V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
V2EX 提问指南
ArthurKing
V2EX  ›  问与答

Apache 里的 access.log 记录的 get url 不是本站的

  •  
  •   ArthurKing · 2016-05-04 15:47:56 +08:00 · 1986 次点击
    这是一个创建于 3125 天前的主题,其中的信息可能已经有所发展或是发生改变。

    截取的某个 ip 的

    120.132.95.89 - - [03/May/2016:20:00:40 -0400] "GET http://www.elong.comhttphttphttphttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttphttphttphttp/www.elong.comhttphttphttphtt phttphttphttphttp/www.elong.comhttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttp/www.elong.comhttphttphttphttphttp/www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www .elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 779 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:39 -0400] "GET http://www.elong.comhttphttphttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphtt phttp/www.elong.comhttphttphttphttphttphttp/www.elong.comhttphttphttphttphttp/www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HT TP/1.1" 301 721 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:39 -0400] "GET http://www.elong.comhttphttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttp/www.el ong.comhttphttphttphttphttp/www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 667 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:38 -0400] "GET http://www.elong.comhttphttphttphttphttphttphttp/www.elong.comhttphttphttphttphttphttp/www.elong.comhttphttphttphttphttp/www.elong.comhttph ttphttphttp/www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 617 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:38 -0400] "GET http://www.elong.comhttphttphttphttphttphttp/www.elong.comhttphttphttphttphttp/www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www. elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 571 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:37 -0400] "GET http://www.elong.comhttphttphttphttphttp/www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/ww w.elong.com/ HTTP/1.1" 301 529 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:36 -0400] "GET http://www.elong.comhttphttphttphttp/www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 491 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:36 -0400] "GET http://www.elong.comhttphttphttp/www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 457 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:35 -0400] "GET http://www.elong.comhttphttp/www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 427 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/201 00101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:35 -0400] "GET http://www.elong.comhttp/www.elong.com/ HTTP/1.1" 301 401 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0" 120.132.95.89 - - [03/May/2016:20:00:34 -0400] "GET http://www.elong.com/ HTTP/1.1" 301 379 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0"

    这种访问是要干什么?网站推广?

    6 条回复    2016-05-05 20:58:43 +08:00
    julyclyde
        1
    julyclyde  
       2016-05-04 17:35:17 +08:00
    这问题问的……为什么一定要是你这里的 URL ?
    日志记录的是客观事实,有什么访问就记录什么内容
    你还能管住客户端发啥请求么?
    lxy
        2
    lxy  
       2016-05-04 17:55:54 +08:00   ❤️ 1
    扫描代理,不过这一连串请求的确有点奇葩。
    ^……在我写完上面一句话之后又看了一下。感觉你这配置处理得不好,我只用过 nginx 不知道 apache 是什么情况,估计是因为你返回 301 重定向,于是请求网址越加越长……对于这种请求我直接返回 400 或 444 ( nginx )
    shiji
        3
    shiji  
       2016-05-04 18:18:01 +08:00 via Android
    也有可能是别人的域名有问题, A 记录乱指。碰巧指到你的机器上了。我遇到过很多 xx.com/糖尿病怎么治 之类的
    ytmsdy
        4
    ytmsdy  
       2016-05-04 18:27:09 +08:00 via iPhone
    应该是代理扫描吧,我的站也经常性有类似于这样子的请求。
    ArthurKing
        5
    ArthurKing  
    OP
       2016-05-05 14:22:05 +08:00
    @julyclyde 不是管他发啥。不过做啥事按说都有个目的性,不知道发这玩意的目的何在呢?
    julyclyde
        6
    julyclyde  
       2016-05-05 20:58:43 +08:00
    @ArthurKing 上面几位已经说了,是扫描代理。如果你的服务器配置为代理模式,或者干脆就是个代理服务器在这里工作,就会替客户去请求实际的服务器,而不是返回错误代码
    尤其是你看 GET 后面是完整网址而不是只有路径部分,这是典型的代理请求格式
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   2532 人在线   最高记录 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 38ms · UTC 15:39 · PVG 23:39 · LAX 07:39 · JFK 10:39
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.