经过一年多的beta测试,8G防火墙已准备好在生产现场使用。因此,您可以受益于nG防火墙(又名nG黑名单)的最新发展提供的强大保护。8G防火墙提供轻量级的服务器级保护,可抵御各种恶意请求、恶意机器人、自动攻击、垃圾邮件以及许多其他类型的威胁和无稽之谈。8G是一款轻量级(仅17KB)强大的防火墙,可提供站点安全性和安心感。此外,8G是开源的,对所有人100%免费:)
8G防火墙是一套精心设计的Apache和Nginx服务器安全规则。它可以通过您站点的公共根文件应用,也可以通过服务器配置添加。一旦添加,8G将提供强大的服务器级保护,以抵御各种恶意请求、恶意机器人、自动攻击、垃圾邮件以及许多其他类型的威胁和无稽之谈。它是一种轻量级(仅17KB)强大的防火墙,可提高站点安全性并让您高枕无忧。.htaccess
8G防火墙以7G为基础,通过性能优化范围,同时最大限度地减少误报。了解有关nG系列防火墙(包括8G)的更多信息以及所有详细信息:
对此域的请求通过Apache处理。
8G具有内置的被阻止请求日志记录功能。
Beta测试人员需要!放下一行以帮助beta测试8G。
在测试Nginx服务器上的防火墙
8GFIREWALL8G:[QUERYSTRING]IfModulemod_%{QUERY_STRING}^(%2d|-)[^=]+$[NC,OR]RewriteCond%{QUERY_STRING}([a-z0-9]{4000,})[NC,OR]RewriteCond%{QUERY_STRING}(/|%2f)(:|%3a)(/|%2f)[NC,OR]RewriteCond%{QUERY_STRING}(etc/(hosts|motd|shadow))[NC,OR]RewriteCond%{QUERY_STRING}(order(\s|%20)by(\s|%20)1--)[NC,OR]RewriteCond%{QUERY_STRING}(/|%2f)(\*|%2a)(\*|%2a)(/|%2f)[NC,OR]RewriteCond%{QUERY_STRING}(`|||\^|\|\\|0x00|%00|%0d%0a)[NC,OR]RewriteCond%{QUERY_STRING}(f?ckfinder|f?ckeditor|fullclick)[NC,OR]RewriteCond%{QUERY_STRING}((.*)header:|(.*)set-cookie:(.*)=)[NC,OR]RewriteCond%{QUERY_STRING}(localhost|127(\.|%2e)0(\.|%2e)0(\.|%2e)1)[NC,OR]RewriteCond%{QUERY_STRING}(cmd|command)(=|%3d)(chdir|mkdir)(.*)(x20)[NC,OR]RewriteCond%{QUERY_STRING}(globals|mosconfig([a-z_]{1,22})|request)(=|\[)[NC,OR]RewriteCond%{QUERY_STRING}(/|%2f)((wp-)?config)((\.|%2e)inc)?((\.|%2e)php)[NC,OR]RewriteCond%{QUERY_STRING}(thumbs?(_editor|open)?|tim(thumbs?)?)((\.|%2e)php)[NC,OR]RewriteCond%{QUERY_STRING}(absolute_|base|root_)(dir|path)(=|%3d)(ftp|https?)[NC,OR]RewriteCond%{QUERY_STRING}(s)?(ftp|inurl|php)(s)?(:(/|%2f|%u2215)(/|%2f|%u2215))[NC,OR]RewriteCond%{QUERY_STRING}(\.|20)(get|the)(_|%5f)(permalink|posts_page_url)(\(|%28)[NC,OR]RewriteCond%{QUERY_STRING}((boot|win)((\.|%2e)ini)|etc(/|%2f)passwd|self(/|%2f)environ)[NC,OR]RewriteCond%{QUERY_STRING}(((/|%2f){3,3})|((\.|%2e){3,3})|((\.|%2e){2,2})(/|%2f|%u2215))[NC,OR]RewriteCond%{QUERY_STRING}(benchmark|char|exec|fopen|function|html)(.*)(\(|%28)(.*)(\)|%29)[NC,OR]RewriteCond%{QUERY_STRING}(php)([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})[NC,OR]RewriteCond%{QUERY_STRING}(e|%65|%45)(v|%76|%56)(a|%61|%31)(l|%6c|%4c)(.*)(\(|%28)(.*)(\)|%29)[NC,OR]RewriteCond%{QUERY_STRING}(/|%2f)(=|%3d||_mm|cgi(\.|-)|inurl(:|%3a)(/|%2f)|(mod|path)(=|%3d)(\.|%2e))[NC,OR]RewriteCond%{QUERY_STRING}(|%3c)(.*)(e|%65|%45)(m|%6d|%4d)(b|%62|%42)(e|%65|%45)(d|%64|%44)(.*)(|%3e)[NC,OR]RewriteCond%{QUERY_STRING}(|%3c)(.*)(i|%69|%49)(f|%66|%46)(r|%72|%52)(a|%61|%41)(m|%6d|%4d)(e|%65|%45)(.*)(|%3e)[NC,OR]RewriteCond%{QUERY_STRING}(|%3c)(.*)(o|%4f|%6f)(b|%62|%42)(j|%4a|%6a)(e|%65|%45)(c|%63|%43)(t|%74|%54)(.*)(|%3e)[NC,OR]RewriteCond%{QUERY_STRING}(|%3c)(.