Home > Developer > PHP

How to prevent websites from being accessed by malicious reverse proxy (website Image protection) _ PHP Tutorial

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
How to prevent the website from being accessed by malicious reverse proxy (anti-website image ). What is reverse proxy? Let's talk about the concept of forward proxy first: Forward proxy, which is also the legendary proxy. his working principle is like a stepping stone. To put it simply, I am a user and I What is reverse proxy?

First, let's talk about the concept of forward proxy:

A forward proxy, the legendary proxy, works like a stepping stone. Simply put, I am a user and cannot access a website, but I can access a proxy server. This proxy server, he can access the website that I cannot access, so I first connected to the proxy server and told him that I needed the content that could not access the website and the proxy server went back, then return it to me. From the perspective of a website, a record is recorded only when the proxy server obtains the content. sometimes it does not know that it is a user's request or the user's information is hidden. this depends on the proxy not telling the website.

The conclusion is that the forward proxy is a server located between the client and the origin server. to get content from the origin server, the client sends a request to the proxy and specifies the target (the original server). then, the proxy transfers the request to the original server and returns the obtained content to the client. The client must make some special settings to use the forward proxy.

What is the concept of reverse proxy?

For example, the user visits the http://www.nowamagic.net/librarys/veda page, but www.nowamagic.net does not actually exist in this page, he is secretly from another server back, and then as their own content to the user.

However, users do not know, which is normal and generally stupid. The server corresponding to the domain name www.nowamagic.net mentioned here sets the reverse proxy function.

The conclusion is that reverse proxy is the opposite. for a client, it is like an original server, and the client does not need to perform any special settings. The client sends a common request to the content in the namespace (name-space) of the reverse proxy, and then the reverse proxy determines where (original server) to transfer the request, and return the obtained content to the client, just as the content is originally its own.

Dangers of malicious reverse proxy
What are the dangers of website malicious reverse proxy? Here is a list:

• The server resources will be occupied first, and the website opening speed will be affected.
• If someone else steals your website data through proxy, it is equivalent to building a site identical to yours for users and less intelligent search engines, it is very likely that your site will enter the search engine sandbox, or even be downgraded.
• If your webpage is maliciously represented and your Federated advertisement (such as Adsense) is mounted, it is very dangerous. if someone clicks the advertisement above, it is easily blocked by Adsense.
• There are still many dangers, so readers can make up their own brains ......

Js-level solutions

The code is as follows:


This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to prevent ddos attacks on websites how to prevent from ddosing how to design website from scratch tutorial how to prevent copying files from usb php reverse proxy how to develop website in php tutorial how to build php website from scratch

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More