. They all power Wordpress websites. For some reason, 2 of these databases are not accessible. To my knowledge they use INNODB, but I can't confirm it as even doing a: mysql> use INFORMATION_SCHEMA; mysql> SELECT…
Thomas Lomas
  • 131
  • 1
  • 1
  • 5
1
2 3
8 9