小贝子编程

日志显示来自未知 IP 的持续 GET 请求



我在AWS EC2实例上有一个Ubuntu、Apache、Rails 4站点。我的网站运行良好,但现在说它的用户超载了。事实并非如此,因为这是一个私人网站。我的--tail日志显示,该站点不断被以下重复的GET请求请求。

I, [2015-04-01T21:37:43.996476 #1198]  INFO -- :   Rendered layouts/_google_analytics.html.erb (1.2ms)
I, [2015-04-01T21:37:43.997616 #1198]  INFO -- : Completed 200 OK in 1155ms (Views: 1154.0ms | ActiveRecord: 0.0ms)
I, [2015-04-01T21:37:44.184503 #1198]  INFO -- : Started GET "/" for 54.###.##.### at 2015-04-01 21:37:44 +0000
I, [2015-04-01T21:37:44.273012 #1198]  INFO -- : Processing by HomeController#home_page as */*
I, [2015-04-01T21:37:44.733609 #1198]  INFO -- :   Rendered home/_sign_up_modal.html.erb (99.0ms)
I, [2015-04-01T21:37:44.860521 #1198]  INFO -- :   Rendered home/home_page.html.erb within layouts/application (585.2ms)
I, [2015-04-01T21:37:44.864389 #1198]  INFO -- :   Rendered /home/ubuntu/.rvm/gems/ruby-2.1.5/gems/stripe-rails-0.3.1/app/views/stripe/_js.html.erb (3.1ms)

每个请求的唯一不同之处在于,每次GET都来自不同的IP。54.###.###.####每次都会发生变化我确信他们都不是用户

Started GET "/" for 54.###.##.### at 2015-04-01 21:37:44 +0000

这是某种负载攻击吗?我是新手,希望我能提供足够的信息来提供帮助,但如果我没有分享足够的信息,请要求更多。

/etc/apache2/可用站点/00-default.conf

    <VirtualHost *:80>
      ServerName ec2-54-###-###-##.us-west-2.compute.amazonaws.com
      # !!! Be sure to point DocumentRoot to 'public'!
      DocumentRoot /etc/projects/myapp/public
        <Directory /etc/projects/myapp/public>
                #Options FollowSymLinks
                Options Indexes FollowSymLinks Includes ExecCGI
                AllowOverride All
                Order deny,allow
                Allow from all
        </Directory>
   </VirtualHost>

编辑

我根据添加了以下内容https://wiki.apache.org/httpd/ProxyAbuse但现在我得到的是"您没有访问/此服务器的权限。"/etc/apache2/可用站点/00-default.conf

<VirtualHost *:80>
  ServerName default.only
  <Location />
    Order allow,deny
    Deny from all
  </Location>
</VirtualHost>
<VirtualHost *:80>
  ServerName ec2-54-##-###-##.us-west-2.compute.amazonaws.com
  # !!! Be sure to point DocumentRoot to 'public'!
  DocumentRoot /etc/projects/myapp/public
    <Directory /etc/projects/myapp/public>
            #Options FollowSymLinks
            Options Indexes FollowSymLinks Includes ExecCGI
            AllowOverride All
            Order deny,allow
            Allow from all
    </Directory>

在amazon上设置一条规则,在您弄清楚之前,该规则将禁止(或限制)该IP范围。您可以设置允许/禁止IP范围和端口的权限。

相关内容

最新更新


热门标签:

javascript python java c# php android html jquery c++ css ios sql mysql arrays asp.net json python-3.x ruby-on-rails .net sql-server django objective-c excel regex ruby linux ajax iphone xml vba spring asp.net-mvc database wordpress string postgresql wpf windows xcode bash git oracle list vb.net multithreading eclipse algorithm macos powershell visual-studio image forms numpy scala function api selenium