堆栈内存溢出
  简体   繁体   English

Apache:RewriteCond %{QUERY_STRING} 问题

[英]Apache: RewriteCond %{QUERY_STRING} issue

 原文  2020-11-27 13:21:39       apache/ .htaccess/ mod-rewrite/ url-rewriting

问题描述

I wished to block requests like http://anything.com/something.php?hack_attempt=select * from users.我希望阻止来自用户的请求,例如http://anything.com/something.php?hack_attempt=select *

For this I do in .htaccess为此,我在 .htaccess

RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]

The problem is that this rule hits also http://anything.com/update.php As I know %{QUERY_STRING} should contain only get params string after ?问题是这条规则也命中http://anything.com/update.php据我所知%{QUERY_STRING}应该只包含 get params string after ? , but it hits the URI. ,但它命中了 URI。 Can anyone advice where the problem can be?谁能建议问题出在哪里?

UPDATE: full rule更新:完整规则

<IfModule mod_rewrite.c>
 RewriteEngine On
 RewriteCond %{QUERY_STRING} ^.*(localhost|loopback|127\.0\.0\.1).*                                [NC,OR]
 #RewriteCond %{QUERY_STRING} ^.*(\.|\*|;|<|>|'|"|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*                 [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*/ban_url/                                                           [NC,OR]
 #RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]
 RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|insert|cast|set|declare|drop).* [NC,OR]
 RewriteCond %{QUERY_STRING} ^.*\?.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]

 RewriteRule ^(.*)$ - [R=400,L]
</IfModule>

if I uncomment如果我取消注释

RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]

then Apache will block www.anything.com/update.php but it should block only www.anything.com/something.php?param=update然后 Apache 将阻止www.anything.com/update.php但它应该只阻止 www.anything.com/something.php?param=update

UPDATE 2: full conf更新 2:完整的配置

<IfModule mod_rewrite.c>
 RewriteEngine On
 RewriteCond %{QUERY_STRING} ^.*(localhost|loopback|127\.0\.0\.1).*                                [NC,OR]
 #RewriteCond %{QUERY_STRING} ^.*(\.|\*|;|<|>|'|"|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*                 [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*/ban_url/                                                           [NC,OR]
 #RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]
 RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|insert|cast|set|declare|drop).* [NC,OR]
 RewriteCond %{QUERY_STRING} ^.*\?.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]

 RewriteRule ^(.*)$ - [R=400,L]

 RewriteCond %{REQUEST_URI} ^.*wp-*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*www\.zip*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*backup\.zip*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*public_html\.zip*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*\.tar\.gz*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*administrator*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*admin\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*admin/index\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*elrekt\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*_adminer*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*accesson*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*agentui*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*trackback*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*wp-login*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*router\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*AspCms_AdminAdd*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*public/js/wind*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*include/calendar/calendar-cn*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*app-ads*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*vendor/phpunit/*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*utility/*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*blackhat*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*data/admin/allowurl*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*js/varien*                                                           [NC,OR] #magento
 RewriteCond %{REQUEST_URI} ^.*js/mage*                                                           [NC,OR] #magento
 RewriteCond %{REQUEST_URI} ^.*magento_version*                                                           [NC,OR] #magento
 RewriteCond %{REQUEST_URI} ^.*db_z\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*functions\.php*                                                           [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*lottery-index*                                                           [NC]

 RewriteRule ^(.*)$ - [R=400,L]


</IfModule>

this conf file is applied in site conf like这个 conf 文件应用在站点 conf 中,例如

<VirtualHost *:80>
    Include /var/www/url_blacklist.conf
        ServerName ...
        DocumentRoot ...
        ErrorLog ...
</VirtualHost>

1 个解决方案

解决方案1
 2  2020-11-28 04:25:25

I am assuming that you want to block/forbid all those requests which have select * in their query string along with their uri doesn't have update.php requested, if this is the case could you please try following once.我假设您要阻止/禁止所有在查询字符串中具有select *以及它们的 uri 没有update.php请求的请求,如果是这种情况,您可以尝试关注一次。 These conditions are written as per requested conditions only, you could try to test it alone and then could try to merge them with your existing conditions too.这些条件仅根据请求的条件编写,您可以尝试单独对其进行测试,然后也可以尝试将它们与您现有的条件合并。

RewriteEngine On
RewriteCond %{REQUEST_URI} !^/update\.php [NC]
RewriteCond %{QUERY_STRING} select \* [NC]
RewriteRule ^ - [R=301,F]

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 RewriteCond%{QUERY_STRING} - RewriteCond %{QUERY_STRING} Apache 2.4 mod_rewrite和RewriteCond%{QUERY_STRING}为空 - Apache 2.4 mod_rewrite and RewriteCond %{QUERY_STRING} empty RewriteCond QUERY_STRING或/和ProxyPass? - RewriteCond QUERY_STRING or/and ProxyPass? 在RewriteCond中使用反向引用过滤QUERY_STRING - Filtering QUERY_STRING with back references in RewriteCond RewriteCond用于没有query_string的网址 - RewriteCond for urls without query_string 新站点的RewriteCond%{QUERY_STRING} - RewriteCond %{QUERY_STRING} for new site 验证query_string中的域以进行rewritecond - Validate a domain in a query_string for rewritecond 重写 Apache Query_String - Rewrite Apache Query_String htacces 多个重写规则不适用于 RewriteCond %{QUERY_STRING} ^$ - htacces multiple rewrite rules not working with RewriteCond %{QUERY_STRING} ^$ 不能在 RewriteCond QUERY_STRING 中使用括号 - Can't use parentheses in RewriteCond QUERY_STRING
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM