郑州，联通， https://list.jd.com 被重定向到 p.egou.com！

V2EX = way to explore

V2EX 是一个关于分享和探索的地方

现在注册

已注册用户请登录

工单节点使用指南

请用平和的语言准确描述你所遇到的问题

厂商的技术支持和你一样也是有喜怒哀乐的普通人类，尊重是相互的

如果是关于 V2EX 本身的问题反馈，请使用反馈节点

这是一个创建于 2720 天前的主题，其中的信息可能已经有所发展或是发生改变。

直接通过 https 访问，https 连接没问题，但是服务器返回 302 重定向到 p.egou.com 了！用手机浏览器也会出现，所以应该不是浏览器、插件等的问题。

郑州，联通。用别的网络(移动 4G)则没有这个问题。

Chrome dev tools 中看到的请求、响应如下：

General

Request URL: https://list.jd.com/list.html?cat=[redacted]
Request Method: GET
Status Code: 302
Remote Address: 42.236.8.129:443
Referrer Policy: no-referrer-when-downgrade

Response Headers

age: 0
date: Wed, 09 May 2018 04:57:18 GMT
location: http://p.egou.com/n?[redacted]
server: JDWS/2.0
status: 302
via: http/1.1 ZZ-UNI-1-JCS-155 ( [cSsSfD])

20 条回复 2018-05-10 18:18:44 +08:00

will1916

2018-05-09 14:01:44 +08:00

看起来像是运营商局部地区劫持，或者小区带宽承包商劫持。

mcree

2018-05-09 15:24:18 +08:00

感觉京东的 https 不是 e2e 的，在中间被劫持了。用 curl 请求的话，会这样：

* Connected to list.jd.com (42.236.8.129) port 443 (#0)
* found 148 certificates in /etc/ssl/certs/ca-certificates.crt
* found 603 certificates in /etc/ssl/certs
* ALPN, offering http/1.1
* SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256
* server certificate verification OK
* server certificate status verification SKIPPED
* common name: *.jd.com (matched)
* server certificate expiration date OK
* server certificate activation date OK
* certificate public key: RSA
* certificate version: #3
* subject: C=CN,ST=beijing,L=beijing,O=BEIJING JINGDONG SHANGKE INFORMATION TECHNOLOGY CO.\, LTD.,CN=*.jd.com
* start date: Thu, 15 Mar 2018 04:02:02 GMT
* expire date: Tue, 28 Aug 2018 09:42:54 GMT
* issuer: C=BE,O=GlobalSign nv-sa,CN=GlobalSign Organization Validation CA - SHA256 - G2
* compression: NULL
* ALPN, server accepted to use http/1.1
> GET /list.html?cat=670,12800,12802 HTTP/1.1
> Host: list.jd.com
> authority: list.jd.com
> cache-control: max-age=0
> upgrade-insecure-requests: 1
> user-agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36
> accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
> dnt: 1
> accept-language: en-US,en;q=0.9,zh-CN;q=0.8,zh;q=0.7,zh-TW;q=0.6
> cookie: ipLoc-djd=1-72-4137-0; areaId=1; __jda=122270672.15258484760111185216130.1525848476.1525848476.1525848476.1; __jdc=122270672; __jdv=122270672|direct|-|none|-|1525848476012; 3AB9D23F7A4B3C9B=2CHSSK4AIRJBZHSHVXWZP2IVWEEUGJTGJZU5UIVFZL6X2IPOH2T5OPZDYIP2ZLORI2XMZOYSGEKEU72E6SAB6O54QM; listck=e19706debdda455e4793c3a3a86514ea; __jdu=15258484760111185216130; __jdb=122270672.9.15258484760111185216130|1.1525848476
> if-modified-since: Wed, 09 May 2018 06:50:00 GMT
>
< HTTP/1.1 302 Found
< Server: JDWS/2.0
< Date: Wed, 09 May 2018 07:21:41 GMT
< Transfer-Encoding: chunked
< Connection: keep-alive
< Location: http://p.egou.com/n?k=6JU4gZDFrI6HWlzl1NXH2mLErI6H2mLq6l2SWcLe6Ew7Wn4H6EDmrI6HYQLErnWF1nzm6N27rIW-&t=u=764050&url=http%3A%2F%2Flist.jd.com%2Flist.html%3Fcat%3D670%2C12800%2C12802%26_t_t_t%3D1
< Age: 0
< Via: http/1.1 ZZ-UNI-1-JCS-155 ( [cMsSf ])
<
{ [16000 bytes data]
: Wed, 09 May 2018 07:21:41 GMT
Cache-Control: max-age=0
Last-Modified: Wed, 09 May 2018 07:21:45 GMT
Via: BJ-Y-NX-113(MISS)

