如何拦截IIS中客户向IIS发送的请求 找免费服装店管理软件
仓库管理软件版1楼: 如何拦截IIS中客户向IIS请求的文件~~
急啊~ 先谢谢大家
SF_STATUS_REQ_HANDLED_NOTIFICATION = SF_STATUS_TYPE + 3;
SF_STATUS_REQ_ERROR = SF_STATUS_TYPE + 4;
SF_STATUS_REQ_READ_NEXT = SF_STATUS_TYPE + 5;
SF_NOTIFY_SECURE_PORT = $00000001;
SF_NOTIFY_NONSECURE_PORT = $00000002;
SF_NOTIFY_READ_RAW_DATA = $00008000;
SF_NOTIFY_PREPROC_HEADERS = $00004000;
SF_NOTIFY_AUTHENTICATION = $00002000;
SF_NOTIFY_URL_MAP = $00001000;
SF_NOTIFY_SEND_RAW_DATA = $00000400;
SF_NOTIFY_LOG = $00000200;
SF_NOTIFY_END_OF_NET_SESSION = $00000100;
SF_NOTIFY_ORDER_HIGH = $00080000;
SF_NOTIFY_ORDER_MEDIUM = $00040000;
SF_NOTIFY_ORDER_LOW = $00020000;
SF_NOTIFY_ORDER_DEFAULT = SF_NOTIFY_ORDER_HIGH;
SF_NOTIFY_ORDER_MASK = (SF_NOTIFY_ORDER_HIGH or SF_NOTIFY_ORDER_MEDIUM or SF_NOTIFY_ORDER_LOW);
type
PVOID = Pointer;
LPVOID = Pointer;
PCardinal = ^Cardinal;
SF_REQ_TYPE = (SF_REQ_SEND_RESPONSE_HEADER, SF_REQ_ADD_HEADERS_ON_DENIAL,
SF_REQ_SET_NEXT_READ_SIZE, SF_REQ_SET_PROXY_INFO);
Type
TFuncPlaceHolder = POINTER;
THTTP_FILTER_CONTEXT = record
cbSize : DWORD;
Revision : DWORD;
ServerContext : PVOID;
ulReserved : DWORD;
fIsSecurePort : BOOL;
pFilterContext : PVOID;
GetServerVariable : TFuncPlaceHolder; {TGetServerVariable;}
AddResponseHeaders : TFuncPlaceHolder; {TAddResponseHeaders;}
WriteClient : TFuncPlaceHolder; {TWriteClient;}
AllocMem : TFuncPlaceHolder; {TAllocMem;}
ServerSupportFunc : TFuncPlaceHolder; {TServerSupportFunc;}
end;
HTTP_FILTER_CONTEXT = THTTP_FILTER_CONTEXT;
PHTTP_FILTER_CONTEXT = ^HTTP_FILTER_CONTEXT;
TGetServerVariable = Function(var pfc : THTTP_FILTER_CONTEXT;
VariableName : PChar;
Buffer : LPVOID;
BuffSize : PCardinal) : BOOL;
StdCall;
TAddResponseHeaders = Function(var pfc : THTTP_FILTER_CONTEXT;
Headers : PChar;
Reserved : DWORD) : BOOL;
StdCall;
TWriteClient = Function(var pfc : THTTP_FILTER_CONTEXT;
Buffer : LPVOID;
dwBytes : LPDWORD;
Reserved : DWORD) : BOOL;
StdCall;
TAllocMem = Procedure(var pfc : THTTP_FILTER_CONTEXT;
cbSize : DWORD;
dwReserved : DWORD);
TServerSupportFunc = Function(var pfc : THTTP_FILTER_CONTEXT;
sfReq : SF_REQ_TYPE;
pData : PVOID;
ul1 : DWORD;
ul2 : DWORD) : BOOL;
StdCall;
THTTP_FILTER_RAW_DATA = record
pvInData : PVOID;
cbInData : DWORD;
cbInBuffer : DWORD;
dwReserved : DWORD;
end;
HTTP_FILTER_RAW_DATA = THTTP_FILTER_RAW_DATA;
PHTTP_FILTER_RAW_DATA = ^HTTP_FILTER_RAW_DATA;
TGetHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpvBuffer : LPVOID;
lpdwSize : LPDWORD) : BOOL; StdCall;
TSetHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpszValue : PChar) : BOOL; StdCall;
TAddHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpszValue : PChar) : BOOL; StdCall;
THTTP_FILTER_PREPROC_HEADERS = record
GetHeader : TGetHeader;
SetHeader : TSetHeader;
AddHeader : TAddHeader;
dwReserved : DWORD;
end;
HTTP_FILTER_PREPROC_HEADERS = THTTP_FILTER_PREPROC_HEADERS;
PHTTP_FILTER_PREPROC_HEADERS = ^HTTP_FILTER_PREPROC_HEADERS;
THTTP_FILTER_AUTHENT = record
pszUser : PChar;
cbUserBuff : DWORD;
pszPassword : PChar;
cbPasswordBuff : DWORD;
end;
HTTP_FILTER_AUTHENT = THTTP_FILTER_AUTHENT;
PHTTP_FILTER_AUTHENT = ^HTTP_FILTER_AUTHENT;
THTTP_FILTER_URL_MAP = record
pszURL : PChar;
pszPhysicalPath : PChar;
cbPathBuff : DWORD;
end;
HTTP_FILTER_URL_MAP = THTTP_FILTER_URL_MAP;
PHTTP_FILTER_URL_MAP = ^HTTP_FILTER_URL_MAP;
THTTP_FILTER_LOG = record
pszClientHostName : PChar;
pszClientUserName : PChar;
pszServerName : PChar;
pszOperation : PChar;
pszTarget : PChar;
pszParameters : PChar;
dwHttpStatus : DWORD;
dwWin32Status : DWORD;
end;
HTTP_FILTER_LOG = THTTP_FILTER_LOG;
PHTTP_FILTER_LOG = ^HTTP_FILTER_LOG;
THTTP_FILTER_VERSION = record
dwServerFilterVersion : DWORD;
dwFilterVersion : DWORD;
lpszFilterDesc : array [0..(SF_MAX_FILTER_DESC_LEN-1)] of Char;
dwFlags : DWORD;
end;
HTTP_FILTER_VERSION = THTTP_FILTER_VERSION;
PHTTP_FILTER_VERSION = ^HTTP_FILTER_VERSION;
procedure LogInfo (aStr : PChar);
const
LogFileName = ''c:\chtLog.txt'';
Var
OutFile : TextFile;
begin
AssignFile (OutFile, LogFileName);
If FileExists (LogFileName) then Append (OutFile) else Rewrite(OutFile);
Writeln (OutFile, aStr);
CloseFile (OutFile);
end;
Function GetFilterVersion(var pVer : HTTP_FILTER_VERSION) : BOOL; export; stdcall;
begin
LogInfo(''程序正在进入IIS....'');
try
pVer.dwFilterVersion := MAKELONG(0, 1);
StrPCopy(pVer.lpszFilterDesc, ''IIS过滤器 - IIS保镖'');
pVer.dwFlags := (SF_NOTIFY_SECURE_PORT or SF_NOTIFY_NONSECURE_PORT or
SF_NOTIFY_URL_MAP or SF_NOTIFY_ORDER_DEFAULT);
LogInfo (''测试是否支持版本 - OK'');
result := True;
except
LogInfo (''测试是否支持版本 - ERROR'');
result := False;
end;
end;
Function HttpFilterProc(var pfc : HTTP_FILTER_CONTEXT;
NotificationType : DWORD;
pvNotification : LPVOID) : DWORD; export; stdcall;
var
pvHTTP_FILTER_URL_MAP : HTTP_FILTER_URL_MAP;
Buffer : Array[0..1023] of Char;
BuffSize : DWORD;
HisAddress : String;
function OnUrlMap : DWORD;
Function CheckURL(HisURL : string) : Boolean;
begin
try
If (Pos('' and '', lowercase(HisURL)) <> 0) or (Pos('' select '', lowercase(HisURL)) <> 0) or (Pos(''chr('', lowercase(HisURL)) <> 0) or (Pos('' from'', lowercase(HisURL)) <> 0) or (Pos('' union'', lowercase(HisURL)) <> 0) or (Pos('''''''', lowercase(HisURL)) <> 0) or (Pos('';'', lowercase(HisURL)) <> 0) then begin
StrCopy(pvHTTP_FILTER_URL_MAP.pszPhysicalPath, ''c:\cht.txt'');
LogInfo(pchar(''URL 非法请求文件 - return "false"''));
result := True;
end
else
If (Pos(''.asa'', lowercase(HisURL)) <> 0) or (Pos(''.cer'', lowercase(HisURL)) <> 0) or (Pos(''.asp'', lowercase(HisURL)) <> 0)then begin
StrCopy(pvHTTP_FILTER_URL_MAP.pszPhysicalPath, ''c:\cht1.txt'');
LogInfo(pchar(''URL 非法请求文件 - return "false"''));
result := True;
end;
except
result := False;
LogInfo(pchar('' ** 过滤时候发生错误**''))
end;
end;
//**********************
begin
try
BuffSize := 1024;
pvHTTP_FILTER_URL_MAP := HTTP_FILTER_URL_MAP(pvNotification^);
TGetServerVariable (pfc.GetServerVariable) (pfc, ''REMOTE_ADDR'', @Buffer, @BuffSize);
HisAddress := StrPas(Buffer);
LogInfo(pchar(''URL情况比较:'' + ^M^J +
''***** 过滤前 *****'' + ^M^J +
''URL : '' + pvHTTP_FILTER_URL_MAP.pszURL + ^M^J +
''路径 : '' + pvHTTP_FILTER_URL_MAP.pszPhysicalPath));
if Not CheckURL(pvHTTP_FILTER_URL_MAP.pszURL) then begin
result := SF_STATUS_REQ_ERROR;
end
else begin
result := SF_STATUS_REQ_NEXT_NOTIFICATION;
end;
LogInfo(pchar(''***** 过滤后 *****'' + ^M^J +
''URL : '' + pvHTTP_FILTER_URL_MAP.pszURL + ^M^J +
''路径 : '' + pvHTTP_FILTER_URL_MAP.pszPhysicalPath + ^M^J +
''客户IP : '' + HisAddress));
LogInfo(pchar(''----------------------------------------''));
except
result := SF_STATUS_REQ_ERROR;
end;
end;
begin
LogInfo(PChar(''Notification Type = '' + IntToStr(NotificationType)));
Case NotificationType of
SF_NOTIFY_URL_MAP : begin
result := OnUrlMap;
end;
else begin
LogInfo(PChar(''[HttpFilterProc] Unknown notification type = '' + IntToStr(NotificationType)));
result := SF_STATUS_REQ_NEXT_NOTIFICATION;
end;
end;
end;
exports
HttpFilterProc,
GetFilterVersion;
end.
急啊~ 先谢谢大家
2楼: http://www.2ccc.com/article.asp?articleid=916 如免费服装店管理软件
3楼: 能不能不用那样的方法,利用COM来实现?
4楼: 我通过ISAPI 实现了,但是为什么IIS 6。0不管用,我让他改 他怎么不跳转文件呢?
