Comments on: Htaccess SetEnvIf and SetEnvIfNoCase Examples

By: AskApache

AskApache — Fri, 07 Oct 2011 17:20:23 +0000

@ Philip Goddard

Run another setenvif for those you want to allow, and make the action unset the spam_ref variable by prepending it with !.

setenvifnocase referer "^http://.*(poker|texas.?hold-?em|diet|loan|cash|video|liftmaster|fillbest|pharma|.info/)" spam_ref=1
setenvifnocase referer "^http://.*(google|yahoo|bing)" !spam_ref
# (plus lots more similar lines)
Order Allow,Deny
Allow from all
Deny from env=spam_ref

By: Philip Goddard

Philip Goddard — Wed, 01 Dec 2010 10:24:22 +0000

I haven't been able to figure out how to make an exception when using the SetEnvIf directive. I have in my .htaccess the following configuration to block unwanted visitors on the basis of referrer keywords:

setenvifnocase referer "^http://.*(poker|texas.?hold-?em|diet|loan|cash|video|liftmaster|fillbest|pharma|.info/)" spam_ref=1
# (plus lots more similar lines)
Order Allow,Deny
Allow from all
Deny from env=spam_ref

That works fine except that certain legitimate referrers such as Google can actually contain the odd word that is in the forbidden referrer keyword list and thus get blocked, and so I want to make an exception for them - to allow them even if they do contain one of the banned words. Any suggestions of solutions that have actually been tested and found to operate reliably? Thanks.

By: damu

damu — Thu, 05 Aug 2010 00:59:09 +0000

can we do something like this:

AuthUserFile /web/XYZ/passwd/.htpasswd

AuthUserFile /web/XYZ2/passwd/.htpasswd

By: Marcello

Marcello — Mon, 14 Sep 2009 09:52:44 +0000

I don't understand this

SetEnvIfNoCase ^If-Modified-Since$ "(.+)" HTTP_IF_MODIFIED_SINCE=$1

shouldn't there be a variable in place of ^If-Modified-Since$ ? otherwise it will always match..

By: Average Joe

Average Joe — Wed, 25 Mar 2009 23:38:35 +0000

Your article and site is helpful, but the music is rude, annoying, poor design and dis-tasteful. Everyone likes their own music, and usually respect one another's tastes. Please respect your visitors and let us listen to our own music, not yours. DJ'ing should be left for radio hosts and party's. Thanks.

By: Emmanuel Mwangi

Emmanuel Mwangi — Mon, 29 Dec 2008 00:52:03 +0000

I would like to be able to make .htaccess directives on a number of sites I have version control systems. I have a copy of the site on my computer hosted on my local apache set to hostname.dev while that site is live on the net as hostname.com or .org.

Right now, I can't keep the .htaccess file in version control because it differs greatly from my host's setup (the excellent Dreamhost) with my own setup (Apache2+PHP5 on OSX Leopard on a MBP). I had thought of trying to duplicate Dreamhosts' environment (just for fun) but, that's more trouble than it is worth in both fun and profit.

So, I was looking for a way to have environment variables trigger various rules in .htaccess. I found this site (great btw) and I was looking for solution. I was thinking that there would be some way to trigger blocks of commands with directives from server variables. Something along these lines:

  DEVELOPMENT (MACBOOK APACHE SETUP) RULES...
  ...
  PRODUCTION (DREAMHOST) RULES...

By: bay islands

bay islands — Fri, 19 Sep 2008 08:42:43 +0000

I think Baidu spider is now legit. I saw a thread at webmasterworld where the baidu techs came and went through why they were ok.