<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta http-equiv="Content-Type" cOntent="text/html; charset=">
<meta http-equiv="X-UA-Compatible" cOntent="IE=Edge">
<title> 游戏耳机游戏设备电脑、办公 [行情价格评价图片] - 京东</title>
<link type="text/css" rel="stylesheet" href="//misc.360buyimg.com/??jdf/1.0.0/unit/ui-base/5.0.0/ui-base.css,jdf/1.0.0/unit/shortcut/5.0.0/shortcut.css,jdf/1.0.0/unit/global-header/5.0.0/global-header.css,jdf/1.0.0/unit/myjd/5.0.0/myjd.css,jdf/1.0.0/unit/nav/5.0.0/nav.css,jdf/1.0.0/unt/shoppingcart/5.0.0/shoppingcart.css,jdf/1.0.0/unit/global-footer/5.0.0/global-footer.css,jdf/1.0.0/unit/service/5.0.0/service.css">

命令是 curl -v 'https://list.jd.com/list.html?cat=670,12800,12802' -H 'authority: list.jd.com' -H 'cache-control: max-age=0' -H 'upgrade-insecure-requests: 1' -H 'user-agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36' -H 'accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8' -H 'dnt: 1' -H 'accept-language: en-US,en;q=0.9,zh-CN;q=0.8,zh;q=0.7,zh-TW;q=0.6' -H 'cookie: ipLoc-djd=1-72-4137-0; areaId=1; __jda=122270672.15258484760111185216130.1525848476.1525848476.1525848476.1; __jdc=122270672; __jdv=122270672|direct|-|none|-|1525848476012; 3AB9D23F7A4B3C9B=2CHSSK4AIRJBZHSHVXWZP2IVWEEUGJTGJZU5UIVFZL6X2IPOH2T5OPZDYIP2ZLORI2XMZOYSGEKEU72E6SAB6O54QM; listck=e19706debdda455e4793c3a3a86514ea; __jdu=15258484760111185216130; __jdb=122270672.9.15258484760111185216130|1.1525848476' -H 'if-modified-since: Wed, 09 May 2018 06:50:00 GMT'

大家在 hosts 里把 list.jd.com 设成 42.236.8.129 的话，应该也能重现。

mcree

2018-05-09 15:28:14 +08:00

正常的时候是这样的：

< HTTP/1.1 200 OK
< Server: JDWS/2.0
< Date: Wed, 09 May 2018 07:25:56 GMT
< Content-Type: text/html; charset=
< Content-Length: 172706
< Connection: keep-alive
< Vary: Accept-Encoding
< ups: f102-251|a60-61
< head-status: M
< Expires: Wed, 09 May 2018 07:25:56 GMT
< Cache-Control: max-age=0
< Last-Modified: Wed, 09 May 2018 07:26:00 GMT
< Via: BJ-Y-NX-113(MISS), http/1.1 ZZ-UNI-1-JCS-155 ( [cMsSfW])
< Age: 0
<
{ [15978 bytes data]
<!DOCTYPE html>
.......