跟IFRAME挂马说再见
导读:
ifram是黑客们挂木马常用的代码,但是今天就给大家说说即使你加了这个代码你的网页木马也不管用!因为FF(Firefox)不怕IFRAME,于是就拿IE开刀,不知道比尔有没有奖发。我只写了一句代码,就搞定了,哈,痛快。就是IE only(特有的)的CSS中的属性expression,插进去试试,果然那些IFRAME不起作用了。 Chinaz~com
代码如下: Www_Chinaz_com
以下为引用的内容:
站长.站
分析:前缀:expression(表达式);这个前缀是可以随意更换的,我上面取名为"v",例如我可以换成:abc123:expression(this.src='about: blank',this.outerHTML='); 挂木马的家伙得先看你的CSS里这个前缀,然后挂马的时候写成这样 ,那个前缀一定要是和你的网站一样的(abc123),才能挂到马,哈哈哈!如果把前缀做成动态的,就非常OK了,看你怎么挂! Chinaz^com
优点:可以解决一些站长的烦恼,无须去理会人家插了多少IFRAME木马,那些IFRAME都不起作用;保护了访客的安全,这些IFRAME不执行,不下载,就不会破坏到访问的电脑;代码简单,仅一句CSS样式,不管你是ASP,ASP.NET,JSP,PHP还是RUBY,都通用;
中国站.长站
缺点只适合防御目前的挂IFRAME方案;使得人家挂马的方式要改变了,挂马者可以构造这样的代码 使我的防御方式失效,不过挂马都一定得看我的CSS里expression前面的这个"v" 字母,我可以换成任意的如:xgz:expression(...),哈哈哈,他也拿我没办法,再如,如果我这个前缀是变化的,是不是也行吖 *_*
Www_Chinaz_com
不能防御其他标记的马,如 中.国.站.长.站
中国.站.长站
另外转一种解决方案——这种方案不知道管不管用,没试过,方法如下: 站长.站
在网页最后加入 ,再用css控制它的显示方式,如: 中.国.站.长.站 <BR> 以下为引用的内容: <BR> xmp { <BR> width:1px; <BR> overflow:hidden; <BR> text-overflow:clip; <BR> white-space: nowrap; <BR> clear: none; <BR> float: none; <BR> line-height: 0px; <BR> display: inline; <BR> } <BR><BR>本文转自 <BR><A href="http://www.chinaz.com/Webmaster/Club/1129202A2007.html">http://www.chinaz.com/Webmaster/Club/1129202A2007.html</A> </div> <!-- Baidu Button BEGIN --> <div class="bdsharebuttonbox tracking-ad" style="float: right;" data-mod="popu_172"> <a href="#" class="bds_more" data-cmd="more" style="background-position:0 0 !important; background-image: url(http://bdimg.share.baidu.com/static/api/img/share/icons_0_16.png?v=d754dcc0.png) !important"></a> <a href="#" class="bds_qzone" data-cmd="qzone" title="分享到QQ空间" style="background-position:0 -52px !important"></a> <a href="#" class="bds_tsina" data-cmd="tsina" title="分享到新浪微博"style="background-position:0 -104px !important"></a> <a href="#" class="bds_tqq" data-cmd="tqq" title="分享到腾讯微博"style="background-position:0 -260px !important"></a> <a href="#" class="bds_renren" data-cmd="renren" title="分享到人人网"style="background-position:0 -208px !important"></a> <a href="#" class="bds_weixin" data-cmd="weixin" title="分享到微信"style="background-position:0 -1612px !important" ></a> </div> <script>window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "1", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "share": {} }; with (document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~(-new Date() / 36e5)];</script> <!-- Baidu Button END --> <link rel="stylesheet" href="http://static.blog.csdn.net/css/blog_detail.css" /> <!--172.16.140.12--> <!-- Baidu Button BEGIN --> <script type="text/javascript" id="bdshare_js" data="type=tools&amp;uid=1536434" ></script> <script type="text/javascript" id="bdshell_js"></script> <script type="text/javascript"> document.getElementById("bdshell_js").src = "http://bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=" + Math.ceil(new Date()/3600000) </script> <!-- Baidu Button END --> <div id="digg" ArticleId="1907337"> <dl id="btnDigg" class="digg digg_disable"> <dt>顶</dt> <dd>0</dd> </dl> <dl id="btnBury" class="digg digg_disable"> <dt>踩</dt> <dd>0</dd> </dl> </div> <ul class="article_next_prev"> <li class="prev_article"><span onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_shangyipian']);location.href='/sunfollowme/article/details/1901261';">上一篇</span><a href="/sunfollowme/article/details/1901261" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_shangyipian'])">深入解析ASP.NET架构</a></li> <li class="next_article"><span onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_xiayipian']);location.href='/sunfollowme/article/details/1939538';">下一篇</span><a href="/sunfollowme/article/details/1939538" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_xiayipian'])">javascript</a></li> </ul> <div style="clear:both; height:10px;"></div> </div> <div id="suggest"></div> <script language="javascript" type='text/javascript'> $(function(){ $.get("/sunfollowme/svc/GetSuggestContent/1907337",function(data){ $("#suggest").html(data); }); }); </script> <style> .blog-ass-articl dd { color: #369; width: 99%; /*修改行*/ float: left; overflow: hidden; font: normal normal 12px/23px "SimSun"; height: 23px; margin: 0; padding: 0 0 0 10px; margin-right: 30px; background: url(http://static.blog.csdn.net/skin/default/images/blog-dot-red3.gif) no-repeat 0 10px; } </style> <dl class="blog-ass-articl" id="res-relatived" > <dt><span>猜你在找</span></dt> <div id="adCollege" style="width: 42%;float: left;"> <script src="http://csdnimg.cn/jobreco/job_reco.js" type="text/javascript"></script> <script type="text/javascript"> csdn.position.showEdu({ sourceType: "blog", searchType: "detail", searchKey: "1907337", username: "", recordcount: "5", containerId: "adCollege" //容器DIV的id。 }); </script> </div> <div id="res" data-mod="popu_36" class="tracking-ad" style="width: 42%;float: left;margin-right: 30px;"></div> </dl> <script type="text/javascript"> $(function () { setTimeout(function () { var searchtitletags = '跟IFRAME挂马说再见' + ',' + $("#tags").html(); searchService({ index: 'blog', query: searchtitletags, from: 5, size: 5, appendTo: '#res', url: 'recommend', his: 2, client: "blog_cf_enhance", tmpl: '<dd style="background:url(http://static.blog.csdn.net/skin/default/images/blog-dot-red3.gif) no-repeat 0 10px;"><a href="#{ url }" title="#{ title }" strategy="#{ strategy }">#{ title }</a></dd>' }); }, 500); }); </script> <div id="ad_cen"> <!