ProHoster > Блог > ozi ịntanetị > Mwakpo CPDoS iji mee ka ibe ndị sitere na CDN ghara ịdị

Mwakpo CPDoS iji mee ka ibe ndị sitere na CDN ghara ịdị

Ndị nyocha sitere na Mahadum Hamburg na Cologne
mepụtara Usoro mbuso agha ọhụrụ na netwọk nnyefe ọdịnaya yana proxies caching - CPDoS (Agọnarị ọrụ-nsi nke cache). Mwakpo a na-enye ohere ịnweta ibe ka ajụ site na nsị cache.

Nsogbu a bụ n'ihi na cache CDN abụghị naanị arịrịọ emechara nke ọma, kamakwa ọnọdụ mgbe ihe nkesa http weghachiri njehie. Dị ka a na-achị, ọ bụrụ na enwere nsogbu na ịrịọ arịrịọ, ihe nkesa ahụ na-enye njehie 400 (Arịrịọ ọjọọ); naanị ihe dị iche bụ IIS, nke na-enye njehie 404 (Achọghị) maka ndị isi isi. Ọkọlọtọ ahụ na-enye ohere ka echekwa njehie na koodu 404 (Achọtaghị), 405 (Usoro anabataghị), 410 (Gaa) na 501 (anaghị eme ya), mana ụfọdụ CDN na-echekwa nzaghachi na koodu 400 (Arịrịọ ọjọọ), nke dabere. na arịrịọ zitere.

Ndị mwakpo nwere ike ime ka akụrụngwa izizi weghachi njehie “Arịrịọ ọjọọ 400” site na izipu arịrịọ na ndị nkụnye eji isi mee HTTP ahazi n'ụzọ ụfọdụ. CDN anaghị eburu n'uche isi ihe ndị a, yabụ a ga-echekwa ozi gbasara enweghị ike ịnweta ibe ahụ, yana arịrịọ ndị ọrụ ndị ọzọ niile bara uru tupu oge agwụla nwere ike bute mperi, n'agbanyeghị na saịtị izizi na-enye ọdịnaya ahụ. enweghị nsogbu ọ bụla.

Atụpụtala nhọrọ mbuso agha atọ ịmanye sava HTTP iweghachi mperi:

  • HMO (HTTP Method Override) - onye na-awakpo nwere ike ịkagbu usoro arịrịọ mbụ site na "X-HTTP-Method-override", "X-HTTP-Method" ma ọ bụ "X-Method-override" nkụnye eji isi mee, nke ụfọdụ sava na-akwado, mana ejighị ya na CDN. Dịka ọmụmaatụ, ị nwere ike ịgbanwe usoro "GET" mbụ na usoro "ehichapụ", nke amachibidoro na ihe nkesa, ma ọ bụ usoro "POST", nke na-adịghị adabara maka statics;

    Mwakpo CPDoS iji mee ka ibe ndị sitere na CDN ghara ịdị

  • HHO (HTTP Header Oversize) - onye na-awakpo nwere ike họrọ nha nkụnye eji isi mee ka ọ gafere oke nke ihe nkesa isi mmalite, mana ọ gaghị adaba na mmachi CDN. Dịka ọmụmaatụ, Apache httpd na-amachi nha nkụnye eji isi mee ka ọ bụrụ 8 KB, yana Amazon Cloudfront CDN na-enye ohere isi ihe ruru 20 KB;
    Mwakpo CPDoS iji mee ka ibe ndị sitere na CDN ghara ịdị

  • HMC (HTTP Meta Character) - onye na-awakpo nwere ike itinye mkpụrụedemede pụrụ iche n'ime arịrịọ (\n, \ r, \a), nke a na-ewere na adịghị mma na ihe nkesa isi mmalite, mana a na-eleghara ya anya na CDN.

    Mwakpo CPDoS iji mee ka ibe ndị sitere na CDN ghara ịdị

Nke kachasị nwee ike ịwakpo bụ CloudFront CDN nke Amazon Web Services (AWS) ji mee ihe. Amazon edozila nsogbu ahụ ugbu a site n'ịkwụsị nkwụsịtụ njehie, mana ọ na-ewe ndị nchọpụta ihe karịrị ọnwa atọ iji gbakwunye nchebe. Okwu a metụtara Cloudflare, Varnish, Akamai, CDN77 na
Ngwa ngwa, mana mbuso agha sitere na ha bụ naanị na sava ndị na-eji IIS, ASP.NET, karama и Kpọọ 1. Achọpụtara ya, na 11% nke ngalaba Ngalaba Nchebe US, 16% URL sitere na nchekwa data HTTP Archive na ihe dịka 30% nke saịtị 500 kachasị dị ka ogo Alexa nwere ike ịbụ onye a ga-awakpo.

Dị ka ihe mgbakwasị ụkwụ iji gbochie mbuso agha n'akụkụ saịtị, ị nwere ike iji nkụnye eji isi mee "Cache-Control: no-store", nke na-amachibido caching nzaghachi. N'ụfọdụ CDN, dịka ọmụmaatụ.
CloudFront na Akamai, ị nwere ike gbanyụọ caching njehie na ọkwa ntọala profaịlụ. Maka nchekwa, ị nwekwara ike iji firewalls ngwa weebụ (WAF, Web Application Firewall), mana a ga-etinyerịrị ha n'akụkụ CDN n'ihu ndị na-echekwa caching.

isi: opennet.ru

Tinye a comment