堆栈内存溢出
  简体   繁体   English

有人在其他域上复制我的网站

[英]Someone is copying my website on a different domain

 原文  2019-01-23 12:01:34       php/ server

问题描述

Someone is copying my website live. 有人正在实时复制我的网站。

my: https://english-subtitles.org/ copy: http://steemitup.eu/ 我的: https : //english-subtitles.org/副本: http : //steemitup.eu/

I've tried everything. 我已经尝试了一切。 Redirection in the index.php file does not work. index.php文件中的重定向不起作用。 JS redirection does not work because it cuts all the js from the page. JS重定向不起作用,因为它会剪切页面中的所有js。

SSH login with the key. 使用密钥进行SSH登录。 All passwords changed (admin, ftp, web panel). 所有密码已更改(管理员,FTP,Web面板)。

When I upload a picture to the server with him, he is also. 当我和他一起将图片上传到服务器时,他也是。

https://english-subtitles.org/a.png http://steemitup.eu/a.png https://english-subtitles.org/a.png http://steemitup.eu/a.png

The IP address assigned to the domain is blocked but it still works. 分配给该域的IP地址被阻止,但仍然可以使用。

How to deal with this? 怎么处理呢?

Please forgive me for poor English. 请原谅我英语不好。

From what I see, they use CURL. 从我看来,他们使用CURL。 Such a mistake is with them when I turned off my website: 当我关闭网站时,他们犯了这样的错误:

Operation timed out after 10001 milliseconds with 0 bytes received 10001毫秒后操作超时,收到0个字节

Is it possible to block it somehow? 有可能以某种方式阻止它吗?

EDIT 编辑

Problem solved! 问题解决了!

The best option was to use CloudFlare Firewall. 最好的选择是使用CloudFlare防火墙。 Searching for the v6 IP address in the logs and blocking it. 在日志中搜索v6 IP地址并将其阻止。

2 个解决方案

解决方案1
 6  2019-01-23 12:17:35

My prediction is he is just get the url that request to his server and then he curl to your site get the element in the site and replace some of your stuff with his stuff so that why there is a "realtime copying". 我的预测是,他只是获取请求到服务器的URL,然后卷曲到您的站点以获取站点中的元素,并用他的内容替换您的某些内容,从而说明为什么要进行“实时复制”。

The solution could be you load his site and check the access log from your server to get the "someone"'s ip and then block it. 解决方案可能是您加载他的站点并从服务器检查访问日志以获取“某人”的ip,然后将其阻止。

解决方案2
 0  2019-01-23 12:43:46

I think you do not have a security breach. 我认为您没有安全漏洞。

What I think the copycat does: 我认为模仿者会做什么:

  1. Have a rewrite configuration on his webserver (nginx) that always starts a script on all none existing files on his site 在其Web服务器(nginx)上进行重写配置,该配置始终在其站点上所有不存在的文件上启动脚本
  2. This script will fetch the content with the same URL path from your site (and caches it) 该脚本将从您的网站中获取具有相同URL路径的内容(并将其缓存)
  3. It will transforms the fetched output (HTML) with his own logo and domain links 它将使用自己的徽标和域链接来转换获取的输出(HTML)
  4. Output the transformed data 输出转换后的数据

What you can do? 你可以做什么?

Check your access log for the IP address. 检查您的访问日志中的IP地址。 Block that IP address! 阻止该IP地址!

If they change IP addresses? 是否更改IP地址?

  1. Keep checking for suspicious IP access 继续检查可疑的IP访问
    You could create a script that regularly requests random gibberish resources onthe copycat domain and watches the access log for that gibberish path and then automatically block that IP (if you are allowed to) 您可以创建一个脚本,该脚本定期在copycat域上请求随机的乱码资源,并监视该乱码路径的访问日志,然后自动阻止该IP(如果允许)

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 网站部分的不同域名 - Different domain for section of website 复制Drupal网站并转移到另一个托管和域 - Copying Drupal website and transfer to another hosting and domain 将Cookie从另一个域复制到我的域 - Copying Cookie From Another Domain To My Domain 当有人访问我的网站时,为什么我的数据库没有更新? - Why is my database not being updated when someone visits my website? 从其他域加载网站PHP - Loading website from a different domain PHP WordPress网站不断重定向到其他域 - Wordpress Website Keeps Redirecting to Different Domain 防止从外部网站重定向到我的域 - Prevent redirection from an external website to my domain 如何在我的网站中阻止请求域 - How to block request domain in my website 如何防止某人抓取我的网站数据? - How to prevent someone from scraping my website data? 提交后,如何使我的网站从我的地址发送电子邮件给某人? - How can I get my website to send an email to someone from my address upon submit?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM