声明一下:
这个方法只能简单的监控(检测)用户的访问频率,并不能真正做到完全防御,因为CC超级线程攻击基本直接把80端口给阻塞了,要想完全防御CC攻击,需要使用软件防火墙,直接监控网卡入口。代码如下:
<?php//代理IP直接退出empty($_SERVER['HTTP_VIA']) or exit('Access Denied');//防止快速刷新session_start();$seconds = '3'; //时间段[秒]$refresh = '5'; //刷新次数//设置监控变量$cur_time = time();if(isset($_SESSION['last_time'])){$_SESSION['refresh_times'] += 1;}else{$_SESSION['refresh_times'] = 1;$_SESSION['last_time'] = $cur_time;}//处理监控结果if($cur_time - $_SESSION['last_time'] < $seconds){if($_SESSION['refresh_times'] >= $refresh){//跳转至攻击者服务器地址header(sprintf('Location:%s', 'http://127.0.0.1'));exit('Access Denied');}}else{$_SESSION['refresh_times'] = 0;$_SESSION['last_time'] = $cur_time;}?>
