Advertisement
Guest User

Untitled

a guest
Oct 7th, 2021
43
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 25.99 KB | None
  1. # This is the main Apache server configuration file. It contains the
  2. # configuration directives that give the server its instructions.
  3. # See http://httpd.apache.org/docs/2.4/ for detailed information about
  4. # the directives and /usr/share/doc/apache2/README.Debian about Debian specific
  5. # hints.
  6. #
  7. #
  8. # Summary of how the Apache 2 configuration works in Debian:
  9. # The Apache 2 web server configuration in Debian is quite different to
  10. # upstream's suggested way to configure the web server. This is because Debian's
  11. # default Apache2 installation attempts to make adding and removing modules,
  12. # virtual hosts, and extra configuration directives as flexible as possible, in
  13. # order to make automating the changes and administering the server as easy as
  14. # possible.
  15.  
  16. # It is split into several files forming the configuration hierarchy outlined
  17. # below, all located in the /etc/apache2/ directory:
  18. #
  19. # /etc/apache2/
  20. # |-- apache2.conf
  21. # | `-- ports.conf
  22. # |-- mods-enabled
  23. # | |-- *.load
  24. # | `-- *.conf
  25. # |-- conf-enabled
  26. # | `-- *.conf
  27. # `-- sites-enabled
  28. # `-- *.conf
  29. #
  30. #
  31. # * apache2.conf is the main configuration file (this file). It puts the pieces
  32. # together by including all remaining configuration files when starting up the
  33. # web server.
  34. #
  35. # * ports.conf is always included from the main configuration file. It is
  36. # supposed to determine listening ports for incoming connections which can be
  37. # customized anytime.
  38. #
  39. # * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/
  40. # directories contain particular configuration snippets which manage modules,
  41. # global configuration fragments, or virtual host configurations,
  42. # respectively.
  43. #
  44. # They are activated by symlinking available configuration files from their
  45. # respective *-available/ counterparts. These should be managed by using our
  46. # helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See
  47. # their respective man pages for detailed information.
  48. #
  49. # * The binary is called apache2. Due to the use of environment variables, in
  50. # the default configuration, apache2 needs to be started/stopped with
  51. # /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not
  52. # work with the default configuration.
  53.  
  54.  
  55. # Global configuration
  56. #
  57.  
  58. #
  59. # ServerRoot: The top of the directory tree under which the server's
  60. # configuration, error, and log files are kept.
  61. #
  62. # NOTE! If you intend to place this on an NFS (or otherwise network)
  63. # mounted filesystem then please read the Mutex documentation (available
  64. # at <URL:http://httpd.apache.org/docs/2.4/mod/core.html#mutex>);
  65. # you will save yourself a lot of trouble.
  66. #
  67. # Do NOT add a slash at the end of the directory path.
  68. #
  69. #ServerRoot "/etc/apache2"
  70.  
  71. #
  72. # The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
  73. #
  74. Mutex file:${APACHE_LOCK_DIR} default
  75.  
  76. #
  77. # PidFile: The file in which the server should record its process
  78. # identification number when it starts.
  79. # This needs to be set in /etc/apache2/envvars
  80. #
  81. PidFile ${APACHE_PID_FILE}
  82.  
  83. #
  84. # Timeout: The number of seconds before receives and sends time out.
  85. #
  86. Timeout 300
  87.  
  88. #
  89. # KeepAlive: Whether or not to allow persistent connections (more than
  90. # one request per connection). Set to "Off" to deactivate.
  91. #
  92. KeepAlive On
  93.  
  94. #
  95. # MaxKeepAliveRequests: The maximum number of requests to allow
  96. # during a persistent connection. Set to 0 to allow an unlimited amount.
  97. # We recommend you leave this number high, for maximum performance.
  98. #
  99. MaxKeepAliveRequests 100
  100.  
  101. #
  102. # KeepAliveTimeout: Number of seconds to wait for the next request from the
  103. # same client on the same connection.
  104. #
  105. KeepAliveTimeout 5
  106.  
  107.  
  108. # These need to be set in /etc/apache2/envvars
  109. User ${APACHE_RUN_USER}
  110. Group ${APACHE_RUN_GROUP}
  111.  
  112. #
  113. # HostnameLookups: Log the names of clients or just their IP addresses
  114. # e.g., www.apache.org (on) or 204.62.129.132 (off).
  115. # The default is off because it'd be overall better for the net if people
  116. # had to knowingly turn this feature on, since enabling it means that
  117. # each client request will result in AT LEAST one lookup request to the
  118. # nameserver.
  119. #
  120. HostnameLookups Off
  121.  
  122. # ErrorLog: The location of the error log file.
  123. # If you do not specify an ErrorLog directive within a <VirtualHost>
  124. # container, error messages relating to that virtual host will be
  125. # logged here. If you *do* define an error logfile for a <VirtualHost>
  126. # container, that host's errors will be logged there and not here.
  127. #
  128. ErrorLog ${APACHE_LOG_DIR}/error.log
  129.  
  130. #
  131. # LogLevel: Control the severity of messages logged to the error_log.
  132. # Available values: trace8, ..., trace1, debug, info, notice, warn,
  133. # error, crit, alert, emerg.
  134. # It is also possible to configure the log level for particular modules, e.g.
  135. # "LogLevel info ssl:warn"
  136. #
  137. LogLevel warn
  138.  
  139. # Include module configuration:
  140. IncludeOptional mods-enabled/*.load
  141. IncludeOptional mods-enabled/*.conf
  142.  
  143. # Include list of ports to listen on
  144. Include ports.conf
  145.  
  146.  
  147. # Sets the default security model of the Apache2 HTTPD server. It does
  148. # not allow access to the root filesystem outside of /usr/share and /var/www.
  149. # The former is used by web applications packaged in Debian,
  150. # the latter may be used for local directories served by the web server. If
  151. # your system is serving content from a sub-directory in /srv you must allow
  152. # access here, or in any related virtual host.
  153. <Directory />
  154. Options FollowSymLinks
  155. AllowOverride None
  156. Require all denied
  157. </Directory>
  158.  
  159. <Directory /usr/share>
  160. AllowOverride None
  161. Require all granted
  162. </Directory>
  163.  
  164. <Directory /var/www/>
  165. Options Indexes FollowSymLinks
  166. AllowOverride None
  167. Require all granted
  168. </Directory>
  169.  
  170. #<Directory /srv/>
  171. # Options Indexes FollowSymLinks
  172. # AllowOverride None
  173. # Require all granted
  174. #</Directory>
  175.  
  176.  
  177.  
  178.  
  179. # AccessFileName: The name of the file to look for in each directory
  180. # for additional configuration directives. See also the AllowOverride
  181. # directive.
  182. #
  183. AccessFileName .htaccess
  184.  
  185. #
  186. # The following lines prevent .htaccess and .htpasswd files from being
  187. # viewed by Web clients.
  188. #
  189. <FilesMatch "^\.ht">
  190. Require all denied
  191. </FilesMatch>
  192.  
  193.  
  194. #
  195. # The following directives define some format nicknames for use with
  196. # a CustomLog directive.
  197. #
  198. # These deviate from the Common Log Format definitions in that they use %O
  199. # (the actual bytes sent including headers) instead of %b (the size of the
  200. # requested file), because the latter makes it impossible to detect partial
  201. # requests.
  202. #
  203. # Note that the use of %{X-Forwarded-For}i instead of %h is not recommended.
  204. # Use mod_remoteip instead.
  205. #
  206. LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined
  207. LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
  208. LogFormat "%h %l %u %t \"%r\" %>s %O" common
  209. LogFormat "%{Referer}i -> %U" referer
  210. LogFormat "%{User-agent}i" agent
  211.  
  212. # Include of directories ignores editors' and dpkg's backup files,
  213. # see README.Debian for details.
  214.  
  215. # Include generic snippets of statements
  216. IncludeOptional conf-enabled/*.conf
  217.  
  218. # Include the virtual host configurations:
  219. IncludeOptional sites-enabled/*.conf
  220.  
  221. # vim: syntax=apache ts=4 sw=4 sts=4 sr noet
  222.  
  223.  
  224. <Files *>
  225. order deny,allow
  226.  
  227. # Cambodia (KH)
  228. deny from 114.134.184.0/21
  229.  
  230. # Chinese (CN) IP addresses follow:
