(01-10-2020, 12:32 AM)rsthomas Wrote: Is there a location for a "common" .htaccess file that all visitors on a server pass through in order to reach a specific domain? This would be used to store a list of IP Address denies rather than having to create an .htaccess for each domain's site.
Not an Apache functionality, definately go with fail2ban, customize some jails, write your own... I have around 3000-4000 banned IP's on a 7 day ban and around 800 in recidive jail on a month long ban. It does great job lowering the load on your servers.
Protips:
- move ssh port to some other than 22 and auto-ban all ip's connecting to 22. it's such a sweet honeypot.
- use webexploits jail, use fakegooglebot jail
- use badbots jail with updated botlist from here: https://github.com/mitchellkrogza/nginx-...ot-blocker (needs escaping)
