午夜福利院在线观看免费,天堂最新版在线,色噜噜精品一区二区三区,无码一区二区三区中文字幕,丝袜美腿一区二区三区

一種針對服務(wù)器的云盤空間的新型網(wǎng)頁攻擊

就在昨天,主機邦的一個網(wǎng)站無緣無故502了,主機邦登陸寶塔后臺發(fā)現(xiàn)服務(wù)器云盤空間居然滿了,要知道買的云服務(wù)器有50G的空間容量哈,即使裝了系統(tǒng)和Web環(huán)境,也不過才10G,還有40G去哪了?!

一開始主機幫以為是網(wǎng)站空間的緩存導(dǎo)致的,結(jié)果查詢www目錄,發(fā)現(xiàn)只要幾百M,也就是整個網(wǎng)站程序只有幾百M,那就不是網(wǎng)站生成的緩存了,然后我們通過查詢網(wǎng)站請求日志,發(fā)現(xiàn)網(wǎng)站正被自動化軟件請求。

150.138.245.235 - - [10/Dec/2024:01:34:40 +0800] "GET /users/bACBBxumn/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22javascript:void(0)%5C%22 HTTP/1.1" 301 5 "https://www.yunjiasu.cc/users/bACBBxumn/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/credit%5C" "Wget/1.21.1" 150.138.245.235 - - [10/Dec/2024:01:34:40 +0800] "GET /users/bACBBxumn/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22javascript:void(0)%5C HTTP/1.1" 200 131338 "https://www.yunjiasu.cc/users/bACBBxumn/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/%5C%22https:%5C/%5C/www.yunjiasu.cc%5C/gold%5C/credit%5C" "Wget/1.21.1"

這些請求鏈接不僅長,而且編碼亂七八糟的,本來是對網(wǎng)站空間產(chǎn)生不了什么影響的,但不知道什么原因Debian系統(tǒng)會產(chǎn)生大量的緩存文件,直接導(dǎo)致云服務(wù)器的資料占用空間一直在漲,短短半小時就漲了1G的占用空間,嚇得主機邦趕緊換系統(tǒng),換成比較成熟的CentOS,并用百度云防護攔截UA含Wget的請求,這才恢復(fù)正常。

一種針對服務(wù)器的云盤空間的新型網(wǎng)頁攻擊插圖
一種針對服務(wù)器的云盤空間的新型網(wǎng)頁攻擊插圖1
一種針對服務(wù)器的云盤空間的新型網(wǎng)頁攻擊插圖2

主機邦猜測這可能是一種利用程序漏洞攻擊操作系統(tǒng),讓操作系統(tǒng)產(chǎn)生大量的臨時文件,從而占滿服務(wù)器空間,這種攻擊的目的就是讓你的網(wǎng)站無法正常訪問,也不知道主機邦的網(wǎng)站做了什么傷天害理的事情。自從使用百度云防護攔截后,就沒有再收類似的攻擊請求了。

給TA打賞
共{{data.count}}人
人已打賞
云服務(wù)器網(wǎng)頁攻擊
0 條回復(fù) A文章作者 M管理員
    暫無討論,說說你的看法吧
QQ客服
  • QQ176363189 點擊這里給我發(fā)消息
旺旺客服
  • 速度網(wǎng)絡(luò)服務(wù)商 點這里給我發(fā)消息
電子郵箱
  • sudu@yunjiasu.cc
微信客服
  • suduwangluo