  231. deny from 1.68.0.0/14 1.80.0.0/13 1.92.0.0/14 1.192.0.0/13 1.202.0.0/15 1.204.0.0/14 14.144.0.0/12 14.208.0.0/12 23.80.54.0/24 23.104.141.0/24 23.105.14.0/24 23.226.208.0/24 27.8.0.0/13 27.16.0.0/12 27.36.0.0/14 27.40.0.0/13 27.50.128.0/17 27.54.192.0/18 27.106.128.0/18 27.115.0.0/17 27.148.0.0/14 27.152.0.0/13 27.184.0.0/13 36.32.0.0/14 36.248.0.0/14 39.128.0.0/10 42.96.128.0/17 42.120.0.0/15 43.255.0.0/20 43.255.16.0/22 43.255.48.0/22 43.255.60.0/22 43.255.64.0/20 43.255.96.0/20 43.255.144.0/22 43.255.168.0/22 43.255.176.0/22 43.255.184.0/22 43.255.192.0/22 43.255.200.0/21 43.255.208.0/21 43.255.224.0/21 43.255.232.0/22 43.255.244.0/22 58.16.0.0/15 58.20.0.0/16 58.21.0.0/16 58.22.0.0/15 58.34.0.0/16 58.37.0.0/16 58.38.0.0/16 58.40.0.0/16 58.42.0.0/16 58.44.0.0/14 58.48.0.0/13 58.56.0.0/15 58.58.0.0/16 58.59.0.0/17 58.60.0.0/14 58.68.128.0/17 58.82.0.0/15 58.100.0.0/15 58.208.0.0/12 58.242.0.0/15 58.246.0.0/15 58.248.0.0/13 59.32.0.0/12 59.51.0.0/16 59.52.0.0/14 59.56.0.0/13 59.72.0.0/16 59.108.0.0/15 59.172.0.0/14 60.0.0.0/13 60.11.0.0/16 60.12.0.0/16 60.24.0.0/13 60.160.0.0/11 60.194.0.0/15 60.208.0.0/12 61.4.64.0/20 61.4.80.0/22 61.4.176.0/20 61.48.0.0/13 61.128.0.0/10 61.135.0.0/16 61.136.0.0/18 61.139.0.0/16 61.145.73.208/28 61.147.0.0/16 61.150.0.0/16 61.152.0.0/16 61.154.0.0/16 61.160.0.0/16 61.162.0.0/15 61.164.0.0/16 61.172.0.0/15 61.175.0.0/16 61.177.0.0/16 61.179.0.0/16 61.183.0.0/16 61.184.0.0/16 61.185.219.232/29 61.187.0.0/16 61.188.0.0/16 61.232.0.0/14 61.236.0.0/15 61.240.0.0/14 101.64.0.0/13 101.72.0.0/14 101.76.0.0/15 101.80.0.0/12 103.253.4.0/22 106.80.0.0/12 106.112.0.0/13 110.6.0.0/15 110.51.0.0/16 110.52.0.0/15 110.80.0.0/13 110.88.0.0/14 110.96.0.0/11 110.173.0.0/19 110.173.32.0/20 110.173.64.0/18 110.177.0.0/14 110.192.0.0/11 110.240.0.0/12 111.0.0.0/10 111.72.0.0/13 111.121.0.0/16 111.128.0.0/11 111.160.0.0/13 111.172.0.0/14 111.176.0.0/13 111.228.0.0/14 112.0.0.0/10 112.64.0.0/14 112.80.0.0/12 112.100.0.0/14 112.111.0.0/16 112.122.0.0/15 112.224.0.0/11 113.0.0.0/13 113.8.0.0/15 113.12.0.0/14 113.16.0.0/15 113.18.0.0/16 113.54.0.0/15 113.56.0.0/15 113.58.0.0/16 113.59.0.0/17 113.62.0.0/15 113.64.0.0/10 113.120.0.0/13 113.128.0.0/15 113.136.0.0/13 113.194.0.0/15 113.204.0.0/14 114.28.0.0/16 114.80.0.0/12 114.96.0.0/13 114.104.0.0/14 114.112.0.0/14 112.109.128.0/17 114.216.0.0/13 114.224.0.0/11 115.24.0.0/15 115.28.0.0/15 115.32.0.0/14 115.48.0.0/12 115.84.0.0/18 115.100.0.0/15 115.148.0.0/14 115.152.0.0/15 115.159.0.0/16 115.168.0.0/14 115.212.0.0/16 115.230.0.0/16 115.236.96.0/23 115.236.136.0/22 115.239.228.0/22 116.1.0.0/16 116.2.0.0/15 116.4.0.0/14 116.8.0.0/14 116.16.0.0/12 116.52.0.0/14 116.76.0.0/15 116.90.80.0/20 116.112.0.0/14 116.128.0.0/10 116.204.0.0/15 116.207.0.0/16 116.208.0.0/14 116.224.0.0/12 116.254.128.0/18 117.8.0.0/13 117.21.0.0/16 117.22.0.0/15 117.24.0.0/13 117.32.0.0/13 117.40.0.0/14 117.44.0.0/15 117.60.0.0/14 117.79.224.0/20 117.80.0.0/12 117.136.0.0/13 118.26.0.0/16 118.72.0.0/13 118.112.0.0/13 118.120.0.0/14 118.132.0.0/14 118.144.0.0/14 118.180.0.0/14 118.186.0.0/15 118.192.0.0/15 118.248.0.0/13 119.0.0.0/13 119.8.0.0/16 119.10.0.0/17 119.18.192.0/20 119.36.0.0/16 119.57.0.0/16 119.60.0.0/16 119.88.0.0/14 119.96.0.0/13 119.112.0.0/13 119.120.0.0/13 119.128.0.0/12 119.144.0.0/14 119.164.0.0/14 119.176.0.0/12 119.233.0.0/16 120.0.0.0/12 120.24.0.0/14 120.32.0.0/13 120.40.0.0/14 120.68.0.0/14 120.80.0.0/13 120.192.0.0/10 121.0.16.0/20 121.8.0.0/13 121.16.0.0/12 121.32.0.0/14 121.40.0.0/14 121.60.0.0/14 121.76.0.0/15 121.196.0.0/14 121.204.0.0/14 121.224.0.0/12 122.10.128.0/17 122.51.128.0/17 122.64.0.0/11 122.119.0.0/16 122.136.0.0/13 122.156.0.0/14 122.188.0.0/14 122.192.0.0/14 122.198.0.0/16 122.200.64.0/18 122.224.0.0/12 123.4.0.0/14 123.8.0.0/13 123.52.0.0/14 123.56.0.0/14 123.64.0.0/11 123.97.128.0/17 123.100.0.0/19 123.112.0.0/12 123.128.0.0/13 123.138.0.0/15 123.150.0.0/15 123.152.0.0/13 123.164.0.0/14 123.180.0.0/14 123.184.0.0/14 123.196.0.0/15 123.232.0.0/14 123.249.0.0/16 124.42.64.0/18 124.64.0.0/15 124.67.0.0/16 124.73.0.0/16 124.114.0.0/15 124.126.0.0/15 124.128.0.0/13 124.160.0.0/15 124.162.0.0/16 124.163.0.0/16 124.192.0.0/15 124.200.0.0/13 124.226.0.0/15 124.228.0.0/14 124.236.0.0/14 124.240.0.0/17 124.240.128.0/18 124.248.0.0/17 125.36.0.0/14 125.40.0.0/13 125.64.0.0/12 125.79.0.0/16 125.80.0.0/13 125.88.0.0/13 125.104.0.0/13 125.112.0.0/12 125.210.0.0/15 139.129.0.0/16 140.224.0.0/16 140.237.0.0/16 140.246.0.0/16 140.249.0.0/16 142.4.117.0/30 159.226.0.0/16 171.34.0.0/15 171.36.0.0/14 171.40.0.0/13 171.88.0.0/13 171.116.0.0/14 171.208.0.0/12 175.0.0.0/12 175.16.0.0/13 175.24.0.0/14 175.30.0.0/15 175.42.0.0/15 175.44.0.0/16 175.46.0.0/15 175.48.0.0/12 175.64.0.0/11 175.102.0.0/16 175.106.128.0/17 175.146.0.0/15 175.148.0.0/14 175.152.0.0/14 175.160.0.0/12 175.178.0.0/16 175.184.128.0/18 175.185.0.0/16 175.186.0.0/15 175.188.0.0/14 180.76.0.0/16 180.96.0.0/11 180.136.0.0/13 180.152.0.0/13 180.160.0.0/12 180.208.0.0/15 182.18.0.0/17 182.32.0.0/12 182.88.0.0/14 182.112.0.0/12 182.128.0.0/12 183.0.0.0/10 183.64.0.0/13 183.129.0.0/16 183.148.0.0/16 183.160.0.0/12 183.184.0.0/13 183.192.0.0/11 192.34.109.224/28 192.74.224.0/19 198.2.203.64/28 198.2.212.160/28 202.43.144.0/22 202.46.32.0/19 202.66.0.0/16 202.75.208.0/20 202.96.0.0/12 202.111.160.0/19 202.112.0.0/14 202.117.0.0/16 202.165.176.0/20 202.196.80.0/20 203.69.0.0/16 203.86.0.0/18 203.86.64.0/19 203.93.0.0/16 203.169.160.0/19 203.171.224.0/20 210.5.0.0/19 210.14.128.0/19 210.21.0.0/16 210.32.0.0/14 210.51.0.0/16 210.52.0.0/15 210.77.0.0/16 210.192.96.0/19 211.76.96.0/20 211.78.208.0/20 211.86.144.0/20 211.90.0.0/15 211.92.0.0/14 211.96.0.0/13 211.136.0.0/13 211.144.12.0/22 211.144.96.0/19 211.144.160.0/20 211.147.0.0/16 211.150.0.0/15 211.152.0.0/14 211.157.32.0/19 211.160.0.0/13 211.233.70.0/24 218.0.0.0/11 218.56.0.0/13 218.64.0.0/11 218.84.0.0/14 218.88.0.0/13 218.96.0.0/14 218.102.0.0/16 218.104.0.0/14 218.108.0.0/15 218.194.80.0/20 218.200.0.0/13 218.240.0.0/13 219.128.0.0/11 219.154.0.0/15 219.223.192.0/18 219.232.0.0/16 219.234.80.0/20 219.235.0.0/16 220.112.0.0/16 220.154.0.0/15 220.160.0.0/11 220.181.0.0/16 220.191.0.0/16 220.192.0.0/12 220.228.70.0/24 220.242.0.0/15 220.248.0.0/14 220.250.0.0/19 220.252.0.0/16 221.0.0.0/12 221.122.0.0/15 221.172.0.0/14 221.176.0.0/13 221.192.0.0/14 221.200.0.0/14 221.204.0.0/15 221.206.0.0/16 221.207.0.0/16 221.208.0.0/12 221.212.0.0/15 221.214.0.0/15 221.216.0.0/13 221.224.0.0/13 221.228.0.0/14 221.232.0.0/13 222.32.0.0/11 222.64.0.0/12 222.80.0.0/12 222.132.0.0/14 222.136.0.0/13 222.168.0.0/13 222.172.222.0/24 222.176.0.0/13 222.184.0.0/13 222.200.0.0/16 222.208.0.0/13 222.219.0.0/16 222.220.0.0/15 222.240.0.0/13 223.4.0.0/14 223.64.0.0/11 223.144.0.0/12 223.240.0.0/13
  232.  
