在测试使用CMS过程中，发现如果客户端主动断开连接后，CMS服务就不响应其他请求了

yipinlan

级别: 童生

UID: 126833
积分:27 加为好友
威望: 0 精华: 0
主题:2 回复:12
注册时间:2018-11-19
在线时长:0

1# 发表于:2020-11-18 17:49:38 IP:103.140.*.*

显示全部只看该作者

本地服务器上CMS没有任何报错日志
而查看NGINX日志时发现可能是是同一时间段的恶意请求
nginx日志如下：

使用道具
顶端

yipinlan

级别: 童生

UID: 126833
积分:27 加为好友
威望: 0 精华: 0
主题:2 回复:12
注册时间:2018-11-19
在线时长:0

2# 发表于:2020-11-18 17:54:47 IP:103.140.*.*

显示全部只看该作者

59.49.77.49 - - [18/Nov/2020:09:03:53 +0800] "POST /admin/ex/content/user/page HTTP/1.1" 200 934 "/jeecms/index.html" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
183.228.50.184 - - [18/Nov/2020:09:04:30 +0800] "POST /admin/ex/content/user/update HTTP/1.1" 200 137 "/jeecms/index.html" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15"
183.228.50.184 - - [18/Nov/2020:09:04:31 +0800] "POST /admin/ex/content/user/page HTTP/1.1" 200 1037 "/jeecms/index.html" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15"
183.228.50.184 - - [18/Nov/2020:09:04:44 +0800] "POST /admin/ex/content/user/post HTTP/1.1" 200 137 "/jeecms/index.html" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15"
183.228.50.184 - - [18/Nov/2020:09:04:44 +0800] "POST /admin/ex/content/user/page HTTP/1.1" 200 1039 "/jeecms/index.html" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15"
183.228.50.184 - - [18/Nov/2020:09:04:49 +0800] "POST /admin/ex/content/user/detail HTTP/1.1" 200 3549 "/jeecms/index.html" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /guanli/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /dedea/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /jian/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /caiyuan/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /dede/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /dede123/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /gsdd/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /seo/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /chen/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /tdcq/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /xixi/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /houtai/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /manage/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /hehe/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /facai/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /cct/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /cfwb/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /8sunbet/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /admin1/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:27 +0800] "HEAD /only/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /cy/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /888/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /admindede/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /ba/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /cg/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /dedeadmin/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /dg/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /shen/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /login/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /bob/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /htadmin/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /1689/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /haian360/login.php HTTP/1.1" 499 0 "-" "-"
121.196.99.99 - - [18/Nov/2020:09:27:28 +0800] "HEAD /admin001/login.php HTTP/1.1" 499 0 "-" "-"

使用道具
顶端

zyw1517

级别: 管理员

UID: 136269
积分:8356 加为好友
威望: 0 精华: 0
主题:0 回复:6382
注册时间:2020-10-26
在线时长:0

3# 发表于:2020-11-19 09:05:44 IP:111.203.*.*

显示全部只看该作者

回复第2楼抱歉，我们恶意请求我们控制不了

不是享乐，也不是受苦；而是行动，在每个明天，我们命定的目标和道路，都要比今天前进一步。

使用道具
顶端