Block attempts to probe nonexistent files to keep them out of application logs and processing time

Sun, Jan 5, 2020

block annoying bot probes on my server ignore 404 probe attempts to keep out of application logs

(The one i happened to notice, autodiscover.xml, seems to have gone from novelty to a constant.)

The only place i know for certain i can just add a line to block an annoying meaningless bot probe from reaching my application logs is .htaccess

Maybe we can at least have a line in our .htaccess that checks a central ruleset that we maintain ourselves, since somehow there isn’t an existing project and community clearly for this?

Some stuff i did find:

https://support.acquia.com/hc/en-us/articles/360004553253-Avoiding-404-error-messages-in-your-logs

bot honeypot + timewaster tarpit - “This needs a rewrite. Pasting it in here to save for later.” https://gist.github.com/dhaupin/5f467ef6fc951733ba6c

https://www.modsecurity.org/documentation.html

https://www.projecthoneypot.org/create_account.php

https://cybersecurity.att.com/blogs/security-essentials/open-source-intrusion-detection-tools-a-quick-overview