Re: [users@httpd] Implement request white list in Apache

Thanks Rich Bowen and Marat Khalili for the quick and usable reply . On Fri, Jul 8, 2016 at 2:53 PM, Rich Bowen wrote: > Well, yes, you could do it with mod_rewrite. You could also presumably use > a proxypassmatch as part of your tomcat setup if the whitelist is simple >

Re: [users@httpd] Implement request white list in Apache

Well, yes, you could do it with mod_rewrite. You could also presumably use a proxypassmatch as part of your tomcat setup if the whitelist is simple enough to express it as one regex. I expect, though, that mod_security will give you the biggest ! for your $ in a nontrivial scenario. On Jul 8, 2016

Re: [users@httpd] Implement request white list in Apache

You can do this with mod_rewrite: RewriteCond %{REQUEST_URI} !^allowed_url_1$ RewriteCond %{REQUEST_URI} !^allowed_url_2$ ... RewriteCond %{REQUEST_URI} !^allowed_url_N$ RewriteRule .* - [F,L] -- With Best Regards, Marat Khalili On 08/07/16 13:53, Joice Joseph wrote:

Re: [users@httpd] Implement request white list in Apache

You're looking for mod_security On Jul 8, 2016 06:54, "Joice Joseph" wrote: > Hi All, > > Can someone help me to make the Apache in such a way that It will block > all the request filter by default and process only those specified requests > to tomcat server. > > -- >

[users@httpd] Implement request white list in Apache

Hi All, Can someone help me to make the Apache in such a way that It will block all the request filter by default and process only those specified requests to tomcat server. -- ​​ ​Cheers​ *Joice Joseph*