*)(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(.*)(|%3e)[NC,OR]RewriteCond%{QUERY_STRING}(\+|%2b|%20)(d|%64|%44)(e|%65|%45)(l|%6c|%4c)(e|%65|%45)(t|%74|%54)(e|%65|%45)(\+|%2b|%20)[NC,OR]RewriteCond%{QUERY_STRING}(\+|%2b|%20)(i|%69|%49)(n|%6e|%4e)(s|%73|%53)(e|%65|%45)(r|%72|%52)(t|%74|%54)(\+|%2b|%20)[NC,OR]RewriteCond%{QUERY_STRING}(\+|%2b|%20)(s|%73|%53)(e|%65|%45)(l|%6c|%4c)(e|%65|%45)(c|%63|%43)(t|%74|%54)(\+|%2b|%20)[NC,OR]RewriteCond%{QUERY_STRING}(\+|%2b|%20)(u|%75|%55)(p|%70|%50)(d|%64|%44)(a|%61|%41)(t|%74|%54)(e|%65|%45)(\+|%2b|%20)[NC,OR]RewriteCond%{QUERY_STRING}(\\x00|(\"|%22|\'|%27)?0(\"|%22|\'|%27)?(=|%3d)(\"|%22|\'|%27)?0|cast(\(|%28)0x|or%201(=|%3d)1)[NC,OR]RewriteCond%{QUERY_STRING}(g|%67|%47)(l|%6c|%4c)(o|%6f|%4f)(b|%62|%42)(a|%61|%41)(l|%6c|%4c)(s|%73|%53)(=|\[|%[0-9A-Z]{0,2})[NC,OR]RewriteCond%{QUERY_STRING}(_|%5f)(r|%72|%52)(e|%65|%45)(q|%71|%51)(u|%75|%55)(e|%65|%45)(s|%73|%53)(t|%74|%54)(=|\[|%[0-9A-Z]{2,})[NC,OR]RewriteCond%{QUERY_STRING}(j|%6a|%4a)(a|%61|%41)(v|%76|%56)(a|%61|%31)(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(:|%3a)(.*)(;|%3b|\)|%29)[NC,OR]RewriteCond%{QUERY_STRING}(b|%62|%42)(a|%61|%41)(s|%73|%53)(e|%65|%45)(6|%36)(4|%34)(_|%5f)(e|%65|%45|d|%64|%44)(e|%65|%45|n|%6e|%4e)(c|%63|%43)(o|%6f|%4f)(d|%64|%44)(e|%65|%45)(.*)(\()(.*)(\))[NC,OR]RewriteCond%{QUERY_STRING}(@copy|\$_(files|get|post)|allow_url_(fopen|include)|auto_prep_file|blexbot|browsersploit|call_user_func_array|(php|web)shell|curl(_exec|test)|disable_functions?|document_root)[NC,OR]RewriteCond%{QUERY_STRING}(elastix|encodeuricom|exploit|fclose|fgets|file_put_contents|fputs|fsbuff|fsockopen|gethostbyname|ghost|grablogin|hmei7|hubs_post-cta|input_file|invokefunction|(\b)load_file|open_basedir|outfile|p3dlite)[NC,OR]RewriteCond%{QUERY_STRING}(pass(=|%3d)shell|passthru|phpinfo|phpshells|popen|proc_open|quickbrute|remoteview|root_path|safe_mode|shell_exec|site((.){0,2})copier|sp_executesql|sux0r|trojan|udtudt|user_func_array|wget|wp_insert_user|xertive)[NC,OR]RewriteCond%{QUERY_STRING}(;|||\'|\"|\)|%0a|%0d|%22|%27|%3c|%3e|%00)(.*)(/\*|alter|base64|benchmark|cast|concat|convert|create|encode|declare|delay|delete|drop|hex|insert|load|md5|null|replace|request|script|select|set|sleep|truncate|unhex|update)[NC,OR]RewriteCond%{QUERY_STRING}((\+|%2b)(concat|delete|get|select|union)(\+|%2b))[NC,OR]RewriteCond%{QUERY_STRING}(union)(.*)(select)(.*)(\(|%28)[NC,OR]RewriteCond%{QUERY_STRING}(concat|eval)(.*)(\(|%28)[NC]RewriteRule.*-[F]8G:[REQUESTURI]IfModulemod_%{REQUEST_URI}(,,,)[NC,OR]RewriteCond%{REQUEST_URI}(-------)[NC,OR]RewriteCond%{REQUEST_URI}(\^|`|||\\|\|)[NC,OR]RewriteCond%{REQUEST_URI}([a-z0-9]{2000,})[NC,OR]RewriteCond%{REQUEST_URI}(=?