{"id":372,"date":"2013-08-03T20:19:20","date_gmt":"2013-08-03T12:19:20","guid":{"rendered":"http:\/\/coderbee.net\/?p=372"},"modified":"2013-12-31T21:26:05","modified_gmt":"2013-12-31T13:26:05","slug":"%e5%8d%9a%e5%ae%a2%e7%bb%b4%e6%8a%a4%e8%84%9a%e6%9c%ac","status":"publish","type":"post","link":"https:\/\/coderbee.net\/index.php\/notes\/20130803\/372","title":{"rendered":"\u535a\u5ba2\u7ef4\u62a4\u811a\u672c"},"content":{"rendered":"

\u6211\u535a\u5ba2\u7ef4\u62a4\u811a\u672c\u7684\u529f\u80fd\u4e3b\u8981\uff1a\u542f\u52a8\u3001\u505c\u6b62\u535a\u5ba2\uff08MySQL\u3001PHP-FPM\u3001Nginx\uff09\uff0c\u6570\u636e\u5e93\u6570\u636e\u548c\u8bbf\u95ee\u65e5\u5fd7\u6253\u5305\u5907\u4efd\u3001Wordpress\u7684\u6587\u4ef6\u6253\u5305\u5907\u4efd\u3001\u628a\u6076\u610f\u626b\u63cf\u7684IP\u52a0\u5165\u9632\u706b\u5899\u9ed1\u540d\u5355\u3001\u8fc7\u6ee4\u51fa\u4eba\u7c7b\u8bbf\u95ee\u7684\u8bb0\u5f55\u3002<\/p>\n

\u6211\u7684VPS\u7684\u7cfb\u7edf\u662fUbuntu 12.04\u3002
\n<\/p>\n

\u542f\u52a8\u3001\u505c\u6b62\u535a\u5ba2\u811a\u672c<\/h2>\n

startBlog.sh\uff0c\u8fd9\u4e2a\u811a\u672c\u8fd8\u52a0\u5230\u5f00\u673a\u542f\u52a8\u811a\u672c\u91cc\uff0c\u4e07\u4e00VPS\u91cd\u542f\u4e86\u4e5f\u4f1a\u81ea\u52a8\u542f\u52a8\u535a\u5ba2\u3002<\/p>\n

\nlog=\/home\/coderbee\/blog\/startBlogLog.log\ndate >> $log\n\/usr\/share\/mysql\/bin\/mysql.server start && {\n        \/usr\/share\/php5\/sbin\/php-fpm && {\n                \/usr\/share\/nginx\/sbin\/nginx && echo \"start blog ok\" >> $log ||\n                echo \"start nginx failed \" >> $log ;\n        };\n} || { echo \"start mysql failed .\"  >> $log ; }\n<\/pre>\n
shutDownBlog.sh\uff0c\u8fd9\u4e2a\u811a\u672c\u4e3b\u8981\u662f\u5728\u521a\u5f00\u59cb\u642d\u5efa\u535a\u5ba2\u65f6\u7528\uff0c\u73b0\u5728\u57fa\u672c\u4e0d\u7528\u3002<\/p>\n
\n\/usr\/share\/mysql\/bin\/mysql.server stop 2>&1 >\/dev\/null\nkill -quit `cat \/usr\/share\/php5\/var\/run\/php-fpm.pid` 2>&1 >\/dev\/null\n\/usr\/share\/nginx\/sbin\/nginx -s stop 2>&1 >\/dev\/null\n<\/pre>\n
\u6570\u636e\u5e93\u6570\u636e\u548c\u8bbf\u95ee\u65e5\u5fd7\u6253\u5305\u5907\u4efd<\/h2>\n
cronday.sh\uff0c\u8fd9\u4e2a\u811a\u672c\u6bcf\u5929\u51cc\u6668\u8c03\u5ea6\u6267\u884c\u3002<\/p>\n
\nexport JAVA_HOME='\/usr\/share\/jdk1.7.0_21'\nexport PATH=$PATH:$JAVA_HOME\/bin\n\nblog=\/home\/coderbee\/blog\/\nbakDir=${blog}dataBak\n#  \u7528mysqldump\u547d\u4ee4\u628a\u535a\u5ba2\u7684\u6570\u636e\u5e93\u5bfc\u51fa\u6765\uff0c\u7136\u540e\u7528vpsBack.jar\u4e0a\u4f20\u7684Dropbox\uff0cvpsBack.jar\u662f\u7528Dropbox\u7684API\u5199\u7684\u4e00\u4e2a\u5c0f\u5de5\u5177\uff0c\u53ea\u6709\u7b80\u5355\u7684\u4e0a\u4f20\u529f\u80fd\u3002\n\/usr\/share\/mysql\/bin\/mysqldump -u wpblog -p'password' blog > ${bakDir}\/blog-bak.sql.tmp 2>\/dev\/null &&\n mv ${bakDir}\/blog-bak.sql.tmp ${bakDir}\/blog-bak.sql  &&\n java -jar ${blog}vpsBack.jar upload vpsBak4coderbee\/db\/`date -d\"yesterday\" +\"%Y%m%d\"`\/ ${bakDir}\/blog-bak.sql &&\n echo \"backup sql to dropbox ok .\"\n\n\n#  \u4e00\u4e2a\u6708\u7684\u8bbf\u95ee\u65e5\u5fd7\u653e\u5728\u4ee5\u6708\u4efd\u547d\u540d\u7684\u6587\u4ef6\u5939\u4e0b\uff0c\u540c\u4e00\u5e74\u7684\u6708\u4efd\u7684\u6587\u4ef6\u5939\u653e\u5728\u4ee5\u5e74\u547d\u540d\u7684\u6587\u4ef6\u5939\u4e0b\u3002\nmonDir=${bakDir}\/weblog\/$(date -d\"yesterday\" +\"%Y\")\/$(date -d\"yesterday\" +\"%m\")\ndayPath=$(date -d\"yesterday\" +\"%d\").log\n[ -d \"${monDir}\" ] || mkdir -p ${monDir}\n\n\nlogDir=\/usr\/share\/nginx\/logs\n\n#  nginx\u65e5\u5fd7\u62f7\u8d1d\u3001\u6e05\u7406\u3001\u5207\u6362\ncd $logDir && cp access.log ${dayPath} && :> access.log &&\n#  \u901a\u77e5nginx\u91cd\u65b0\u6253\u5f00\u65e5\u5fd7\u6587\u4ef6\nkill -USR1  `cat \/usr\/share\/nginx\/logs\/nginx.pid` &&\n\n\n#  \u6253\u5305\u8bbf\u95ee\u65e5\u5fd7\ntar -czf \"${dayPath}.tar.gz\" \"${dayPath}\" &&\n\n#  \u5907\u4efd\u8bbf\u95ee\u65e5\u5fd7\nrm -f ${dayPath} && mv -f \"${dayPath}.tar.gz\" ${monDir} &&\nchown -R coderbee:appgroup ${bakDir} && echo \"backup web log down\"\n<\/pre>\n
WordPress\u7684\u6587\u4ef6\u6253\u5305\u5907\u4efd<\/h2>\n
cronweek.sh\uff0c\u8fd9\u4e2a\u811a\u672c\u4f1a\u6253\u5305Wordpress\u7684\u6587\u4ef6\uff0c\u5e76\u4e0a\u4f20\u5230Dropbox\u3002\u56e0\u4e3a\u5199\u535a\u5ba2\u4e0a\u4f20\u7684\u591a\u5a92\u4f53\u548cWordpress\u63d2\u4ef6\u4e00\u822c\u4f1a\u653e\u5728\u8fd9\u4e2a\u76ee\u5f55\u4e0b\uff0c\u6240\u4ee5\u6bcf\u5468\u5907\u4efd\u4e00\u6b21\u3002<\/p>\n
\ncd \/var\/www\/\n\nexport JAVA_HOME=\"\/usr\/share\/jdk1.7.0_21\"\nexport PATH=$PATH:$JAVA_HOME\/bin\n\nfname=\"web-`date +\"%Y%m%d\" -d\"yesterday\"`.gz\"\ntar czf $fname wordpress\/ && \n java -jar \/home\/coderbee\/blog\/vpsBack.jar upload vpsBak4coderbee\/web\/ $fname &&\n rm $fname && echo \"backup web done .\"\n<\/pre>\n
\u8fc7\u6ee4\u51fa\u4eba\u7c7b\u8bbf\u95ee\u7684\u8bb0\u5f55<\/h2>\n
