Welcome! Log In Create A New Profile

Advanced

Re: Fake video sharing Android App !!

Francis Daly
March 16, 2015 10:52AM
On Mon, Mar 16, 2015 at 06:45:30PM +0500, shahzaib shahzaib wrote:

Hi there,

> I have installed that android app and requested log against my ip is
> following :
>
> 39.49.52.224 - - [15/Mar/2015:10:40:26 +0500] "GET
> /files/thumbs/2015/03/14/1426310448973c5-1.jpg HTTP/1.1" 200 13096 "-"
> "Dalvik/1.6.0 (Linux; U; Android 4.2.2; GT-S7582 Build/JDQ39)"
>
> where 39.49.52.224 is ip of my modem.

So - you have the log line for one request that you would like to block.

Do you have the log line for the matching request that you would like
to allow?

And that log line shows just two request headers plus an ip address. If
that is enough to accurately distinguish between "yes" and "no" requests,
you're good. If not, examine the entire request (either by extra logging
in nginx, or by watching the network traffic involved in each).

> I have also tried blocking specific user agent such as Android but neither
> it worked (sure i am doing something wrong) nor this is the correct
> solution :
>
> if ($http_user_agent ~* "Linux;Android 4.2.2") {

Does that 19-character string appear in the user agent header? If not,
the "if" will not match.

(I don't see it in there.)

If the most important thing is that "they" don't "steal" your bandwidth,
you can just turn off your web server. Bandwidth saved.

But presumably it is also important that some requests are handled as
they currently are.

Only you can say what distinguishes a "no" request from a "yes"
request.

And only you can say which "yes" requests you are happy to
mis-characterise as "no" requests and reject.

After you determine those, then you can decide how to configure nginx
to implement the same test.

(For example: check your logs from before this app started. Do all valid
requests include Referer? Are you happy to block any actually-valid
requests that omit Referer, in order to block all requests from this
app? How long do you think it will take the app author to change their
app to include a Referer, if you do that?)

f
--
Francis Daly francis@daoine.org

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

Fake video sharing Android App !!

shahzaib1232 March 16, 2015 07:10AM

Re: Fake video sharing Android App !!

Gena Makhomed March 16, 2015 07:20AM

Re: Fake video sharing Android App !!

Francis Daly March 16, 2015 09:30AM

Re: Fake video sharing Android App !!

shahzaib1232 March 16, 2015 09:46AM

Re: Fake video sharing Android App !!

Patschi March 16, 2015 09:58AM

Re: Fake video sharing Android App !!

itpp2012 March 16, 2015 10:47AM

Re: Fake video sharing Android App !!

Francis Daly March 16, 2015 10:52AM

Re: Fake video sharing Android App !!

shahzaib1232 March 17, 2015 04:24AM

Re: Fake video sharing Android App !!

itpp2012 March 17, 2015 05:10AM

Re: Fake video sharing Android App !!

shahzaib1232 March 17, 2015 06:14AM

Re: Fake video sharing Android App !!

itpp2012 March 17, 2015 06:38AM

Re: Fake video sharing Android App !!

shahzaib1232 March 17, 2015 07:22AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 64
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready