{"id":2067,"date":"2017-04-11T15:17:35","date_gmt":"2017-04-11T07:17:35","guid":{"rendered":"http:\/\/cn.hostease.com\/xueyuan\/?p=2067"},"modified":"2017-04-11T15:17:35","modified_gmt":"2017-04-11T07:17:35","slug":"nginx-%e9%98%b2%e5%be%a1cc%e6%94%bb%e5%87%bb%e7%9a%84%e4%b8%a4%e7%a7%8d%e6%96%b9%e6%b3%95","status":"publish","type":"post","link":"https:\/\/cn.hostease.com\/xueyuan\/jishu\/nginx-%e9%98%b2%e5%be%a1cc%e6%94%bb%e5%87%bb%e7%9a%84%e4%b8%a4%e7%a7%8d%e6%96%b9%e6%b3%95\/","title":{"rendered":"Nginx \u9632\u5fa1CC\u653b\u51fb\u7684\u4e24\u79cd\u65b9\u6cd5"},"content":{"rendered":"

CC\u653b\u51fb\u53ef\u4ee5\u5f52\u4e3aDDoS\u653b\u51fb\u7684\u4e00\u79cd\u3002\u4ed6\u4eec\u4e4b\u95f4\u90fd\u539f\u7406\u90fd\u662f\u4e00\u6837\u7684\uff0c\u5373\u53d1\u9001\u5927\u91cf\u7684\u8bf7\u6c42\u6570\u636e\u6765\u5bfc\u81f4\u670d\u52a1\u5668\u62d2\u7edd\u670d\u52a1\uff0c\u662f\u4e00\u79cd\u8fde\u63a5\u653b\u51fb\u3002CC\u653b\u51fb\u53c8\u53ef\u5206\u4e3a\u4ee3\u7406CC\u653b\u51fb\uff0c\u548c\u8089\u9e21CC\u653b\u51fb\u3002\u4ee3\u7406CC\u653b\u51fb\u662f\u9ed1\u5ba2\u501f\u52a9\u4ee3\u7406\u670d\u52a1\u5668\u751f\u6210\u6307\u5411\u53d7\u5bb3\u4e3b\u673a\u7684\u5408\u6cd5\u7f51\u9875\u8bf7\u6c42\uff0c\u5b9e\u73b0DOS\uff0c\u548c\u4f2a\u88c5\u5c31\u53eb\uff1acc\uff08ChallengeCollapsar\uff09\u3002\u800c\u8089\u9e21CC\u653b\u51fb\u662f\u9ed1\u5ba2\u4f7f\u7528CC\u653b\u51fb\u8f6f\u4ef6\uff0c\u63a7\u5236\u5927\u91cf\u8089\u9e21\uff0c\u53d1\u52a8\u653b\u51fb\uff0c\u76f8\u6bd4\u6765\u540e\u8005\u6bd4\u524d\u8005\u66f4\u96be\u9632\u5fa1\u3002\u56e0\u4e3a\u8089\u9e21\u53ef\u4ee5\u6a21\u62df\u6b63\u5e38\u7528\u6237\u8bbf\u95ee\u7f51\u7ad9\u7684\u8bf7\u6c42\u3002\u4f2a\u9020\u6210\u5408\u6cd5\u6570\u636e\u5305\u3002\u9632\u5fa1CC\u653b\u51fb\u53ef\u4ee5\u901a\u8fc7\u591a\u79cd\u65b9\u6cd5\uff0c\u7981\u6b62\u7f51\u7ad9\u4ee3\u7406\u8bbf\u95ee\uff0c\u5c3d\u91cf\u5c06\u7f51\u7ad9\u505a\u6210\u9759\u6001\u9875\u9762\uff0c\u9650\u5236\u8fde\u63a5\u6570\u91cf\u7b49\u3002<\/p>\n

 <\/p>\n

Nginx\u662f\u4e00\u6b3e\u8f7b\u91cf\u7ea7\u7684Web\u670d\u52a1\u5668\uff0c\u7531\u4fc4\u7f57\u65af\u7684\u7a0b\u5e8f\u8bbe\u8ba1\u5e08Igor Sysoev\u6240\u5f00\u53d1\uff0c\u6700\u521d\u4f9b\u4fc4\u56fd\u5927\u578b\u7684\u5165\u53e3\u7f51\u7ad9\u53ca\u641c\u5bfb\u5f15Rambler\u4f7f\u7528\u3002 \u5176\u7279\u70b9\u662f\u5360\u6709\u5185\u5b58\u5c11\uff0c\u5e76\u53d1\u80fd\u529b\u5f3a\uff0c\u4e8b\u5b9e\u4e0aNginx\u7684\u5e76\u53d1\u80fd\u529b\u786e\u5b9e\u5728\u540c\u7c7b\u578b\u7684\u7f51\u7ad9\u670d\u52a1\u5668\u4e2d\u8868\u73b0\u8f83\u597d\u3002<\/p>\n

Nginx\u867d\u7136\u53ef\u4ee5\u6bd4Apache\u5904\u7406\u66f4\u5927\u7684\u8fde\u63a5\u6570\uff0c\u4f46\u662fHTTP GET FLOOD\u9488\u5bf9\u7684\u4e0d\u4ec5\u4ec5\u662fWEB\u670d\u52a1\u5668\uff0c\u8fd8\u6709\u6570\u636e\u5e93\u670d\u52a1\u5668\u3002\u5927\u91cfHTTP\u8bf7\u6c42\u4ea7\u751f\u4e86\u5927\u91cf\u7684\u6570\u636e\u5e93\u67e5\u8be2\uff0c\u53ef\u4ee5\u5728\u51e0\u79d2\u4e4b\u5185\u4f7f\u6570\u636e\u5e93\u505c\u6b62\u54cd\u5e94\uff0c\u7cfb\u7edf\u8d1f\u8f7d\u5347\u9ad8\uff0c\u6700\u7ec8\u5bfc\u81f4\u670d\u52a1\u5668\u5f53\u673a\u3002<\/p>\n

\u672c\u6587\u4e3b\u8981\u4ecb\u7ecdCentOS+Nginx\u4e0b\u5982\u4f55\u5feb\u901f\u6709\u6548\u5f97\u9632\u5fa1CC\u653b\u51fb\u3002\u81f3\u4e8e\u5982\u4f55\u5b89\u88c5Nginx\u5c31\u4e0d\u8be6\u7ec6\u4ecb\u7ecd\u4e86\uff0c\u6709\u5174\u8da3\u7684\u8bfb\u8005\u53ef\u4ee5\u5728Nginx\u5b98\u65b9\u7f51\u7ad9\uff08https:\/\/www.nginx.org\/\uff09\u4e0b\u8f7d\u6e90\u4ee3\u7801\u8fdb\u884c\u7f16\u8bd1\u3002\u5982\u679c\u4f60\u4f7f\u7528\u7684\u662fCentos5\uff0c\u4e5f\u53ef\u4ee5\u4f7f\u7528rpm\u5305\u8fdb\u884c\u5b89\u88c5\uff08https:\/\/centos.alt.ru\/repository\/centos\/5\/i386\/nginx-stable-0.7.65-1.el5.i386.rpm\uff09\u3002
\n <\/p>\n

\u4e3b\u52a8\u6291\u5236\u65b9\u6cd5<\/h3>\n

\u4e3a\u4e86\u8ba9Nginx\u652f\u6301\u66f4\u591a\u7684\u5e76\u53d1\u8fde\u63a5\u6570\uff0c\u6839\u636e\u5b9e\u9645\u60c5\u51b5\u5bf9\u5de5\u4f5c\u7ebf\u7a0b\u6570\u548c\u6bcf\u4e2a\u5de5\u4f5c\u7ebf\u7a0b\u652f\u6301\u7684\u6700\u5927\u8fde\u63a5\u6570\u8fdb\u884c\u8c03\u6574\u3002\u4f8b\u5982\u8bbe\u7f6e\u201cworker_processes 10\u201d\u548c\u201cworker_connections 1024\u201d\uff0c\u90a3\u8fd9\u53f0\u670d\u52a1\u5668\u652f\u6301\u7684\u6700\u5927\u8fde\u63a5\u6570\u5c31\u662f10\u00d71024=10240\u3002<\/p>\n\n\n\n
<\/td>\n\n
\n
worker_processes 10;<\/div>\n
events {<\/div>\n
use epoll;<\/div>\n
worker_connections 10240;<\/div>\n
}<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n

