{"id":6946,"date":"2026-02-03T23:25:10","date_gmt":"2026-02-03T15:25:10","guid":{"rendered":"http:\/\/192.168.31.210\/?p=6946"},"modified":"2026-02-03T23:25:12","modified_gmt":"2026-02-03T15:25:12","slug":"safeline%e7%bd%91%e7%ab%99%e5%ae%89%e5%85%a8%e8%83%bd%e4%bf%9d%e6%8a%a4%e5%bc%80%e6%ba%90%e8%bd%af%e4%bb%b6waf","status":"publish","type":"post","link":"http:\/\/cnliutz.uicp.io\/?p=6946","title":{"rendered":"Safeline\u7f51\u7ad9\u5b89\u5168\u80fd\u4fdd\u62a4\u5f00\u6e90\u8f6f\u4ef6WAF"},"content":{"rendered":"\n<p><a href=\"https:\/\/github.com\/chaitin\/SafeLine\">GitHub &#8211; chaitin\/SafeLine: SafeLine is a self-hosted WAF(Web Application Firewall) \/ reverse proxy to protect your web apps from attacks and exploits.<\/a><\/p>\n\n\n\n<p>SafeLine\uff0c\u4e2d\u6587\u540d &#8220;\u96f7\u6c60&#8221;\uff0c\u662f\u4e00\u6b3e\u7b80\u5355\u597d\u7528, \u6548\u679c\u7a81\u51fa\u7684&nbsp;<strong><code>Web \u5e94\u7528\u9632\u706b\u5899(WAF)<\/code><\/strong>\uff0c\u53ef\u4ee5\u4fdd\u62a4 Web \u670d\u52a1\u4e0d\u53d7\u9ed1\u5ba2\u653b\u51fb\u3002<\/p>\n\n\n\n<p>\u96f7\u6c60\u901a\u8fc7\u8fc7\u6ee4\u548c\u76d1\u63a7 Web \u5e94\u7528\u4e0e\u4e92\u8054\u7f51\u4e4b\u95f4\u7684 HTTP \u6d41\u91cf\u6765\u4fdd\u62a4 Web \u670d\u52a1\u3002\u53ef\u4ee5\u4fdd\u62a4 Web \u670d\u52a1\u514d\u53d7&nbsp;<code>SQL \u6ce8\u5165<\/code>\u3001<code>XSS<\/code>\u3001&nbsp;<code>\u4ee3\u7801\u6ce8\u5165<\/code>\u3001<code>\u547d\u4ee4\u6ce8\u5165<\/code>\u3001<code>CRLF \u6ce8\u5165<\/code>\u3001<code>ldap \u6ce8\u5165<\/code>\u3001<code>xpath \u6ce8\u5165<\/code>\u3001<code>RCE<\/code>\u3001<code>XXE<\/code>\u3001<code>SSRF<\/code>\u3001<code>\u8def\u5f84\u904d\u5386<\/code>\u3001<code>\u540e\u95e8<\/code>\u3001<code>\u66b4\u529b\u7834\u89e3<\/code>\u3001<code>CC<\/code>\u3001<code>\u722c\u866b<\/code>&nbsp;\u7b49\u653b\u51fb\u3002<\/p>\n\n\n\n<p>\u96f7\u6c60\u901a\u8fc7\u963b\u65ad\u6d41\u5411 Web \u670d\u52a1\u7684\u6076\u610f HTTP \u6d41\u91cf\u6765\u4fdd\u62a4 Web \u670d\u52a1\u3002\u96f7\u6c60\u4f5c\u4e3a\u53cd\u5411\u4ee3\u7406\u63a5\u5165\u7f51\u7edc\uff0c\u901a\u8fc7\u5728 Web \u670d\u52a1\u524d\u90e8\u7f72\u96f7\u6c60\uff0c\u53ef\u5728 Web \u670d\u52a1\u548c\u4e92\u8054\u7f51\u4e4b\u95f4\u8bbe\u7f6e\u4e00\u9053\u5c4f\u969c\u3002<\/p>\n\n\n\n<p>\u96f7\u6c60\u7684\u6838\u5fc3\u529f\u80fd\u5982\u4e0b:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u9632\u62a4 Web \u653b\u51fb<\/li>\n\n\n\n<li>\u9632\u722c\u866b, \u9632\u626b\u63cf<\/li>\n\n\n\n<li>\u524d\u7aef\u4ee3\u7801\u52a8\u6001\u52a0\u5bc6<\/li>\n\n\n\n<li>\u57fa\u4e8e\u6e90 IP \u7684\u8bbf\u95ee\u901f\u7387\u9650\u5236<\/li>\n\n\n\n<li>HTTP \u8bbf\u95ee\u63a7\u5236<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">? \u6838\u5fc3\u80fd\u529b<\/h2>\n\n\n\n<p><a href=\"https:\/\/github.com\/chaitin\/SafeLine\/blob\/main\/README_CN.md#-%E6%A0%B8%E5%BF%83%E8%83%BD%E5%8A%9B\"><\/a><\/p>\n\n\n\n<p>\u5bf9\u4e8e\u4f60\u7684\u7f51\u7ad9\u800c\u8a00, \u96f7\u6c60\u53ef\u4ee5\u5b9e\u73b0\u5982\u4e0b\u6548\u679c:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong><code>\u963b\u65ad Web \u653b\u51fb<\/code><\/strong>\n<ul class=\"wp-block-list\">\n<li>\u53ef\u4ee5\u9632\u5fa1\u6240\u6709\u7684 Web \u653b\u51fb\uff0c\u4f8b\u5982\u00a0<code>SQL \u6ce8\u5165<\/code>\u3001<code>XSS<\/code>\u3001<code>\u4ee3\u7801\u6ce8\u5165<\/code>\u3001<code>\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4\u6ce8\u5165<\/code>\u3001<code>CRLF \u6ce8\u5165<\/code>\u3001<code>XXE<\/code>\u3001<code>SSRF<\/code>\u3001<code>\u8def\u5f84\u904d\u5386<\/code>\u00a0\u7b49\u7b49\u3002<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong><code>\u9650\u5236\u8bbf\u95ee\u9891\u7387<\/code><\/strong>\n<ul class=\"wp-block-list\">\n<li>\u9650\u5236\u7528\u6237\u7684\u8bbf\u95ee\u901f\u7387\uff0c\u8ba9 Web \u670d\u52a1\u514d\u906d\u00a0<code>CC \u653b\u51fb<\/code>\u3001<code>\u66b4\u529b\u7834\u89e3<\/code>\u3001<code>\u6d41\u91cf\u6fc0\u589e<\/code>\u00a0\u548c\u5176\u4ed6\u7c7b\u578b\u7684\u6ee5\u7528\u3002<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong><code>\u4eba\u673a\u9a8c\u8bc1<\/code><\/strong>\n<ul class=\"wp-block-list\">\n<li>\u4e92\u8054\u7f51\u4e0a\u6709\u6765\u81ea\u771f\u4eba\u7528\u6237\u7684\u6d41\u91cf\uff0c\u4f46\u66f4\u591a\u7684\u662f\u7531\u722c\u866b, \u6f0f\u6d1e\u626b\u63cf\u5668, \u8815\u866b\u75c5\u6bd2, \u6f0f\u6d1e\u5229\u7528\u7a0b\u5e8f\u7b49\u81ea\u52a8\u5316\u7a0b\u5e8f\u53d1\u8d77\u7684\u6d41\u91cf\uff0c\u5f00\u542f\u96f7\u6c60\u7684\u4eba\u673a\u9a8c\u8bc1\u529f\u80fd\u540e\u771f\u4eba\u7528\u6237\u4f1a\u88ab\u653e\u884c\uff0c\u6076\u610f\u722c\u866b\u5c06\u4f1a\u88ab\u963b\u65ad\u3002<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong><code>\u8eab\u4efd\u8ba4\u8bc1<\/code><\/strong>\n<ul class=\"wp-block-list\">\n<li>\u96f7\u6c60\u7684 &#8220;\u8eab\u4efd\u8ba4\u8bc1&#8221; \u529f\u80fd\u53ef\u4ee5\u5f88\u597d\u7684\u89e3\u51b3 &#8220;\u672a\u6388\u6743\u8bbf\u95ee&#8221; \u6f0f\u6d1e\uff0c\u5f53\u7528\u6237\u8bbf\u95ee\u60a8\u7684\u7f51\u7ad9\u65f6\uff0c\u9700\u8981\u8f93\u5165\u60a8\u914d\u7f6e\u7684\u7528\u6237\u540d\u548c\u5bc6\u7801\u4fe1\u606f\uff0c\u4e0d\u6301\u6709\u8ba4\u8bc1\u4fe1\u606f\u7684\u7528\u6237\u5c06\u88ab\u62d2\u4e4b\u95e8\u5916\u3002<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong><code>\u52a8\u6001\u9632\u62a4<\/code><\/strong>\n<ul class=\"wp-block-list\">\n<li>\u5728\u7528\u6237\u6d4f\u89c8\u5230\u7684\u7f51\u9875\u5185\u5bb9\u4e0d\u53d8\u7684\u60c5\u51b5\u4e0b\uff0c\u5c06\u7f51\u9875\u8d4b\u4e88\u52a8\u6001\u7279\u6027\uff0c\u5bf9 HTML \u548c JavaScript \u4ee3\u7801\u8fdb\u884c\u52a8\u6001\u52a0\u5bc6\uff0c\u786e\u4fdd\u6bcf\u6b21\u8bbf\u95ee\u65f6\u8fd9\u4e9b\u4ee3\u7801\u90fd\u4ee5\u968f\u673a\u4e14\u72ec\u7279\u7684\u5f62\u6001\u5448\u73b0\u3002<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>GitHub &#8211; chaitin\/SafeLine: SafeLin <span class=\"readmore\"><a href=\"http:\/\/cnliutz.uicp.io\/?p=6946\">Continue Reading<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-6946","post","type-post","status-publish","format-standard","hentry","category-6"],"_links":{"self":[{"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/posts\/6946","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6946"}],"version-history":[{"count":1,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/posts\/6946\/revisions"}],"predecessor-version":[{"id":6947,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=\/wp\/v2\/posts\/6946\/revisions\/6947"}],"wp:attachment":[{"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6946"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6946"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/cnliutz.uicp.io\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6946"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}