  233. # Hong Kong (HK)
  234. deny from 58.65.232.0/21 59.148.0.0/15 61.244.0.0/16 103.253.96.0/22 103.253.140.0/22 110.173.48.0/20 112.121.160.0/19 112.213.64.0/20 112.213.96.0/19 113.10.128.0/17 113.28.160.0/19 113.252.0.0/14 118.99.0.0/18 118.140.0.0/14 121.127.224.0/19 122.10.0.0/17 123.242.229.0/24 147.8.0.0/16 180.235.134.0/24 202.69.64.0/19 202.85.128.0/19 202.133.8.0/21 203.78.32.0/21 203.198.0.0/16 203.218.0.0/16 210.176.0.0/19 210.176.48.0/20 210.176.64.0/18 210.176.128.0/17 210.177.0.0/16 210.209.64.0/18 218.103.0.0/16 218.250.0.0/16 218.252.0.0/14 219.76.0.0/14 219.90.112.0/20 222.166.0.0/16 223.16.0.0/14
  235.  
  236. # India (IN), Bangladesh (BD) and Pakistan (PK)
  237. deny from 14.96.0.0/14 14.139.0.0/16 14.194.0.0/15 27.248.0.0/14 27.255.0.0/18 27.255.128.0/24 39.32.0.0/11 49.15.0.0/18 49.200.0.0/14 49.248.0.0/17 59.88.0.0/13 59.96.0.0/14 59.160.0.0/14 59.164.0.0/15 9.176.0.0/13 59.184.0.0/15 61.247.238.0/24 101.56.0.0/13 110.232.248.0/24 112.110.0.0/16 113.19.0.0/16 113.212.64.0/19 114.31.224.0/20 115.108.0.0/14 115.112.0.0/13 115.167.24.0/24 115.240.0.0/12 116.72.0.0/14 116.202.12.0/22 116.203.0.0/16 117.192.0.0/10 119.152.0.0/13 119.160.0.0/17 120.56.0.0/13 120.138.98.0/24 121.240.0.0/13 122.160.0.0/12 122.176.0.0/13 122.184.0.0/14 123.49.0.0/18 123.236.0.0/14 124.124.0.0/15 124.247.235.0/24 124.253.8.0/21 125.209.64.0/18 139.190.0.0/16 171.48.0.0/12 180.215.0.0/16 182.64.0.0/12 182.176.0.0/12 183.82.0.0/15 193.53.87.0/24 202.54.0.0/16 202.63.160.0/19 202.87.240.0/20 202.137.232.0/21 202.149.192.0/19 202.154.224.0/24 203.76.176.0/20 203.92.47.0/24 203.115.80.0/20 203.135.62.0/24 203.188.247.0/24 203.192.231.0/24 203.197.0.0/16 206.214.208.0/20 210.211.128.0/17 210.212.64.0/20 218.248.0.0/20 223.130.4.0/22
  238.  
  239. # Indonesia (ID)
  240. deny from 36.84.0.0/16 49.50.4.0/22 49.50.8.0/22 103.253.0.0/22 110.136.176.0/20 110.139.0.0/16 111.95.0.0/16 114.79.18.0/24 116.12.40.0/21 116.66.200.0/21 116.254.96.0/21 118.96.0.0/15 118.99.64.0/18 119.110.68.0/24 119.235.16.0/20 119.252.162.0/24 120.160.0.0/11 124.6.36.0/22 124.195.124.0/24 125.164.64.0/19 125.165.128.0/18 139.192.0.0/14 180.241.128.0/17 180.242.0.0/16 180.248.128.0/18 180.249.0.0/16 180.251.0.0/18 202.57.0.0/19 202.158.32.0/19 203.130.192.0/18 222.124.168.0/16
  241.  
  242. # Japan (JP) (hacking, scraping, or spamming)
  243. deny from 27.50.96.0/19 36.52.0.0/14 42.83.0.0/18 58.188.0.0/14 59.146.0.0/15 60.236.0.0/14 61.112.0.0/12 118.0.0.0/12 118.16.0.0/13 118.86.0.0/15 118.106.0.0/16 122.16.0.0/12 122.200.192.0/18 122.208.0.0/12 123.216.0.0/13 124.84.0.0/14 126.0.0.0/8 150.70.84.41 202.210.128.0/18 210.198.6.0/23 210.248.0.0/13 211.19.0.0/16 218.216.0.0/13 218.224.0.0/13 219.94.128.0/17 219.96.0.0/11 220.104.0.0/13 220.208.0.0/12 221.121.160.0/20 222.0.0.0/12 222.231.64.0/18 222.231.128.0/17 222.144.0.0/13 223.216.0.0/14
  244.  
