需求:通常网站都希望自己的视频和图片不被盗用。毕竟视频流量是白花的(土豪们不用想)~~。1.直接进入,先进入nginx的配置文件server{listen80;server_namewww.test.com;root/data/web/;indexindex.phpindex.html;access_log/data/logs/nginx/biao.madacode.access.logmain;location/{root/home/data/;}error_page404/usr/local/nginx/html/404.html;location~.*\.(wma|wmv|asf|mp3|mp4|mmf|zip|rar|jpg|gif|png|swf|flv)${valid_referersnoneblockedserver_names*.test.comhttp://IP;if($invalid_referer){return403;}expires24h;access_logoff;}location~/\.{denyall;}}二、反leech核心配置文件说明位置~.*\.(wma|wmv|asf|mp3|mp4|mmf|zip|rar|jpg|gif|png|swf|flv)${valid_referersnoneblockedserver_names*.test.comhttp://IP;if($invalid_referer){return403;}expires24h;access_logoff;}vaild_referers有效的referral链接如下,否则输入$invald_refere,返回403forbidden。1.none"Referer"源头为空2.blocked"Referer"源头不为空,但是里面的值被代理或者防火墙删除了,而且这些值不以http://或者开头https://开头。3.server_names"Referer"源头包含当前server_names(当前域名)3.模拟案例测试添加--referer模拟引用,直接看结果403.证明以上配置OK[root@test]#curl--refererhttp://baidu.com-Ihttp://www.test.com/temp/T19254/20190820/video_out_out/1/0011.mp4HTTP/1.1403ForbiddenServer:TengineDate:Wed,21Aug201909:54:44GMTContent-Type:text/htmlContent-Length:639Connection:保持活动状态
