温馨提示:本文最后更新于
2024-04-25 18:22:26,某些文章具有时效性,若有错误或已失效,请在下方留言。系统介绍
随着互联网的发展,网站安全问题越来越受到人们的关注。其中,CC攻击是一种常见的攻击方式,可以通过大量的请求来使网站瘫痪。为了保障网站的安全性,我们可以为网站添加一个简单的CC防御系统。本文将介绍如何添加这个脚本,并探讨其实现原理
代码实现
1.首先在根目录建个 cc.php 文件代码如下:
<?php
define('SYSTEM_ROOT', dirname(preg_replace('@\\(.*\\(.*$@', '', preg_replace('@\\(.*\\(.*$@', '', __FILE__))) . '/');
session_start();
date_default_timezone_set('Asia/Shanghai');
header('Content-Type: text/html; charset=UTF-8');
function getspider($useragent=''){ if(CC_Defender==2)return false;
if(!$useragent){$useragent = $_SERVER['HTTP_USER_AGENT'];}$useragent=strtolower($useragent);
if (strpos($useragent, 'baiduspider') !== false){return 'baiduspider';}
if (strpos($useragent, 'googlebot') !== false){return 'googlebot';}
if (strpos($useragent, 'soso') !== false){return 'soso';}
if (strpos($useragent, 'bing') !== false){return 'bing';}
if (strpos($useragent, 'yahoo') !== false){return 'yahoo';}
if (strpos($useragent, 'sohu-search') !== false){return 'Sohubot';}
if (strpos($useragent, 'sogou') !== false){return 'sogou';}
if (strpos($useragent, 'youdaobot') !== false){return 'YoudaoBot';}
if (strpos($useragent, 'yodaobot') !== false){return 'YodaoBot';}
if (strpos($useragent, 'robozilla') !== false){return 'Robozilla';}
if (strpos($useragent, 'msnbot') !== false){return 'msnbot';}
if (strpos($useragent, 'lycos') !== false){return 'Lycos';}
if (strpos($useragent, 'ia_archiver') !== false || strpos($useragent, 'iaarchiver') !== false){return 'alexa';}
if (strpos($useragent, 'archive.org_bot') !== false){return 'Archive';}
if (strpos($useragent, 'robozilla') !== false){return 'Robozilla';}
if (strpos($useragent, 'sitebot') !== false){return 'SiteBot';}
if (strpos($useragent, 'mj12bot') !== false){return 'MJ12bot';}
if (strpos($useragent, 'gosospider') !== false){return 'gosospider';}
if (strpos($useragent, 'gigabot') !== false){return 'Gigabot';}
if (strpos($useragent, 'yrspider') !== false){return 'YRSpider';}
if (strpos($useragent, 'gigabot') !== false){return 'Gigabot';}
if (strpos($useragent, 'jikespider') !== false){return 'jikespider';}
if (strpos($useragent, 'addsugarspiderbot') !== false){return 'AddSugarSpiderBot';/*非常少*/}
if (strpos($useragent, 'testspider') !== false){return 'TestSpider';}
if (strpos($useragent, 'etaospider') !== false){return 'EtaoSpider';}
if (strpos($useragent, 'wangidspider') !== false){return 'WangIDSpider';}
if (strpos($useragent, 'foxspider') !== false){return 'FoxSpider';}
if (strpos($useragent, 'docomo') !== false){return 'DoCoMo';}
if (strpos($useragent, 'yandexbot') !== false){return 'YandexBot';}
if (strpos($useragent, 'ezooms') !== false){return 'Ezooms';/*个人*/}
if (strpos($useragent, 'sinaweibobot') !== false){return 'SinaWeiboBot';}
if (strpos($useragent, 'catchbot') !== false){return 'CatchBot';}
if (strpos($useragent, 'surveybot') !== false){return 'SurveyBot';}
if (strpos($useragent, 'dotbot') !== false){return 'DotBot';}
if (strpos($useragent, 'purebot') !== false){return 'Purebot';}
if (strpos($useragent, 'ccbot') !== false){return 'CCBot';}
if (strpos($useragent, 'mlbot') !== false){return 'MLBot';}
if (strpos($useragent, 'adsbot-google') !== false){return 'AdsBot-Google';}
if (strpos($useragent, 'ahrefsbot') !== false){return 'AhrefsBot';}
if (strpos($useragent, 'spbot') !== false){return 'spbot';}
if (strpos($useragent, 'augustbot') !== false){return 'AugustBot';} return false; }
if($_GET['rand'] && $_SESSION['rand_session']!=$_GET['rand']){ @header('Content-Type: text/html; charset=UTF-8');
exit('<b>浏览器不支持 COOKIE 或者不正常访问!</b>'); }
if(!$_SESSION['rand_session'] && $nosecu!=true){ if(!getspider()){ $rand_session=md5(uniqid().rand(1,1000)); $_SESSION['rand_session']=$rand_session;
exit("<!DOCTYPE HTML>
<html>
<head>
<meta charset=\"UTF-8\"/>
<meta name=\"viewport\" content=\"width=device-width, initial-scale=1, maximum-scale=1\" />
<title>安全检查中...</title>
<script>
var i = 5;
var intervalid;
intervalid = setInterval(\"fun()\", 1000);
function fun() {if (i == 0) {window.location.href = \"?{$_SERVER['QUERY_STRING']}&rand={$rand_session}\";clearInterval(intervalid);}
document.getElementById(\"mes\").innerHTML = i;i--;}
</script>
<style>
html, body {
width: 100%;
height: 100%;
margin: 0;
padding: 0;
}
body {
background-color:
#ffffff;
font-family: Helvetica, Arial, sans-serif; f
ont-size: 100%;
}
h1 {
font-size: 1.5em;
color: #404040;
text-align: center;
}
p {
font-size: 1em;
color: #404040;
text-align: center;
margin: 10px 0 0 0;
}
#spinner {
margin: 0 auto 30px auto;
display: block;
}
.attribution {
margin-top: 20px;
}
</style>
</head>
<body>
<table width=\"100%\" height=\"100%\" cellpadding=\"20\">
<tr>
<td align=\"center\" valign=\"middle\">
<noscript>
<h2>请打开浏览器的 javascript,然后刷新浏览器</h2>
</noscript>
<h1><span data-translate=\"checking_browser\">浏览器安全检查中...</span></h1>
<p data-translate=\"process_is_automatic\"></p>
<p data-translate=\"allow_5_secs\">还剩 <span id=\"mes\">5</span> 秒</p>
</div>
</div>
</td>
</tr>
</table>
</body>
</html>
");
}
}
2.调用代码 PHP 通用调用,在头部或主要文件内文件加入:
实现原理
CC防御脚本的实现原理是利用了五秒盾的原理。具体来说,当访问者第一次访问网站时,脚本会检测浏览器是否支持COOKIE,并将COOKIE存储在$_COOKIE[‘check_cc’]中。如果浏览器支持COOKIE,则可以正常访问网站。否则,将会显示一个提示页面,并倒计时5秒后跳转到其他页面。同时,该脚本还会过滤掉搜索引擎蜘蛛,不会影响搜索引擎的收录
© 版权声明
THE END
![表情[ciya]-傲绝博客](https://www.qqij.cn/wp-content/themes/zibll/img/smilies/ciya)
![表情[zuohengheng]-傲绝博客](https://www.qqij.cn/wp-content/themes/zibll/img/smilies/zuohengheng)
酷盾安全提供安全防护服务
暂无评论内容