Nginx 0.7\u5f00\u59cb\u63d0\u4f9b\u4e862\u4e2a\u9650\u5236\u7528\u6237\u8fde\u63a5\u7684\u6a21\u5757\uff1aNginxHttpLimitZoneModule\u548cNginxHttpLimitReqModule\u3002NginxHttpLimitZoneModule\u53ef\u4ee5\u6839\u636e\u6761\u4ef6\u8fdb\u884c\u5e76\u53d1\u8fde\u63a5\u6570\u63a7\u5236\u3002<\/p>\n

\u4f8b\u5982\u53ef\u4ee5\u5b9a\u4e49\u4ee5\u4e0b\u4ee3\u7801\uff1a<\/p>\n\n\n\n
<\/td>\n\n
\n
http {<\/div>\n
limit_zone\u00a0\u00a0 my_zone\u00a0 $binary_remote_addr\u00a0 10m;<\/div>\n
server {<\/div>\n
location\u00a0\/somedir\/\u00a0{<\/div>\n
limit_conn\u00a0\u00a0 my_zone\u00a0 1;<\/div>\n
}<\/div>\n
}<\/div>\n
}<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

 <\/p>\n

\u5176\u4e2d\u201climit_zone my_zone $binary_remote_addr 10m\u201d\u7684\u610f\u601d\u662f\u5b9a\u4e49\u4e00\u4e2a\u540d\u79f0\u4e3amy_zone\u7684\u5b58\u50a8\u533a\u57df\u3001my_zone\u4e2d\u7684\u5185\u5bb9\u4e3a\u8fdc\u7a0bIP\u5730\u5740\u3001my_zone\u7684\u5927\u5c0f\u4e3a10M\uff1b\u201clocation \/somedir\/\u201d\u7684\u610f\u601d\u662f\u9488\u5bf9somedir\u76ee\u5f55\u5e94\u7528\u89c4\u5219\uff1b\u201climit_conn my_zone 1\u201d\u7684\u610f\u601d\u662f\u9488\u5bf9\u4e0a\u9762\u5b9a\u4e49\u7684my_zone\u8bb0\u5f55\u533a\u8bb0\u5f55\u7684IP\u5730\u5740\u5728\u6307\u5b9a\u7684\u76ee\u5f55\u4e2d\u53ea\u80fd\u5efa\u7acb\u4e00\u4e2a\u8fde\u63a5\u3002<\/p>\n