下面是代码,COPY 老外的。
Library ChangeURL;
Uses
SysUtils,
Windows;
const
HTTP_FILTER_MAJOR = 1; { major version of this spec }
HTTP_FILTER_MINOR = 0; { minor version of this spec }
SF_MAX_USERNAME = 257;
SF_MAX_PASSWORD = 257;
SF_MAX_FILTER_DESC_LEN = 257;
{ SF_STATUS_TYPE }
SF_STATUS_TYPE = $8000000; { base value }
SF_STATUS_REQ_FINISHED = SF_STATUS_TYPE;
SF_STATUS_REQ_FINISHED_KEEP_CONN = SF_STATUS_TYPE + 1;
SF_STATUS_REQ_NEXT_NOTIFICATION = SF_STATUS_TYPE + 2;
SF_STATUS_REQ_HANDLED_NOTIFICATION = SF_STATUS_TYPE + 3;
SF_STATUS_REQ_ERROR = SF_STATUS_TYPE + 4;
SF_STATUS_REQ_READ_NEXT = SF_STATUS_TYPE + 5;
SF_NOTIFY_SECURE_PORT = $00000001;
SF_NOTIFY_NONSECURE_PORT = $00000002;
SF_NOTIFY_READ_RAW_DATA = $00008000;
SF_NOTIFY_PREPROC_HEADERS = $00004000;
SF_NOTIFY_AUTHENTICATION = $00002000;
SF_NOTIFY_URL_MAP = $00001000;
SF_NOTIFY_SEND_RAW_DATA = $00000400;
SF_NOTIFY_LOG = $00000200;
SF_NOTIFY_END_OF_NET_SESSION = $00000100;
SF_NOTIFY_ORDER_HIGH = $00080000;
SF_NOTIFY_ORDER_MEDIUM = $00040000;
SF_NOTIFY_ORDER_LOW = $00020000;
SF_NOTIFY_ORDER_DEFAULT = SF_NOTIFY_ORDER_HIGH;
SF_NOTIFY_ORDER_MASK = (SF_NOTIFY_ORDER_HIGH or SF_NOTIFY_ORDER_MEDIUM or SF_NOTIFY_ORDER_LOW);
type
PVOID = Pointer;
LPVOID = Pointer;
PCardinal = ^Cardinal;
SF_REQ_TYPE = (SF_REQ_SEND_RESPONSE_HEADER, SF_REQ_ADD_HEADERS_ON_DENIAL,
SF_REQ_SET_NEXT_READ_SIZE, SF_REQ_SET_PROXY_INFO);
Type
TFuncPlaceHolder = POINTER;
THTTP_FILTER_CONTEXT = record
cbSize : DWORD;
Revision : DWORD;
ServerContext : PVOID;
ulReserved : DWORD;
fIsSecurePort : BOOL;
pFilterContext : PVOID;
GetServerVariable : TFuncPlaceHolder; {TGetServerVariable;}
AddResponseHeaders : TFuncPlaceHolder; {TAddResponseHeaders;}
WriteClient : TFuncPlaceHolder; {TWriteClient;}
AllocMem : TFuncPlaceHolder; {TAllocMem;}
ServerSupportFunc : TFuncPlaceHolder; {TServerSupportFunc;}
end;
HTTP_FILTER_CONTEXT = THTTP_FILTER_CONTEXT;
PHTTP_FILTER_CONTEXT = ^HTTP_FILTER_CONTEXT;
TGetServerVariable = Function(var pfc : THTTP_FILTER_CONTEXT;
VariableName : PChar;
Buffer : LPVOID;
BuffSize : PCardinal) : BOOL;
StdCall;
TAddResponseHeaders = Function(var pfc : THTTP_FILTER_CONTEXT;
Headers : PChar;
Reserved : DWORD) : BOOL;
StdCall;
TWriteClient = Function(var pfc : THTTP_FILTER_CONTEXT;
Buffer : LPVOID;
dwBytes : LPDWORD;
Reserved : DWORD) : BOOL;
StdCall;
TAllocMem = Procedure(var pfc : THTTP_FILTER_CONTEXT;
cbSize : DWORD;
dwReserved : DWORD);
TServerSupportFunc = Function(var pfc : THTTP_FILTER_CONTEXT;
sfReq : SF_REQ_TYPE;
pData : PVOID;
ul1 : DWORD;
ul2 : DWORD) : BOOL;
StdCall;
THTTP_FILTER_RAW_DATA = record
pvInData : PVOID;
cbInData : DWORD;
cbInBuffer : DWORD;
dwReserved : DWORD;
end;
HTTP_FILTER_RAW_DATA = THTTP_FILTER_RAW_DATA;
PHTTP_FILTER_RAW_DATA = ^HTTP_FILTER_RAW_DATA;
TGetHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpvBuffer : LPVOID;
lpdwSize : LPDWORD) : BOOL; StdCall;
TSetHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpszValue : PChar) : BOOL; StdCall;
TAddHeader = Function(var pfc : THTTP_FILTER_CONTEXT;
lpszName : PChar;
lpszValue : PChar) : BOOL; StdCall;
THTTP_FILTER_PREPROC_HEADERS = record
GetHeader : TGetHeader;
SetHeader : TSetHeader;
AddHeader : TAddHeader;
dwReserved : DWORD;
end;
HTTP_FILTER_PREPROC_HEADERS = THTTP_FILTER_PREPROC_HEADERS;
PHTTP_FILTER_PREPROC_HEADERS = ^HTTP_FILTER_PREPROC_HEADERS;
THTTP_FILTER_AUTHENT = record
pszUser : PChar;
cbUserBuff : DWORD;
pszPassword : PChar;
cbPasswordBuff : DWORD;
end;
HTTP_FILTER_AUTHENT = THTTP_FILTER_AUTHENT;
PHTTP_FILTER_AUTHENT = ^HTTP_FILTER_AUTHENT;
THTTP_FILTER_URL_MAP = record
pszURL : PChar;
pszPhysicalPath : PChar;
cbPathBuff : DWORD;
end;
HTTP_FILTER_URL_MAP = THTTP_FILTER_URL_MAP;
PHTTP_FILTER_URL_MAP = ^HTTP_FILTER_URL_MAP;
THTTP_FILTER_LOG = record
pszClientHostName : PChar;
pszClientUserName : PChar;
pszServerName : PChar;
pszOperation : PChar;
pszTarget : PChar;
pszParameters : PChar;
dwHttpStatus : DWORD;
dwWin32Status : DWORD;
end;
HTTP_FILTER_LOG = THTTP_FILTER_LOG;
PHTTP_FILTER_LOG = ^HTTP_FILTER_LOG;
THTTP_FILTER_VERSION = record
dwServerFilterVersion : DWORD;
dwFilterVersion : DWORD;
lpszFilterDesc : array [0..(SF_MAX_FILTER_DESC_LEN-1)] of Char;
dwFlags : DWORD;
end;
HTTP_FILTER_VERSION = THTTP_FILTER_VERSION;
PHTTP_FILTER_VERSION = ^HTTP_FILTER_VERSION;
procedure LogInfo (aStr : PChar);
const
LogFileName = ''c:\chtLog.txt'';
Var
OutFile : TextFile;
begin
AssignFile (OutFile, LogFileName);
If FileExists (LogFileName) then Append (OutFile) else Rewrite(OutFile);
Writeln (OutFile, aStr);
CloseFile (OutFile);
end;
Function GetFilterVersion(var pVer : HTTP_FILTER_VERSION) : BOOL; export; stdcall;
begin
LogInfo(''程序正在进入IIS....'');
try
pVer.dwFilterVersion := MAKELONG(0, 1);
StrPCopy(pVer.lpszFilterDesc, ''IIS过滤器 - IIS保镖'');
pVer.dwFlags := (SF_NOTIFY_SECURE_PORT or SF_NOTIFY_NONSECURE_PORT or
SF_NOTIFY_URL_MAP or SF_NOTIFY_ORDER_DEFAULT);
LogInfo (''测试是否支持版本 - OK'');
result := True;
except
LogInfo (''测试是否支持版本 - ERROR'');
result := False;
end;
end;
Function HttpFilterProc(var pfc : HTTP_FILTER_CONTEXT;
NotificationType : DWORD;
