´Ù¸¥ »çÀÌÆ®¿¡¼ÀÇ Á÷Á¢ ¸µÅ©¸¦ Â÷´ÜÇÑ´Ù.
http://û¿Í´ëȨÇÇ/upload/¾ß½Ã½Ã.mpg
http://û¿Í´ëȨÇÇ/upload/¾ß½Ã½Ã.html
ÀÌ·±°Å.
ÇØÅ·À» Â÷´ÜÇÑ´Ù.
http://û¿Í´ëȨÇÇ/upload/ÇØÅ·.exe
http://û¿Í´ëȨÇÇ/upload/ÇØÅ·.asp
http://û¿Í´ëȨÇÇ/upload/ÇØÅ·.php
ÀÌ·±°Å. ¾Æ·¡¿¡ ó¸® ¹æ¹ýÀ» Àû´Â´Ù.
1. ¾ÆÆÄÄ¡ ¼¼ÆÃ
a. µð·ºÅ丮 µî·Ï
# vi httpd.conf
......
<Directory "/home/test/public_html/upload">
RewriteEngine On
AllowOverride all
</Directory>
......
b. .htaccess ÆÄÀÏ ¼¼ÆÃ
[/home/test/public_html/upload]# vi .htaccess
RewriteEngine on
RewriteCond %{SCRIPT_FILENAME} \.(php|jsp|html?|asp|exe|bat)$ [NC,OR]
RewriteCond %{HTTP_REFERER} !^http://(
www.)?test.co.kr(/)?.*$ [NC]
RewriteRule \..*$ / [F,NC]
c. ¾ÆÆÄÄ¡ Àç°¡µ¿
cf) mod_rewrite °¡ ¼³Ä¡ ¾ÊµÈ °æ¿ì´Â °Ë»öÀ¸·Î ÇØ°áÇÑ´Ù.
cf) ¸ðµç ÈÀÏ¿¡ ´ëÇØ Á÷Á¢¸µÅ©¸¦ ¸·Áö ¾Ê°í µ¿¿µ»ó¸¸ ¸·À¸·Á ÇÑ´Ù¸é ¾Æ·¡¿Í °°ÀÌ ÇÑ´Ù.
old: RewriteRule \..*$ / [F,NC]
new: RewriteRule \.(mpe?g|avi|asf|php|jsp|html?|asp|exe|bat)$ / [F,NC]
2. IIS ¼¼ÆÃ
a.
http://www.codeplex.com/IIRF/Release/ProjectReleases.aspx?ReleaseId=13940 ¿¡¼ ÇÊ¿äÇÑ ÆÄÀÏÀ» ´Ù¿î¹Þ´Â´Ù.
b. C:\WINDOWS\system32\inetsrv µð·ºÅ丮¿¡ IsapiRewrite4.dll ¸¦ º¹»çÇÑ´Ù.
c. C:\WINDOWS\system32\inetsrv\IsapiRewrite4.ini ¸¦ »ý¼ºÇÏ°í ´ÙÀ½ ³»¿ëÀ» Ãß°¡ÇÑ´Ù.
RewriteCond %{HTTP_HOST} ^(www\.)?test\.co\.kr(/)?.*$ [I]
RewriteRule ^/upload/.*\.(asp|jsp|php|html?|exe|bat)$ /forbidden.html [I,U,L]
c. IonicIsapiRewriter ¸¦ ISAPI ¿¡ Ãß°¡ÇÑ´Ù.
d. IIS ¸¦ Àç°¡µ¿ÇÑ´Ù.
cf) Á÷Á¢ ¸µÅ© Â÷´Ü¹æ¹ýÀº ãÁö ¸øÇß´Ù.
cf) º¸´Ù ¸¹Àº ½ÇÇàÈÀÏ È®ÀåÀÚ¿Í µ¿¿µ»ó È®ÀåÀÚ°¡ ÀÖÁö¸¸ ±×ºÎºÐ¿¡ ´ëÇÑ º¸ÃæÀº °¢ÀÚ.