Сегодня заметил на нескольких форумах наплыв ботов из китая от 100-300 одновременно, которые создают нагрузку на хостинг.
Все заходят с телефона Android и iphone Os.
Адреса ботов:
54.222.*.*
54.223.*.*
52.80.*.*
52.81.*.*
52.82.*.*
52.83.*.*
220.243.*.*
139.217.*.*
139.219.*.*
У кого наблюдается такое-же отпишитесь)
---------------------------
Варианты блокировки ботов:
Re: Атака китайских ботов - от Nekstati
Re: Атака китайских ботов - от Kuskow, php
Re: Атака китайских ботов - от Kuskow, nginx
Атака китайских ботов
Правила форума
Местная Конституция | Шаблон запроса | Документация (phpBB3) | Переход на 3.0.6 и выше | FAQ | Как задавать вопросы | Как устанавливать расширения
Ваш вопрос может быть удален без объяснения причин, если на него есть ответы по приведённым ссылкам (а вы рискуете получить предупреждение
).
Местная Конституция | Шаблон запроса | Документация (phpBB3) | Переход на 3.0.6 и выше | FAQ | Как задавать вопросы | Как устанавливать расширения
Ваш вопрос может быть удален без объяснения причин, если на него есть ответы по приведённым ссылкам (а вы рискуете получить предупреждение
-
hd321kbps
- phpBB 2.0.3
- Сообщения: 366
- Стаж: 14 лет 3 месяца
- Откуда: Россия, Крым, Армянск
- Благодарил (а): 191 раз
- Поблагодарили: 346 раз
Атака китайских ботов
Последний раз редактировалось Татьяна5 26.06.2026 0:40, всего редактировалось 1 раз.
Причина: Добавила варианты блокировки ботов
Причина: Добавила варианты блокировки ботов
-
Nekstati
- Поддержка

- Сообщения: 3363
- Стаж: 17 лет 3 месяца
- Благодарил (а): 19 раз
- Поблагодарили: 579 раз
Re: Атака китайских ботов
Такой вариант допустим лишь на краткое время - пережить атаку. Затем его нужно отключать. Хотя, если кому-то не важны пользователи, а важна лишь мин. нагрузка и макс. экономия, то можно и оставить.
И кстати, отсечение "вредных" ботов в ближайшем будущем приводит к тому, что наши сайты и наш контент отсутствует в памяти LLM, то есть в поисковой выдаче и ИИшных диалогах, то есть в реальности. Возможно, правильный способ решения проблемы - оптимизация сайта, кэширование, переход на более мощные серверы, а то, чем мы тут занимаемся - страусиная политика.Все писал(а):
-
Kuskow
- phpBB 2.0.4
- Сообщения: 442
- Стаж: 10 лет 1 месяц
- Откуда: 🇰🇿 Караганда
- Благодарил (а): 29 раз
- Поблагодарили: 44 раза
Re: Атака китайских ботов
Не, ну каков нахал! Вот на что тратятся ваши (наши) гигагерцы.
Отправлено спустя 1 час 42 минуты 7 секунд:
Код: Выделить всё
104.28.217.140 - - [04/Jul/2026:02:54:31 +0500] "GET / HTTP/2.0" 200 8701 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "HIT"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /env.js HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "-"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /config.js HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /firebase-config.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /api/config HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /wp-json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /env.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /settings.json HTTP/2.0" 403 20 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /__/firebase/init.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Google-Extended/1.0; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /config.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /api/v1/settings HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /rclone.conf HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:32 +0500] "GET /api/settings HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/v2/settings HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/v1/config HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /runtime-config.js HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /.well-known/jwks.json HTTP/2.0" 204 0 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/v2/config HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/account HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /manifest.webmanifest HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Google-Extended/1.0; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /openapi.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/openapi.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/health HTTP/2.0" 403 20 "-" "anthropic-ai" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/env HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; GPTBot/1.2; +https://openai.com/gptbot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /app-config.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /graphql HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@bytedance.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /service-worker.js HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "-"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /__env.js HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Google-Extended/1.0; +http://www.google.com/bot.html)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /sw.js HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Claude-Web/1.0; +https://www.anthropic.com)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /swagger.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /health HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /graphql/console HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /actuator HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /ngsw.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/v1/env HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /v1/graphql HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:33 +0500] "GET /api/graphql HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@bytedance.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /_ignition/health-check HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /app_dev.