--AdForward Begin:--> <script type="text/javascript" src="http://csdnim.qtmojo.com/main/s?user=csdn|blog|banner2&db=csdnim&border=0&local=yes&js=ie" charset="gbk"></script> <!--AdForward End--> </div> <div class="comment_class"> <div id="comment_title" class="panel_head"> <span class="see_comment">查看评论</span><a name="comments"></a></div> <div id="comment_list"> </div> <div id="comment_bar"> </div> <div id="comment_form"> </div> <div class="announce"> * 以上用户言论只代表其个人观点,不代表CSDN网站的观点或立场<a name="reply"></a><a name="quote"></a></div> </div> <script type="text/javascript"> var fileName = '1907337'; var commentscount = 0; var islock = false </script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/comment.js"></script> <div id="ad_bot"> </div> <div id="report_dialog"> </div> <div id="d-top" style="bottom:60px;"> <a id="quick-reply" class="btn btn-top q-reply" title="快速回复" style="display:none;"> <img src="http://static.blog.csdn.net/images/blog-icon-reply.png" alt="快速回复"> </a> <a id="d-top-a" class="btn btn-top backtop" style="display: none;" title="返回顶部" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_huidaodingbu'])" style=""> <img src="http://static.blog.csdn.net/images/top.png" alt="TOP"> </a> </div> <script type="text/javascript"> $(function () { $("#ad_frm_0").height("90px"); setTimeout(function(){ $("#ad_frm_2").height("200px"); },1000); }); </script> <style type="text/css"> .tag_list { background: none repeat scroll 0 0 #FFFFFF; border: 1px solid #D7CBC1; color: #000000; font-size: 12px; line-height: 20px; list-style: none outside none; margin: 10px 2% 0 1%; padding: 1px; } .tag_list h5 { background: none repeat scroll 0 0 #E0DBD3; color: #47381C; font-size: 12px; height: 24px; line-height: 24px; padding: 0 5px; margin: 0; } .tag_list h5 a { color: #47381C; } .classify { margin: 10px 0; padding: 4px 12px 8px; } .classify a { margin-right: 20px; white-space: nowrap; } </style> <div class="tag_list" style="display:none"></div> <script language="javascript" type='text/javascript'> $(function(){ setTimeout(function(){ $.get("/sunfollowme/svc/GetTagContent",function(data){ $(".tag_list").html(data).show(); }); }); },500); </script> <div id="pop_win" style="display:none ;position: absolute; z-index: 10000; border: 1px solid rgb(220, 220, 220); top: 222.5px; left: 630px; opacity: 1; background: none 0px 0px repeat scroll rgb(255, 255, 255);"> </div> <div id="popup_mask"></div> <style> #popup_mask { position: absolute; width: 100%; height: 100%; background: #000; z-index: 9999; left: 0px; top: 0px; opacity: 0.3; filter: alpha(opacity=30); display: none; } </style> <script type="text/javascript"> $(function(){ setTimeout(function(){ $(".comment_body:contains('回复')").each(function(index,item){ var u=$(this).text().split(':')[0].toString().replace("回复","") var thisComment=$(this); if(u) { $.getJSON("https://passport.csdn.net/get/nick?callback=?", {users: u}, function(a) { if(a!=null&&a.data!=null&&a.data.length>0) { nick=a.data[0].n; if(u!=nick) { thisComment.text(thisComment.text().replace(u,nick)); } } }); } }); },200); setTimeout(function(){ $("a img[src='http://js.tongji.linezing.com/stats.gif']").parent().css({"position":"absolute","left":"50%"}); },300); }); function loginbox(){ var $logpop=$("#pop_win"); $logpop.html('<iframe src="https://passport.csdn.net/account/loginbox?service=http://static.blog.csdn.net/callback.htm" frameborder="0" height="600" width="400" scrolling="no"></iframe>'); $('#popup_mask').css({ opacity: 0.5, width: $( document ).width() + 'px', height: $( document ).height() + 'px' }); $('#popup_mask').css("display","block"); $logpop.css( { top: ($( window ).height() - $logpop.height())/ 2 + $( window ).scrollTop() + 'px', left:($( window ).width() - $logpop.width())/ 2 } ); setTimeout( function () { $logpop.show(); $logpop.css( { opacity: 1 } ); }, 200 ); $('#popup_mask').unbind("click"); $('#popup_mask').bind("click", function(){ $('#popup_mask').hide(); var $clopop = $("#pop_win"); $("#common_ask_div_sc").css("display","none"); $clopop.css( { opacity: 0 } ); setTimeout( function () { $clopop.hide(); }, 350 ); return false; }); } </script> <div class="clear"> </div> </div> </div> <div id="side"> <div class="side"> <div id="panel_Profile" class="panel"> <ul class="panel_head"><span>个人资料</span></ul> <ul class="panel_body profile"> <div id="blog_userface"> <a href="http://my.csdn.net/sunfollowme" target="_blank"> <img src="http://avatar.csdn.net/7/3/6/1_sunfollowme.jpg" title="访问我的空间" style="max-width:90%"/> </a> <br /> <span><a href="http://my.csdn.net/sunfollowme" class="user_name" target="_blank">sunfollowme</a></span> </div> <div class="interact"> <a href="javascript:void(0);" class="attent" id="span_add_follow" title="[加关注]"></a> <a href="javascript:void(0);" class="letter" title="[发私信]" onclick="window.open('http://msg.csdn.net/letters/model?receiver=sunfollowme','_blank','height=350,width=700');_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_sixin'])"></a> </div> <div id="blog_medal"> <div id="bms_box"> </div> </div> <ul id="blog_rank"> <li>访问:<span>18350次</span></li> <li>积分:<span>376</span> </li> <li >等级: <span style="position:relative;display:inline-block;z-index:1" > <img src="http://c.csdnimg.cn/jifen/images/xunzhang/jianzhang/blog2.png" alt="" style="vertical-align: middle;" id="leveImg"> <div id="smallTittle" style=" position: absolute; left: -24px; top: 25px; text-align: center; width: 101px; height: 32px; background-color: #fff; line-height: 32px; border: 2px #DDDDDD solid; box-shadow: 0px 2px 2px rgba (0,0,0,0.1); display: none; z-index: 999;"> <div style="left: 42%; top: -8px; position: absolute; width: 0; height: 0; border-left: 10px solid transparent; border-right: 10px solid transparent; border-bottom: 8px solid #EAEAEA;"></div> 积分:376 </div> </span> </li> <li>排名:<span>千里之外</span></li> </ul> <ul id="blog_statistics"> <li>原创:<span>23篇</span></li> <li>转载:<span>1篇</span></li> <li>译文:<span>0篇</span></li> <li>评论:<span>0条</span></li> </ul> </ul> </div> <div class="panel" id="panel_Search"> <ul class="panel_head"><span>文章搜索</span></ul> <ul class="panel_body"> <form id="frmSearch" action="http://so.csdn.net/search" class="form_search" target="_blank"> <span><input id="inputSearch" type="text" class="blogsearch" title="请输入关键字" /></span> <input id="btnSubmit" type="button" value="搜索" title="search in blog" /> <input type="hidden" name="q" id="inputQ" /> <input type="hidden" name="t" value="blog" /> <a id="btnSearchBlog" target="_blank"></a> </form> </ul> </div> <script type="text/javascript"> $(function () { $("#btnSubmit").click(function () { search(); }); $("#frmSearch").submit(function () { search(); return false; }); function search() { var url = "http://so.csdn.net/so/search/s.do?q=" + encodeURIComponent($("#inputSearch").val()) + "&u=" + username + "&t=blog"; window.location.href = url; } }); </script><div id="panel_Category" class="panel"> <ul class="panel_head"><span>文章分类</span></ul> <ul class="panel_body"> <li> <a href="/sunfollowme/article/category/349352" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">ASP.NET</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349341" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">ASP.NET基础知识</a><span>(8)</span> </li> <li> <a href="/sunfollowme/article/category/349351" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">JAVA</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/354391" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">javascript</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349340" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">JAVA基础知识</a><span>(1)</span> </li> <li> <a href="/sunfollowme/article/category/349353" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Struts2.0</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349342" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Struts2.0</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349344" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">UML相关知识</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/420653" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Web架构</a><span>(5)</span> </li> <li> <a href="/sunfollowme/article/category/349354" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">XML</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349343" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">XML相关知识</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349345" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">设计模式实践</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349356" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">设计模式引用</a><span>(0)</span> </li> </ul> </div><div id="panel_Archive" class="panel"> <ul class="panel_head"><span>文章存档</span></ul> <ul class="panel_body"> <div id="archive_list"> <!--归档统计--> <li><a href="/sunfollowme/article/month/2008/07">2008年07月</a><span>(9)</span></li><li><a href="/sunfollowme/article/month/2008/06">2008年06月</a><span>(3)</span></li><li><a href="/sunfollowme/article/month/2008/01">2008年01月</a><span>(1)</span></li><li><a href="/sunfollowme/article/month/2007/12">2007年12月</a><span>(1)</span></li><li><a href="/sunfollowme/article/month/2007/11">2007年11月</a><span>(9)</span></li><li><a href="/sunfollowme/article/month/2007/09">2007年09月</a><span>(3)</span></li> </div> </ul> </div> <div id="hotarticls" class="panel"> <ul class="panel_head"> <span> 阅读排行 </span> </ul> <ul class="panel_body itemlist"> <li> <a href="/sunfollowme/article/details/2622776" title="面向接口编程详解(二)——编程实例 - T2??s Notebook - 博客园">面向接口编程详解(二)——编程实例 - T2??s Notebook - 博客园</a><span>(1384)</span> </li> <li> <a href="/sunfollowme/article/details/1897327" title="&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法">&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法</a><span>(1373)</span> </li> <li> <a href="/sunfollowme/article/details/1901261" title="深入解析ASP.NET架构">深入解析ASP.NET架构</a><span>(1178)</span> </li> <li> <a href="/sunfollowme/article/details/1897794" title="Hosts文件使用--cookie--域名名">Hosts文件使用--cookie--域名名</a><span>(691)</span> </li> <li> <a href="/sunfollowme/article/details/2622788" title="面向接口编程详解(三)——模式研究">面向接口编程详解(三)——模式研究</a><span>(616)</span> </li> <li> <a href="/sunfollowme/article/details/2667393" title="为WebForms说几句话,以及一些ASP.NET开发上的经验(1)">为WebForms说几句话,以及一些ASP.NET开发上的经验(1)</a><span>(595)</span> </li> <li> <a