{"id":2317,"date":"2024-12-11T15:12:50","date_gmt":"2024-12-11T12:12:50","guid":{"rendered":"https:\/\/www.beratarikan.com.tr\/?p=2317"},"modified":"2024-12-11T15:12:52","modified_gmt":"2024-12-11T12:12:52","slug":"fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi","status":"publish","type":"post","link":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/","title":{"rendered":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131"},"content":{"rendered":"\n
Dijital d\u00fcnyada verinin \u00f6nemi giderek artarken, bu verileri korumak da \u00f6nemli hale gelmi\u015ftir. \u00d6zellikle web siteleri, i\u00e7eriklerini ve kullan\u0131c\u0131 bilgilerini koruma konusunda giderek daha karma\u015f\u0131k tehditlerle kar\u015f\u0131 kar\u015f\u0131ya kalmaktad\u0131r. Web scraping (veri kaz\u0131ma) ad\u0131 verilen teknikle, botlar arac\u0131l\u0131\u011f\u0131yla web sitelerinden i\u00e7erik \u00e7almak, bilgi g\u00fcvenligi a\u00e7\u0131s\u0131ndan b\u00fcy\u00fck bir risk olu\u015fturmaktad\u0131r.<\/p>\n\n\n\n
Bu noktada, Anti-Crawling sistemleri, web uygulamalar\u0131n\u0131 korumak i\u00e7in bir \u00e7\u00f6z\u00fcm sunmaktad\u0131r. Bu sistemler, bot trafigini tespit ederek engellemek ve yaln\u0131zca me\u015fru kullan\u0131c\u0131lar\u0131n eri\u015fimine izin vermek i\u00e7in tasarlanm\u0131\u015ftir. Anti-Crawling sistemleri i\u00e7in bir\u00e7ok farkl\u0131 \u00e7\u00f6z\u00fcmler olmakla birlikte ben bu yaz\u0131mda FortiGate Firewall \u00fczerinden gidece\u011fim. Bu \u00e7\u00f6z\u00fcmlerden k\u0131saca bahsetmek gerekirse genellikle kullan\u0131c\u0131 davran\u0131\u015flar\u0131n\u0131n izlenmesi, CAPTCHA entegrasyonu, h\u0131z s\u0131n\u0131rlama (rate limiting), IP engelleme, co\u011frafi filtreleme ve bot tespitine y\u00f6nelik sistemler diyebilirim.Fortigate Firewall ise, sundu\u011fu esnek g\u00fcvenlik politikalar\u0131 ve ileri seviye tehdit alg\u0131lama \u00f6zellikleri ile Anti Crawling mekanizmalar\u0131 i\u00e7in olduk\u00e7a ideal bir ara\u00e7t\u0131r.<\/p>\n\n\n\n
Bu makalede, Fortigate Firewall kullanarak etkili bir Anti Crawling sisteminin nas\u0131l yap\u0131land\u0131r\u0131labilece\u011fini ad\u0131m ad\u0131m ele alaca\u011f\u0131z.<\/p>\n\n\n\n
Bu yap\u0131land\u0131rma i\u00e7in benim izledi\u011fim ad\u0131mlar\u0131 \u015fu \u015fekilde \u00f6zetleyebilirim:<\/p>\n\n\n\n
\n
Web Filtreleme Politikas\u0131 Olu\u015fturma<\/strong><\/li>\n\n\n\n
Uygulama Kontrol\u00fc Politikas\u0131 Olu\u015fturma<\/strong><\/li>\n\n\n\n
Rate Limiting Kurulumu<\/strong><\/li>\n\n\n\n
Log Analizi<\/strong><\/li>\n<\/ol>\n\n\n\n
\u015eimdi, ilk ad\u0131m olan Web Filtreleme Politikas\u0131<\/strong> olu\u015fturma s\u00fcreciyle ba\u015flayal\u0131m.<\/p>\n\n\n\n
\n
Web Filtreleme Politikas\u0131 Olu\u015fturma<\/strong><\/li>\n<\/ul>\n\n\n\n
Web filtreleme politikalar\u0131n\u0131n amac\u0131, a\u011f g\u00fcvenli\u011fini art\u0131rmak ve a\u011f kullan\u0131c\u0131lar\u0131n\u0131n belirli t\u00fcrde i\u00e7eriklere eri\u015fimini s\u0131n\u0131rlayarak daha kontroll\u00fc ve g\u00fcvenli bir dijital ortam sa\u011flamakt\u0131r. Bu politika Anti Crawling sistemimizin bir par\u00e7as\u0131 olarak botlar\u0131n izinsiz veri taramas\u0131 yapmas\u0131n\u0131 \u00f6nler; b\u00f6ylece hassas bilgilerin korunmas\u0131n\u0131 ve sistem kaynaklar\u0131n\u0131n k\u00f6t\u00fcye kullan\u0131lmas\u0131n\u0131n engellenmesini sa\u011flar.<\/p>\n\n\n\n
