Yoo趣儿

Yoo趣儿 探索分享 问与答 网站近几个月被持续攻击,应该如何处理 ...

网站近几个月被持续攻击,应该如何处理

查看 20|回复 2
作者:KimWexler   
问题:
从 7 月份开始公司网站持续遭到攻击,攻击的模式都是一样的。一秒内会有几个不同的 IP 来请求我的首页,每个 IP 只请求一次就走了。但这会导致我的带宽耗尽。
目前的手段:
目前只能分析出这些异常 IP 的行为的共通点就是 chrome 版本是固定的数字.0.0.0 ,现在是直接返回 444 。但是我发现现在不少浏览器也是这样的模式,导致被拦截。
尝试方案:
1 、试用了一下 edgeOne 可以有效解决,上这个的话估计每个月会多消耗好几百的费用,老板估计不同意。
2 、由于都是针对国内访问,套 cloudflare 感觉也不行
想问下有没有其他的方案?
一些日志:
113.75.33.23 - - [31/Oct/2025:16:13:23 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36 "
113.93.104.94 - - [31/Oct/2025:16:13:23 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 "
113.82.153.152 - - [31/Oct/2025:16:13:23 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 "
116.5.143.171 - - [31/Oct/2025:16:13:23 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36 "
180.141.38.128 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.29 Safari/537.36 "
113.117.59.44 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 "
116.28.171.116 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 "
183.35.9.235 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 "
183.28.65.179 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 "
183.19.229.186 - - [31/Oct/2025:16:13:24 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 "
113.100.176.90 - - [31/Oct/2025:16:13:25 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36 "
218.15.50.197 - - [31/Oct/2025:16:13:25 +0800] " GET / HTTP/2.0 " 444 0 "-" " Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 "

攻击, 带宽, Chrome

相关帖子

darkkgg   
用 cdn ,不想花点钱肯定是防不了 ddos 。
manami   
https://waf-ce.chaitin.cn 免费版试试
返回列表
您需要登录后才可以回帖 登录 | 立即注册

AD1

热门主题

热门板块

问与答分享发现分享创造奇思妙想分享邀请码商业推广优惠信息PythonPHPJavaJavaScriptNode.jsGo语言C++HTML

公告

标签|小黑屋|Yoo趣儿

GMT+8, 2025-11-1 00:43 , Processed in 0.132597 second(s), 14 queries , Gzip On, MemCached On.

Powered by Discuz! X3.2

The happiest thing in the world is to strive for an ideal.

返回顶部