男的舔女的下面视频在线播放-少妇愉情理仑片高潮日本-久久久久久国产一区二区三区-麻豆精品一区二区综合-国产精品超碰在线观看-网红极品女神精品视频在线-国产亚洲综合777-高清性视频一区二区播放-中文字幕第一页亚洲天堂

Discuz! 官方交流社區(qū)

標(biāo)題: 怎么防止惡意掃描 [打印本頁(yè)]
作者: ysx24    時(shí)間: 2025-3-14 17:05
標(biāo)題: 怎么防止惡意掃描
查看服務(wù)器日志發(fā)現(xiàn)大量掃描/forum.php?mod=attachment開(kāi)頭的URL,光這個(gè)掃描記錄好長(zhǎng)好長(zhǎng)下拉都拉不完,問(wèn)題訪(fǎng)問(wèn)的ip很少有重復(fù)的,很多的ip

雖然都被攔截了但也大量消耗資源引起網(wǎng)站卡頓延遲

怎么設(shè)置論壇未登錄用戶(hù)嘗試訪(fǎng)問(wèn)附件下載路徑 /forum.php?mod=attachment&aid=
開(kāi)頭自動(dòng)封禁ip N小時(shí)
截取的片段:

  2. mod=attachment&aid=MzQzfDA3NTUwNTg4fDE3NDE5MjAzMTd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 12:55:41 [error] 993330#0: *44123 upstream prematurely closed FastCGI request while reading upstream, client: 113.103.140.245, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDA3NTUwNTg4fDE3NDE5MjAzMTd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 12:55:42 [error] 993330#0: *44105 upstream prematurely closed FastCGI request while reading upstream, client: 113.103.140.245, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDA3NTUwNTg4fDE3NDE5MjAzMTd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 13:13:34 [error] 993330#0: *44782 upstream prematurely closed FastCGI request while reading upstream, client: 183.166.136.44, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDBlMTQwZmNkfDE3NDE5MjkxNTd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 13:13:37 [error] 993330#0: *44792 upstream prematurely closed FastCGI request while reading upstream, client: 183.166.136.44, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDBlMTQwZmNkfDE3NDE5MjkxNTd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 13:35:07 [error] 993330#0: *45579 upstream prematurely closed FastCGI request while reading upstream, client: 180.119.26.92, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDgxMTA5MzkzfDE3NDE5MjU4Mjd8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 14:45:29 [error] 993330#0: *48350 upstream prematurely closed FastCGI request while reading upstream, client: 112.194.91.181, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfDlmNDJlYjY5fDE3NDE5MzQ3Mjh8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 15:43:28 [error] 1259602#0: *50444 upstream prematurely closed FastCGI request while reading upstream, client: 183.166.136.99, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfGFmZGI0YWUzfDE3NDE5MzgyMDB8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net" 2025/03/14 15:43:35 [error] 1259602#0: *50449 upstream prematurely closed FastCGI request while reading upstream, client: 183.166.136.99, server: www.nexora.net, request: "GET /forum.php?mod=attachment&aid=MzQzfGFmZGI0YWUzfDE3NDE5MzgyMDB8MHw2Mg%3D%3D HTTP/2.0", upstream: "fastcgi://unix:/tmp/php-cgi-74.sock:", host: "www.nexora.net"
復(fù)制代碼
作者: bug八阿哥    時(shí)間: 2025-3-14 22:23
寶塔有免費(fèi)的防火墻 開(kāi)啟UA攔截 禁止海外【最好是從域名解析那邊禁止海外】
作者: ysx24    時(shí)間: 2025-3-14 22:40
bug八阿哥 發(fā)表于 2025-3-14 22:23
寶塔有免費(fèi)的防火墻 開(kāi)啟UA攔截 禁止海外【最好是從域名解析那邊禁止海外】 ...

早封禁國(guó)外一年多了,都是國(guó)內(nèi)的
我在研究看是用nginx實(shí)現(xiàn)還是利用dz自帶功能修改代碼實(shí)現(xiàn)
作者: bug八阿哥    時(shí)間: 2025-3-14 22:54
這是被爬了吧
作者: ysx24    時(shí)間: 2025-3-15 00:24
bug八阿哥 發(fā)表于 2025-3-14 22:54
這是被爬了吧

無(wú)所謂了
已經(jīng)把日志中的所有IP利用ai全部提取出來(lái),不管是掃描器或者是爬蟲(chóng),只要帶mod=attachment路徑的,直接拎出來(lái)甩手全部扔進(jìn)防火墻ip黑名單了,即便是爬蟲(chóng)也是不遵守robots.txt協(xié)議無(wú)視User-agent: *

另外現(xiàn)在的大環(huán)境已經(jīng)不靠SEO了
作者: skyer    時(shí)間: 2025-3-16 04:47
你在這里問(wèn)這個(gè)問(wèn)題就是多余
作者: ysx24    時(shí)間: 2025-3-16 13:22
skyer 發(fā)表于 2025-3-16 04:47
你在這里問(wèn)這個(gè)問(wèn)題就是多余

已經(jīng)解決
source/module/forum/forum_attachment.php
增加判斷邏輯代碼
source/function/function_core.php
文件增加
添加全局函數(shù),用于自動(dòng)封禁 IP 并記錄日志,配合nginx設(shè)置,完成

回應(yīng)你說(shuō)的多余問(wèn)題
另外我問(wèn)的不是discuz問(wèn)題么,為什么叫多余?
如果是經(jīng)常解答問(wèn)題的開(kāi)發(fā)者這么說(shuō)我無(wú)話(huà)可說(shuō) 欣然接受,但你也是平等身份這么說(shuō)不合適吧(Brain-dead)??
作者: 無(wú)言以對(duì)2012    時(shí)間: 2025-3-17 15:29
ysx24 發(fā)表于 2025-3-16 13:22
已經(jīng)解決
source/module/forum/forum_attachment.php
增加判斷邏輯代碼

能否詳說(shuō)下,我之前也遇到了,靠防火墻撐著,但攔截還是不夠徹底



歡迎光臨 Discuz! 官方交流社區(qū) (http://m.sdtechgong.com.cn/) Powered by Discuz! X5.0