-
Notifications
You must be signed in to change notification settings - Fork 643
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[建议] 手动添加的黑名单的拦截,也计入高频攻击的计数 #817
Labels
Comments
你好,烦请看一下哦,谢谢 @Lorna0 |
手动黑名单确实不进高频,因为即使是高频也类似黑名单 |
但这样就无法起到封禁作用了 |
为啥,手动拉黑不是已经封禁了嘛 |
仅仅是封禁了一个地址, 没有起到全部封禁的效果. |
懂了,是要根据黑名单规则,拉黑高频攻击 ip 吧。 |
内部讨论一下,感觉可以加上 |
是的, 感谢 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
问题描述
这个IP触发黑名单150多次,却没有被高频访问或者高频攻击拦截。(还有好几次这样的案例)
![image](https://private-user-images.githubusercontent.com/41245552/322351475-d0ad0415-a30d-4c96-92b3-b5f6f9b309d1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Twt58t_Yv2smHL4-Rgk--zwV5KiMcLuOTE2Japxup2c)
![image](https://private-user-images.githubusercontent.com/41245552/322351872-b6b0d109-bb8d-4bd0-9a7c-29ff6b3429a5.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.0vliBXntvYD_IGjqD13tQvCxFvJojiw48CgVtWxnd-o)
如下,没有拦截记录
难道说是手动添加的黑名单命中是不计入“高频攻击”的吗?
版本号
5.3.2
复现方法
1.添加一个匹配UA的黑名单
![image](https://private-user-images.githubusercontent.com/41245552/322352199-7ef1085e-8a36-4980-8bc3-2c5e852705e7.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.jDrQ5YETjaIenr_Js19q1GdRwo6BU58rrMWWkmE6QUw)
2.使用Go框架连续访问
3.不被拦截
期望的结果
能够被正常拦截
The text was updated successfully, but these errors were encountered: