经常看宝塔防火墙日志,总结了这些恶意UA大全。我将自己在用的分享给各大站长。
["Microsoft","rv:","Macintosh","Chat",".NET","JCE","cow","ZmEu","Bench","httperf","w3af","Netsparker","BabyKrokodil","PycURL","Havij","fimap","Nikto","Nmap","BBBike","libwww","Parser","MyTool","sqln","Pangolin","Crawler","Odin","Indy","HTTrack","Audit","DirBuster","Harvest","SQLmap","XSStrike","Metasploit","Arachni","ZAP","Aircrack","John","Hydra","l9explore","l9tcpid","Scrapy","FeedDemon","WebCopier","CrawlDaddy","Jullo","Feedly","WinHttp","CentOS","Ubuntu","Debian","python","Java","golang","Apache","Client","HttpClient","AsyncHttpClient","MicroMessenger","QQ","facebook","GPTBot","AhrefsBot","DotBot","Amazonbot","BLEXBot","MJ12bot","PetalBot","DuckDuckBot","DataForSeoBot","BotPoke","ClaudeBot","SemrushBot","YisouSpider"]PS:已拦截 YisouSpider 神马的蜘蛛。像这种,不收录,还爬取,纯垃圾蜘蛛。
打开宝塔防火墙-全局设置-UA黑名单-设置-点击清空按钮,再点击导入按钮确定即可。
如果,你没有安装宝塔防火墙。阔以参考下面文章使用,然后稍微改改代码就行了。
比如:Nginx屏蔽垃圾蜘蛛的办法 代码可以这样写
if ($http_user_agent ~* "Microsoft|rv:|Macintosh|Chat|.NET|JCE|cow|ZmEu|Bench|httperf|w3af|Netsparker|BabyKrokodil|PycURL|Havij|fimap|Nikto|Nmap|BBBike|libwww|Parser|MyTool|sqln|Pangolin|Crawler|Odin|Indy|HTTrack|Audit|DirBuster|Harvest|SQLmap|XSStrike|Metasploit|Arachni|ZAP|Aircrack|John|Hydra|l9explore|l9tcpid|Scrapy|FeedDemon|WebCopier|CrawlDaddy|Jullo|Feedly|WinHttp|CentOS|Ubuntu|Debian|python|Java|golang|Apache|Client|HttpClient|AsyncHttpClient|MicroMessenger|QQ|facebook|GPTBot|AhrefsBot|DotBot|Amazonbot|BLEXBot|MJ12bot|PetalBot|DuckDuckBot|DataForSeoBot|BotPoke|ClaudeBot|SemrushBot|YisouSpider"){ return 403;}或者:PHP禁止在微信和QQ中打开 这个更加简单,把
$searchEngines = array('MicroMessenger','QQ');改为
$searchEngines = ["Microsoft","rv:","Macintosh","Chat",".NET","JCE","cow","ZmEu","Bench","httperf","w3af","Netsparker","BabyKrokodil","PycURL","Havij","fimap","Nikto","Nmap","BBBike","libwww","Parser","MyTool","sqln","Pangolin","Crawler","Odin","Indy","HTTrack","Audit","DirBuster","Harvest","SQLmap","XSStrike","Metasploit","Arachni","ZAP","Aircrack","John","Hydra","l9explore","l9tcpid","Scrapy","FeedDemon","WebCopier","CrawlDaddy","Jullo","Feedly","WinHttp","CentOS","Ubuntu","Debian","python","Java","golang","Apache","Client","HttpClient","AsyncHttpClient","MicroMessenger","QQ","facebook","GPTBot","AhrefsBot","DotBot","Amazonbot","BLEXBot","MJ12bot","PetalBot","DuckDuckBot","DataForSeoBot","BotPoke","ClaudeBot","SemrushBot","YisouSpider"];完成。但这个是动态、伪静态版的。
这样改了以后,不会影响正常访问和蜘蛛抓取。除此之外,火狐浏览器也会被拦截。
这份恶意UA黑名单有点强,一篇文章拦截了半个球的人,到底要不要用还需谨慎呐!
a191410029
浪子
303666yiyi
老S批
hsd123
12wdasd
极客
CS
Max
空空
陈书婷
wz2021
真赚ieearn_com
YDM
Mango
清美
gary