Today I found that a website in my hand was maliciously reversed by someone else. The domain name was directly reversed, not IP+port
After blocking his IP in iptables, he still can access it.
After searching on Baidu for a long time, I found that there is very little relevant information, and JS is not applicable. I found that he removed all JS after the reversion. Is it a second reversion?
Ask God for help.
Environment centos+nginx+apache
曾经蜡笔没有小新2017-05-16 17:04:23
You can still access it after blocking the IP address, maybe it’s cached
Generally, the content can be replaced by reverse generation of the page, and there is no big problem after modification
You find one B and one IP, and it will probably disappear soon