Web Filter ile ilgili politikam\u0131z\u0131 yazmadan \u00f6nce Web Filter se\u00e7ene\u011fi alt\u0131nda bir profil olu\u015fturmam\u0131z gerekecek. Bunun i\u00e7in Fortigate\u2019in aray\u00fcz\u00fcnden Security Profiles men\u00fcs\u00fcnde Web Filter\u2019a gelmeliyiz. Create New se\u00e7ene\u011fi ile yeni profilimizi olu\u015fturmaya ba\u015flayabiliriz.<\/p>\n\n\n\n<\/figure>\n\n\n\n
Olu\u015fturaca\u011f\u0131m\u0131z yeni profile \u201cAntiCrawlingWF\u201d diyelim. Burada dikkat etmemiz gereken isim verirken T\u00fcrk\u00e7e karakter veya bo\u015fluk olmamas\u0131.<\/p>\n\n\n\n
\u0130lk olarak \u201cFortiGuard Category Based Filter\u201d se\u00e7ene\u011fini aktif edelim ve burada Security Risk alt\u0131ndaki \u00f6zelliklerin aksiyonunun Block olmas\u0131na dikkat edelim. Gerekirse di\u011fer \u015f\u00fcpheli kategorileri (\u00f6rn. \u201cUnrated\u201d, \u201cPotentially Liable\u201d) de bloklayal\u0131m. Bu kategorilerdeki siteler genellikle k\u00f6t\u00fc niyetli yaz\u0131l\u0131mlara, kimlik av\u0131na (phishing), veya di\u011fer siber tehditlere ev sahipli\u011fi yapar. Web kaz\u0131y\u0131c\u0131lar (scrapers), hassas verilere ula\u015fmak i\u00e7in s\u0131k\u00e7a g\u00fcvenlik riskli veya tehlikeli proxy siteleri kullanabilir. Bu kategorilerin engellenmesi, bu t\u00fcr sald\u0131r\u0131lar\u0131n altyap\u0131s\u0131n\u0131 keser.<\/p>\n\n\n\n
Bu a\u015famalardan sonra \u201cStatic URL Filter\u201d se\u00e7ene\u011fi alt\u0131nda \u201cURL Filter \u201d \u00f6zelli\u011fini de aktif edelim. Create New diyerek bizim i\u00e7in zararl\u0131 olacak istemedi\u011fimiz URL\u2019leri filtreyelim. \u00d6rne\u011fin \u201c^\/robots\\.txt$\u201d ;<\/p>\n\n\n\nyeni URL ekleme i\u015flemi<\/figcaption><\/figure>\n\n\n\n
URL\u2019yi eklerken type Regular Expression(e\u015fle\u015fen t\u00fcm URL\u2019leri alg\u0131layarak daha geni\u015f kapsaml\u0131 ve esnek bir filtreleme \u00f6zelli\u011fi i\u00e7in) , aksiyon k\u0131sm\u0131n\u0131 da kategori bazl\u0131 filtrelemede de yapt\u0131\u011f\u0131m\u0131z gibi Block olarak se\u00e7ip ekleyelim.Ben a\u015fa\u011f\u0131da yazd\u0131\u011f\u0131m URL\u2019ler i\u00e7in filtreleme i\u015flemi yapt\u0131m.<\/p>\n\n\n\n<\/figure>\n\n\n\n
^\/xmlrpc\\.php$<\/strong>: XML-RPC\u2019yi kullanarak yap\u0131lacak sald\u0131r\u0131lar\u0131 \u00f6nlemek i\u00e7in.<\/li>\n\n\n\n
(^)\/)\\.git($)\/)<\/strong>: Kaynak koduna izinsiz eri\u015fimi engellemek i\u00e7in.<\/li>\n<\/ul>\n\n\n\n
Bu \u015fekilde yap\u0131land\u0131r\u0131p profilimizi kaydedelim.<\/p>\n\n\n\n
\n
Uygulama Kontrol\u00fc Politikas\u0131 Olu\u015fturma<\/strong><\/li>\n<\/ul>\n\n\n\n
FortiGate\u2019de Uygulama Kontrol\u00fc Politikas\u0131 olu\u015fturmak, web trafi\u011fini analiz ederek k\u00f6t\u00fc ama\u00e7l\u0131 botlar\u0131 ve veri kaz\u0131ma (scraping) giri\u015fimlerini tespit edip engellemek i\u00e7in kritik \u00f6neme sahiptir. Bu politika, kullan\u0131c\u0131 davran\u0131\u015flar\u0131n\u0131 izleyip anormal aktiviteleri ay\u0131rt ederek me\u015fru trafi\u011fi korur ve veri s\u0131z\u0131nt\u0131s\u0131, performans d\u00fc\u015f\u00fc\u015f\u00fc veya k\u00f6t\u00fc niyetli sald\u0131r\u0131lara kar\u015f\u0131 etkili bir savunma sa\u011flar. Ama\u00e7 olarak Web Filter \u00f6zelli\u011fi ile benzese de Uygulama Kontrol\u00fc, uygulamalar\u0131n trafi\u011fini analiz edip y\u00f6netirken; Web Filtreleme, URL\u2019lere ve web kategorilerine g\u00f6re eri\u015fimi kontrol eder.<\/p>\n\n\n\n
