nginx使用301过滤黑客攻击
2020/5/9随便翻看了一下公司网站的访问日志,发现有不少来自国外的攻击。
公司的网站只是用来宣传的,从搭建到设计都是我一个人做的,没有做得很华丽,也没有特别多的功能。
奇怪的访问
因为调度gzip压缩功能,所以看了一下日志。发现里面有不少404和400,截取一部分如下
77.247.108.77 - - [09/May/2020:11:51:30 +0900] "GET /admin/assets/js/views/login.js HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:30 +0900] "GET /admin/i18n/readme.txt HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:31 +0900] "GET /asterisk/admin/i18n/readme.txt HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:32 +0900] "GET /freepbx/admin/i18n/readme.txt HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:32 +0900] "GET /pbx/recordings/theme/main.css HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:33 +0900] "GET /admin/config.php HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51:33 +0900] "GET /SIPml-api.js HTTP/1.1" 404 153 "-" "python-requests/2.21.0" "-"
77.247.108.77 - - [09/May/2020:11:51