  245. # Korea (KR) (including North Korea) IP addresses follow:
  246. deny from 1.208.0.0/12 1.224.0.0/11 14.32.0.0/11 14.64.0.0/11 27.115.128.0/17 27.255.64.0/18 58.72.0.0/13 58.120.0.0/13 58.140.0.0/14 58.148.0.0/14 58.180.40.0/21 58.224.0.0/12 59.0.0.0/11 59.86.192.0/18 59.186.0.0/15 61.32.0.0/13 61.40.0.0/14 61.72.0.0/13 61.80.0.0/15 61.96.0.0/12 61.110.16.0/20 61.248.0.0/13 101.79.0.0/16 110.8.0.0/13 110.45.0.0/16 112.144.0.0/12 112.160.0.0/11 112.216.0.0/13 113.30.64.0/18 114.29.0.0/17 114.108.0.0/17 114.108.128.0/18 114.200.0.0/13 115.0.0.0/12 115.16.0.0/13 115.40.0.0/15 115.68.0.0/16 115.88.0.0/13 116.40.0.0/16 116.45.176.0/20 116.93.192.0/19 116.120.0.0/13 117.110.0.0/15 118.32.0.0/11 118.128.0.0/14 118.216.0.0/13 119.64.0.0/13 119.192.0.0/11 120.50.64.0/18 121.78.0.0/16 121.88.0.0/16 121.101.224.0/19 121.127.64.0/18 121.127.128.0/18 121.128.0.0/10 121.254.0.0/16 122.32.0.0/13 122.44.112.0/20 122.99.128.0/17 123.111.0.0/16 123.140.0.0/14 123.212.0.0/14 123.248.0.0/16 124.0.0.0/15 124.50.87.161 124.136.0.0/14 124.217.192.0/19 125.128.0.0/11 125.176.0.0/12 125.240.0.0/13 125.248.0.0/14 143.248.0.0/16 166.104.0.0/16 168.188.0.0/16 175.45.176.0/22 175.112.0.0/12 180.64.0.0/13 180.224.0.0/13 202.30.0.0/15 202.133.16.0/20 202.179.176.0/21 203.226.0.0/15 203.228.0.0/14 203.244.0.0/14 203.248.0.0/13 210.93.0.0/16 210.94.0.0/15 210.108.0.0/14 210.112.0.0/14 210.117.128.0/18 210.118.216.192/26 210.124.0.0/14 210.178.0.0/15 210.180.0.0/15 210.204.0.0/15 210.210.192.0/18 210.219.0.0/16 210.220.0.0/14 211.32.0.0/12 211.48.0.0/15 211.50.0.0/15 211.52.0.0/15 211.54.0.0/15 211.56.0.0/14 211.62.35.0/24 211.104.0.0/13 211.112.0.0/13 211.168.0.0/13 211.176.0.0/12 211.192.0.0/12 211.208.0.0/14 211.216.0.0/13 211.224.0.0/13 211.232.0.0/13 211.240.0.0/12 218.36.0.0/14 218.48.0.0/13 218.144.0.0/12 218.209.0.0/16 218.232.0.0/14 218.236.0.0/14 219.240.0.0/15 219.248.0.0/13 219.250.88.0/21 220.72.0.0/13 220.80.0.0/13 220.95.88.0/24 220.118.0.0/16 220.119.0.0/16 221.128.0.0/12 221.144.0.0/12 221.160.0.0/13 221.168.0.0/16 221.163.46.0/24 222.96.0.0/12 222.112.0.0/13 222.120.0.0/15 222.122.0.0/16 222.231.0.0/18 222.232.0.0/13
  247.  
  248. # Yahoo-Korea (provides free email services used by some spammers)
  249. deny from 123.0.0.0/20
  250.  
  251. # Neighboring Asian countries:
  252.  
  253. # Malaysia (MY)
  254. deny from 27.131.32.0/24 60.48.0.0/14 60.52.0.0/15 60.54.0.0/16 110.159.0.0/16 112.137.160.0/20 113.23.128.0/17 115.132.0.0/14 116.197.0.0/17 116.206.0.0/16 118.100.0.0/15 119.110.96.0/20 120.50.48.0/20 120.140.0.0/15 124.82.0.0/16 124.217.224.0/19 161.139.0.0/16 175.136.0.0/13 180.72.0.0/14 182.54.192.0/19 202.58.80.0/20 202.71.96.0/20 202.75.32.0/19 202.188.0.0/18 202.190.0.0/16 203.106.0.0/16 203.217.176.0/22 203.223.128.0/19 210.187.49.0/25 218.111.0.0/16 218.208.12.64/27
  255.  
  256. # Philippines (PH)
  257. deny from 27.110.144.0/20 37.0.120.0/21 85.92.152.0/21 110.5.64.0/21 111.235.80.0/20 112.201.128.0/17 112.202.0.0/16 120.28.64.0/18 122.54.125.73 125.60.128.0/17 125.212.52.0/22 125.212.56.0/22 180.193.64.0/19 202.52.54.0/23 202.133.192.0/24 202.146.184.0/23 222.127.32.0/19 222.127.64.0/19
  258.  
  259. # Singapore (SG)
  260. deny from 58.185.18.0/28 59.189.0.0/16 116.12.48.0/21 116.14.0.0/15 116.251.223.0/24 121.6.0.0/15 165.21.0.0/16 180.210.200.0/21 182.23.147.0/24 192.169.40.0/23 203.92.64.0/18 203.117.0.0/24 218.186.0.0/16 218.212.0.0/16 219.74.0.0/15 219.75.0.0/17
  261.  
