使用 .htaccess 阻止引荐来源网址垃圾邮件
我们的论坛经常受到试图自动注册的自动机器人的攻击。
我们可以从错误日志中看到一个例子
[2011 年 4 月 3 日星期日 14:04:46] [错误] [客户端70.183.110.133]文件不 存在: /home/spoilert/public_html/forum/++++++++++++++++++++++++++++++++++++++结果:+验证码+解码+(23+尝试);+注册+(注册+仅+模式+is+ON);, 推荐人: http://forum.spoilertv.co.uk/++++++++++++++++++++++++++++++++++ ++++结果:+验证码+已解码+%2823+尝试%29;+已注册+%28注册+仅+模式+is+ON%29; [2011 年 4 月 3 日星期日 13:45:54] [错误] [客户端70.183.110.133]文件不 存在: /home/spoilert/public_html/2008, 引荐来源:
我已经用此代码更新了我的 htaccess
SetEnvIfNoCase 引用者 “^http://(W)decoded.*$”已被禁止
否定 来自 env=banned
它“应该”拒绝任何带有解码的单词的引用链接,但它似乎不起作用。我似乎仍然有一些机器人使用相同的 URL,所以它似乎仍在发生。
Our forum gets targeted a lot by automated bots that try to register automatically.
We can see an example here from the error log
[Sun Apr 03 14:04:46 2011] [error]
[client 70.183.110.133] File does not
exist:
/home/spoilert/public_html/forum/++++++++++++++++++++++++++++++++++++Result:+captcha+decoded+(23+attempts);+registered+(registering+only+mode+is+ON);,
referer:
http://forum.spoilertv.co.uk/++++++++++++++++++++++++++++++++++++Result:+captcha+decoded+%2823+attempts%29;+registered+%28registering+only+mode+is+ON%29;
[Sun Apr 03 13:45:54 2011] [error]
[client 70.183.110.133] File does not
exist:
/home/spoilert/public_html/2008,
referer:
I've updated my htaccess with this code
SetEnvIfNoCase Referer
"^http://(W)decoded.*$" banned
Deny
from env=banned
It "should" deny any referrer link with the word decoded in it but it seems that it's not working. I still seem to be getting a few of these robots getting through with the same URL so it seems that it's still happening.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
如果将其更改为会发生什么
What happens if you change it to