Arama Yap Mesaj Gönder
Biz Sizi Arayalım
+90
X

Select Your Country

Turkey (Türkçe)Turkey (Türkçe) Germany (German)Germany (German) Worldwide (English)Worldwide (English)
X

Select Your Currency

Türk Lirası $ US Dollar Euro
X

Select Your Country

Turkey (Türkçe)Turkey (Türkçe) Germany (German)Germany (German) Worldwide (English)Worldwide (English)
X

Select Your Currency

Türk Lirası $ US Dollar Euro

Knowledge Base

Homepage Knowledge Base General Protecting the Server Against Cyber...

Bize Ulaşın

Konum Halkalı merkez mahallesi fatih cd ozgur apt no 46 , Küçükçekmece , İstanbul , 34303 , TR
Telefon +90 850 888 83 42
WhatsApp +90 850 307 34 58
E-posta [email protected]

Protecting the Server Against Cybersecurity Scans and Proxy-Based Access (.htaccess + SSH Measures)

Many automated scanning tools, cybersecurity software, and attack bots attempt to gain access to your server through open ports or known vulnerabilities. Requests made by pentest software, security firms, or automation systems, in particular, can strain your system. Therefore, security measures should be taken at both the SSH and Apache levels. In this guide, we will explain how to block proxy access and bot scans with .htaccess, as well as direct access restrictions via SSH.

1. Blocking Proxy and Security Scanning Bots with .htaccess

A) Blocking Known Proxy & Pentest User-Agents

RewriteEngine On

# User-Agent based blocking
SetEnvIfNoCase User-Agent ".*(sqlmap|nikto|acunetix|netsparker|nessus|scanner|libwww).*" bad_bot
Order Allow,Deny
Allow from all
Deny from env=bad_bot

B) Blocking Known IP Ranges (e.g., Shodan, Censys, etc.)

<Limit GET POST>
Order Allow,Deny
Allow from all
Deny from 71.6.135.0/24
Deny from 89.248.165.0/24
Deny from 104.131.0.0/16
</Limit>

C) Proxy Header Check

RewriteCond %{HTTP:X-Forwarded-For} !^$
RewriteRule ^(.*)$ - [F,L]

RewriteCond %{HTTP:VIA} !^$
RewriteRule ^(.*)$ - [F,L]

These rules check whether the incoming request is coming through a proxy and block it if it is.

2. SSH Access Restrictions

A) Disable Root Login

Open the /etc/ssh/sshd_config file:

sudo nano /etc/ssh/sshd_config

Find the following line and change it as follows:

PermitRootLogin no

B) Grant SSH Access Only to Specific IPs

echo "sshd: 31.143.234.25 : allow" | sudo tee -a /etc/hosts.allow
echo "sshd: ALL : deny" | sudo tee -a /etc/hosts.deny

C) Change the SSH Port

Port 2222  # Example: instead of 22

To apply:

sudo systemctl restart sshd

3. Extra Recommendations

  • Prevent brute-force attacks with Fail2Ban.

  • If you are using Cloudflare, add ASN blocking, country blocking, and WAF rules.

  • Perform automatic attack detection with Imunify360, CSF, or similar server security software.

With these simple but effective measures to be taken at both the .htaccess and SSH levels, your server becomes much more resistant to cyber attacks. Security should be provided with a layered approach and constantly monitored. In particular, blocking known pentest software and proxy-based scans helps you stop attackers early.

 

Can't find the information you are looking for?

Create a Support Ticket
Did you find it useful?
(3015 times viewed / 170 people found it helpful)

Categories

Server/VPS/VDS (67)SSH (24)Domain Name Registry (15)General (617)Reseller Hosting (1)

Most Recently Added Topics

Easy Email Migration Guide with Imapsync V3Mailcow Email Server Installation and OptimizationPlesk Repair Web: Web Server Repair and ConfigurationViewing Open Ports in Linux: Listening to Ports with NetstatProtecting the Server Against Cybersecurity Scans and Proxy-Based Access (.htaccess + SSH Measures)Web Site Security Scanning with OWASP ZAPSelecting PHP 7.4 in Apache: Easily with AddHandlerPrevent Horizontal Scrolling with HTML Overflow-x:hiddenMeta Viewport Tag: Mobile-Friendly WebsitesLinux File Permissions: Securing with Chmod and Chown

Call now to get more detailed information about our products and services.

Top