8
5
There are a handful of especially toxic hosts out there. There is no reason we need to allow any of their IP's access to our servers. Is there a way we can block them using their ASN or other global identifier? I would prefer to do this in HTACCESS for app/server portability, but APF is fine too.
An example would be blocking the following hosts. Over 50% of their IP's are on blacklists already, or they operate proxy exit points for companies like PacketFlip:
- AS4134 - ChinaNet
- AS9808 - Guangdong Mobile Com
- AS16276 - OVH SAS
- AS15003 - Nobis Tech Group
- AS36352 - ColoCrossing
- AS29761 - QuadraNet
- AS15895 - Kyivstar PJSC
- AS50915 - S.C. Everhost S.R.L.
- AS53889 - Micfo
- AS57858 - Fiber Grid OU
1Welcome to SuperUser.SE. In your response, it would be better if you could provide some information about the web sites in case that change their address. – LDC3 – 2014-10-06T04:46:34.990
What do you mean? – Mun – 2014-10-08T04:05:17.893
1Sometimes the websites change their address so the links you post will not work. If you describe what the links go to, then when a link gets broken, some people may be able to find it by doing a web search. – LDC3 – 2014-10-08T04:14:03.630
2pretty simple search asn-blocklist on google. It shouldn't change address though. – Mun – 2014-10-08T04:22:36.537
1@Mun Thanks, that is exactly what I needed, esp with the api capability. @ LDC3 the link is a blacklist creator from ASN. It makes various paste-friendly lists of IP's to make the complete ASN package. I guess a G search would be something like "ASN htaccess block maker"... – dhaupin – 2014-12-16T00:04:58.140