\\(\'|%27)/?)(\.)[NC,OR]RewriteCond%{REQUEST_URI}(/)(\*|\"|\'|\.|,||?)/?$[NC,OR]RewriteCond%{REQUEST_URI}(\.)(php)(\()?([0-9]+)(\))?(/)?$[NC,OR]RewriteCond%{REQUEST_URI}/((.*)header:|(.*)set-cookie:(.*)=)[NC,OR]RewriteCond%{REQUEST_URI}(\.(s?ftp-?)config|(s?ftp-?)config\.)[NC,OR]RewriteCond%{REQUEST_URI}(/)(f?ckfinder|fck/|f?ckeditor|fullclick)[NC,OR]RewriteCond%{REQUEST_URI}(/)((force-)?download|framework/main)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(\{0\}|\"?0\"?=\"?0|\(/\(|\.\.\.|\+\+\+|\\\")[NC,OR]RewriteCond%{REQUEST_URI}(/)(vbull(etin)?|boards|vbforum|vbweb|webvb)(/)?[NC,OR]RewriteCond%{REQUEST_URI}(\.|20)(get|the)(_)(permalink|posts_page_url)(\()[NC,OR]RewriteCond%{REQUEST_URI}(///|\?\?|/|/\*(.*)\*/|/:/|\\\\|0x00|%00|%0d%0a)[NC,OR]RewriteCond%{REQUEST_URI}(/)(cgi_?)?alfa(_?cgiapi|_?data|_?v[0-9]+)?(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(thumbs?(_editor|open)?|tim(thumbs?)?)((\.|%2e)php)[NC,OR]RewriteCond%{REQUEST_URI}(/)((boot)?_?admin(er|istrator|s)(_events)?)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/%7e)(root|ftp|bin|nobody|named|guest|logs|sshd)(/)[NC,OR]RewriteCond%{REQUEST_URI}(archive|backup|db|master|sql|wp|www|wwwroot)\.(gz|zip)[NC,OR]RewriteCond%{REQUEST_URI}(/)(\.?mad|alpha|c99|php|web)?sh(3|e)ll([0-9]+|\w)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(admin-?|file-?)(upload)(bg|_?file|ify|svu|ye)?(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(etc|var)(/)(hidden|secret|shadow|ninja|passwd|tmp)(/)?$[NC,OR]RewriteCond%{REQUEST_URI}(s)?(ftp|http|inurl|php)(s)?(:(/|%2f|%u2215)(/|%2f|%u2215))[NC,OR]RewriteCond%{REQUEST_URI}(/)(=|\?|?(pws|rk)=0|_mm|_vti_|cgi(\.|-)?|(=|/|;|,)nt\.)[NC,OR]RewriteCond%{REQUEST_URI}(\.)(ds_store|htaccess|htpasswd|init?|mysql-select-db)(/)?$[NC,OR]RewriteCond%{REQUEST_URI}(/)(bin)(/)(cc|chmod|chsh|cpp|echo|id|kill|mail|nasm|perl|ping|ps|python|tclsh)(/)?$[NC,OR]RewriteCond%{REQUEST_URI}(/)(::[0-9999]|%3a%3a[0-9999]|127\.0\.0\.1|ccx|localhost|makefile|pingserver|wwwroot)(/)?[NC,OR]RewriteCond%{REQUEST_URI}^(/)(123|backup|bak|beta|bkp|default|demo|dev(new|old)?|home|new-?site|null|old|old_files|old1)(/)?$[NC,OR]RewriteCond%{REQUEST_URI}(/)?j((\s)+)?a((\s)+)?v((\s)+)?a((\s)+)?s((\s)+)?c((\s)+)?r((\s)+)?i((\s)+)?p((\s)+)?t((\s)+)?(%3a|:)[NC,OR]RewriteCond%{REQUEST_URI}^(/)(old-?site(back)?|old(web)?site(here)?|sites?|staging|undefined|wordpress([0-9]+)|wordpress-old)(/)?$[NC,OR]RewriteCond%{REQUEST_URI}(/)(filemanager|htdocs|httpdocs|https?|login|mailman|mailto|msoffice|undefined|usage|var|vhosts|webmaster|www)(/)[NC,OR]RewriteCond%{REQUEST_URI}(\(null\)|\{\$itemURL\}|cast\(0x|echo(.