{"id":479635,"date":"2023-08-09T10:42:55","date_gmt":"2023-08-09T10:42:55","guid":{"rendered":""},"modified":"2023-09-05T11:19:16","modified_gmt":"2023-09-05T11:19:16","slug":"web-cache-poisoning","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/cn\/wiki\/web-cache-poisoning\/","title":{"rendered":"Web \u7f13\u5b58\u4e2d\u6bd2"},"content":{"rendered":"

Web \u7f13\u5b58\u6295\u6bd2\u662f\u4e00\u79cd\u590d\u6742\u7684\u7f51\u7edc\u653b\u51fb\uff0c\u5b83\u5229\u7528 Web \u7f13\u5b58\u7cfb\u7edf\u4e2d\u7684\u6f0f\u6d1e\u5c06\u6076\u610f\u5185\u5bb9\u6ce8\u5165\u7f13\u5b58\u54cd\u5e94\uff0c\u4ece\u800c\u5c06\u6709\u5bb3\u5185\u5bb9\u4f20\u9012\u7ed9\u6beb\u65e0\u6212\u5fc3\u7684\u7528\u6237\u3002\u8fd9\u79cd\u6280\u672f\u53ef\u80fd\u4f1a\u5bfc\u81f4\u4e25\u91cd\u540e\u679c\uff0c\u4f8b\u5982\u4f20\u64ad\u6076\u610f\u8f6f\u4ef6\u3001\u7a83\u53d6\u654f\u611f\u4fe1\u606f\uff0c\u751a\u81f3\u5bfc\u81f4\u670d\u52a1\u4e2d\u65ad\u3002\u4f5c\u4e3a\u4ee3\u7406\u670d\u52a1\u5668\u63d0\u4f9b\u5546\uff0cOneProxy \u8ba4\u8bc6\u5230\u6559\u80b2\u7528\u6237\u4e86\u89e3\u8fd9\u79cd\u5a01\u80c1\u7684\u91cd\u8981\u6027\uff0c\u4ee5\u5e2e\u52a9\u4ed6\u4eec\u5728\u4e0d\u65ad\u53d1\u5c55\u7684\u6570\u5b57\u73af\u5883\u4e2d\u4fdd\u6301\u5b89\u5168\u3002<\/p>\n

Web \u7f13\u5b58\u4e2d\u6bd2\u7684\u8d77\u6e90\u5386\u53f2\u4ee5\u53ca\u9996\u6b21\u63d0\u53ca<\/h2>\n

Web \u7f13\u5b58\u4e2d\u6bd2\u6280\u672f\u6700\u65e9\u51fa\u73b0\u5728 2008 \u5e74\u9ed1\u5e3d\u6b27\u6d32\u5927\u4f1a\u4e0a\u7531 Carlos Bueno \u548c Jeremiah Grossman \u53d1\u8868\u7684\u4e00\u7bc7\u9898\u4e3a\u201c\u6ed1\u52a8\u7a97\u53e3\u653b\u51fb\u201d\u7684\u7814\u7a76\u8bba\u6587\u4e2d\u3002\u7814\u7a76\u4eba\u5458\u6f14\u793a\u4e86\u5982\u4f55\u5229\u7528 Web \u7f13\u5b58\u5411\u7528\u6237\u63d0\u4f9b\u6076\u610f\u5185\u5bb9\uff0c\u800c\u65e0\u9700\u4e0e\u76ee\u6807\u670d\u52a1\u5668\u76f4\u63a5\u4ea4\u4e92\u3002\u4ece\u90a3\u65f6\u8d77\uff0cWeb \u7f13\u5b58\u4e2d\u6bd2\u653b\u51fb\u4e0d\u65ad\u53d1\u5c55\uff0c\u5728\u7f51\u7edc\u5a01\u80c1\u9886\u57df\u53d8\u5f97\u66f4\u52a0\u590d\u6742\u548c\u666e\u904d\u3002<\/p>\n

\u6709\u5173 Web \u7f13\u5b58\u4e2d\u6bd2\u7684\u8be6\u7ec6\u4fe1\u606f\u3002\u6269\u5c55\u4e3b\u9898 Web \u7f13\u5b58\u4e2d\u6bd2<\/h2>\n

