rp_filter currently blocks specific "NASTY" user-agents.
It would be really handy if filtering included Host requests.
Both filters would be generalized by using a parameter for each (so the APM wouldn't need to Watch acs-tcl/tcl/request-processor-procs.tcl when making changes etc).
Any objection to this in theory?
It seems especially relevant for ecommerce and sites regularly under attack.
I'm working on code for it now