nginx 里有好多head请求日志,为什么会出现这种情况呢

redword 2016-02-20 09:18:40

如题,这是服务器自己请求的,还是外部请求的,有可能是恶意的吗?

10.159.43.243 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.36 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.53 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.47.3 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.17.2 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.14.1 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.2 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.117 - - [20/Feb/2016:04:19:57 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.15.12 - - [20/Feb/2016:04:19:58 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.22.5 - - [20/Feb/2016:04:19:58 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.20.4 - - [20/Feb/2016:04:19:58 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.21.5 - - [20/Feb/2016:04:19:59 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.108 - - [20/Feb/2016:04:19:59 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.19.1 - - [20/Feb/2016:04:20:00 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.51.133 - - [20/Feb/2016:04:20:00 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.18.9 - - [20/Feb/2016:04:20:00 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.43.243 - - [20/Feb/2016:04:20:00 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.46 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.60 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.14.10 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.12 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.17.9 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.47.86 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.120 - - [20/Feb/2016:04:20:01 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.15.10 - - [20/Feb/2016:04:20:02 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.22.4 - - [20/Feb/2016:04:20:02 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.20.4 - - [20/Feb/2016:04:20:02 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.21.0 - - [20/Feb/2016:04:20:02 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.96 - - [20/Feb/2016:04:20:02 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.19.5 - - [20/Feb/2016:04:20:03 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.51.129 - - [20/Feb/2016:04:20:03 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.158.18.2 - - [20/Feb/2016:04:20:03 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.43.174 - - [20/Feb/2016:04:20:04 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
10.159.63.36 - - [20/Feb/2016:04:20:04 +0800] "HEAD / HTTP/1.0" 200 0 "-" "-"
...全文
3010 4 打赏 收藏 转发到动态 举报
写回复
用AI写文章
4 条回复
切换为时间正序
请发表友善的回复…
发表回复
redword 2019-10-16
  • 打赏
  • 举报
 回复
引用 3 楼 befly616 的回复:
兄弟,已经找到原因了吗 怎么像被攻击,是云上主机吗
不是攻击,是阿里云 赠送的 安全服务,是在他们的ip段内的
befly616 2019-08-23
  • 打赏
  • 举报
 回复
兄弟,已经找到原因了吗 怎么像被攻击,是云上主机吗
人类观察所主任 2017-05-09
  • 打赏
  • 举报
 回复
应该是内网的健康监测工具一类的吧
xuzuning 2016-02-20
  • 打赏
  • 举报
 回复
HEAD 方法是要求返回和 GET 方法一致的 HTTP 响应头(不要数据体) php 函数 get_headers 函数就是这样 日志中第一列是来源 ip 而 10.*.*.* 是内网地址 显然是你系统内部的请求
Nginx不记录HEAD日志的方法
放在某云上的服务器,由于使用了负载均衡,负载均衡每秒都数十次HEAD请求来判断服务是否活着,导致nginx日志每天都上G,一不小心磁盘就满了,还严重影响服务器性能。如何不入写HEAD请求日志呢?网上找了找,大部分都是引入第三方插件来实现,我嫌麻烦,没用。本文介绍一种使用NGINX自己的语法来解决此问题。下面先给出解决方法:将下面代码放到location面:if ($request_metho...
Nginx】访问日志有大量的 HEAD 方法请求
查看日志 sudo cat /var/log/nginx/access.log | grep HEAD server{ if ($request_method ~ ^(HEAD)$ ) { return 200 "All OK"; } } 或者 将恶意访问的ip设定为禁止访问
nginx几点总结
nginx屏蔽head请求 nginx head请求过多导致疯狂写日志 nginx禁用head请求日志 得写到location if ($request_method ~* OPTIONS|HEAD) { access_log off; } 或者 map $request_method $m { OPTIONS 0; HEAD 0; default 1; } server{ access_log /usr/local/nginx/logs/admin_acce.
nginx日志分别过滤出GET和POST请求,以及每个请求的使用情况
首先先停止摸鱼 然后放上nginx日志的格式: 注:看需求,先分别过滤出GET和POST请求(因为命令是重复的,只有关键词不一样,文件名称,所以就关于POST的部分就不打出来了) 1.这使用sort -u去重,相同时间的相同访问视为无效请求 grep "GET" access.log-20210701 |sort -u > get_0701.txt 2.$7对应的是参数部分,将该请求以及请求次数给计算出来存到临时文件bb.txt(没什么含义,随便打的) awk '{a[$7]++}END{for
nginx那点事儿——nginx日志详解
nginx日志前言一、日志配置、格式二、日志格式包含的变量三、日志缓存1、缓存设置2、作用位置四、日志切割1、切割配置文件2、日志切割原理五、日志分析 前言 Nginx有非常灵活的日志记录模式。每个级别的配置可以有各自独立的访问日志。每个虚拟主机也可以设置独立的访问日志。本文就主要介绍nginx日志的配置、切割及简单的日志分析。 一、日志配置、格式 日志格式通过配置文件 log_format 定义。 默认格式: log_format main '$remote_addr - remote_user
Framework

4,251

社区成员

4,524

社区内容

发帖
与我相关
我的任务
社区描述
国内外优秀PHP框架讨论学习
社区管理员
  • Framework
加入社区
  • 近7日
  • 近30日
  • 至今

加载中

查看更多榜单
社区公告
暂无公告

试试用AI创作助手写篇文章吧

+ 用AI写文章