href="/sunfollowme/article/details/1907337" title="跟IFRAME挂马说再见">跟IFRAME挂马说再见</a><span>(569)</span> </li> <li> <a href="/sunfollowme/article/details/1803663" title="java--正则表达式(引用)">java--正则表达式(引用)</a><span>(567)</span> </li> <li> <a href="/sunfollowme/article/details/2622773" title="面向接口编程详解(一)——思想基础 - T2??s Notebook - 博客园">面向接口编程详解(一)——思想基础 - T2??s Notebook - 博客园</a><span>(558)</span> </li> <li> <a href="/sunfollowme/article/details/2599718" title="博客园月刊-博客园">博客园月刊-博客园</a><span>(471)</span> </li> </ul> </div> <div id="hotarticls2" class="panel"> <ul class="panel_head"><span>评论排行</span></ul> <ul class="panel_body itemlist"> <li> <a href="/sunfollowme/article/details/2667393" title="为WebForms说几句话,以及一些ASP.NET开发上的经验(1)">为WebForms说几句话,以及一些ASP.NET开发上的经验(1)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1900641" title="ASP调用存储过程的技巧">ASP调用存储过程的技巧</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1899636" title="{JS}JavaScript使用正则表达式">{JS}JavaScript使用正则表达式</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1899604" title="JS常用表单验证">JS常用表单验证</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1897794" title="Hosts文件使用--cookie--域名名">Hosts文件使用--cookie--域名名</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1897327" title="&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法">&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1895359" title="一行代码搞定你的QueryString!(原创)">一行代码搞定你的QueryString!(原创)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1895304" title="ASP.NET页面传值方式 (一)">ASP.NET页面传值方式 (一)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1803663" title="java--正则表达式(引用)">java--正则表达式(引用)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1795000" title="ASP.net中页面事件的先后执行顺序(引用)">ASP.net中页面事件的先后执行顺序(引用)</a><span>(0)</span> </li> </ul> </div> <div id="homepageArticles" class="panel tracking-ad" data-mod="popu_4"> <ul class="panel_head"><span>推荐文章</span></ul> <ul class="panel_body" id="ad_commend"> <ul> <li><a href="http://blog.csdn.net/nugongahou110/article/details/50698382" target="_blank">*Android自定义ViewGroup打造各种风格的SlidingMenu</a></li> <li><a href="http://blog.csdn.net/lmj623565791/article/details/50709663" target="_blank">* Android 6.0 运行时权限处理完全解析</a></li> <li><a href="http://blog.csdn.net/u011225629/article/details/50492403" target="_blank">* 数据库性能优化之SQL语句优化</a></li> <li><a href="http://blog.csdn.net/harvic880925/article/details/50598322"target="_blank">*Animation动画详解(七)——ObjectAnimator基本使用</a></li> <li><a href="http://blog.csdn.net/luoshengyang/article/details/50527574" target="_blank">* Chromium网页URL加载过程分析</a></li> <li><a href="http://jiezhu2007.iteye.com/blog/2277613" target="_blank">* 大数据三种典型云服务模式</a></li> </ul></ul> </div> </div> <div class="clear"> </div> </div> <div class="clear"> </div> </div> <script type="text/javascript" src="http://c.csdnimg.cn/rabbit/cnick/cnick.js"></script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/newblog.min.js"></script> <script type="text/javascript" src="http://medal.blog.csdn.net/showblogmedal.ashx?blogid=243929"></script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/JavaScript1.js"></script> <script type="text/javascript" src="http://passport.csdn.net/content/loginbox/login.js"></script> <script type="text/javascript">document.write("<img src=http://counter.csdn.net/pv.aspx?id=24 border=0 width=0 height=0>");</script> <script type="text/javascript" src="http://www.csdn.net/ui/scripts/Csdn/counter.js"></script> <script type="text/javascript" src="http://ad.csdn.net/scripts/ad-blog.js"></script> <script type="text/javascript"> $(function () { function __get_code_toolbar(snippet_id) { return $("<span class='tracking-ad' data-mod='popu_167'><a href='https://code.csdn.net/snippets/" + snippet_id + "' target='_blank' title='在CODE上查看代码片' style='text-indent:0;'><img src='https://code.csdn.net/assets/CODE_ico.png' width=12 height=12 alt='在CODE上查看代码片' style='position:relative;top:1px;left:2px;'/></a></span>" + "<span class='tracking-ad' data-mod='popu_170'><a href='https://code.csdn.net/snippets/" + snippet_id + "/fork' target='_blank' title='派生到我的代码片' style='text-indent:0;'><img src='https://code.csdn.net/assets/ico_fork.svg' width=12 height=12 alt='派生到我的代码片' style='position:relative;top:2px;left:2px;'/></a></span>"); } $("[code_snippet_id]").each(function () { __s_id = $(this).attr("code_snippet_id"); if (__s_id != null && __s_id != "" && __s_id != 0 && parseInt(__s_id) > 70020) { __code_tool = __get_code_toolbar(__s_id); $(this).prev().find(".tools").append(__code_tool); } }); $(".bar").show(); }); </script> </div> <!--new top--> <script id="csdn-toolbar-id" btnId="header_notice_num" wrapId="note1" count="5" subCount="5" type="text/javascript" src="http://c.csdnimg.cn/public/common/toolbar/js/toolbar.js"></script> <!--new top--> <link href="http://c.csdnimg.cn/comm_ask/css/ask_float_block.css" type="text/css" rel="stylesheet" /> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/wmd.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/showdown.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/prettify.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/apps/ask_float_block.js'></script> </body> </html>
