极客观点
项目管理
HarmonyOS
在自己的阿里云ECS上安装了一个Nginx 仅仅为了把一个8081的应用 映射成80端口访问
location /extract {
proxy_pass http://localhost:8081/extract;
}今天偶然查看Nginx日志 发现有很多莫名其妙的访问日志
182.101.48.174 - - [29/Sep/2017:14:13:43 +0800] "CONNECT www.voanews.com:443 HTTP/1.1" 400 173 "-" "-" "-"
182.242.254.239 - - [29/Sep/2017:14:13:43 +0800] "GET http://dongtaiwang.com/ HTTP/1.1" 200 3700 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36" "-"
124.88.64.195 - - [29/Sep/2017:14:13:43 +0800] "CONNECT cn.bing.com:443 HTTP/1.1" 400 173 "-" "-" "-"
103.206.22.250 - - [29/Sep/2017:14:19:44 +0800] "GET http://www.sbjudge3.com/azenv.php HTTP/1.1" 404 3650 "-" "Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 5.1; Trident/5.0)" "-"
103.206.22.250 - - [29/Sep/2017:14:19:44 +0800] "CONNECT www.alipay.com:443 HTTP/1.1" 400 173 "-" "-" "-"
103.206.22.250 - - [29/Sep/2017:14:25:34 +0800] "GET http://45.33.54.195/ HTTP/1.1" 200 3700 "-" "Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 5.1; Trident/5.0)" "-"
103.206.22.250 - - [29/Sep/2017:14:25:34 +0800] "CONNECT www.baidu.com:443 HTTP/1.1" 400 173 "-" "-" "-"都搞不清这些日志是怎么产生的?尝试去模拟一个这样的访问日志 都不知道该怎么模拟
➜ ~ curl 'http://139.224.XXX.XXX/http://dongtaiwang.com/'
# 得到的是这样的输出 http前有 '/'
219.143.153.1 - - [29/Sep/2017:15:08:06 +0800] "GET /http://dongtaiwang.com/ HTTP/1.1" 404 3650 "-" "curl/7.43.0" "-"
CONNECT是HTTPS的代理隧道建立请求