I just upgraded my Web server's operating system and applications. As part of this, I upgraded to the latest mod_security rule set. I started with mod_security to block referer spam, but I'm also using it to block connections from blacklisted addresses. mod_security has a steep learning curve, and I've had to tweak my rules more than once.

With these upgrades, my anti-referer-spam rules stopped working. Incoming requests with referer spam headers were logging to my access log and showing up ...