安全:http host头攻击漏洞 nginx中修复:server { listen 80; server_name 127.0.0.1 192.168.1.32; if ($http_Host !~* ^192.168.1.32|127.0.0.1$) { return 403; } rewrite ^(.*) https://$server_name$1 permanent; }对于头部非192.168.1.32|127.0.0.1一律返回403