防SQL注入脚本
针对sql注入特征编写的sql防注入脚本visql.sh
#!/bin/bash
select_union(){
date=`date +%F\(%H:%M:%S\)`
keyword=`grep -E 'select' ./access.log | grep -E 'union' | awk '{print $1}'|sort | uniq`
for i in $keyword
do
grep '\' ip.list &>/dev/null ###白名单列表
if [ $? -eq 0 ]
then
continue
else
iptables -L -n | grep $i &>/dev/null
if [ $? -ne 0 ]
then
iptables -I INPUT -s $i -j DROP ###加入防火墙
echo "" >> /var/log/record.sh
echo "-------------------------" >> /var/log/record.sh
echo "--$date-$i-iptable_drop--" >> /var/log/record.sh###写日志
echo "-------------------------" >> /var/log/record.sh
echo "" >> /var/log/record.sh
fi
fi
done
}
while true
do
select_union
sleep 1s
done
后台执行就可以了
脚本不太适度
页:
[1]