*)kae|etc/passwd|eval\(|null(.*)null|open_basedir|self/environ|\+union\+all\+select)[NC,OR]RewriteCond%{REQUEST_URI}(/)(db-?|j-?|my(sql)?-?|setup-?|web-?|wp-?)?(admin-?)?(setup-?)?(conf\b|conf(ig)?)(uration)?(\.?bak|\.inc)?(\.inc|\.old|\.php|\.txt)[NC,OR]RewriteCond%{REQUEST_URI}(/)((.*)crlf-?injection|(.*)xss-?protection|__(inc|jsc)|administrator|author-panel|cgi-bin|database|downloader|(db|mysql)-?admin)(/)[NC,OR]RewriteCond%{REQUEST_URI}(/)(haders|head|hello|helpear|incahe|includes?|indo(sec)?|infos?|install|ioptimizes?|jmail|js|king|kiss|kodox|kro|legion|libsoft)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(awstats|document_root|dologin\.action||extension/ext|htaccess\.|lib/php|listinfo|phpunit/php|remoteview|server/php|www\.root\.)[NC,OR]RewriteCond%{REQUEST_URI}(base64_(en|de)code|benchmark|curl_exec|e?chr|eval|function|fwrite|(f|p)open|html|leak|passthru|p?fsockopen|phpinfo)(.*)(\(|%28)(.*)(\)|%29)[NC,OR]RewriteCond%{REQUEST_URI}(posix_(kill|mkfifo|setpgid|setsid|setuid)|(child|proc)_(close|get_status|nice|open|terminate)|(shell_)?exec|system)(.*)(\(|%28)(.*)(\)|%29)[NC,OR]RewriteCond%{REQUEST_URI}(/)((c99|php|web)?shell|crossdomain|fileditor|locus7|nstview|php(get|remoteview|writer)|r57|remview|sshphp|storm7|webadmin)(.*)(\.|%2e|\(|%28)[NC,OR]RewriteCond%{REQUEST_URI}/((wp-)((201\d|202\d|[0-9]{2})|ad|admin(fx|rss|setup)|booking|confirm|crons|data|file|mail|one|plugins?|readindex|reset|setups?|story))(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(^$|-|\!|\w|\.(.*)|100|123|([^iI])?ndex|index\.php/index|3xp|777|7yn|90sec|99|active|aill|ajs\.delivery|al277|alexuse?|ali|allwrite)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(analyser|apache|apikey|apismtp|authenticat(e|ing)|autoload_classmap|backup(_index)?|bakup|bkht|black|bogel|bookmark|bypass|cachee?)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(clean|cm(d|s)|con|connector\.minimal|contexmini|contral|curl(test)?|data(base)?|db|db-cache|db-safe-mode|defau11|defau1t|dompdf|dst)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(elements|emails?||ecscache|edit-form|eval-stdin|export|evil|fbrrchive|filemga|filenetworks?|f0x|gank(\.php)?|gass|gel|guide)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(logo_img|lufix|mage|marg|mass|mide|moon|mssqli|mybak|myshe|mysql|mytag_js?|nasgor|newfile|news|nf_?tracking|nginx|ngoi|ohayo|old-?index)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(olux|owl|pekok|petx|php-?info|phpping|popup-pomo|priv|r3x|radio|rahma|randominit|readindex|readmy|reads|repair-?bak|robot(s\.txt)?|root)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(router|savepng|semayan|shell|shootme|sky|socket(c|i|iasrgasf)ontrol|sql(bak|_?dump)?