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /actuator/configprops HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /pi.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@bytedance.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /actuator/mappings HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /_profiler/open HTTP/2.0" 403 20 "-" "anthropic-ai" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /info.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /i.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (compatible; Claude-Web/1.0; +https://www.anthropic.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /app_dev.php/_profiler HTTP/2.0" 404 36 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /_profiler/latest HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Google-Extended/1.0; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /phpinfo.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@bytedance.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /test.php HTTP/2.0" 200 520 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /telescope/requests HTTP/2.0" 403 20 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /.aws/credentials HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /.git/config HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "-"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /.aws/config HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Claude-Web/1.0; +https://www.anthropic.com)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /.git/HEAD HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /trace.axd HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /server-status HTTP/2.0" 403 20 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /elmah.axd HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Google-Extended/1.0; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /nginx_status HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /_debugbar/open HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /__debug__/ HTTP/2.0" 404 3146 "-" "anthropic-ai" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:34 +0500] "GET /server-info HTTP/2.0" 403 20 "-" "anthropic-ai" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.local HTTP/2.0" 404 146 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /api/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.gitconfig HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.backup HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.old HTTP/2.0" 404 146 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.bak HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.git-credentials HTTP/2.0" 404 146 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.example HTTP/2.0" 404 146 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /admin/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; GPTBot/1.2; +https://openai.com/gptbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.env.production HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /serviceAccountKey.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.s3cfg HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.npmrc HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /secrets.yml HTTP/2.0" 403 20 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /service-account.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /credentials.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /key.json HTTP/2.0" 403 20 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /secrets.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /firebase-adminsdk.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /config/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:35 +0500] "GET /.docker/config.json HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /backend/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /docker-compose.yaml HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /.htpasswd HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /.boto HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /laravel/.env HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /.vscode/launch.json HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /.svn/entries HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Bytespider; spider-feedback@bytedance.com)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /terraform.tfstate HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /wp-config.php.bak HTTP/2.0" 403 20 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /storage/logs/laravel.log HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /wp-config.php.old HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:36 +0500] "GET /config/.env.php HTTP/2.0" 404 36 "-" "anthropic-ai" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /.env.php.bak HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /.env.swp HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /core/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /assets/javascript/core.js?assets_version=831 HTTP/2.0" 200 14278 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /public/.env HTTP/2.0" 404 146 "-" "anthropic-ai" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /.env.dev HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /assets/javascript/jquery-3.7.1.min.js?assets_version=831 HTTP/2.0" 200 30413 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /web/.env HTTP/2.0" 404 146 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" "-"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /values.yaml HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; +mailto:support@anthropic.com" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /configuration.php.bak