NginxHttpLimitReqModule\u53ef\u4ee5\u6839\u636e\u6761\u4ef6\u8fdb\u884c\u8bf7\u6c42\u9891\u7387\u7684\u63a7\u5236\u3002\u4f8b\u5982\u53ef\u4ee5\u5b9a\u4e49\u4ee5\u4e0b\u4ee3\u7801\uff1a<\/p>\n\n\n\n
<\/td>\n\n
\n
http {<\/div>\n
limit_req_zone\u00a0 $binary_remote_addr\u00a0 zone=my_req_zone:10m\u00a0\u00a0 rate=1r\/s;<\/div>\n
…<\/div>\n
server {<\/div>\n
…<\/div>\n
location\u00a0\/somedir\/\u00a0{<\/div>\n
limit_req_zone\u00a0\u00a0 zone= my_req_zone\u00a0 burst=2;<\/div>\n
}<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Discuz!\u662f\u4f7f\u7528\u6bd4\u8f83\u591a\u7684\u4e00\u4e2aphp\u8bba\u575b\u7a0b\u5e8f\u3002\u4ee5Discuz!7.0\u4e3a\u4f8b\uff0c\u7a0b\u5e8f\u76ee\u5f55\u4e0b\u6709\u6bd4\u8f83\u591a\u7684\u53ef\u4ee5\u76f4\u63a5\u8bbf\u95ee\u7684php\u6587\u4ef6\uff0c\u4f46\u5176\u4e2d\u6700\u5bb9\u6613\u53d7\u5230\u653b\u51fb\u7684\u4e00\u822c\u6709index.php\uff08\u9996\u9875\uff09\u3001forumdisplay.php\uff08\u677f\u5757\u663e\u793a\uff09\u3001viewthread.php\uff08\u5e16\u5b50\u663e\u793a\uff09\u3002\u653b\u51fb\u8005\u4e00\u822c\u4f1a\u5bf9\u8fd9\u4e9b\u9875\u9762\u53d1\u8d77\u5927\u91cf\u7684\u8bf7\u6c42\uff0c\u5bfc\u81f4HTTP\u670d\u52a1\u5668\u8fde\u63a5\u6570\u8017\u5c3d\u3001mysql\u6570\u636e\u5e93\u505c\u6b62\u54cd\u5e94\uff0c\u6700\u7ec8\u5bfc\u81f4\u670d\u52a1\u5668\u5d29\u6e83\u3002\u4e3a\u4e86\u9632\u6b62\u4e0a\u8ff0\u9875\u9762\u88ab\u653b\u51fb\uff0c\u6211\u4eec\u53ef\u4ee5\u8bbe\u5b9a\u4ee5\u4e0b\u7684\u89c4\u5219\u8fdb\u884c\u9632\u5fa1\uff1a<\/p>\n\n\n\n
<\/td>\n\n
\n
http {<\/div>\n
limit_zone\u00a0\u00a0 myzone_bbs\u00a0 $binary_remote_addr\u00a0 10m;<\/div>\n
limit_req_zone $binary_remote_addr zone=bbs:10m rate=1r\/s;<\/div>\n
…<\/div>\n
server {<\/div>\n
…<\/div>\n
location ~ ^\/bbs\/(index|forumdisplay|viewthread).php$ {<\/div>\n
limit_conn\u00a0\u00a0 myzone_bbs\u00a0 3;<\/div>\n
limit_req zone=bbs burst=2 nodelay;<\/div>\n
root\u00a0\u00a0 html;<\/div>\n
fastcgi_pass\u00a0\u00a0 unix:\/dev\/shm\/php-cgi.sock;<\/div>\n
fastcgi_index\u00a0 index.php;<\/div>\n
fastcgi_param\u00a0 SCRIPT_FILENAME\u00a0\u00a0\/usr\/share\/nginx\/html$fastcgi_script_name;<\/div>\n
includefastcgi_params;<\/div>\n
}<\/div>\n
}<\/div>\n
}<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u5e94\u7528\u8fd9\u6761\u89c4\u5219\u540e\uff0cbbs\u76ee\u5f55\u4e0b\u7684index.php\u3001forumdisplay.php\u548cviewthread.php\u8fd9\u4e9b\u9875\u9762\u540c\u4e00\u4e2aIP\u53ea\u8bb8\u5efa\u7acb3\u4e2a\u8fde\u63a5\uff0c\u5e76\u4e14\u6bcf\u79d2\u53ea\u80fd\u67091\u4e2a\u8bf7\u6c42\uff08\u7a81\u53d1\u8bf7\u6c42\u53ef\u4ee5\u8fbe\u52302\u4e2a\uff09\u3002\u867d\u7136\u8fd9\u6837\u7684\u89c4\u5219\u4e00\u822c\u6765\u8bf4\u5bf9\u6b63\u5e38\u7684\u7528\u6237\u4e0d\u4f1a\u4ea7\u751f\u5f71\u54cd\uff08\u6781\u5c11\u6709\u4eba\u57281\u79d2\u5185\u6253\u5f003\u4e2a\u9875\u9762\uff09\uff0c\u4f46\u662f\u4e3a\u4e86\u9632\u6b62\u5f71\u54cd\u90a3\u4e9b\u624b\u5feb\u7684\u7528\u6237\u8bbf\u95ee\uff0c\u53ef\u4ee5\u5728nginx\u4e2d\u81ea\u5b9a\u4e49503\u9875\u9762\uff0c503\u9875\u9762\u5bf9\u7528\u6237\u8fdb\u884c\u63d0\u793a\uff0c\u7136\u540e\u81ea\u52a8\u5237\u65b0\u3002\u5728Nginx\u4e2d\u81ea\u5b9a\u4e49503\u9875\u9762\uff1a
\nerror_page \u00a0 503 \u00a0 \/errpage\/503.html;<\/p>\n

