Home > Others

Configure the Nginx server's anti-theft chain function through LUA _nginx

Source: Internet
Author: User
Tags lua md5 nginx server
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The download server is often hotlinking, and the time has long caused the server to waste a lot of resources, because the server uses Nginx as a Web server. Nginx anti-theft Chain Method There are many, can use off-the-shelf anti-theft chain module nginx-accesskey-2.0.3, compile ningx Add this module can.
Because of the other business needs of the service, Nginx compiles the LUA module, so I want to implement the Anti-Theft chain feature of the download server via LUA (through LUA's Nginx module Lua_nginx_module, where the configuration process is no longer detailed), This eliminates the accesskey module. The principle is to generate a processed download link, and then download the server processing this download link, the success of the download, failure is blocked. The following are detailed configuration examples:
Nginx configuration of the link generated on the download page
Download.jb51.net configuration:

Server  
{  
    listen    ;  
    server_name download.jb51.net;  
    Index index.htm index.html;  
    Root/data/www/download;  
    SSI on;  
 
    Location/  
    {  
        Set_by_lua $downkey ' return  
            ngx.md5 ("Encryption" ... ngx.var.remote_addr. "suffix")  
        ';  
    }  
}

Note: To open SSI to get nginx custom variable Downkey in an HTML page, you can generate a processed URL in which the strings encryption and suffix are custom and can be arbitrarily changed to other characters, in order to generate a string that is not easily guessed by others.
To test index.html code:
Second, download server Nginx configuration:

Server  
{  
    listen    ;  
    server_name down.jb51.net;  
    Index index.htm index.html;  
    Root/data/www/down;  
    Limit_conn one  1;  
    Set $limit _rate 1000k;  
 
  Location/  
    {  
        Set_by_lua $foo '  
            if String.sub (Ngx.var.uri, 2,) = = NGX.MD5 ("Encryption"). Ngx.var.remote_addr.. "suffix") then return  
                1 
            else return 
                0 
            end  
        ';  
 
        if ($foo = 1)  
        {  
            rewrite "^/([0-9a-z]{32}) (. *?) $ "$ break    ;  
        }  
        " if ($foo = 0)  
        {  
            rewrite ^/http://download.jb51.net/404.htm redirect;  
        }  
    }  
}

When you copy the link to another machine, you will open the prompt error page.


This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
nginx configure options lua function example configure nginx as reverse proxy lojack anti theft walmart anti theft devices norton mobile anti theft avast anti theft

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More