  262. # Taiwan (TW)
  263. deny from 1.160.0.0/12 1.200.0.0/16 36.224.0.0/12 59.112.0.0/12 60.198.0.0/15 60.249.0.0/16 60.250.0.0/15 61.31.0.0/16 61.56.0.0/16 61.59.0.0/16 61.63.0.0/16 61.67.128.0/17 61.216.0.0/14 61.220.0.0/14 61.224.0.0/14 61.228.0.0/14 110.24.0.0/13 110.50.128.0/18 111.240.0.0/12 112.213.48.0/20 114.24.0.0/14 114.32.0.0/12 115.80.0.0/14 115.85.144.0/20 117.19.0.0/16 118.160.0.0/13 122.116.0.0/15 122.118.0.0/16 122.120.0.0/13 122.254.0.0/18 123.51.128.0/17 123.240.0.0/15 124.8.0.0/14 125.224.0.0/13 140.109.0.0/16 140.110.0.0/15 140.112.0.0/12 140.128.0.0/13 140.136.0.0/15 140.138.0.0/16 163.13.0.0/16 163.14.0.0/15 163.16.0.0/12 163.24.0.0/16 163.32.0.0/16 175.96.0.0/14 203.64.0.0/14 203.71.0.0/16 203.72.0.0/16 210.59.0.0/16 210.200.0.0/15 210.240.0.0/16 211.20.0.0/15 211.23.0.0/16 211.75.0.0/16 211.76.160.0/20 211.79.32.0/20 218.160.0.0/12 219.84.0.0/15 219.90.3.0/24 220.128.0.0/12
  264.  
  265. # Thailand (TH)
  266. deny from 1.46.0.0/15 14.207.0.0/16 49.0.64.0/18 49.230.0.0/16 58.8.0.0/16 58.9.0.0/16 58.10.0.0/16 58.137.0.0/16 61.19.0.0/16 61.47.0.0/17 110.34.128.0/17 110.168.0.0/16 113.53.0.0/17 114.131.0.0/16 115.87.128.0/17 117.47.0.0/16 118.172.0.0/14 119.59.96.0/19 122.154.0.0/15 123.242.128.0/18 124.120.0.0/16 124.121.0.0/16 124.122.0.0/16 125.25.0.0/19 171.97.128.0/17 202.28.0.0/15 202.44.135.0/24 202.133.128.0/18 202.142.192.0/19 202.143.128.0/18 203.107.142.0/24 203.113.0.0/17 203.130.149.0/24 203.144.128.0/17 203.146.0.0/16 203.148.128.0/17 203.149.0.0/18 203.150.128.0/17 203.151.38.0/24 203.155.0.0/16 203.158.96.0/19 203.158.128.0/17 203.170.193.0/24 203.172.128.0/17 203.185.128.0/19 210.213.0.0/18 222.123.0.0/16 223.205.0.0/16 223.207.0.0/16
  267.  
  268. # Vietnam (VN)
  269. deny from 1.52.112.0/20 1.53.0.0/16 14.160.0.0/11 27.64.0.0/12 42.112.0.0/13 58.186.0.0/15 112.78.0.0/20 112.197.0.0/16 112.213.80.0/20 113.22.0.0/16 113.23.0.0/17 113.160.0.0/11 115.72.0.0/13 115.84.176.0/22 116.96.0.0/12 117.0.0.0/13 118.68.0.0/14 118.99.13.0/24 123.16.0.0/12 125.234.0.0/15 171.224.0.0/11 175.100.64.0/20 180.93.0.0/16 183.80.0.0/16 183.81.0.0/17 183.91.0.0/19 202.78.227.0/24 203.113.128.0/18 203.162.0.0/16 203.210.192.0/18 210.211.96.0/19 210.245.80.0/20 220.231.124.0/22 222.252.0.0/14
  270.  
  271. #MOTHER RUSSIA
  272. deny from 77.93.110.0/23
  273.  