pvNotification : LPVOID) : DWORD; export; stdcall;
var
pvHTTP_FILTER_URL_MAP : HTTP_FILTER_URL_MAP;
Buffer : Array[0..1023] of Char;
BuffSize : DWORD;
HisAddress : String;
function OnUrlMap : DWORD;
Function CheckURL(HisURL : string) : Boolean;
begin
try
If (Pos('' and '', lowercase(HisURL)) <> 0) or (Pos('' select '', lowercase(HisURL)) <> 0) or (Pos(''chr('', lowercase(HisURL)) <> 0) or (Pos('' from'', lowercase(HisURL)) <> 0) or (Pos('' union'', lowercase(HisURL)) <> 0) or (Pos('''''''', lowercase(HisURL)) <> 0) or (Pos('';'', lowercase(HisURL)) <> 0) then begin
StrCopy(pvHTTP_FILTER_URL_MAP.pszPhysicalPath, ''c:\cht.txt'');
LogInfo(pchar(''URL 非法请求文件 - return "false"''));
result := True;
end
else
If (Pos(''.asa'', lowercase(HisURL)) <> 0) or (Pos(''.cer'', lowercase(HisURL)) <> 0) or (Pos(''.asp'', lowercase(HisURL)) <> 0)then begin
StrCopy(pvHTTP_FILTER_URL_MAP.pszPhysicalPath, ''c:\cht1.txt'');
LogInfo(pchar(''URL 非法请求文件 - return "false"''));
result := True;
end;
except
result := False;
LogInfo(pchar('' ** 过滤时候发生错误**''))
end;
end;
//**********************
begin
try
BuffSize := 1024;
pvHTTP_FILTER_URL_MAP := HTTP_FILTER_URL_MAP(pvNotification^);
TGetServerVariable (pfc.GetServerVariable) (pfc, ''REMOTE_ADDR'', @Buffer, @BuffSize);
HisAddress := StrPas(Buffer);
LogInfo(pchar(''URL情况比较:'' + ^M^J +
''***** 过滤前 *****'' + ^M^J +
''URL : '' + pvHTTP_FILTER_URL_MAP.pszURL + ^M^J +
''路径 : '' + pvHTTP_FILTER_URL_MAP.pszPhysicalPath));
if Not CheckURL(pvHTTP_FILTER_URL_MAP.pszURL) then begin
result := SF_STATUS_REQ_ERROR;
end
else begin
result := SF_STATUS_REQ_NEXT_NOTIFICATION;
end;
LogInfo(pchar(''***** 过滤后 *****'' + ^M^J +
''URL : '' + pvHTTP_FILTER_URL_MAP.pszURL + ^M^J +
''路径 : '' + pvHTTP_FILTER_URL_MAP.pszPhysicalPath + ^M^J +
''客户IP : '' + HisAddress));
LogInfo(pchar(''----------------------------------------''));
except
result := SF_STATUS_REQ_ERROR;
end;
end;
begin
LogInfo(PChar(''Notification Type = '' + IntToStr(NotificationType)));
Case NotificationType of
SF_NOTIFY_URL_MAP : begin
result := OnUrlMap;
end;
else begin
LogInfo(PChar(''[HttpFilterProc] Unknown notification type = '' + IntToStr(NotificationType)));
result := SF_STATUS_REQ_NEXT_NOTIFICATION;
end;
end;
end;
exports
HttpFilterProc,
GetFilterVersion;
end.
5楼: 高手 人呢???
看来只能自己解决了,唉
6楼: 顶
仓库管理软件版7楼: ISAPI Filter,自己重写上面的代码算了。
再不行,用NDIS来过滤,更彻底,不过这就要用C++来写了[:D]
8楼: 你要检查你的filter在IIS6里面有没有成功安装?
9楼: 哈哈,你想做一个跟IISCOLANDER 一样的程序对吧!!???
10楼: RAW_DATA 这个在IIS6。0里是不能用的,在SDK里面有详细说明
如果要使用必须让IIS6。0运行在IIS5。0模式下!
11楼: 多人接受答案了。
联系我们
