利用php教程的http_referer函數來判斷用戶的來路,這是簡單了,
實例
if (isset($_SERVER['HTTP_REFERER'])) {
print "The page you were on previously was {$_SERVER['HTTP_REFERER']}
";
} else {
print "You didn't click any links to get here
";
}
?>Click me!
下面我們讓用戶不知道我們的來路處理
實例
]$host = "www.123cha.com";
$referer = "http://".$host;
$fp = fsockopen ($host, 80, $errno, $errstr, 30);
if (!$fp){
echo "$errstr ($errno)
;n";
}else{
$request = "
GET / HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-powerpoint, application/vnd.ms-excel, application/msword, */"."*
Referer: http://$host
Accept-Language: zh-cn
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
Host: $host
Connection: Close"
."rnrn";
fputs ($fp, "$request");
while (!feof($fp))
{
$res[] = fgets($fp,1024);
}
$html = join("",$res);
fclose ($fp);
$fp = file_put_contents("123cha.html",$html);
echo "done";
}[/code]這不就行了?
不過很奇怪的是,
www.hao123.com
的頁面抓下來是亂碼(除了http頭),這是為什麼?難道是因為用了gzip之類壓縮?[code]$host = "www.zhutiai.com";
$html = file_get_contents("http://".$host);
$fp = file_put_contents("hao123.html",$html);
echo "done";
?>;[/code]
但這樣抓的就沒問題.
再來分析開始抓的http頭
[code]HTTP/1.1 200 OK Date: Wed, 31 Aug 2005 00:59:36 GMT Server: Apache/1.3.27 Cache-Control: max-age=1296000 Expires: Thu, 15 Sep 2005 00:59:36 GMT Last-Modified: Mon, 29 Aug 2005 13:56:00 GMT Accept-Ranges: bytes Connection: close Content-Type: text/html Content-Encoding: gzip Content-Length: 14567[/code]
果然有這句,Content-Encoding: gzip
原來壓縮了的,長度14567字節了,
用第二種方法抓,原來沒壓縮的html是71143字節,原來file_get_contents還可以自動解壓縮.
實例二
$host = '127.0.0.1';
$target = '/2.php';
$referer = 'http://www.bkjia.com'; //偽造HTTP_REFERER地址
$fp = fsockopen($host, 80, $errno, $errstr, 30);
if (!$fp){
echo "$errstr($errno)
n";
}
else{
$out = "
GET $target HTTP/1.1
Host: $host
Referer: $referer
Connection: Closernrn";
fwrite($fp, $out);
while (!feof($fp)){
echo fgets($fp, 1024);
}
fclose($fp);
}
?>
另一個2.php文件很簡單,只是寫上一行讀取當前的HTTP_REFERER服務器值的代碼即可,如下:
echo "
";
echo $_SERVER["HTTP_REFERER"];
?>
