被人DDos2天，每秒4次，打错地方了,只跑了3-4G流量

$ curl -sL 262235.xyz/ip/52.229.118.248
52.229.118.248 @加拿大魁北克省魁北克市microsoft.com

$ cat log.txt | grep 52.229.118.248 | wc
730404 16799266 159227712

$ cat log.txt | grep 52.229.118.248 | head -n100

# 脚本伪装浏览器 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
52.229.118.248 – – [15/Nov/2021:10:44:33 +0000] "GET / HTTP/1.1" 301 169
52.229.118.248 – – [15/Nov/2021:10:44:33 +0000] "GET / HTTP/1.1" 301 169

52.229.118.248 – – [15/Nov/2021:10:44:40 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [15/Nov/2021:10:44:40 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
……
52.229.118.248 – – [15/Nov/2021:10:44:54 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [15/Nov/2021:10:44:54 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412

$ cat log.txt | grep 52.229.118.248 | tail -n10

52.229.118.248 – – [17/Nov/2021:09:06:50 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:50 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:51 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:51 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:52 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:52 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:52 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:53 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:53 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412
52.229.118.248 – – [17/Nov/2021:09:06:54 +0000] "POST //wordpress//xmlrpc.php HTTP/1.1" 200 412

可能只是一只猛的蜘蛛？

应该就是机器打的 不是专业机器

蜘蛛侠？

不是蜘蛛，UDP攻击。。估计是从那个网站看的DDOS 啥软件之类的吧，毛用没有

没错，wp其实大多数玩家不怎么注重安全，我之前去各个wp博客留言区看了看大部分博客主都没关闭这个玩意