Borgs8472
asked on
Anti fraud feed for Apache?
So I'm working creating a highly robust Linux install that will be used as a template for automated roll out of Magento (ecommerce) instances.
We're trying to make it completely turn-key, robust to minimise support. Our stores will be primarily UK based, but in the future, some European and US based.
I was hoping I could access a feed that blocks countries and known IP addressed marked as fraud, e.g. West Africa, China and other known untrusted networks. This feed I would then like to to my management server, then into an appropriate Apache block list.
Can someone recommend me where I can find such feeds, and what the best way to integrate them with Apache would be? Thanks!
We're trying to make it completely turn-key, robust to minimise support. Our stores will be primarily UK based, but in the future, some European and US based.
I was hoping I could access a feed that blocks countries and known IP addressed marked as fraud, e.g. West Africa, China and other known untrusted networks. This feed I would then like to to my management server, then into an appropriate Apache block list.
Can someone recommend me where I can find such feeds, and what the best way to integrate them with Apache would be? Thanks!
Last Comment
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
It took me a while, but I finally confirmed mod security supports real time black lists.
Apache Web Server
The Apache HTTP Server is a secure, efficient and extensible server that provides HTTP services in sync with the current HTTP standards. Typically Apache is run on a Unix-like operating system, but it is available for a wide variety of operating systems, including Linux, Novell NetWare, Mac OS-X and Windows. Released under the Apache License, Apache is open-source software.
21K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
http://www.quova.com/why/prevent-fraud/
Or a WAF with such capabiltiy can be considered. I know of F5 Network ASM has such Geolocation capability
http://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-1-0/5.html
or direct coding into appl
http://developer.quova.com/docs
http://developer.quova.com/Featured_Solutions
Apache 2.0 is a module based, open source HTTP web server that is developed and maintained by the Apache Software Foundation. mod_quova uses the Quova REST API to collect geolocation data for the client IP address and sets environment variables. The environment variables can be used by other modules, language interpreters or CGI programs.