503\u9875\u9762\u7684\u6e90\u4ee3\u7801\uff1a<\/p>\n

 <\/p>\n\n\n\n
<\/td>\n\n
\n
<html><\/div>\n
<\u00a0head><\/div>\n
<\u00a0title>\u9875\u9762\u5373\u5c06\u8f7d\u5165….<\/title><\/div>\n
<\u00a0meta\u00a0http-equiv=content-type c><\/div>\n
<\u00a0META\u00a0NAME=”ROBOTS”\u00a0C><\/div>\n
< \/head><\/div>\n
<\u00a0body\u00a0bgcolor=”#FFFFFF”><\/div>\n
<\u00a0table\u00a0cellpadding=”0″\u00a0cellspacing=”0″\u00a0border=”0″\u00a0width=”700″\u00a0align=”center”height=”85%”><\/div>\n
<tr\u00a0align=”center”\u00a0valign=”middle”><\/div>\n
<td><\/div>\n
<table\u00a0cellpadding=”10″\u00a0cellspacing=”0″\u00a0border=”0″\u00a0width=”80%”\u00a0align=”center”style=”font-family: Verdana, Tahoma; color: #666666; font-size: 11px”><\/div>\n
<tr><\/div>\n
<td\u00a0valign=”middle”\u00a0align=”center”\u00a0bgcolor=”#EBEBEB”><\/div>\n
<br\u00a0\/><b\u00a0style=”font-size: 16px”>\u9875\u9762\u5373\u5c06\u8f7d\u5165<\/b><\/div>\n
<br\u00a0\/><br\u00a0\/>\u4f60\u5237\u65b0\u9875\u9762\u7684\u901f\u5ea6\u8fc7\u5feb\u3002\u8bf7\u5c11\u5b89\u6bcb\u8e81\uff0c\u9875\u9762\u5373\u5c06\u8f7d\u5165…<\/div>\n
<br\u00a0\/><br\u00a0\/>[<a\u00a0href=”javascript:window.location.reload();”><fontcolor=#666666>\u7acb\u5373\u91cd\u65b0\u8f7d\u5165<\/font><\/a>]<\/div>\n
<br\u00a0\/><br\u00a0\/><\/div>\n
<\/td><\/div>\n
<\/tr><\/div>\n
<\/table><\/div>\n
<\/td><\/div>\n
<\/tr><\/div>\n
< \/table><\/div>\n
< \/body><\/div>\n
< \/html><\/div>\n
<\u00a0SCRIPT\u00a0language=javascript><\/div>\n
function update()<\/div>\n
{<\/div>\n
window.location.reload();<\/div>\n
}<\/div>\n
setTimeout(“update()”,2000);<\/div>\n
< \/script><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u88ab\u52a8\u9632\u5fa1\u65b9\u6cd5<\/h3>\n

\u867d\u7136\u4e3b\u52a8\u9632\u5fa1\u5df2\u7ecf\u62b5\u6321\u4e86\u5927\u591a\u6570HTTP GET FLOOD\u653b\u51fb\uff0c\u4f46\u662f\u9053\u9ad8\u4e00\u5c3a\u9b54\u9ad8\u4e00\u4e08\uff0c\u653b\u51fb\u8005\u4f1a\u603b\u4f1a\u627e\u5230\u4f60\u8584\u5f31\u7684\u73af\u8282\u8fdb\u884c\u653b\u51fb\u3002\u6240\u4ee5\u6211\u4eec\u5728\u8fd9\u91cc\u4e5f\u8981\u4ecb\u7ecd\u4e00\u4e0b\u88ab\u52a8\u9632\u5fa1\u7684\u4e00\u4e9b\u65b9\u6cd5\u3002<\/p>\n

