Documentation Source Text

Check-in [01c0f297c1]
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:In althttpd.c, disallow a single particular user-agent string that is recently appearing in spider attacks.
Timelines: family | ancestors | descendants | both | trunk
Files: files | file ages | folders
SHA3-256:01c0f297c1b38f3bfd5970b5eae56046f4c48bb30ca9efcfcb7f0159a21e1531
User & Date: drh 2019-04-24 17:18:59
Context
2019-04-24
19:28
The attack that the previous check-in sought to mitigate has stopped. So comment-out the change of the previous check-in. check-in: 4e3b689944 user: drh tags: trunk
17:18
In althttpd.c, disallow a single particular user-agent string that is recently appearing in spider attacks. check-in: 01c0f297c1 user: drh tags: trunk
2019-04-19
23:40
Clarify the documentation on PRAGMA cache_size to explain that the cache size will go up or down in proportion to a change in page size. check-in: 184e897473 user: drh tags: trunk
Changes
Hide Diffs Unified Diffs Ignore Whitespace Patch

Changes to misc/althttpd.c.

1715
1716
1717
1718
1719
1720
1721






1722
1723
1724
1725
1726
1727
1728
     || strstr(zAgent, "Download_Master")!=0
     || strstr(zAgent, "Ezooms/")!=0
     || strstr(zAgent, "HTTrack")!=0
     || strstr(zAgent, "AhrefsBot")!=0
    ){
      Forbidden(250);  /* LOG: Disallowed user agent */
    }






  }
#if 0
  if( zReferer ){
    static const char *azDisallow[] = {
      "skidrowcrack.com",
      "hoshiyuugi.tistory.com",
      "skidrowgames.net",







>
>
>
>
>
>







1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
1734
     || strstr(zAgent, "Download_Master")!=0
     || strstr(zAgent, "Ezooms/")!=0
     || strstr(zAgent, "HTTrack")!=0
     || strstr(zAgent, "AhrefsBot")!=0
    ){
      Forbidden(250);  /* LOG: Disallowed user agent */
    }
    /* Spider attack from 2019-04-24 */
    if( strcmp(zAgent,
            "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 "
            "(KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36")==0 ){
      Forbidden(251);  /* LOG: Disallowed user agent (20190424) */
    }
  }
#if 0
  if( zReferer ){
    static const char *azDisallow[] = {
      "skidrowcrack.com",
      "hoshiyuugi.tistory.com",
      "skidrowgames.net",