本文共 1245 字,大约阅读时间需要 4 分钟。
当服务器被***,并且查看到***的user_agent有规律,这时就需要限制user_agent
user_agent配置如下
[root@chy 111.com]# vim /usr/local/apache2.4/conf/extra/httpd-vhosts.confRewriteEngine on RewriteCond %{HTTP_USER_AGENT} .*curl.* [NC,OR] RewriteCond %{HTTP_USER_AGENT} .*baidu.com.* [NC] RewriteRule .* - [F] (增加如上配置,配置详解如下:(这里需要用到rewrite模块) RewriteEngine on RewriteCond %{HTTP_USER_AGENT} .*curl.* [NC,OR] (OR是或者的意思,或者匹配curl,或者匹配baidu.com)(NC忽略大小写) RewriteCond %{HTTP_USER_AGENT} .*baidu.com.* [NC] RewriteRule .* - [F](F的含义‘forbidden F’ (force URL to be forbidden)重写为禁止访问
测试user_agent
[root@chy 111.com]# curl -A "chylinux chylinux" -x192.168.212.10:80 'http://www.111.com/123.php' -IHTTP/1.1 200 OKDate: Thu, 03 Aug 2017 22:43:50 GMTServer: Apache/2.4.27 (Unix) PHP/5.6.30X-Powered-By: PHP/5.6.30Content-Type: text/html; charset=UTF-8(curl -A 指定user_agent)[root@chy 111.com]# curl -x192.168.212.10:80 'http://www.111.com/123.php' -IHTTP/1.1 403 ForbiddenDate: Thu, 03 Aug 2017 22:53:09 GMTServer: Apache/2.4.27 (Unix) PHP/5.6.30Content-Type: text/html; charset=iso-8859-1(这个如果不指定user_agent的结果)curl -e "http//" (指定)
转载于:https://blog.51cto.com/chy940405/2047960