Skip to content

微服务的网关通过nginx代理后,出现:站点指纹不符合Spring特征,可能不是Spring框架 #28

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jenven opened this issue Feb 19, 2025 · 5 comments
Closed

微服务的网关通过nginx代理后,出现:站点指纹不符合Spring特征,可能不是Spring框架 #28

jenven opened this issue Feb 19, 2025 · 5 comments

Comments

@jenven
Copy link

jenven commented Feb 19, 2025

[.] 正在进行Spring的指纹识别
[-] 站点指纹不符合Spring特征,可能不是Spring框架
======开始对目标URL测试SpringBoot敏感文件泄露并下载======
[-] 在 /actuator/heapdump 未发现heapdump敏感文件泄露
[-] 在 /heapdump 未发现heapdump敏感文件泄露
[-] 在 /heapdump.json 未发现heapdump敏感文件泄露
[-] 在 /gateway/actuator/heapdump 未发现heapdump敏感文件泄露
[-] 在 /hystrix.stream 未发现hystrix监控数据文件泄露,请手动验证
[-] 在 /artemis-portal/artemis/heapdump 未发现heapdump监控数据文件泄露,请手动验证
@AabyssZG
Copy link
Owner

Nginx反向代理也只是转发流量,返回结果并不会变,不应该识别不出来
师傅是不是做反向代理的时候设置了路径,没有入口路径那肯定访问不到Spring的

@jenven
Copy link
Author

jenven commented Feb 19, 2025

Nginx反向代理也只是转发流量,返回结果并不会变,不应该识别不出来 师傅是不是做反向代理的时候设置了路径,没有入口路径那肯定访问不到Spring的

配置这样的,具体ip隐藏了:upstream yryb-gateway {
server ...:8080;
server ...:8080;
server ...:8080;
keepalive 25;
}
server {
listen 8082;
# server_name localhost;
access_log /usr/local/openresty/nginx/logs/cloud.access.log;
error_log /usr/local/openresty/nginx/logs/cloud.error.log;
client_max_body_size 50m;

proxy_set_header Host $host;

charset utf8;

location / {
    proxy_pass http://yryb-gateway;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

}

@jenven
Copy link
Author

jenven commented Feb 19, 2025

Nginx反向代理也只是转发流量,返回结果并不会变,不应该识别不出来 师傅是不是做反向代理的时候设置了路径,没有入口路径那肯定访问不到Spring的

8080就是微服务网关暴露的端口

@AabyssZG
Copy link
Owner

可以尝试访问一个不存在的路径,比如 /aaa12334 如果有返回默认特征 timestamp 关键词,就是正常Spring指纹
但如果你这个服务源码改过对404的路由返回,自然就没有这个特征了

@AabyssZG
Copy link
Owner

目前来看师傅应该是没问题了,我就关闭这个会话了哈~
如后续有其他问题,欢迎提交issues继续讨论😘

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jenven @AabyssZG