Can I make Apache drop a connection when matching a URL?

apache-2.2 mod-rewrite

Solution 1:

Is it really worth the trouble? As long as your site doesn't have any vulnerabilities that the bots are looking for, it's just another entry in your error log. Unless it's actually causing excessive load on the server, it's pretty much a non-issue.

If you are running something popular in the sense of wide-spread usage and vulnerability exploits and you aren't confident about staying up to date on security fixes, then, yes, mod_security might be a layer of safety. Note, however, that mod_security will break stuff with any useful rules unless it's tuned properly for your site(s).

I don't think mod_security will give you a tar-pit or null response like you are asking for. If you want to tell some(one|thing) to piss off, give them a 403 Forbidden on any specific URL's you are especially worried about by setting up the appropriate rewrite rules.

Related

openconnect VPN works in KDE NetworkManager widget but not on command line
Raid1 question
Log rotate log from standard out
Why do some outgoing IP traffic not contain UID information?
DNS Question: Run own server, use registrar's, or 3rd party company?
Provide a user with service start/stop permissions
UNEXPECTED INCONSITENCY run fsck manually redhat
Iptables bang position
How can I determine what hosting provider hosts a site?
Webserver in docker container is not reachable via the internet
Host a Debian repository on a Windows Web/Ftp server
DRBD / Heartbeat on Virtual Machines