Web Filter i\u00e7in de yapt\u0131\u011f\u0131m\u0131z gibi \u00f6ncelikler profil olu\u015fturaca\u011f\u0131z. Soldaki Security Profiles men\u00fcs\u00fcn\u00fcn alt\u0131nda Application Control k\u0131sm\u0131na gelip yeni bir profil \u201cAntiCrawlingApp\u201d olu\u015ftural\u0131m. Burada ilk dikkat etmemiz gereken Categories \u00f6zelliklerinde P2P ve Proxy\u2019nin aksiyonunu Block olarak ayarlamak olmal\u0131d\u0131r. Unknown Applications \u00f6zelli\u011fini de Block olarak ayarlayal\u0131m ki bilinmeyen uygulamalara izin olmas\u0131n.<\/p>\n\n\n\n
Daha sonra Application and Filter Overrides alt\u0131nda belirli bot ve script tabanl\u0131 uygulamalar\u0131n engellemeliyiz. Create New se\u00e7ene\u011fine t\u0131klay\u0131p a\u015fa\u011f\u0131daki botlar\u0131 se\u00e7ece\u011fiz.<\/p>\n\n\n\n<\/figure>\n\n\n\n
Bu se\u00e7ti\u011fimiz botlar web sitelerini otomatik olarak taray\u0131p indeksleme yapan botlard\u0131r.<\/p>\n\n\n\n
Bu se\u00e7ti\u011fimiz botlara Wget.Like\u2019\u0131 da eklemeliyiz. Wget.Like ise genellikle veri kaz\u0131ma veya izinsiz veri indirme i\u00e7in kullan\u0131lan komut sat\u0131r\u0131 ara\u00e7lar\u0131n\u0131 temsil eder. Bu ara\u00e7lar\u0131n engellenmesi, hassas bilgilerin izinsiz \u015fekilde kopyalanmas\u0131n\u0131 \u00f6nler.<\/p>\n\n\n\n
Bu botlar\u0131 listemize ekleyelim ve aksiyon k\u0131sm\u0131m\u0131z\u0131n block olmas\u0131na dikkat edelim. Gereken ayarlamalar\u0131 yapt\u0131ktan sonra profilimiz bu \u015fekilde g\u00f6z\u00fckecek:<\/p>\n\n\n\n<\/figure>\n\n\n\n
\u0130lk a\u015famada olu\u015fturmu\u015f oldu\u011fumuz Web Filter profili ile \u015fimdi yap\u0131land\u0131rmas\u0131n\u0131 tamamlad\u0131\u011f\u0131m\u0131z Application Control profilini, belirledi\u011fimiz Policy\u2019e ekleyerek i\u015flemimizi tamamlayabiliriz. Bu ad\u0131mda, her iki profilin de ilgili Policy\u2019e dahil edilmesi, eri\u015fim kontrollerinin ve g\u00fcvenlik \u00f6nlemlerinin daha kapsaml\u0131 bir \u015fekilde uygulanmas\u0131n\u0131 sa\u011flayacakt\u0131r. B\u00f6ylelikle, hem web filtreleme hem de uygulama kontrol mekanizmalar\u0131n\u0131 aktif hale getirerek a\u011f trafi\u011fi \u00fczerinde daha detayl\u0131 bir denetim ger\u00e7ekle\u015ftirmi\u015f olaca\u011f\u0131z..<\/p>\n\n\n\n<\/figure>\n\n\n\n
\u0130\u015flemleri Dos Policy ile yapaca\u011f\u0131m\u0131z i\u00e7in \u00f6ncelikle Firewall aray\u00fcz\u00fcnden System, Feature visibility<\/strong>\u2019 nin alt\u0131nda DoS Policy<\/strong>\u2019nin a\u00e7\u0131lmas\u0131 gerekir.<\/p>\n\n\n\n<\/figure>\n\n\n\n
