网站收到奇怪查询字符串的请求 [英] Site is getting requests for strange query strings
问题描述
我正在评估自己运行的网站的日志,并发现重复的奇怪请求模式.这些请求都是非常相似的,并且来自不同的IP地址(可能是僵尸网络?).我很好奇是否有人知道这种奇怪要求的意义是什么,以及是否存在安全隐患:
I was evaluating the logs for a website I help run and I noticed a repeating pattern of strange requests. The requests are all very similar, and from different IP addresses (possibly a bot net?). I am curious if anybody understands what the point of such a bizarre request is and if there is a security concern:
%5BPLM=0%5D+GET+http://example.org/+%5B0,7309,7252%5D+-%3E+%5BN%5D+POST+http://example.org/+%5B0,0,7329%5D
解码为:
[PLM=0] GET http://example.org/ [0,7309,7252] -> [N] POST http://example.org/ [0,0,7329]
推荐答案
您不认识的任何内容都可以解释为安全问题,如果发生的任何事情都超出我的范围,我会认为这是一个威胁,并开始寻找一种过滤方法通过一些访问规则/防火墙等将其删除
Anything you dont recognize can be construed as a security concern and if its happening at any significant volume than I would consider it a threat and start finding a way to filter them out via some access rules / firewall, etc
这篇关于网站收到奇怪查询字符串的请求的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!