本文適用于虛擬主機(jī)或LINUX主機(jī)的用戶朋友，因?yàn)樘摂M主機(jī)或LINUX的主機(jī)，不方便直接操作目錄權(quán)限(即使操作了，也不完全能修復(fù))，因此我們是通過設(shè)置偽靜態(tài)的方法，來實(shí)現(xiàn)漏洞修復(fù)，具體步驟如下：

一、偽靜態(tài)規(guī)則是.htaccess的用戶參照這里：

打開.htaccess，將以下代碼復(fù)制在這個(gè)文件底部，保存即可。

RewriteRule upload/(.*).(PHP)$ – [L,NC] 

RewriteRule upload/(.*).(asp)$ – [L,NC] 

RewriteRule upload1/(.*).(php)$ – [L,NC] 

RewriteRule upload1/(.*).(asp)$ – [L,NC] 

RewriteRule upload2/(.*).(php)$ – [L,NC] 

RewriteRule upload2/(.*).(asp)$ – [L,NC] 

RewriteRule upload3/(.*).(php)$ – [L,NC] 

RewriteRule upload3/(.*).(asp)$ – [L,NC] 

RewriteRule ad/(.*).(PHP)$ – [L,NC] 

RewriteRule ad/(.*).(asp)$ – [L,NC] 

RewriteRule gg/(.*).(PHP)$ – [L,NC] 

RewriteRule gg/(.*).(asp)$ – [L,NC] 

RewriteRule uploadfile/(.*).(php)$ – [L,NC] 

RewriteRule uploadfile/(.*).(asp)$ – [L,NC] 

RewriteRule userphoto/(.*).(php)$ – [L,NC] 

RewriteRule userphoto/(.*).(asp)$ – [L,NC] 

RewriteRule attached/(.*).(php)$ – [L,NC] 

RewriteRule attached/(.*).(asp)$ – [L,NC]

RewriteRule img/(.*).(php)$ – [L,NC] 

RewriteRule img/(.*).(asp)$ – [L,NC]

二、偽靜態(tài)規(guī)則是httpd.ini的用戶參照這里：

打開httpd.ini，將以下代碼復(fù)制在這個(gè)文件底部，保存即可。

RewriteRule /config/ueditor/php/upload/(.*).PHP$ /css/ [I]

RewriteRule /config/ueditor/php/upload/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor/php/upload1/(.*).php$ /css/ [I]

RewriteRule /config/ueditor/php/upload1/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor/php/upload2/(.*).php$ /css/ [I]

RewriteRule /config/ueditor/php/upload2/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor/php/upload3/(.*).php$ /css/ [I]

RewriteRule /config/ueditor/php/upload3/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload/(.*).php$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload1/(.*).php$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload1/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload2/(.*).php$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload2/(.*).asp$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload3/(.*).php$ /css/ [I]

RewriteRule /config/ueditor_mini/php/upload3/(.*).asp$ /css/ [I]

RewriteRule /ad/(.*).php$ /css/ [I]

RewriteRule /ad/(.*).asp$ /css/ [I]

RewriteRule /gg/(.*).php$ /css/ [I]

RewriteRule /gg/(.*).asp$ /css/ [I]

RewriteRule /img/(.*).php$ /css/ [I]

RewriteRule /img/(.*).asp$ /css/ [I]

RewriteRule /userphoto/(.*).php$ /css/ [I]

RewriteRule /userphoto/(.*).asp$ /css/ [I]

RewriteRule /upload/(.*).php$ /css/ [I]

RewriteRule /upload/(.*).asp$ /css/ [I]

RewriteRule /ckeditor/attached/(.*).php$ /css/ [I]

RewriteRule /ckeditor/attached/(.*).asp$ /css/ [I]

RewriteRule /config/loveedit/uploadfile/(.*).PHP$ /css/ [I]

RewriteRule /config/loveedit/uploadfile/(.*).asp$ /css/ [I]

三、nginx偽靜態(tài)的，參考如下：

將以下規(guī)則復(fù)制進(jìn)偽靜態(tài)文件里即可

location ~* ^/((.*)upload|ad|gg|img|ckeditor//attached|(.*)upload1|(.*)upload2|(.*)upload3)/.*/.(php|php5|asp)$

{

deny all;

}

四、IIS7，建立一個(gè)UTF8格式的文件，命名為web.config,將以下代碼復(fù)制到這個(gè)文件中

<?xml version="1.0" encoding="UTF-8"?>

<configuration>

    <system.webServer>

        <handlers accessPolicy="Read" />

    </system.webServer>

</configuration>

然后將這個(gè)文件web.config傳到后臺(tái)提示的漏洞文件夾中

如果以上的這個(gè)IIS7方法不適用， 請用以下代碼

<rule name="p1">

<match url="^ad/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a1">

<match url="^ad/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p0">

<match url="^gg/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a0">

<match url="^gg/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p2">

<match url="(.*)upload/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a2">

<match url="(.*)upload/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p3">

<match url="(.*)upload1/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a3">

<match url="(.*)upload1/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p4">

<match url="(.*)upload2/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a4">

<match url="(.*)upload2/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p5">

<match url="(.*)upload3/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a5">

<match url="(.*)upload3/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p6">

<match url="^img/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a6">

<match url="^img/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="p7">

<match url="^ckeditor/attached/(.*).php" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>

<rule name="a7">

<match url="^ckeditor/attached/(.*).asp" ignoreCase="false" />

<action type="Rewrite" url="/css/" appendQueryString="false" />

</rule>