Quote
Lasse Jensen wrote:
I checked my site for members as written above after a few spam-bot attacks, and i found this user:
username: Lorder
email: jurox@walla.com
Ip add: 88.118.83.158
Can anyone confirm that these walla.com accounts has(or dont) something to do with the spambots?
Edit: This guy (Lorder) havn't made any spam on my website at all, just for the record :)
if (iADMIN) {
$result = dbquery("DELETE FROM ".$db_prefix."flood_control WHERE flood_timestamp < '".(time()-360)."'");
$result = dbquery("DELETE FROM ".$db_prefix."thread_notify WHERE notify_datestamp < '".(time()-1209600)."'");
$result = dbquery("DELETE FROM ".$db_prefix."vcode WHERE vcode_datestamp < '".(time()-360)."'");
$result = dbquery("DELETE FROM ".$db_prefix."new_users WHERE user_datestamp < '".(time()-86400)."'");
}
$result = dbquery("DELETE FROM ".$db_prefix."vcode WHERE vcode_datestamp < '".(time()-360)."'");
if (iADMIN) {
$result = dbquery("DELETE FROM ".$db_prefix."flood_control WHERE flood_timestamp < '".(time()-360)."'");
$result = dbquery("DELETE FROM ".$db_prefix."thread_notify WHERE notify_datestamp < '".(time()-1209600)."'");
$result = dbquery("DELETE FROM ".$db_prefix."new_users WHERE user_datestamp < '".(time()-86400)."'");
}
$result = dbquery("DELETE FROM ".$db_prefix."vcode WHERE vcode_datestamp < '".(time()-360)."'");
Quote
PCkaos wrote:
If nomal users would like to chance their mail...we could have an admin to say ok before it´s done...
if ($settings['enable_registration']) {
// ## set the public username and password for the registration
$LOGIN = "Antispammer";
$PASSWORD = "opensesame";
if ( (!isset($_SERVER['PHP_AUTH_USER'])) || ! (($_SERVER['PHP_AUTH_USER'] == $LOGIN) && ( $_SERVER['PHP_AUTH_PW'] == $PASSWORD )) ) {
header("WWW-Authenticate: Basic realm=\"Access Registration with User: Antispammer Password: opensesame\"");
header("HTTP/1.0 401 Unauthorized");
//error("Unauthorized access...");
echo "Unauthorized access...";
exit;
}
// ##
Quote
HangJebat wrote:
hmm... it seems like "never ending story"
- being attacked by this spammers, make me feel very disgusted
really hope this matter will be resolved soon
Quote
WEC wrote:
On the WWW-Authenticate, could one of those with spam registration problems try this:
In register.php find:Code Download sourceif ($settings['enable_registration']) {
Add below it:Code Download source// ## set the public username and password for the registration
$LOGIN = "Antispammer";
$PASSWORD = "opensesame";
if ( (!isset($_SERVER['PHP_AUTH_USER'])) || ! (($_SERVER['PHP_AUTH_USER'] == $LOGIN) && ( $_SERVER['PHP_AUTH_PW'] == $PASSWORD )) ) {
header("WWW-Authenticate: Basic realm=\"Access Registration with User: Antispammer Password: opensesame\"");
header("HTTP/1.0 401 Unauthorized");
//error("Unauthorized access...");
echo "Unauthorized access...";
exit;
}
// ##
if ($comment_name != "" && $comment_message != "") {
if ($comment_name != "" && $comment_message != "" && !preg_match("#\[url\](.*?)\[/url\]#si", $message)) {
Quote
christo78 wrote:
Hi WEC, thanks for having a look. I'm using PHP 5.0.5 on MySQL 4.1.7
The site is running on a W2K3 Server, IIS, and the browser is IE 6.0
I double checked I copied the extra code and it all looks fine ??
:|
I just installed FF and still get opensesame-0. If I put opensesame-0 it doesnt log in
Quote
Also note that until PHP 4.3.3, HTTP Authentication did not work using Microsoft's IIS server with the CGI version of PHP due to a limitation of IIS. In order to get it to work in PHP 4.3.3+, you must edit your IIS configuration "Directory Security". Click on "Edit" and only check "Anonymous Access", all other fields should be left unchecked.
Another limitation is if you're using the IIS module (ISAPI) and PHP 4, you may not use the PHP_AUTH_* variables but instead, the variable HTTP_AUTHORIZATION is available. For example, consider the following code: list($user, $pw) = explode(':', base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));
IIS Note:: For HTTP Authentication to work with IIS, the PHP directive cgi.rfc2616_headers must be set to 0 (the default value).
</tr>";
if ($userdata['user_posts'] <= 50) {
echo "<tr>
<td class='tbl'>".$locale['u005']."</td>
<td class='tbl'><input type='hidden' name='user_email' value='".$userdata['user_email']."'>".$userdata['user_email']."</td>
</tr>";
} else {
echo "<tr>
<td class='tbl'>".$locale['u005']."<span style='color:#ff0000'>*</span></td>
<td class='tbl'><input type='text' name='user_email' value='".$userdata['user_email']."' maxlength='100' class='textbox' style='width:200px;'></td>
</tr>";
}
echo "<tr>
Category Forum
Official Core Support - 6Labels
None yet
Statistics
0 participants
Notifications
You are not receiving notifications from this thread.
Related Questions