ifram是黑客们挂木马常用的代码,但是今天就给大家说说即使你加了这个代码你的网页木马也不管用!因为FF(Firefox)不怕IFRAME,于是就拿IE开刀,不知道比尔有没有奖发。我只写了一句代码,就搞定了,哈,痛快。就是IE only(特有的)的CSS中的属性expression,插进去试试,果然那些IFRAME不起作用了。 Chinaz~com
代码如下: Www_Chinaz_com
以下为引用的内容:
站长.站
分析:前缀:expression(表达式);这个前缀是可以随意更换的,我上面取名为"v",例如我可以换成:abc123:expression(this.src='about: blank',this.outerHTML='); 挂木马的家伙得先看你的CSS里这个前缀,然后挂马的时候写成这样 ,那个前缀一定要是和你的网站一样的(abc123),才能挂到马,哈哈哈!如果把前缀做成动态的,就非常OK了,看你怎么挂! Chinaz^com
优点:可以解决一些站长的烦恼,无须去理会人家插了多少IFRAME木马,那些IFRAME都不起作用;保护了访客的安全,这些IFRAME不执行,不下载,就不会破坏到访问的电脑;代码简单,仅一句CSS样式,不管你是ASP,ASP.NET,JSP,PHP还是RUBY,都通用;
中国站.长站
缺点只适合防御目前的挂IFRAME方案;使得人家挂马的方式要改变了,挂马者可以构造这样的代码 使我的防御方式失效,不过挂马都一定得看我的CSS里expression前面的这个"v" 字母,我可以换成任意的如:xgz:expression(...),哈哈哈,他也拿我没办法,再如,如果我这个前缀是变化的,是不是也行吖 *_*
Www_Chinaz_com
不能防御其他标记的马,如 中.国.站.长.站
中国.站.长站
另外转一种解决方案——这种方案不知道管不管用,没试过,方法如下: 站长.站
在网页最后加入 ,再用css控制它的显示方式,如: 中.国.站.长.站 <BR> 以下为引用的内容: <BR> xmp { <BR> width:1px; <BR> overflow:hidden; <BR> text-overflow:clip; <BR> white-space: nowrap; <BR> clear: none; <BR> float: none; <BR> line-height: 0px; <BR> display: inline; <BR> } <BR><BR>本文转自 <BR><A href="http://www.chinaz.com/Webmaster/Club/1129202A2007.html">http://www.chinaz.com/Webmaster/Club/1129202A2007.html</A> </div> <!-- Baidu Button BEGIN --> <div class="bdsharebuttonbox tracking-ad" style="float: right;" data-mod="popu_172"> <a href="#" class="bds_more" data-cmd="more" style="background-position:0 0 !important; background-image: url(http://bdimg.share.baidu.com/static/api/img/share/icons_0_16.png?v=d754dcc0.png) !important"></a> <a href="#" class="bds_qzone" data-cmd="qzone" title="分享到QQ空间" style="background-position:0 -52px !important"></a> <a href="#" class="bds_tsina" data-cmd="tsina" title="分享到新浪微博"style="background-position:0 -104px !important"></a> <a href="#" class="bds_tqq" data-cmd="tqq" title="分享到腾讯微博"style="background-position:0 -260px !important"></a> <a href="#" class="bds_renren" data-cmd="renren" title="分享到人人网"style="background-position:0 -208px !important"></a> <a href="#" class="bds_weixin" data-cmd="weixin" title="分享到微信"style="background-position:0 -1612px !important" ></a> </div> <script>window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "1", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "share": {} }; with (document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~(-new Date() / 36e5)];</script> <!-- Baidu Button END --> <link rel="stylesheet" href="http://static.blog.csdn.net/css/blog_detail.css" /> <!--172.16.140.12--> <!-- Baidu Button BEGIN --> <script type="text/javascript" id="bdshare_js" data="type=tools&amp;uid=1536434" ></script> <script type="text/javascript" id="bdshell_js"></script> <script type="text/javascript"> document.getElementById("bdshell_js").src = "http://bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=" + Math.ceil(new Date()/3600000) </script> <!-- Baidu Button END --> <div id="digg" ArticleId="1907337"> <dl id="btnDigg" class="digg digg_disable"> <dt>顶</dt> <dd>0</dd> </dl> <dl id="btnBury" class="digg digg_disable"> <dt>踩</dt> <dd>0</dd> </dl> </div> <ul class="article_next_prev"> <li class="prev_article"><span onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_shangyipian']);location.href='/sunfollowme/article/details/1901261';">上一篇</span><a href="/sunfollowme/article/details/1901261" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_shangyipian'])">深入解析ASP.NET架构</a></li> <li class="next_article"><span onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_xiayipian']);location.href='/sunfollowme/article/details/1939538';">下一篇</span><a href="/sunfollowme/article/details/1939538" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_xiayipian'])">javascript</a></li> </ul> <div style="clear:both; height:10px;"></div> </div> <div id="suggest"></div> <script language="javascript" type='text/javascript'> $(function(){ $.get("/sunfollowme/svc/GetSuggestContent/1907337",function(data){ $("#suggest").html(data); }); }); </script> <style> .blog-ass-articl dd { color: #369; width: 99%; /*修改行*/ float: left; overflow: hidden; font: normal normal 12px/23px "SimSun"; height: 23px; margin: 0; padding: 0 0 0 10px; margin-right: 30px; background: url(http://static.blog.csdn.net/skin/default/images/blog-dot-red3.gif) no-repeat 0 10px; } </style> <dl class="blog-ass-articl" id="res-relatived" > <dt><span>猜你在找</span></dt> <div id="adCollege" style="width: 42%;float: left;"> <script src="http://csdnimg.cn/jobreco/job_reco.js" type="text/javascript"></script> <script type="text/javascript"> csdn.position.showEdu({ sourceType: "blog", searchType: "detail", searchKey: "1907337", username: "", recordcount: "5", containerId: "adCollege" //容器DIV的id。 }); </script> </div> <div id="res" data-mod="popu_36" class="tracking-ad" style="width: 42%;float: left;margin-right: 30px;"></div> </dl> <script type="text/javascript"> $(function () { setTimeout(function () { var searchtitletags = '跟IFRAME挂马说再见' + ',' + $("#tags").html(); searchService({ index: 'blog', query: searchtitletags, from: 5, size: 5, appendTo: '#res', url: 'recommend', his: 2, client: "blog_cf_enhance", tmpl: '<dd style="background:url(http://static.blog.csdn.net/skin/default/images/blog-dot-red3.gif) no-repeat 0 10px;"><a href="#{ url }" title="#{ title }" strategy="#{ strategy }">#{ title }</a></dd>' }); }, 500); }); </script> <div id="ad_cen"> <!