Ping a Specific Port

Question

akay

Asked: 2016-11-30 07:45:52 +0800 CST2016-11-30 07:45:52 +0800 CST 2016-11-30 07:45:52 +0800 CST

rewrite / restrict specific domain name in apache

772

We have https://example1.com/login and example2.com/login being hosted from the same apache server (2.2.22). I want to restrict /login on example1.com.

example1.com/login --> 404 (preferably) or 403
example2.com/login --> login page

I tried

<Location /login>
Order Deny,Allow
Deny from example1.com
Allow from example2.com
</Location>

It disables /login from both example1.com and example2.com. Can I restrict just example1.com?

1 Answers

Voted

MrWhite · Answer 1 · 2016-11-30T08:17:57+08:00

You can do this using mod_rewrite which allows you to check the host through which the site is being accessed. Try the following, in your server config (or <Directory> section or .htaccess file):

RewriteEngine On
RewriteCond %{HTTP_HOST} =example1.com [NC]
RewriteRule ^/?login$ - [R=404,L]

The above serves a 404 Not Found if you request example1.com/login, but will not do anything if you request example2.com/login (the request will simply be allowed through).

The = prefix on the RewriteCond CondPattern makes it an exact lexicographical comparison, not a regex, so no need to escape the dot or use anchors.

In order to serve a 403 Forbidden instead you can change the flags on the RewriteRule, for example:

RewriteRule ^/?login$ - [F]

<Location /login>
Order Deny,Allow
Deny from example1.com
Allow from example2.com
</Location>
It disables /login from both example1.com and example2.com.

I'm rather curious... this would seemingly allow all access, not deny it? The Deny from ... directive denies access to the user from example1.com (via reverse DNS lookup on the remote IP address), not the user who is accessing the example1.com host. Neither the Deny or Allow directives should match so it should default Allow. (?)

...how do i add multiple rewrite conditions for the same RewriteCond?

UPDATE: Note that RewriteCond directives (ie. conditions) apply to the single RewriteRule directive that follows. Continuing the above example, if you wish to block several URLS (eg. /login, /demo and /test) for example1.com only then you can either combine all these in the RewriteRule pattern. For example:

RewriteCond %{HTTP_HOST} =example1.com [NC]
RewriteRule ^/?(login|demo|test)$ - [R=404,L]

This is OK in this instance since the URLs are limited and all very short. Alternatively, you can create a condition for each URL and use the OR flag. For example:

RewriteCond %{HTTP_HOST} =example1.com [NC]
RewriteCond %{REQUEST_URI} ^/login$ [OR]
RewriteCond %{REQUEST_URI} ^/demo$ [OR]
RewriteCond %{REQUEST_URI} ^/test$
RewriteRule ^ - [R=404,L]

This states... for all URLs where the HTTP_HOST is example1.com and the URL is either /login or /demo or /test then serve the 404 error document. However, the first example (using the RewriteRule pattern) would be more efficient, since this is what's processed first.

rewrite / restrict specific domain name in apache

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?