Web \u7f13\u5b58\u6295\u6bd2\u6d89\u53ca\u64cd\u7eb5 Web \u7f13\u5b58\u6765\u5b58\u50a8\u548c\u63d0\u4f9b\u6076\u610f\u5185\u5bb9\u800c\u4e0d\u662f\u5408\u6cd5\u54cd\u5e94\u3002\u5b83\u901a\u5e38\u5229\u7528 HTTP \u8bf7\u6c42\u548c\u54cd\u5e94\u6d41\uff0c\u5229\u7528\u5404\u79cd\u6f0f\u6d1e\u6765\u4fee\u6539\u7f13\u5b58\u6761\u76ee\u3002\u8fd9\u79cd\u653b\u51fb\u4f9d\u8d56\u4e8e Web \u7f13\u5b58\u5b58\u50a8\u7ecf\u5e38\u8bf7\u6c42\u7684\u5185\u5bb9\u526f\u672c\u8fd9\u4e00\u4e8b\u5b9e\uff0c\u4ece\u800c\u51cf\u5c11\u670d\u52a1\u5668\u8d1f\u8f7d\u5e76\u7f29\u77ed\u7f51\u9875\u52a0\u8f7d\u65f6\u95f4\u3002<\/p>\n

Web \u7f13\u5b58\u4e2d\u6bd2\u7684\u5185\u90e8\u7ed3\u6784\u3002Web \u7f13\u5b58\u4e2d\u6bd2\u7684\u5de5\u4f5c\u539f\u7406<\/h2>\n

Web\u7f13\u5b58\u6295\u6bd2\u653b\u51fb\u4e00\u822c\u9075\u5faa\u4ee5\u4e0b\u6b65\u9aa4\uff1a<\/p>\n

    \n
  1. \n

    \u8bf7\u6c42\u8d70\u79c1<\/strong>\uff1a\u653b\u51fb\u8005\u5411\u76ee\u6807\u670d\u52a1\u5668\u53d1\u9001\u7279\u5236\u7684 HTTP \u8bf7\u6c42\uff0c\u64cd\u7eb5\u8bf7\u6c42\u6807\u5934\uff0c\u5e76\u5229\u7528\u524d\u7aef\u548c\u540e\u7aef\u7cfb\u7edf\u89e3\u91ca\u8fd9\u4e9b\u6807\u5934\u7684\u65b9\u5f0f\u7684\u53d8\u5316\u3002<\/p>\n<\/li>\n

  2. \n

    \u7f13\u5b58\u4e2d\u6bd2<\/strong>\uff1a\u901a\u8fc7\u5229\u7528\u7f13\u5b58\u5bc6\u94a5\u751f\u6210\u4e2d\u7684\u4e0d\u4e00\u81f4\u6027\uff0c\u653b\u51fb\u8005\u6b3a\u9a97\u7f13\u5b58\u7cfb\u7edf\u5c06\u6076\u610f\u5185\u5bb9\u4e0e\u5408\u6cd5\u54cd\u5e94\u4e00\u8d77\u5b58\u50a8\u3002<\/p>\n<\/li>\n

  3. \n

    \u4f20\u64ad\u6076\u610f\u5185\u5bb9<\/strong>\uff1a\u5f53\u540e\u7eed\u7528\u6237\u8bf7\u6c42\u76f8\u540c\u5185\u5bb9\u65f6\uff0c\u5c06\u4ece\u7f13\u5b58\u4e2d\u63d0\u4f9b\u4e2d\u6bd2\u54cd\u5e94\uff0c\u4ece\u800c\u7528\u6076\u610f\u8f6f\u4ef6\u611f\u67d3\u7528\u6237\u7684\u6d4f\u89c8\u5668\u6216\u6267\u884c\u5176\u4ed6\u6076\u610f\u64cd\u4f5c\u3002<\/p>\n<\/li>\n<\/ol>\n

    Web\u7f13\u5b58\u6295\u6bd2\u5173\u952e\u7279\u5f81\u5206\u6790<\/h2>\n

    Web \u7f13\u5b58\u4e2d\u6bd2\u7684\u4e3b\u8981\u7279\u5f81\u5305\u62ec\uff1a<\/p>\n