--AdForward Begin:--> <script type="text/javascript" src="http://csdnim.qtmojo.com/main/s?user=csdn|blog|banner2&db=csdnim&border=0&local=yes&js=ie" charset="gbk"></script> <!--AdForward End--> </div> <div class="comment_class"> <div id="comment_title" class="panel_head"> <span class="see_comment">查看评论</span><a name="comments"></a></div> <div id="comment_list"> </div> <div id="comment_bar"> </div> <div id="comment_form"> </div> <div class="announce"> * 以上用户言论只代表其个人观点,不代表CSDN网站的观点或立场<a name="reply"></a><a name="quote"></a></div> </div> <script type="text/javascript"> var fileName = '1907337'; var commentscount = 0; var islock = false </script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/comment.js"></script> <div id="ad_bot"> </div> <div id="report_dialog"> </div> <div id="d-top" style="bottom:60px;"> <a id="quick-reply" class="btn btn-top q-reply" title="快速回复" style="display:none;"> <img src="http://static.blog.csdn.net/images/blog-icon-reply.png" alt="快速回复"> </a> <a id="d-top-a" class="btn btn-top backtop" style="display: none;" title="返回顶部" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_huidaodingbu'])" style=""> <img src="http://static.blog.csdn.net/images/top.png" alt="TOP"> </a> </div> <script type="text/javascript"> $(function () { $("#ad_frm_0").height("90px"); setTimeout(function(){ $("#ad_frm_2").height("200px"); },1000); }); </script> <style type="text/css"> .tag_list { background: none repeat scroll 0 0 #FFFFFF; border: 1px solid #D7CBC1; color: #000000; font-size: 12px; line-height: 20px; list-style: none outside none; margin: 10px 2% 0 1%; padding: 1px; } .tag_list h5 { background: none repeat scroll 0 0 #E0DBD3; color: #47381C; font-size: 12px; height: 24px; line-height: 24px; padding: 0 5px; margin: 0; } .tag_list h5 a { color: #47381C; } .classify { margin: 10px 0; padding: 4px 12px 8px; } .classify a { margin-right: 20px; white-space: nowrap; } </style> <div class="tag_list" style="display:none"></div> <script language="javascript" type='text/javascript'> $(function(){ setTimeout(function(){ $.get("/sunfollowme/svc/GetTagContent",function(data){ $(".tag_list").html(data).show(); }); }); },500); </script> <div id="pop_win" style="display:none ;position: absolute; z-index: 10000; border: 1px solid rgb(220, 220, 220); top: 222.5px; left: 630px; opacity: 1; background: none 0px 0px repeat scroll rgb(255, 255, 255);"> </div> <div id="popup_mask"></div> <style> #popup_mask { position: absolute; width: 100%; height: 100%; background: #000; z-index: 9999; left: 0px; top: 0px; opacity: 0.3; filter: alpha(opacity=30); display: none; } </style> <script type="text/javascript"> $(function(){ setTimeout(function(){ $(".comment_body:contains('回复')").each(function(index,item){ var u=$(this).text().split(':')[0].toString().replace("回复","") var thisComment=$(this); if(u) { $.getJSON("https://passport.csdn.net/get/nick?callback=?", {users: u}, function(a) { if(a!=null&&a.data!=null&&a.data.length>0) { nick=a.data[0].n; if(u!=nick) { thisComment.text(thisComment.text().replace(u,nick)); } } }); } }); },200); setTimeout(function(){ $("a img[src='http://js.tongji.linezing.com/stats.gif']").parent().css({"position":"absolute","left":"50%"}); },300); }); function loginbox(){ var $logpop=$("#pop_win"); $logpop.html('<iframe src="https://passport.csdn.net/account/loginbox?service=http://static.blog.csdn.net/callback.htm" frameborder="0" height="600" width="400" scrolling="no"></iframe>'); $('#popup_mask').css({ opacity: 0.5, width: $( document ).width() + 'px', height: $( document ).height() + 'px' }); $('#popup_mask').css("display","block"); $logpop.css( { top: ($( window ).height() - $logpop.height())/ 2 + $( window ).scrollTop() + 'px', left:($( window ).width() - $logpop.width())/ 2 } ); setTimeout( function () { $logpop.show(); $logpop.css( { opacity: 1 } ); }, 200 ); $('#popup_mask').unbind("click"); $('#popup_mask').bind("click", function(){ $('#popup_mask').hide(); var $clopop = $("#pop_win"); $("#common_ask_div_sc").css("display","none"); $clopop.css( { opacity: 0 } ); setTimeout( function () { $clopop.hide(); }, 350 ); return false; }); } </script> <div class="clear"> </div> </div> </div> <div id="side"> <div class="side"> <div id="panel_Profile" class="panel"> <ul class="panel_head"><span>个人资料</span></ul> <ul class="panel_body profile"> <div id="blog_userface"> <a href="http://my.csdn.net/sunfollowme" target="_blank"> <img src="http://avatar.csdn.net/7/3/6/1_sunfollowme.jpg" title="访问我的空间" style="max-width:90%"/> </a> <br /> <span><a href="http://my.csdn.net/sunfollowme" class="user_name" target="_blank">sunfollowme</a></span> </div> <div class="interact"> <a href="javascript:void(0);" class="attent" id="span_add_follow" title="[加关注]"></a> <a href="javascript:void(0);" class="letter" title="[发私信]" onclick="window.open('http://msg.csdn.net/letters/model?receiver=sunfollowme','_blank','height=350,width=700');_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_sixin'])"></a> </div> <div id="blog_medal"> <div id="bms_box"> </div> </div> <ul id="blog_rank"> <li>访问:<span>18350次</span></li> <li>积分:<span>376</span> </li> <li >等级: <span style="position:relative;display:inline-block;z-index:1" > <img