我在日志文件中有很多错误,如:
[Tue Jul 19 09:56:45 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/xqxsmirserver6.rar [Tue Jul 19 09:56:45 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/mirserver6.rar [Tue Jul 19 09:56:46 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/mirserver6.rar [Tue Jul 19 09:56:46 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/vqkbmirserver7.rar [Tue Jul 19 09:56:46 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/mirserver7.rar [Tue Jul 19 09:56:47 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/mirserver7.rar [Tue Jul 19 09:56:47 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/pebv12.rar [Tue Jul 19 09:56:48 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/12.rar [Tue Jul 19 09:56:48 2011] [error] [client 61.160.222.90] File does not exist: /var/www/vhosts/xxx.com/httpdocs/12.rar 我相信这些错误是来自试图获得后门文件的攻击者。 我怎样才能防止这些访问或阻止攻击者,他们可能会非常快地改变IP。
基本上,你不能 – 你无法控制别人可能select从服务器随机请求的URL。
但是,您可以做各种事情来减轻随机猜测URL的人们的影响,比如限制速度,自动(或手动)阻止您检测到的IP地址和范围,以您不想允许的方式或播放各种forms的愚蠢的bug子手(如tar persistent不驯的滥用者)。
不知道你想达到什么目标,任何人都可以提供多less细节(在build议的解决scheme和实施细节中)是有限制的。 您可能需要严格定义您想要停止的事情(以及您希望如何实施,您愿意发生什么样的附带损害等等),然后将其作为一个单独的问题来提出。
如果它们似乎来自同一个子网,则可以在路由器/防火墙内阻止该IP或子网。