\u5148\u8bf4\u4e0b\u6211\u7684nginx\u7684\u65e5\u5fd7\u8bb0\u5f55\u683c\u5f0f\uff1a
\n'$remote_addr - $remote_user [$time_local] \"$request\" '   '$status $body_bytes_sent \"$http_referer\" '   '\"$http_user_agent\" \"$http_x_forwarded_for\"';<\/code><\/p>\n
\u6bd4\u5982\u8fd9\u662f\u4e00\u6761\uff1a
\n122.194.20.145 - - [03\/Aug\/2013:18:13:49 +0800] \"GET \/index.php\/algorithm\/20130801\/343 HTTP\/1.1\" 200 10575 \"http:\/\/news.dbanotes.net\/newest\" \"Mozilla\/5.0 (iPad; CPU OS 6_0_2 like Mac OS X) AppleWebKit\/536.26 (KHTML, like Gecko) Version\/6.0 Mobile\/10A550 Safari\/8536.25\" \"-\"<\/code><\/p>\n
\u8fd9\u4e2a\u53ea\u662f\u5f88\u7b80\u5355\u7684\u65e5\u5fd7\u5904\u7406\u811a\u672c\uff0c\u53ea\u5904\u7406\u4eca\u5929\u7684\u535a\u5ba2\u6587\u7ae0\u548c\u9996\u9875\u7684\u8bbf\u95ee\u65e5\u5fd7\uff0c\u6839\u636eUser-Agent\u8fc7\u6ee4\u3002<\/p>\n
\nlog=\"\/usr\/share\/nginx\/logs\/access.log\"\n\nawk -F\"\\\"\" '$2 ~ \/(GET \\\/ HTTP.*)|(\\\/index.php\\\/[a-zA-Z]*\\\/[0-9]+\\\/[0-9]+ .*)|(\\\/html5\\\/[a-zA-Z0-9]+.html .*)\/ && $6 !~\/(http:\\\/\\\/|Java|robot|.com|Wget|PHP|Reeder|Spider|(^-$)|ips-agent|@)\/ {print $0}' $log\n<\/pre>\n
\u8fd8\u6709\u6309refer\u7edf\u8ba1\uff1a
\n. humanVisit.sh  | awk -F\"\\\"\" '{print $2, $4}' | cut -d\" \" -f2,4 | sort -k 1 | uniq -c<\/code><\/p>\n
\u8bbf\u95ee\u6700\u591a\u7684url\uff1a
\n. humanVisit.sh  | awk -F\"\\\"\" '{print $2}' | cut -d\" \" -f2 | sort | uniq -c<\/code><\/p>\n
\u628a\u6076\u610f\u626b\u63cf\u7684IP\u52a0\u5165\u9632\u706b\u5899\u9ed1\u540d\u5355<\/h2>\n
\u8fd9\u4e2a\u811a\u672c\u662f\u6700\u8fd1\u6dfb\u52a0\u7684\uff0c\u4e3b\u8981\u662f\u628a\u90a3\u4e9b\u8bbf\u95ee\u65e5\u5fd7\u91cc4xx\u72b6\u6001\u3001\u8bbf\u95ee\u7684URL\u770b\u8d77\u6765\u662f\u6076\u610f\u7684IP\u52a0\u5165\u9632\u706b\u5899\u8fc7\u6ee4\u6389\u3002\u7531cron\u6ca1\u5c0f\u65f6\u8c03\u5ea6\u6267\u884c\u4e00\u6b21\u3002<\/p>\n
ipfilter.sh<\/p>\n
\ncd \/home\/coderbee\/blog\/\nsortIps=sortIpx\n\n#  \u8fc7\u6ee4\u51fa\u8bbf\u95ee\u65e5\u5fd7\u91cc4xx\u72b6\u6001\u3001\u8bbf\u95ee\u7684URL\u91cc\u5305\u542b admin|Admin|scripts\u4e14\u4ee5php\u540e\u7f00\u7ed3\u5c3e\u7684IP\nawk -F'\"' '$3~\/4.. [0-9]+\/ && $2 ~ \/GET \\\/.*(admin|Admin|scripts).+(index|setup)\\.php\/ {print $0}' \/usr\/share\/nginx\/logs\/access.log | awk '{print $1}' >> evilIP\n\nsort evilIP | uniq > evilIP.tmp && mv evilIP{.tmp,}\n\niptables -F INPUT\n\n#  \u628a\u6574\u4e2aIP\/24\u6bb5\u52a0\u5165\u9ed1\u540d\u5355\ncut -d. -f1-3 ips evilIP | sort | uniq > $sortIps\nfor i in $sortIps\ndo\n    while read line\n    do\n        if [[ ! -z $line ]]; then\n           ip=$line\/24\n           iptables -t filter -I INPUT -s $ip -j DROP\n        fi\n    done < $i\ndone\n\nrm $sortIps\n<\/pre>\n