|support|sym403|sys|system_log|test|tmp-?(uploads)?)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)(traffic-advice|u2p|udd|ukauka|up__uzegp|up14|upa?|upxx?|vega|vip|vu(ln)?(\w)?|webroot|weki|wikindex|wordpress|wp_logns?|wp_wrong_datlib)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(/)((wp-?)?install(ation)?|wp(3|4|5|6)|wpfootes|wpzip|ws0|wsdl|wso(\w)?|www|(uploads|wp-admin)?xleet(-shell)?|xmlsrpc|xup|xxu|xxx|zibi|zipy)(\.php)[NC,OR]RewriteCond%{REQUEST_URI}(bkv74|cachedsimilar|core-stab|crgrvnkb|ctivrc|deadcode|deathshop|dkiz|e7xue|eqxafaj90zir|exploits|ffmkpcal|filellli7|(fox|sid)wso|gel4y|goog1es|gvqqpinc)[NC,OR]RewriteCond%{REQUEST_URI}(@md5|00.temp00|0byte|0d4y|0day|0xor|wso1337|1h6j5|3xp|40dd1d|4price|70bex?|a57bze893|abbrevsprl|abruzi|adminer|aqbmkwwx|archivarix|backdoor|beez5|bgvzc29)[NC,OR]RewriteCond%{REQUEST_URI}(handler_to_code|hax(0|o)r|hmei7|hnap1|home_url=|ibqyiove|icxbsx|indoxploi|jahat|jijle3|kcrew|keywordspy|laobiao|lock360|longdog|marijuan|mod_(aratic|ariimag))[NC,OR]RewriteCond%{REQUEST_URI}(mobiquo|muiebl|nessus|osbxamip|phpunit|priv8|qcmpecgy|r3vn330|racrew|raiz0|reportserver|r00t|respectmus|rom2823|roseleif|sh3ll|site((.){0,2})copier|sqlpatch|sux0r)[NC,OR]RewriteCond%{REQUEST_URI}(sym403|telerik|uddatasql|utchiha|visualfront|w0rm|wangdafa|wpyii2|wsoyanzo|x5cv|xattack|xbaner|xertive|xiaolei|xltavrat|xorz|xsamxad|xsvip|xxxs?s?|zabbix|zebda)[NC,OR]RewriteCond%{REQUEST_URI}(\.)(7z|ab4|ace|afm|alfa|as(h|m)x?|aspx?|aws|axd|bash|ba?k?|bat|bin|bz2|cfg|cfml?|cgi|cms|conf\b|config|ctl|dat|db|dist|dll|eml|eng(ine)?|env|et2|exe|fec|fla|git(ignore)?)$[NC,OR]RewriteCond%{REQUEST_URI}(\.)(hg|idea|inc|index|ini|inv|jar|jspa?|lib|local|log|lqd|make|mbf|mdb|mmw|mny|mod(ule)?|msi|old|one|orig|out|passwd|pdb|php\.(php|suspect(ed)?)|php([^\/])|phtml?|pl|profiles?)$[NC,OR]RewriteCond%{REQUEST_URI}(\.)(psd|pst|ptdb|production|pwd|py|qbb|qdf|rar|rdf|remote|save|sdb|sql|sh|soa|svn|swf|swl|swo|swp|stx|tar|tax|tgz?|theme|tls|tmb|tmd|wok|wow|xsd|xtmpl|xz|ya?ml|za|zlib)$[NC]RewriteRule.*-[F]8G:[USERAGENT]IfModulemod_%{HTTP_USER_AGENT}([a-z0-9]{2000,})[NC,OR]RewriteCond%{HTTP_USER_AGENT}(|%0a|%0d|%27|%3c|%3e|%00|0x00|\\\x22)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(ahrefs|archiver|curl|libwww-perl|pycurl|scan)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(oppo\sa33|(c99|php|web)shell|site((.){0,2})copier)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(base64_decode|bin/bash|disconnect|eval|unserializ)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(acapbot|acoonbot|alexibot|asterias|attackbot|awario|backdor|becomebot|binlar|blackwidow|blekkobot|blex|blowfish|bullseye|bunnys|butterfly|careerbot|casper)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(checkpriv|cheesebot|cherrypick|chinaclaw|choppy|clshttp|cmsworld|copernic|copyrightcheck|cosmos|crescent|datacha|(\b)demon(\b)|diavol|discobot|dittospyder)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(dotbot|dotnetdotcom|dumbot|econtext|emailcollector|emailsiphon|emailwolf|eolasbot|eventures|extract|eyenetie|feedfinder|flaming|flashget|flicky|foobot|fuck)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(g00g1e|getright|gigabot|go-ahead-got|gozilla|grabnet|grafula|harvest|heritrix|httracks?|icarus6j|jetbot|jetcar|jikespider|kmccrew|leechftp|libweb|liebaofast)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(linkscan|linkwalker|loader|lwp-download|majestic|masscan|miner|mechanize|mj12bot|morfeus|moveoverbot|netmechanic|netspider|nicerspro|nikto|ninja|nominet|nutch)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(octopus|pagegrabber|petalbot|planetwork|postrank|proximic|purebot|queryn|queryseeker|radian6|radiation|realdownload|remoteview|rogerbot|scan|scooter|seekerspid)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(semalt|siclab|sindice|sistrix|sitebot|siteexplorer|sitesnagger|skygrid|smartdownload|snoopy|sosospider|spankbot|spbot|sqlmap|stackrambler|stripper|sucker|surftbot)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(sux0r|suzukacz|suzuran|takeout|teleport|telesoft|true_robots|turingos|turnit|vampire|vikspider|voideye|webleacher|webreaper|webstripper|webvac|webviewer|webwhacker)[NC,OR]RewriteCond%{HTTP_USER_AGENT}(winhttp|wwwoffle|woxbot|xaldon|xxxyy|yamanalab|yioopbot|youda|zeus|zmeu|zune|zyborg)[NC]RewriteRule.*-[F]8G:[REMOTEHOST]IfModulemod_%{REMOTE_HOST}(163data|amazonaws|colocrossing|crimea|g00g1e|justhost|kanagawa|loopia|masterhost|onlinehome|poneytel|sprintdatacenter||safenet|ttnet|woodpecker|wowrack)[NC]RewriteRule.*-[F]8G:[HTTPREFERRER]IfModulemod_%{HTTP_REFERER}(order(\s|%20)by(\s|%20)1--)[NC,OR]RewriteCond%{HTTP_REFERER}(@unlink|assert\(|print_r\(|x00|xbshell)[NC,OR]RewriteCond%{HTTP_REFERER}(100dollars|best-seo|blue\spill|cocaine|ejaculat|erectile|erections|hoodia|huronriveracres|impotence|levitra|libido|lipitor|mopub\.com|phentermin)[NC,OR]RewriteCond%{HTTP_REFERER}(pornhelm|pro[sz]ac|sandyauer|semalt\.com|social-buttions|todaperfeita|tramadol|troyhamby|ultram|unicauca|valium|viagra|vicodin|xanax|ypxaieo)[NC]RewriteRule.*-[F]8G:[HTTPCOOKIE]IfModulemod_%{HTTP_COOKIE}(||\'|%0A|%0D|%27|%3C|%3E|%00)[NC]RewriteRule.*-[F]8G:[REQUESTMETHOD]IfModulemod_%{REQUEST_METHOD}^(connect|debug|move|trace|track)[NC]RewriteRule.*-[F]#RewriteRule.*/nG_?log[END,NE,E=nG_REQUEST_METHOD:%1]/IfModule
版权声明:文章来源网络聚合,如有问题请联系删除。