FortiGate \u00fczerinde, t\u00fcm IP adreslerinden gelen trafi\u011fi (e\u011fer belirli IP adresleri varsa IP Pool \u00f6zelli\u011fini kullanarak k\u0131s\u0131tlayabilirsiniz ) kontrol alt\u0131na almak i\u00e7in DoS Policy<\/strong> kullanarak bir Rate Limiting<\/strong> yap\u0131land\u0131rmas\u0131 uygulayaca\u011f\u0131z. Bu yap\u0131land\u0131rma, belirli bir s\u00fcre i\u00e7inde g\u00f6nderilen istek say\u0131s\u0131n\u0131 s\u0131n\u0131rland\u0131rarak a\u011f\u0131m\u0131z\u0131 a\u015f\u0131r\u0131 y\u00fcklenmeye ve k\u00f6t\u00fc niyetli trafi\u011fe kar\u015f\u0131 korumam\u0131za olanak tan\u0131yacak.<\/p>\n\n\n\n
\u0130lk olarak aray\u00fcz\u00fcn solundaki men\u00fcde Policy&Objects alt\u0131nda bulunan IPv4 DOS Policy k\u0131sm\u0131na gelmemiz laz\u0131m. Bundan sonra yeni bir tane olu\u015fturaca\u011f\u0131z.<\/p>\n\n\n\n<\/figure>\n\n\n\n
Bu yap\u0131land\u0131rmada dikkat edilmesi gereken baz\u0131 \u00f6nemli noktalar \u015funlard\u0131r:<\/p>\n\n\n\n
Incoming Interface<\/strong> olarak, trafi\u011fin geldi\u011fi aray\u00fcz\u00fc se\u00e7meliyiz. \u00d6rne\u011fin, ben WAN trafi\u011fi i\u00e7in port1<\/strong> aray\u00fcz\u00fcn\u00fc kulland\u0131m.<\/p>\n\n\n\n
Source Address i\u00e7in ise t\u00fcm IP\u2019lerden gelecek istekleri s\u0131n\u0131rlayaca\u011f\u0131m\u0131z i\u00e7in All se\u00e7tik.<\/p>\n\n\n\n
Destination Address<\/strong> k\u0131sm\u0131nda, hedef adres olarak \u00f6rnek bir domain olan example.com<\/strong>\u2019u belirledim. \u0130lk tan\u0131mlama s\u0131ras\u0131nda, bu domain adresinin yan\u0131nda bir \u00fcnlem i\u015fareti g\u00f6r\u00fcnmesi normaldir; bu, FortiGate\u2019in domain adresini do\u011frulamaya \u00e7al\u0131\u015ft\u0131\u011f\u0131n\u0131 g\u00f6sterir.<\/p>\n\n\n\n
Service<\/strong> alan\u0131nda ise, t\u00fcm trafi\u011fi s\u0131n\u0131rlamak amac\u0131yla All<\/strong> se\u00e7ene\u011fini tercih ettim. Ancak dilerseniz trafi\u011fi yaln\u0131zca HTTP<\/strong> ve HTTPS<\/strong> gibi belirli protokollerle k\u0131s\u0131tlayabilirsiniz.<\/p>\n\n\n\n
Hedef trafi\u011fi yap\u0131land\u0131rd\u0131\u011f\u0131m\u0131za g\u00f6re s\u0131ra Rate Limit parametrelerinde:<\/p>\n\n\n\n
Burada kar\u015f\u0131m\u0131za L3 Anomalies ve L4 Anomalies olmak \u00fczere iki tane liste \u00e7\u0131k\u0131yor. Bunlardan k\u0131saca bahsetmek gerekirse genellikle a\u011f izleme ve g\u00fcvenlik sistemlerinde ortaya \u00e7\u0131kan ve OSI modeli katmanlar\u0131na (Layer 3 ve Layer 4)dayal\u0131 sorunlar\u0131 ifade eder.<\/p>\n\n\n\n
\u00d6ncelikle L3-L4 Anomalities k\u0131s\u0131mlar\u0131nda Logging se\u00e7ene\u011fini aktif edelim.Ki daha sonra sitemize yap\u0131lan isteklerin loglar\u0131n\u0131 tutabilelim.<\/p>\n\n\n\n
Action k\u0131sm\u0131nda ise ben Block olarak yap\u0131land\u0131rd\u0131m. Bunun sebebi belirtece\u011fimiz e\u015fik de\u011ferin \u00fczerine \u00e7\u0131k\u0131l\u0131rsa e\u011fer trafi\u011fi direkt engellemesi. E\u011fer Monitor olarak yap\u0131land\u0131r\u0131rsak bu trafi\u011fi kaydolacakt\u0131r ancak engelleme i\u015flemi olmaz.<\/p>\n\n\n\n
Ben en \u00e7ok kullan\u0131lan SYN Flood ,UDP Flood, ICMP Flood d<\/strong>e\u011ferleri \u00fczerinden gidece\u011fim.Benim yap\u0131land\u0131rmam \u015fu \u015fekilde olacak:<\/p>\n\n\n\n
SYN Flood : <\/strong>TCP ba\u011flant\u0131 kurulumu s\u0131ras\u0131nda ger\u00e7ekle\u015fen bir sald\u0131r\u0131 t\u00fcr\u00fcd\u00fcr. Bu sald\u0131r\u0131da, hedefe \u00e7ok say\u0131da SYN (synchronize) iste\u011fi g\u00f6nderilir ve hedefin kaynaklar\u0131 t\u00fcketilmeye \u00e7al\u0131\u015f\u0131l\u0131r.<\/p>\n\n\n\n