cron\u8c03\u5ea6<\/h2>\n
\n1  0  *   *  * \/home\/coderbee\/blog\/cronday.sh 2>&1 >> \/home\/coderbee\/blog\/cronlog\n1  4  *   *  1 \/home\/coderbee\/blog\/cronweek.sh 2>&1 >> \/home\/coderbee\/blog\/cronlog\n1  *  *   *  * \/home\/coderbee\/blog\/ipfilter.sh 2>&1 >> \/home\/coderbee\/blog\/ipfilterlog\n<\/pre>\n
\u5c0f\u7ed3<\/h2>\n
\u8fd9\u91cc\u5e76\u6ca1\u6709\u590d\u6742\u9ad8\u6df1\u7684\u4e1c\u897f\uff0c\u57fa\u672c\u90fd\u662f AWK\u5904\u7406\u6587\u672c\u3001sort\u6392\u5e8f\u3001uniq\u53bb\u91cd\u3001cut\u7b5b\u9009\u5b57\u6bb5\u3001tar\u8fdb\u884c\u6253\u5305\u538b\u7f29\u3001\u7528cron\u5b9a\u65f6\u8c03\u5ea6\uff0c\u8fd8\u7528\u4e86shell\u7684\u547d\u4ee4\u6761\u4ef6\u6267\u884c\u3001\u547d\u4ee4\u7ec4\u5408\u3001\u91cd\u5b9a\u5411\u7b49\u3002<\/p>\n
\u8fd9\u4e5f\u4f53\u73b0\u8fd9Linux\u7cfb\u7edf\u5f3a\u5927\u4e4b\u4e00\uff1a\u63d0\u4f9b\u5927\u91cf\u7b80\u5355\u7684\u57fa\u672c\u547d\u4ee4\uff0c\u7528shell\u628a\u8fd9\u4e9b\u547d\u4ee4\u7c98\u5408\u8d77\u6765\u5c31\u53ef\u4ee5\u5b9e\u73b0\u66f4\u590d\u6742\u3001\u5f3a\u5927\u7684\u529f\u80fd\u3002<\/p>\n
\u6211\u4e5f\u4f1a\u7ee7\u7eed\u63a2\u7d22Linux shell\u7684\u66f4\u591a\u73a9\u6cd5\uff0c\u5c3d\u53ef\u80fd\u8ba9\u624b\u5de5\u64cd\u4f5c\u8f6c\u4e3a\u81ea\u52a8\u5316\u7684\u3002<\/p>\n
\u8981Linux\u4e0b\u7f16\u8f91shell\uff0c\u9996\u5148\u8981\u638c\u63e1\u4e00\u4e2a\u547d\u4ee4\u884c\u4e0b\u7684\u6587\u672c\u7f16\u8f91\u5668\uff0c\u4e00\u822c\u5c31\u662fVi\u4e86\uff0c\u6211\u4e4b\u524d\u662f\u6309\u7167 \u9177\u58f3\u7684\u8fd9\u7bc7\u6587\u7ae0 \u300a\u7b80\u660e Vim \u7ec3\u7ea7\u653b\u7565\u300b http:\/\/coolshell.cn\/articles\/5426.html<\/a>\uff0c\u7ec3\u4e86\u4e24\u4e2a\u661f\u671f\u624d\u57fa\u672c\u4e0a\u4e0a\u624b\u3002<\/p>\n
\u5173\u4e8e\u535a\u5ba2\u642d\u5efa\u8fc7\u7a0b\u53ef\u89c1\uff1a http:\/\/coderbee.net\/index.php\/notes\/20130620\/254<\/a><\/p>\n
\u540e\u7eed<\/h2>\n
20130810\uff1a\u524d\u9762\u7684\u65e5\u5fd7\u7edf\u8ba1\u811a\u672c .humanVisit<\/code> \u4ecd\u7136\u9700\u8981\u5176\u4ed6\u547d\u4ee4\u6765\u5904\u7406\uff0c\u521a\u624d\u628aawk\u5b9e\u73b0\u4e86\u90a3\u4e9b\u529f\u80fd\uff0c\u5c31\u7b80\u5355\u591a\u4e86\uff1a<\/p>\n
