我有Varnish缓存与PHP验证码工作,但我没有
我还不知道如何设置触发限制。
每小时(或分钟)请求数超过限制后
发送验证码输入。
我有它的工作,但想了解如何我可以改变请求/秒限制。
下面是来自的代码:http://drcarter.info/2010/04/how-fighting-against-scraping-using-varnish-vcl-inline-c-memcached/
这个代码告诉我什么?
if (rc == MEMCACHED_SUCCESS) {
uint64_t intval;
rc= memcached_increment(memc, key, strlen(key), (uint64_t)1, &intval);
if (rc != MEMCACHED_SUCCESS)
rc= memcached_set(memc, key, strlen(key), "1", 1, (time_t)60, (uint32_t)0);
else
if (intval>30) {
VRT_SetHdr(sp, HDR_REQ, "'013X-Scraping:", "1", vrt_magic_string_end);
syslog(LOG_INFO, "Scraping detected from %s",VRT_IP_string(sp, VRT_r_client_ip(sp)));
if (intval<300)
rc= memcached_set(memc, key, strlen(key), "500", 3, (time_t)3600, (uint32_t)0);
}
非常感谢您的建议。
谢谢!
请原谅我没有注释我的代码:)
听了我的评论,我想你会明白的。
if (rc == MEMCACHED_SUCCESS) {
//if connected to memcache
uint64_t intval;
//trying to increment the "ip address" key (+1)
rc= memcached_increment(memc, key, strlen(key), (uint64_t)1, &intval);
if (rc != MEMCACHED_SUCCESS)
//if increment fail, then it is the first time that we see this address
//init the value at 1 for 60 seconds
rc= memcached_set(memc, key, strlen(key), "1", 1, (time_t)60, (uint32_t)0);
else
//if increment success, then verifying the value, if more than 30 (30 reqs/minute)
//blacklist the ipaddress (setting the value arbitrary at 500 for 1 hour)
if (intval>30) {
VRT_SetHdr(sp, HDR_REQ, "'013X-Scraping:", "1", vrt_magic_string_end);
syslog(LOG_INFO, "Scraping detected from %s",VRT_IP_string(sp, VRT_r_client_ip(sp)));
if (intval<300)
rc= memcached_set(memc, key, strlen(key), "500", 3, (time_t)3600, (uint32_t)0);
}
代码的工作流程如下:
try to increment the key identifying the client and return the value in intval
if it fails set the key with an expiration of 60 seconds
else
if the number of call (intval) is less than 30
it set an header X-Scraping (which will be use later to deny access: this part is not in the part of the code you have pasted)
所以如果你想改变res/s,你可以在> 30测试中播放,或者将键到期时间更改为60以外的其他值