每当我的客户端通过telnet
连接到我的服务器时telnet myip 43
当客户端连续点击他自己机器上的ctrl + c时,会导致telnet服务器崩溃......如何停止?我的服务器是否有可能被缓冲区溢出攻击?
这是我的脚本(非常基本的脚本)
#!/usr/bin/env python
import sys
import socket
import urllib2
def main():
s = socket.socket() # Create a socket object
host = ''
BUFFER_SIZE = 2048
port = 43 # Reserve a port for your service.
s.bind((host, port)) # Bind to the port
s.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
s.listen(120) # Now wait for client connection.
while True:
data = ''
print 'waiting for connection...'
c, addr = s.accept() # Establish connection with client.
print 'Got connection from', addr
data = c.recv(BUFFER_SIZE)
print 'requested website: '+data
print x
c.send(x)
c.close() # Close the connection
if __name__ == '__main__':
main()
答案 0 :(得分:1)
尝试this:
import string
valid_chars = "-_.() %s%s" % (string.ascii_letters, string.digits)
[...]
data = c.recv(BUFFER_SIZE)
data=''.join(c for c in data if c in valid_chars)
print 'requested website: '+data
if len(data)>0:
try:
urllib2.urlopen('localhost:2020/?id='+data ).read()
print x
c.send(x)
except:
pass
c.close() # Close the connection
编辑valid_chars
以仅允许您的id参数允许的字符。