\n#!\/bin\/bash\n\nlog=\"\/usr\/local\/nginx\/logs\/access.log\"\n\nawk -F\"\\\"\" '$2 ~ \/(GET \\\/ HTTP.*)|(\\\/index.php\\\/[a-zA-Z]*\\\/[0-9]+\\\/[0-9]+ .*)|(\\\/html5\\\/[a-zA-Z0-9]+.html .*)\/ && $6 !~\n\/(http:\\\/\\\/|Java|robot|.com|Wget|PHP|Reeder|Spider|(^-$)|ips-agent|@|Python|bot|NING)\/ {\n    if ( $4 ~ \/http[s]*:\\\/\\\/\/ ){\n        if ( $4 ~ \/http:\\\/\\\/\/ ){\n                refer=substr($4, 8)\n        } else {\n                refer=substr($4, 9)\n        }\n        refer=substr($4, 8)\n        refer=substr(refer, 1, index(refer, \"\/\") - 1)\n        refers[refer]++\n    } else {\n        refers[$4]++\n    }\n\n    paper=substr($2, 5)\n    paper=substr(paper, 1, index(paper, \" \")-1)\n    papers[paper]++\n}\n\nfunction printStatistic(msg, arr) {\n    sum=0\n    printf (\"%s\\n\", msg)\n    for (i in arr) {\n        sum+=arr[i]\n        printf(\"%6d   %s\\n\", arr[i], i) | \"sort\"\n    }\n    close(\"sort\")\n    printf (\"total count: %d\\n\", sum)\n}\n\nEND {\n    printStatistic(\"visit refers:\", refers)\n    print \"\"\n    printStatistic(\"visit papers:\", papers)\n}\n' $log\n<\/pre>\n
\u7528\u5230\u4e86AWK\u7684\u4e0d\u5c11\u4e1c\u897f\uff0c\u6548\u679c\u4e0d\u9519\u3002<\/p>\n\n
\u6b22\u8fce\u5173\u6ce8\u6211\u7684\u5fae\u4fe1\u516c\u4f17\u53f7: coderbee\u7b14\u8bb0<\/strong>\uff0c\u53ef\u4ee5\u66f4\u53ca\u65f6\u56de\u590d\u4f60\u7684\u8ba8\u8bba\u3002<\/p>\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
\u6211\u535a\u5ba2\u7ef4\u62a4\u811a\u672c\u7684\u529f\u80fd\u4e3b\u8981\uff1a\u542f\u52a8\u3001\u505c\u6b62\u535a\u5ba2\uff08MySQL\u3001PHP-FPM\u3001Nginx … \u7ee7\u7eed\u9605\u8bfb →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[59],"tags":[29,73],"_links":{"self":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/372"}],"collection":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/comments?post=372"}],"version-history":[{"count":9,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/372\/revisions"}],"predecessor-version":[{"id":688,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/posts\/372\/revisions\/688"}],"wp:attachment":[{"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/media?parent=372"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/categories?post=372"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coderbee.net\/index.php\/wp-json\/wp\/v2\/tags?post=372"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}