\u5c01IP\u5730\u5740<\/p>\n

\u8bbf\u95ee\u8005\u901a\u8fc7\u6d4f\u89c8\u5668\u6b63\u5e38\u8bbf\u95ee\u7f51\u7ad9\uff0c\u4e0e\u670d\u52a1\u5668\u5efa\u7acb\u7684\u8fde\u63a5\u4e00\u822c\u4e0d\u4f1a\u8d85\u8fc720\u4e2a\uff0c\u6211\u4eec\u53ef\u4ee5\u901a\u8fc7\u811a\u672c\u7981\u6b62\u8fde\u63a5\u6570\u8fc7\u5927\u7684IP\u8bbf\u95ee\u3002\u4ee5\u4e0b\u811a\u672c\u901a\u8fc7netstat\u547d\u4ee4\u5217\u4e3e\u6240\u6709\u8fde\u63a5\uff0c\u5c06\u8fde\u63a5\u6570\u6700\u9ad8\u7684\u4e00\u4e2aIP\u5982\u679c\u8fde\u63a5\u6570\u8d85\u8fc7150\uff0c\u5219\u901a\u8fc7 iptables\u963b\u6b62\u8bbf\u95ee\uff1a<\/p>\n\n\n\n
<\/td>\n\n
\n
#!\/bin\/sh<\/div>\n
status=`netstat\u00a0-na|awk\u00a0‘$5 ~ \/[0-9]+:[0-9]+\/ {print $5}’\u00a0|awk\u00a0-F\u00a0“:”\u00a0–‘{print $1}’\u00a0|sort\u00a0-n|uniq\u00a0-c |sort\u00a0-n|tail\u00a0-n 1`<\/div>\n
NUM=`echo\u00a0$status|awk\u00a0‘{print $1}’`<\/div>\n
IP=`echo\u00a0$status|awk\u00a0‘{print $2}’`<\/div>\n
result=`echo\u00a0“$NUM > 150”\u00a0|\u00a0bc`<\/div>\n
if\u00a0[ $result = 1 ]<\/div>\n
then<\/div>\n
echo\u00a0IP:$IP is over $NUM, BAN IT!<\/div>\n
\/sbin\/iptables\u00a0-I INPUT -s $IP -j DROP<\/div>\n
fi<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u8fd0\u884ccrontab -e\uff0c\u5c06\u4e0a\u8ff0\u811a\u672c\u6dfb\u52a0\u5230crontab\u6bcf\u5206\u949f\u81ea\u52a8\u8fd0\u884c\uff1a
\n* * * * * \/root\/xxxx.sh<\/p>\n

\u901a\u8fc7apache\u81ea\u5e26\u7684ab\u5de5\u5177\u8fdb\u884c\u670d\u52a1\u5668\u538b\u529b\u6d4b\u8bd5\uff1a<\/p>\n

# ab -n 1000 -c 100 https:\/\/www.xxx.com\/bbs\/index.php<\/p>\n

\u6d4b\u8bd5\u5b8c\u6210\u540e\uff0c\u6211\u4eec\u5c31\u53ef\u4ee5\u770b\u5230\u7cfb\u7edf\u4e2d\u6709IP\u88ab\u5c01\u7684\u63d0\u793a\uff1a<\/p>\n

 <\/p>\n\n\n\n
<\/td>\n\n
\n
#tail \/var\/spool\/mail\/root<\/div>\n
Content-Type: text\/plain; charset=ANSI_X3.4-1968<\/div>\n
\u00a0Auto-Submitted: auto-generated<\/div>\n
\u00a0X-Cron-Env: <Shell=\/bin\/sh><\/div>\n
\u00a0X-Cron-Env: <HOME=\/root><\/div>\n
\u00a0X-Cron-Env: <;PATH=\/usr\/bin:\/bin><\/div>\n
\u00a0X-Cron-Env: <LOGNAME=root><\/div>\n
\u00a0X-Cron-Env: <USER=root><\/div>\n
IP:58.246.xx.xx is over 1047, BAN IT!<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u81f3\u6b64\uff0c\u53c8\u4e00\u6b21HTTP GET FLOOD\u9632\u5fa1\u6210\u529f\u3002<\/p>\n

\u6839\u636e\u7279\u5f81\u7801\u5c4f\u853d\u8bf7\u6c42\uff08\u5bf9CC\u653b\u51fb\u6548\u679c\u8f83\u597d\uff09<\/p>\n