HTTP/2.0" 403 20 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /auth.json HTTP/2.0" 403 20 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:38 +0500] "GET /config.php.bak HTTP/2.0" 403 20 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; +https://cohere.com)" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:39 +0500] "GET /styles/prosilver/template/ajax.js?assets_version=831 HTTP/2.0" 200 3896 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:39 +0500] "GET /ext/cleantalk/antispam/styles/all/template/cleantalk.js?assets_version=831 HTTP/2.0" 200 490 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:39 +0500] "GET /styles/prosilver/template/forum_fn.js?assets_version=831 HTTP/2.0" 200 6672 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:39 +0500] "GET /ext/rmcgirr83/elonw/styles/all/template/js/elonw.js?assets_version=831 HTTP/2.0" 200 787 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
104.28.217.140 - - [04/Jul/2026:02:54:40 +0500] "GET /search.php?search_id=active_topics HTTP/2.0" 403 20 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:41 +0500] "GET /viewforum.php?f=3 HTTP/2.0" 200 18502 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:41 +0500] "GET /viewforum.php?f=14 HTTP/2.0" 200 17069 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:43 +0500] "GET /viewforum.php?f=15 HTTP/2.0" 200 16308 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:44 +0500] "GET /viewforum.php?f=78 HTTP/2.0" 200 14400 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=27 HTTP/2.0" 200 17891 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /search.php?search_id=active_topics HTTP/2.0" 403 20 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=78 HTTP/2.0" 200 14400 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=3 HTTP/2.0" 200 18501 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=14 HTTP/2.0" 200 17069 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=15 HTTP/2.0" 200 16308 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=79 HTTP/2.0" 200 19505 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=1 HTTP/2.0" 200 19734 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=16 HTTP/2.0" 200 20752 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:46 +0500] "GET /viewforum.php?f=28 HTTP/2.0" 200 20152 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "BYPASS"
104.28.217.140 - - [04/Jul/2026:02:54:59 +0500] "GET /robots.txt HTTP/2.0" 200 460 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Mobile Safari/537.36" "-"
Тут вдруг выявилась ещё одна проблема, так что, белому списку быть. Только, конечно, я его внедрил минимально тяжеловесно. Всё же, не стоит раздувать скрипт, который призван для облегчения. Следующим сообщением выложу новую версию и у себя в подписи поменяю ссылку на актуальное. Вам для добавления
UptimeRobot в белый список нужно будет поставить это слово в один ряд с Google и Yandex, использовав там же такой же разделитель (вертикльную черту, означающую "или").-
Kuskow
- phpBB 2.0.4
- Сообщения: 442
- Стаж: 10 лет 1 месяц
- Откуда: 🇰🇿 Караганда
- Благодарил (а): 29 раз
- Поблагодарили: 44 раза
Re: Атака китайских ботов
Выпускаю в свет новую версию 4.1 антибота для phpBB для тех, у кого нет доступа к настройкам Apache/Nginx. На живом форуме проверено. Совместимо с PHP 7.4, 8.x. Основные изменения после предыдущей версии:
Порядок внедрения барьера перед ботами в phpBB:
1. {единственное нетрадиционное, но обязательное исправление}
Очень важно повторить это исправление после каждого обновления версии движка, иначе ни один человек на новом устройстве не сможет зайти или зарегистрироваться на форуме.
В файле своего phpBB
2. В конец файла
3. Заходим в админку своего phpBB:
3.1. ОБЩИЕ -> Очистить кэш.
3.2. ОБЩИЕ -> Сброс рекорда посещаемости.
- белый список для внутренних переходов без кук (referer), для таких отлупов отдаётся другой код 418
- из очистки сорных параметров исключён
index.php, поскольку там больше сложностей, чем толку
config.php.Порядок внедрения барьера перед ботами в phpBB:
1. {единственное нетрадиционное, но обязательное исправление}
Очень важно повторить это исправление после каждого обновления версии движка, иначе ни один человек на новом устройстве не сможет зайти или зарегистрироваться на форуме.
В файле своего phpBB
/assets/javascript/core.js в самом начале вставляем:
Код: Выделить всё
document.cookie = "checked=1; path=/; max-age=31104000; SameSite=Lax";2. В конец файла
config.php добавляем (у кого уже есть, заменяем):
Код: Выделить всё
### Барьер для ботов phpBB, версия 4.1. Авторы: Kuskow & AI on Google Search
if ($uri = $_SERVER['REQUEST_URI'] ?? '') { # не cli
if (!isset($_COOKIE['checked'])) { # не человек в браузере
$ua = $_SERVER['HTTP_USER_AGENT'] ?? 'python';
# Невозможный адрес страницы или заведомо плохой бот
if (!preg_match('#/(index\.php)?$|file\.php|/view(forum|topic)\.php([?&][ftp]=\d+)+(&start=\d+)?$#', $uri)
or preg_match('#ChatGPT|keys-so|python|Firefox/72#i', $ua)
) { http_response_code(403); die; }
# Якобы внутренний переход
if (empty($_COOKIE)
and strpos($_SERVER['HTTP_REFERER'] ?? '', $_SERVER['HTTP_HOST'])
and !preg_match('#Yandex|Google|Apple|bing|Baidu|GPTBot|whatsapp|telegram|facebook#i', $ua)
) { http_response_code(418); die; }
# Хороших ботов и новых посетителей объединяем в одном аккаунте без сессии
$_SERVER['HTTP_USER_AGENT'] = 'Googlebot/';
}
# Избавляемся от сорных параметров
if (preg_match('#view(topic|forum)\.php|search\.php|/\?#', $uri)
and ($newuri = rtrim(str_replace('?&', '?', preg_replace('#&(sid|hilit|[fgy][bcs]+lid|utm_\w+)=[^&]*#', '', str_replace('?', '?&', $uri))), '?&')) !== $uri
) { header('Location: ' . $newuri, true, 308); die; }
}
3. Заходим в админку своего phpBB:
3.1. ОБЩИЕ -> Очистить кэш.
3.2. ОБЩИЕ -> Сброс рекорда посещаемости.