src="http://c.csdnimg.cn/jifen/images/xunzhang/jianzhang/blog2.png" alt="" style="vertical-align: middle;" id="leveImg"> <div id="smallTittle" style=" position: absolute; left: -24px; top: 25px; text-align: center; width: 101px; height: 32px; background-color: #fff; line-height: 32px; border: 2px #DDDDDD solid; box-shadow: 0px 2px 2px rgba (0,0,0,0.1); display: none; z-index: 999;"> <div style="left: 42%; top: -8px; position: absolute; width: 0; height: 0; border-left: 10px solid transparent; border-right: 10px solid transparent; border-bottom: 8px solid #EAEAEA;"></div> 积分:376 </div> </span> </li> <li>排名:<span>千里之外</span></li> </ul> <ul id="blog_statistics"> <li>原创:<span>23篇</span></li> <li>转载:<span>1篇</span></li> <li>译文:<span>0篇</span></li> <li>评论:<span>0条</span></li> </ul> </ul> </div> <div class="panel" id="panel_Search"> <ul class="panel_head"><span>文章搜索</span></ul> <ul class="panel_body"> <form id="frmSearch" action="http://so.csdn.net/search" class="form_search" target="_blank"> <span><input id="inputSearch" type="text" class="blogsearch" title="请输入关键字" /></span> <input id="btnSubmit" type="button" value="搜索" title="search in blog" /> <input type="hidden" name="q" id="inputQ" /> <input type="hidden" name="t" value="blog" /> <a id="btnSearchBlog" target="_blank"></a> </form> </ul> </div> <script type="text/javascript"> $(function () { $("#btnSubmit").click(function () { search(); }); $("#frmSearch").submit(function () { search(); return false; }); function search() { var url = "http://so.csdn.net/so/search/s.do?q=" + encodeURIComponent($("#inputSearch").val()) + "&u=" + username + "&t=blog"; window.location.href = url; } }); </script><div id="panel_Category" class="panel"> <ul class="panel_head"><span>文章分类</span></ul> <ul class="panel_body"> <li> <a href="/sunfollowme/article/category/349352" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">ASP.NET</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349341" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">ASP.NET基础知识</a><span>(8)</span> </li> <li> <a href="/sunfollowme/article/category/349351" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">JAVA</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/354391" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">javascript</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349340" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">JAVA基础知识</a><span>(1)</span> </li> <li> <a href="/sunfollowme/article/category/349353" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Struts2.0</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349342" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Struts2.0</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349344" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">UML相关知识</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/420653" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">Web架构</a><span>(5)</span> </li> <li> <a href="/sunfollowme/article/category/349354" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">XML</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349343" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">XML相关知识</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349345" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">设计模式实践</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/category/349356" onclick="_gaq.push(['_trackEvent','function', 'onclick', 'blog_articles_wenzhangfenlei']); ">设计模式引用</a><span>(0)</span> </li> </ul> </div><div id="panel_Archive" class="panel"> <ul class="panel_head"><span>文章存档</span></ul> <ul class="panel_body"> <div id="archive_list"> <!--归档统计--> <li><a href="/sunfollowme/article/month/2008/07">2008年07月</a><span>(9)</span></li><li><a href="/sunfollowme/article/month/2008/06">2008年06月</a><span>(3)</span></li><li><a href="/sunfollowme/article/month/2008/01">2008年01月</a><span>(1)</span></li><li><a href="/sunfollowme/article/month/2007/12">2007年12月</a><span>(1)</span></li><li><a href="/sunfollowme/article/month/2007/11">2007年11月</a><span>(9)</span></li><li><a href="/sunfollowme/article/month/2007/09">2007年09月</a><span>(3)</span></li> </div> </ul> </div> <div id="hotarticls" class="panel"> <ul class="panel_head"> <span> 阅读排行 </span> </ul> <ul class="panel_body itemlist"> <li> <a href="/sunfollowme/article/details/2622776" title="面向接口编程详解(二)——编程实例 - T2??s Notebook - 博客园">面向接口编程详解(二)——编程实例 - T2??s Notebook - 博客园</a><span>(1384)</span> </li> <li> <a href="/sunfollowme/article/details/1897327" title="&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法">&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法</a><span>(1373)</span> </li> <li> <a href="/sunfollowme/article/details/1901261" title="深入解析ASP.NET架构">深入解析ASP.NET架构</a><span>(1178)</span> </li> <li> <a href="/sunfollowme/article/details/1897794" title="Hosts文件使用--cookie--域名名">Hosts文件使用--cookie--域名名</a><span>(691)</span> </li> <li> <a href="/sunfollowme/article/details/2622788" title="面向接口编程详解(三)——模式研究">面向接口编程详解(三)——模式研究</a><span>(616)</span> </li> <li> <a href="/sunfollowme/article/details/2667393" title="为WebForms说几句话,以及一些ASP.NET开发上的经验(1)">为WebForms说几句话,以及一些ASP.NET开发上的经验(1)</a><span>(595)</span> </li> <li> <a href="/sunfollowme/article/details/1907337" title="跟IFRAME挂马说再见">跟IFRAME挂马说再见</a><span>(569)</span> </li> <li> <a