Ben ba\u015flang\u0131\u00e7 noktas\u0131 olarak e\u015fik de\u011fere \u201c100\u201d verdim.\u00c7\u00fcnk\u00fc \u00e7o\u011fu a\u011fda 100’den fazla e\u015fzamanl\u0131 TCP ba\u011flant\u0131s\u0131 talebi, ola\u011fand\u0131\u015f\u0131 olarak de\u011ferlendirilir.<\/p>\n\n\n\n
UDP Flood: \u00c7<\/strong>ok say\u0131da sahte veya b\u00fcy\u00fck miktarda UDP paketinin hedefe g\u00f6nderilmesiyle ger\u00e7ekle\u015fir. UDP protokol\u00fcn\u00fcn ba\u011flant\u0131s\u0131z yap\u0131s\u0131, bu sald\u0131r\u0131y\u0131 daha etkili k\u0131lar.<\/p>\n\n\n\n
E\u015fik de\u011feri buras\u0131 i\u00e7in \u201c500\u201d olarak belirledim. Sebebi ise normal a\u011flarda UDP tabanl\u0131 hizmetler (DNS, video ak\u0131\u015f\u0131 gibi) genelde bu s\u0131n\u0131r\u0131 a\u015fmaz.<\/p>\n\n\n\n
ICMP Flood: P<\/strong>ing istekleri gibi ICMP paketlerinin hedefe yo\u011fun \u015fekilde g\u00f6nderilmesiyle ger\u00e7ekle\u015fir. Bu t\u00fcr sald\u0131r\u0131lar a\u011f kaynaklar\u0131n\u0131 ve ba\u011flant\u0131 bant geni\u015fli\u011fini t\u00fcketmeyi ama\u00e7lar.<\/p>\n\n\n\n
E\u015fik de\u011feri buras\u0131 i\u00e7in de \u201c50\u201d olarak belirledim.Normalde ICMP paketleri, a\u011fda hata raporlamas\u0131 ve te\u015fhis amac\u0131yla kullan\u0131l\u0131r. Bu y\u00fczden trafik hacmi d\u00fc\u015f\u00fck olmal\u0131d\u0131r.<\/p>\n\n\n\n<\/figure>\n\n\n\n
\n
Log Analizi<\/strong><\/li>\n<\/ul>\n\n\n\n
Uygulad\u0131\u011f\u0131m\u0131z politikalar\u0131n \u00e7al\u0131\u015fabilirli\u011fini de\u011ferlendirmek ve iyile\u015ftirmeler yapmak i\u00e7in Log analizine ihtiyac\u0131m\u0131z var. Bu sayede sistemimizin verimlili\u011fini sa\u011flam\u0131\u015f olaca\u011f\u0131z.<\/p>\n\n\n\n
Bunun i\u00e7in Log & Report<\/strong> mod\u00fcl\u00fcnden trafik ve g\u00fcvenlik raporlar\u0131n\u0131 inceleyebiliriz.<\/p>\n\n\n\n
Umar\u0131m bu yaz\u0131 faydal\u0131 olmu\u015ftur, vaktinizi ay\u0131rd\u0131\u011f\u0131n\u0131z i\u00e7in te\u015fekk\u00fcr ederim.<\/p>\n","protected":false},"excerpt":{"rendered":"
Dijital d\u00fcnyada verinin \u00f6nemi giderek artarken, bu verileri korumak da\u00f6nemli hale gelmi\u015ftir. \u00d6zellikle web siteleri, i\u00e7eriklerini ve kullan\u0131c\u0131bilgilerini koruma konusunda giderek daha karma\u015f\u0131k tehditlerle kar\u015f\u0131kar\u015f\u0131ya kalmaktad\u0131r. Web scraping (veri kaz\u0131ma) ad\u0131 verilen teknikle,botlar arac\u0131l\u0131\u011f\u0131yla web sitelerinden i\u00e7erik \u00e7almak, bilgi g\u00fcvenligi a\u00e7\u0131s\u0131ndanb\u00fcy\u00fck bir risk olu\u015fturmaktad\u0131r. Bu noktada, Anti-Crawling sistemleri, web uygulamalar\u0131n\u0131korumak i\u00e7in bir \u00e7\u00f6z\u00fcm sunmaktad\u0131r. Bu <\/p>\n","protected":false},"author":1,"featured_media":2325,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-2317","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-fortinet"],"yoast_head":"\n
FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131 - Berat ARIKAN<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\" \/>\n<meta property=\"og:locale\" content=\"tr_TR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131\" \/>\n<meta property=\"og:description\" content=\"Dijital d\u00fcnyada verinin \u00f6nemi giderek artarken, bu verileri korumak da\u00f6nemli hale gelmi\u015ftir. \u00d6zellikle web siteleri, i\u00e7eriklerini ve kullan\u0131c\u0131bilgilerini koruma konusunda giderek daha karma\u015f\u0131k tehditlerle kar\u015f\u0131kar\u015f\u0131ya kalmaktad\u0131r. Web scraping (veri kaz\u0131ma) ad\u0131 verilen teknikle,botlar arac\u0131l\u0131\u011f\u0131yla web sitelerinden i\u00e7erik \u00e7almak, bilgi g\u00fcvenligi a\u00e7\u0131s\u0131ndanb\u00fcy\u00fck bir risk olu\u015fturmaktad\u0131r. Bu noktada, Anti-Crawling sistemleri, web uygulamalar\u0131n\u0131korumak i\u00e7in bir \u00e7\u00f6z\u00fcm sunmaktad\u0131r. Bu\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\" \/>\n<meta property=\"og:site_name\" content=\"Berat ARIKAN\" \/>\n<meta property=\"article:published_time\" content=\"2024-12-11T12:12:50+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-12-11T12:12:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"860\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"berat.arikan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Yazan:\" \/>\n\t<meta name=\"twitter:data1\" content=\"berat.arikan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tahmini okuma s\u00fcresi\" \/>\n\t<meta name=\"twitter:data2\" content=\"10 dakika\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\"},\"author\":{\"name\":\"berat.arikan\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75\"},\"headline\":\"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131\",\"datePublished\":\"2024-12-11T12:12:50+00:00\",\"dateModified\":\"2024-12-11T12:12:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\"},\"wordCount\":1843,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75\"},\"image\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg\",\"articleSection\":[\"Fortinet\"],\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\",\"url\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\",\"name\":\"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131 - Berat ARIKAN\",\"isPartOf\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg\",\"datePublished\":\"2024-12-11T12:12:50+00:00\",\"dateModified\":\"2024-12-11T12:12:52+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#breadcrumb\"},\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage\",\"url\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg\",\"contentUrl\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg\",\"width\":860,\"height\":520},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Ana Sayfa\",\"item\":\"https:\/\/www.beratarikan.com.tr\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/#website\",\"url\":\"https:\/\/www.beratarikan.com.tr\/\",\"name\":\"Berat ARIKAN\",\"description\":\"Sistem Network Y\u00f6neticisi, Sistem Network Dan\u0131\u015fman\u0131, CyberTurkey Bilgi Teknolojileri\",\"publisher\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.beratarikan.com.tr\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"tr\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75\",\"name\":\"berat.arikan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/11\/cropped-logoberat.png\",\"contentUrl\":\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/11\/cropped-logoberat.png\",\"width\":182,\"height\":62,\"caption\":\"berat.arikan\"},\"logo\":{\"@id\":\"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/image\/\"},\"sameAs\":[\"https:\/\/www.beratarikan.com.tr\"],\"url\":\"https:\/\/www.beratarikan.com.tr\/index.php\/author\/berat-arikan\/\",\"ownershipFundingInfo\":\"https:\/\/www.beratarikan.com.tr\/index.php\/danismanlik\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131 - Berat ARIKAN","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/","og_locale":"tr_TR","og_type":"article","og_title":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131","og_description":"Dijital d\u00fcnyada verinin \u00f6nemi giderek artarken, bu verileri korumak da\u00f6nemli hale gelmi\u015ftir. \u00d6zellikle web siteleri, i\u00e7eriklerini ve kullan\u0131c\u0131bilgilerini koruma konusunda giderek daha karma\u015f\u0131k tehditlerle kar\u015f\u0131kar\u015f\u0131ya kalmaktad\u0131r. Web scraping (veri kaz\u0131ma) ad\u0131 verilen teknikle,botlar arac\u0131l\u0131\u011f\u0131yla web sitelerinden i\u00e7erik \u00e7almak, bilgi g\u00fcvenligi a\u00e7\u0131s\u0131ndanb\u00fcy\u00fck bir risk olu\u015fturmaktad\u0131r. Bu noktada, Anti-Crawling sistemleri, web uygulamalar\u0131n\u0131korumak i\u00e7in bir \u00e7\u00f6z\u00fcm sunmaktad\u0131r. Bu","og_url":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/","og_site_name":"Berat ARIKAN","article_published_time":"2024-12-11T12:12:50+00:00","article_modified_time":"2024-12-11T12:12:52+00:00","og_image":[{"width":860,"height":520,"url":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg","type":"image\/jpeg"}],"author":"berat.arikan","twitter_card":"summary_large_image","twitter_misc":{"Yazan:":"berat.arikan","Tahmini okuma s\u00fcresi":"10 dakika"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#article","isPartOf":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/"},"author":{"name":"berat.arikan","@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75"},"headline":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131","datePublished":"2024-12-11T12:12:50+00:00","dateModified":"2024-12-11T12:12:52+00:00","mainEntityOfPage":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/"},"wordCount":1843,"commentCount":0,"publisher":{"@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75"},"image":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage"},"thumbnailUrl":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg","articleSection":["Fortinet"],"inLanguage":"tr","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/","url":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/","name":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131 - Berat ARIKAN","isPartOf":{"@id":"https:\/\/www.beratarikan.com.tr\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage"},"image":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage"},"thumbnailUrl":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg","datePublished":"2024-12-11T12:12:50+00:00","dateModified":"2024-12-11T12:12:52+00:00","breadcrumb":{"@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#breadcrumb"},"inLanguage":"tr","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/"]}]},{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#primaryimage","url":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg","contentUrl":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/fortinet-finds-more-ssh-backdoors-showcase_image-5-a-8826.jpg","width":860,"height":520},{"@type":"BreadcrumbList","@id":"https:\/\/www.beratarikan.com.tr\/index.php\/2024\/12\/11\/fortigate-ile-anti-crawling-sistemi-web-guvenliginin-saglanmasi\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Ana Sayfa","item":"https:\/\/www.beratarikan.com.tr\/"},{"@type":"ListItem","position":2,"name":"FortiGate ile Anti-Crawling Sistemi: Web G\u00fcvenli\u011finin Sa\u011flanmas\u0131"}]},{"@type":"WebSite","@id":"https:\/\/www.beratarikan.com.tr\/#website","url":"https:\/\/www.beratarikan.com.tr\/","name":"Berat ARIKAN","description":"Sistem Network Y\u00f6neticisi, Sistem Network Dan\u0131\u015fman\u0131, CyberTurkey Bilgi Teknolojileri","publisher":{"@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.beratarikan.com.tr\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"tr"},{"@type":["Person","Organization"],"@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/eac1fe0ed03fd8823a3d4e510cde7e75","name":"berat.arikan","image":{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/image\/","url":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/11\/cropped-logoberat.png","contentUrl":"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/11\/cropped-logoberat.png","width":182,"height":62,"caption":"berat.arikan"},"logo":{"@id":"https:\/\/www.beratarikan.com.tr\/#\/schema\/person\/image\/"},"sameAs":["https:\/\/www.beratarikan.com.tr"],"url":"https:\/\/www.beratarikan.com.tr\/index.php\/author\/berat-arikan\/","ownershipFundingInfo":"https:\/\/www.beratarikan.com.tr\/index.php\/danismanlik\/"}]}},"_links":{"self":[{"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/2317","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/comments?post=2317"}],"version-history":[{"count":1,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/2317\/revisions"}],"predecessor-version":[{"id":2326,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/2317\/revisions\/2326"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/media\/2325"}],"wp:attachment":[{"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/media?parent=2317"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/categories?post=2317"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.beratarikan.com.tr\/index.php\/wp-json\/wp\/v2\/tags?post=2317"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-6.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-5.png\")
![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-4.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-3.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-2.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image-1.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/www.beratarikan.com.tr\/wp-content\/uploads\/2024\/12\/image.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/miro.medium.com\/v2\/resize:fit:700\/1*pXmv8EGmJ9vq2alO4OxdXw.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/miro.medium.com\/v2\/resize:fit:700\/1*fJ4mqbOp0pzDdmHW5IIBag.png\")
<\/figure>\n\n\n\n