\u4e00\u822c\u540c\u4e00\u79cdCC\u653b\u51fb\u5de5\u5177\u53d1\u8d77\u7684\u653b\u51fb\u8bf7\u6c42\u5305\u603b\u662f\u76f8\u540c\u7684\uff0c\u800c\u4e14\u548c\u6b63\u5e38\u8bf7\u6c42\u6709\u6240\u5dee\u5f02\u3002\u5f53\u670d\u52a1\u5668\u906d\u9047CC\u653b\u51fb\u65f6\uff0c\u6211\u4eec\u53ef\u4ee5\u5feb\u901f\u67e5\u770b\u65e5\u5fd7\uff0c\u5206\u6790\u5176\u8bf7\u6c42\u7684\u7279\u5f81\uff0c\u6bd4\u5982User-agent\u3002\u4e0b\u9762\u7684\u662f\u67d0\u4e00\u6b21CC\u653b\u51fb\u65f6\u7684User-agent\uff0cMozilla\/4.0 (compatible; MSIE 5.01; Windows NT 5.0; MyIE 3.01)Cache-Control: no-store, must-revalidate\u51e0\u4e4e\u6ca1\u6709\u6b63\u5e38\u7684\u6d4f\u89c8\u5668\u4f1a\u5728User-agent\u4e2d\u5e26\u4e0a\u201cmust-revalidate\u201d\u8fd9\u6837\u7684\u5173\u952e\u5b57\u3002\u6240\u4ee5\u6211\u4eec\u53ef\u4ee5\u4ee5\u8fd9\u4e2a\u4e3a\u7279\u5f81\u8fdb\u884c\u8fc7\u6ee4\uff0c\u5c06User-agent\u4e2d\u5e26\u6709\u201cmust-revalidate\u201d\u7684\u8bf7\u6c42\u5168\u90e8\u62d2\u7edd\u8bbf\u95ee\uff1a<\/p>\n\n\n\n
<\/td>\n\n
\n
if\u00a0($http_user_agent ~ must-revalidate) {<\/div>\n
return\u00a0403;<\/div>\n
}<\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u672c\u6587\u4e3b\u8981\u4ecb\u7ecd\u4e86nginx\u4e0b\u7684HTTP GET FLOOD\u9632\u5fa1\uff0c\u5982\u679c\u6709\u4e0d\u5bf9\u7684\u5730\u65b9\uff0c\u5e0c\u671b\u5927\u5bb6\u53ef\u4ee5\u5411\u6211\u63d0\u51fa\u3002\u540c\u65f6\uff0c\u4e5f\u5e0c\u671b\u5927\u5bb6\u80fd\u591f\u4e3e\u4e00\u53cd\u4e09\uff0c\u628a\u8fd9\u79cd\u601d\u8def\u5e94\u7528\u5230apache\u3001lighttpd\u7b49\u5e38\u89c1\u7684web\u670d\u52a1\u5668\u4e2d\u3002<\/p>\n

 <\/p>\n

 <\/p>\n

\u539f\u6587\u94fe\u63a5\uff1ahttps:\/\/www.centoscn.com\/CentosSecurity\/SoftSecurity\/2015\/0525\/5528.html<\/p>\n","protected":false},"excerpt":{"rendered":"

CC\u653b\u51fb\u53ef\u4ee5\u5f52\u4e3aDDoS\u653b\u51fb\u7684\u4e00\u79cd\u3002\u4ed6\u4eec\u4e4b\u95f4\u90fd\u539f\u7406\u90fd\u662f\u4e00\u6837\u7684\uff0c\u5373\u53d1\u9001\u5927\u91cf\u7684\u8bf7\u6c42\u6570\u636e\u6765\u5bfc\u81f4\u670d\u52a1\u5668\u62d2\u7edd\u670d\u52a1\uff0c\u662f\u4e00\u79cd … \u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[49,5],"tags":[624],"class_list":["post-2067","post","type-post","status-publish","format-standard","hentry","category-linux","category-jishu","tag-linuxddoc"],"aioseo_notices":[],"jetpack_featured_media_url":"","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/2067","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/comments?post=2067"}],"version-history":[{"count":1,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/2067\/revisions"}],"predecessor-version":[{"id":2068,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/2067\/revisions\/2068"}],"wp:attachment":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/media?parent=2067"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/categories?post=2067"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/tags?post=2067"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}