  274. #JB::
  275. deny from 46.161.9.0/24
  276. deny from 46.4.116.0/24
  277. deny from 40.77.167.18/16
  278. deny from 141.8.143.145/24
  279. deny from 46.4.120.3/16
  280. deny from 5.9.151.22/16
  281. deny from 136.243.0.0/16
  282. #Real person
  283. #deny from 69.62.139.119/24
  284. #deny from 12.230.217.8/24
  285. deny from 66.249.0.0/16
  286. deny from 173.234.159.250/24
  287. deny from 104.233.83.105
  288. deny from 112.25.41.6
  289. deny from 117.135.131.60
  290. deny from 13.88.11.86
  291. deny from 149.202.0.0/16
  292. deny from 176.9.40.197
  293. deny from 187.141.34.148
  294. deny from 198.101.226.182
  295. deny from 221.229.162.7
  296. deny from 221.229.166.101
  297. deny from 221.229.166.98
  298. deny from 24.213.143.102
  299. deny from 27.221.10.194
  300. deny from 45.62.239.168
  301. deny from 58.0.0.0/8
  302. deny from 61.188.189.7
  303. deny from 62.60.138.147
  304. deny from 91.224.0.0/16
  305. deny from 92.210.0.0/16
  306. deny from 98.16.56.33
  307. deny from 144.76.0.0/16
  308. deny from 142.4.218.0/24
  309. deny from 158.69.200.0/24
  310. deny from 178.63.0.0/16
  311. deny from 185.29.9.0/24
  312. deny from 62.210.148.0/24
  313. deny from 51.254.0.0/16
  314. deny from 51.255.51.0/16
  315. deny from 176.9.10.0/24
  316. deny from 88.198.16.0/24
  317. deny from 188.40.0.0/16
  318. deny from 85.14.244.0/24
  319. deny from 173.234.153.0/24
  320. deny from 51.255.198.0/16
  321. deny from 85.14.244.0/24
  322. deny from 51.255.48.0/24
  323. deny from 92.209.49.0/24
  324. deny from 74.46.50.0/24
  325. deny from 51.254.121.0/24
  326. deny from 62.138.2.0/24
  327. deny from 83.149.126.0/24
  328. deny from 192.166.0.0/16
  329. deny from 78.46.0.0/16
  330. deny from 81.109.0.0/16
  331. deny from 62.210.97.0/24
  332. deny from 172.208.157.0/24
  333. deny from 24.139.76.0/24
  334. deny from 138.201.0.0/16
  335. deny from 213.159.0.0/16
  336. deny from 105.112.0.0/16
  337. deny from 88.189.0.0/16
  338. deny from 188.239.0.0/16
  339. deny from 2.132.0.0/16
  340. deny from 178.93.0.0/16
  341.  
  342.  
  343. # FOK DEM DUDES
  344. deny from 62.0.0.0/8
  345. deny from 109.0.0.0/8
  346. deny from 164.0.0.0/8
  347. deny from 175.0.0.0/8
  348. deny from 185.104.120.0/24
  349. deny from 85.0.0.0/8
  350. deny from 46.0.0.0/8
  351. deny from 82.0.0.0/8
  352. deny from 85.0.0.0/8
  353. deny from 89.0.0.0/8
  354. deny from 64.113.32.0/24
  355. deny from 187.252.176.0/24
  356. deny from 37.34.249.0/24
  357. deny from 46.172.91.0/24
  358. deny from 91.197.234.0/24
  359.  
  360. # End Chinese-Korean blocklist
  361.  
  362. #Rob's Russia and The Facade of a nation Korea
  363. deny from 188.143.232.43/24
  364. deny from 220.95.110.179/24
  365. deny from 38.100.21.68
  366. deny from 58.218.204.32
  367. deny from 41.174.156.0/24
  368. deny from 45.59.0.0/16
  369.  
  370. #tried accessing /qpwoeifchgvbxskfgueoxmzz Malicious or not, they deserve nothing
  371. deny from 50.203.185.106
  372. deny from 50.27.218.50
  373. deny from 131.161.0.0/16
  374.  
  375. #manually typed in /user/login. Ban.
  376. deny from 96.80.150.113
  377.  
  378. #c'mon Germany...you're supposed to be good after 1943.
  379. deny from 89.163.0.0/16
  380.  
  381. #THE OLD BRITS
  382. deny from 80.255.0.0/16
  383. deny from 193.111.140.0/24
  384.  
  385. #Accessing wordpress files. Ban.
  386. deny from 91.200.12.53
  387.  
  388. #Tried /administrators..
  389. deny from 178.162.199.0/24
  390.  
  391. #Tried scanning for vulnerable js files
  392. deny from 71.105.22.100
  393. deny from 104.129.200.74
  394.  
  395. #Ukraine
  396. deny from 91.200.0.0/16
  397. deny from 94.154.0.0/16
  398.  
  399. #Israel
  400. deny from 82.80.0.0/16
  401.  
  402. #Poland
  403. deny from 193.189.117.0/24
  404. deny from 8.206.243.0/24
  405.  
  406. deny from 92.100.134.42
  407.  
  408. #Just wouldn't stop spamming...
  409. deny from 45.59.218.0/24
  410. deny from 183.129.189.0/24
  411. deny from 175.194.65.0/24
  412. deny from 64.37.231.0/24
  413. deny from 195.169.125.0/24
  414. deny from 47.94.43.0/24
  415. deny from 188.138.0.0/16
  416.  
  417.  
  418. #FAIL 2 BAN Rejects
  419. deny from 103.236.253.0/24
  420. deny from 84.170.104.0/24
  421. deny from 142.54.101.146/24
  422. deny from 151.80.99.0/24
  423.  
  424. #SHOTGUN
  425. deny from 58.27.213.0/24
  426. deny from 89.144.47.0/24
  427.  
  428. # Add other blocked domain names or IP addresses here, starting with "deny from " without quotes
  429.  
  430. # If you find that you need to poke a hole in the blocklist, for legitimate visitors, follow this example: allow from 123.456.789.0
  431.  
  432. # Add "allow from" IP addresses, or CIDR Ranges, after all of the "deny from" items, just before the closing Files tag.
  433.  
  434. # Everything not included within these deny from ranges is PERMITTED by the allow portion of the directive.
  435.  
  436. </Files>
Advertisement
RAW Paste Data Copied
Advertisement