href="/sunfollowme/article/details/1803663" title="java--正则表达式(引用)">java--正则表达式(引用)</a><span>(567)</span> </li> <li> <a href="/sunfollowme/article/details/2622773" title="面向接口编程详解(一)——思想基础 - T2??s Notebook - 博客园">面向接口编程详解(一)——思想基础 - T2??s Notebook - 博客园</a><span>(558)</span> </li> <li> <a href="/sunfollowme/article/details/2599718" title="博客园月刊-博客园">博客园月刊-博客园</a><span>(471)</span> </li> </ul> </div> <div id="hotarticls2" class="panel"> <ul class="panel_head"><span>评论排行</span></ul> <ul class="panel_body itemlist"> <li> <a href="/sunfollowme/article/details/2667393" title="为WebForms说几句话,以及一些ASP.NET开发上的经验(1)">为WebForms说几句话,以及一些ASP.NET开发上的经验(1)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1900641" title="ASP调用存储过程的技巧">ASP调用存储过程的技巧</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1899636" title="{JS}JavaScript使用正则表达式">{JS}JavaScript使用正则表达式</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1899604" title="JS常用表单验证">JS常用表单验证</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1897794" title="Hosts文件使用--cookie--域名名">Hosts文件使用--cookie--域名名</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1897327" title="&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法">&quot;超时时间已到。在操作完成之前超时时间已过或服务器未响应&quot;的解决方法</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1895359" title="一行代码搞定你的QueryString!(原创)">一行代码搞定你的QueryString!(原创)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1895304" title="ASP.NET页面传值方式 (一)">ASP.NET页面传值方式 (一)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1803663" title="java--正则表达式(引用)">java--正则表达式(引用)</a><span>(0)</span> </li> <li> <a href="/sunfollowme/article/details/1795000" title="ASP.net中页面事件的先后执行顺序(引用)">ASP.net中页面事件的先后执行顺序(引用)</a><span>(0)</span> </li> </ul> </div> <div id="homepageArticles" class="panel tracking-ad" data-mod="popu_4"> <ul class="panel_head"><span>推荐文章</span></ul> <ul class="panel_body" id="ad_commend"> <ul> <li><a href="http://blog.csdn.net/nugongahou110/article/details/50698382" target="_blank">*Android自定义ViewGroup打造各种风格的SlidingMenu</a></li> <li><a href="http://blog.csdn.net/lmj623565791/article/details/50709663" target="_blank">* Android 6.0 运行时权限处理完全解析</a></li> <li><a href="http://blog.csdn.net/u011225629/article/details/50492403" target="_blank">* 数据库性能优化之SQL语句优化</a></li> <li><a href="http://blog.csdn.net/harvic880925/article/details/50598322"target="_blank">*Animation动画详解(七)——ObjectAnimator基本使用</a></li> <li><a href="http://blog.csdn.net/luoshengyang/article/details/50527574" target="_blank">* Chromium网页URL加载过程分析</a></li> <li><a href="http://jiezhu2007.iteye.com/blog/2277613" target="_blank">* 大数据三种典型云服务模式</a></li> </ul></ul> </div> </div> <div class="clear"> </div> </div> <div class="clear"> </div> </div> <script type="text/javascript" src="http://c.csdnimg.cn/rabbit/cnick/cnick.js"></script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/newblog.min.js"></script> <script type="text/javascript" src="http://medal.blog.csdn.net/showblogmedal.ashx?blogid=243929"></script> <script type="text/javascript" src="http://static.blog.csdn.net/scripts/JavaScript1.js"></script> <script type="text/javascript" src="http://passport.csdn.net/content/loginbox/login.js"></script> <script type="text/javascript">document.write("<img src=http://counter.csdn.net/pv.aspx?id=24 border=0 width=0 height=0>");</script> <script type="text/javascript" src="http://www.csdn.net/ui/scripts/Csdn/counter.js"></script> <script type="text/javascript" src="http://ad.csdn.net/scripts/ad-blog.js"></script> <script type="text/javascript"> $(function () { function __get_code_toolbar(snippet_id) { return $("<span class='tracking-ad' data-mod='popu_167'><a href='https://code.csdn.net/snippets/" + snippet_id + "' target='_blank' title='在CODE上查看代码片' style='text-indent:0;'><img src='https://code.csdn.net/assets/CODE_ico.png' width=12 height=12 alt='在CODE上查看代码片' style='position:relative;top:1px;left:2px;'/></a></span>" + "<span class='tracking-ad' data-mod='popu_170'><a href='https://code.csdn.net/snippets/" + snippet_id + "/fork' target='_blank' title='派生到我的代码片' style='text-indent:0;'><img src='https://code.csdn.net/assets/ico_fork.svg' width=12 height=12 alt='派生到我的代码片' style='position:relative;top:2px;left:2px;'/></a></span>"); } $("[code_snippet_id]").each(function () { __s_id = $(this).attr("code_snippet_id"); if (__s_id != null && __s_id != "" && __s_id != 0 && parseInt(__s_id) > 70020) { __code_tool = __get_code_toolbar(__s_id); $(this).prev().find(".tools").append(__code_tool); } }); $(".bar").show(); }); </script> </div> <!--new top--> <script id="csdn-toolbar-id" btnId="header_notice_num" wrapId="note1" count="5" subCount="5" type="text/javascript" src="http://c.csdnimg.cn/public/common/toolbar/js/toolbar.js"></script> <!--new top--> <link href="http://c.csdnimg.cn/comm_ask/css/ask_float_block.css" type="text/css" rel="stylesheet" /> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/wmd.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/showdown.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/libs/prettify.js'></script> <script language='JavaScript' type='text/javascript' src='http://c.csdnimg.cn/comm_ask/js/apps/ask_float_block.js'></script> </body> </html>