Blocking user agent via .htaccess, not working

mr_pita · October 20, 2011, 8:22pm

I’ve noticed a lot of unidentified bots crawling my site, all with the user agent string beginning with “Java”.I want to block them via .htaccess, but don’t seem to have any success in doing so. This is my code:


RewriteEngine on
RewriteCond %{HTTP_USER_AGENT} ^Java.*
RewriteRule ^/(.*)$ /$1 [F,L]

I have a FF extension that allows me to change my user agent identifier, and I’ve changed it to “Java/1.6.0_27” just like one of the bots I noticed. I’ve verified that it actually changes the string. But if I go to my site, the pages shows up as normal and I am not served a 403 error as I should be.

I have other rewrite rules that work just fine, so I don’t think it’s a server configuration problem. What am I doing wrong?

mr_pita · October 22, 2011, 4:23pm

For some reason this still isn’t working, despite that nearly every tutorial I’ve found online says this is how to do it. Anybody have an idea why?
Appreciate it!

TimIgoe · October 24, 2011, 11:32pm

RewriteCond %{HTTP_USER_AGENT} ^Java [NC] RewriteRule .* - [F,L]You don’t want to re-write the inbound request to anything specifically… Also the useragent doesn’t need to be finished, you aren’t specifying an end.

You might want [NC] to ignore case too.

Topic		Replies	Views
.htaccess Modification to Block User Agent? Server Config	5	4144	October 8, 2014
Blocking Bots via htaccess Question Server Config	3	977	October 8, 2014
How to block Unknown robot (identified by 'bot*') Server Config	7	11200	October 8, 2014
Website is being attacked... need advice Server Config security	5	1086	December 16, 2011
Htaccess: Condition on HTTP_USER_AGENT then rewrite with dynamic subdomain Server Config	2	3125	August 2, 2016

Blocking user agent via .htaccess, not working

Related topics