网站收到奇怪查询字符串的请求 [英] Site is getting requests for strange query strings

问题描述

我正在评估自己运行的网站的日志，并发现重复的奇怪请求模式.这些请求都是非常相似的，并且来自不同的IP地址(可能是僵尸网络?).我很好奇是否有人知道这种奇怪要求的意义是什么，以及是否存在安全隐患:

I was evaluating the logs for a website I help run and I noticed a repeating pattern of strange requests. The requests are all very similar, and from different IP addresses (possibly a bot net?). I am curious if anybody understands what the point of such a bizarre request is and if there is a security concern:

%5BPLM=0%5D+GET+http://example.org/+%5B0,7309,7252%5D+-%3E+%5BN%5D+POST+http://example.org/+%5B0,0,7329%5D

解码为:

[PLM=0] GET http://example.org/ [0,7309,7252] -> [N] POST http://example.org/ [0,0,7329]

推荐答案

您不认识的任何内容都可以解释为安全问题，如果发生的任何事情都超出我的范围，我会认为这是一个威胁，并开始寻找一种过滤方法通过一些访问规则/防火墙等将其删除

Anything you dont recognize can be construed as a security concern and if its happening at any significant volume than I would consider it a threat and start finding a way to filter them out via some access rules / firewall, etc

这篇关于网站收到奇怪查询字符串的请求的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！