Simple Machines Community Forum

Customizing SMF => Modifications and Packages => Topic started by: Diego Andrés on February 17, 2010, 03:55:54 PM

Title: httpBL
Post by: Diego Andrés on February 17, 2010, 03:55:54 PM
Link to the mod (https://custom.simplemachines.org/index.php?mod=2155)

MOD httpBL v2.5.1
=============


  • Author:





snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)



    • Version:





2.5.1



    • Release:





28th December 2010



    • Languages:





(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
(http://www.simplemachines.org/site_images/lang/indonesian.gif) (http://www.simplemachines.org/site_images/lang/french.gif) (http://www.simplemachines.org/site_images/lang/dutch.gif)



    • Compatible With:









SMF 1.1.1 - 1.1.21
SMF 2 RC2 - SMF 2.0.17







         




(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/star.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/star.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/star.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/star.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/star.gif) (http://www.simplemachines.org/community/index.php?action=post;topic=366399.0)
Comment this Mod (http://www.simplemachines.org/community/index.php?action=post;topic=366399.0)
(http://www.simplemachines.org/site_images/modtitlebar.png)(http://www.simplemachines.org/site_images/modtitlebar.png)(http://www.simplemachines.org/site_images/modtitlebar.png) (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
My MODs (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/bbc/img.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/bbc/img.gif)(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/bbc/img.gif) (http://custom.simplemachines.org/mods/index.php?mod=2155)
Images (http://custom.simplemachines.org/mods/index.php?mod=2155)
(http://www.snoopyvirtualstudio.com/images/online-peq.png) (http://www.snoopyvirtualstudio.com/contact.php)

         
Contact Snoopy via Skype (http://www.snoopyvirtualstudio.com/contact.php)
(http://mystatus.skype.com/bigclassic/snoopy_virtual_studio)
I don't mind at all answering PMs,
but really like more to talk,
and using a microphone can sort
any problem a lot faster.
(http://www.snoopyvirtualstudio.com/images/btn_donate_LG_en_USD.png) (https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=WF3C2X98ET272) (http://www.snoopyvirtualstudio.com/images/btn_donate_LG_en_EUR.png) (https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=5VD4E8A9KHXGL)
Help support Snoopy's MODs



  • Tutorial (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2)





(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/buttons/reply.gif) (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english)



  • Change Log (https://custom.simplemachines.org/index.php?action=post;sa=edit;mod=2155#changelog)





(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/buttons/reply.gif) (https://custom.simplemachines.org/index.php?action=post;sa=edit;mod=2155#changelog)



  • Road Map (https://custom.simplemachines.org/index.php?action=post;sa=edit;mod=2155#roadmap)





(http://www.snoopyvirtualstudio.com/foro/Themes/default/images/buttons/reply.gif) (https://custom.simplemachines.org/index.php?action=post;sa=edit;mod=2155#roadmap)(Before you ask for a new feature or report a bug
check if it's already in the cue waiting to be done)
(http://www.snoopyvirtualstudio.com/foro/Smileys/default/rtfm.gif)



Features:




Installation:

IMPORTANT:
Before you install this mod I will recommend you
to read this TUTORIAL (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english)

Anyway here is a quick summary:






If you need help installing this mod or you want to see more information about it,
visit the support thread for this mod. (http://www.simplemachines.org/community/index.php?topic=366399.0)

Thanks to Project Honey Pot (http://www.projecthoneypot.org/?rf=62759) for your DB and APIs.

Thanks to praseodym (http://drupal.org/project/httpbl) for the idea.
His mod is for Drupal, but I have adapted some of his functions to work with SMF as well.

Thanks to butchs (http://www.simplemachines.org/community/index.php?action=profile;u=77887), Wizzlefits (http://www.simplemachines.org/community/index.php?action=profile;u=241838) and the rest of the people in SMF forums
for the new ideas and helping me debugging the mod.

Thanks to Marcin Krol and X3mE (http://www.simplemachines.org/community/index.php?action=profile;u=154415) for writing the functions in the Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
and to ahrasis (http://www.simplemachines.org/community/index.php?action=profile;u=51815) for making nicer the icons I'm using for the addon_OS_Browser_httpBL

==========================




QuoteLanguages for the admin section (normal & utf-8)
Translation completed:
  • English
  • English_british
  • Spanish_es
  • Spanish_latin


  • Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)

Missing the lines added from v2.5:
  • French by Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Languages for the warning page
Translation completed:
  • English-Spanish


  • English-Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)
  • French-English by shaitanfr (http://www.simplemachines.org/community/index.php?action=profile;u=151244) and Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Missing the lines added from v2.4:
  • English-Dutch by Vandaahl (http://www.simplemachines.org/community/index.php?action=profile;u=88822)

   
QuoteLegend
  • Included in MOD package
  • Included in language_full.zip and translation complete
  • Included in language_full.zip but translation incomplete

// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <strong>VERY</strong> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';

// View log page
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <strong>VERY</strong> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <strong>"Show extra information"</strong>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hiding'] = 'Wrote on a hiding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Never be checked by mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'If this permission is enabled, all the members in this group will be able to enter always the forum without been checked by mod httpBL, even if their computer is controlled by a trojan spammer robot.<br />---<br />Enable it only if you know exactly what you are doing.';
$txt['httpBL_last_act_too_high'] = 'Last activity too long ago. Allowed to pass';
$txt['httpBL_threat_too_low'] = 'Threat Level too low. Allowed to pass';
$txt['httpBL_enable_sub'] = 'With this check-box checked the mod is ON. With the check-box unchecked the mod is OFF.';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.';
$txt['httpBL_mod_no_connect_2'] = 'If the problem persists ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL is ON but it is not up-to-date.';
$txt['httpBL_mod_new_version_2'] = 'There is a new version of this mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Please update it here whenever you can</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL is OFF.';
$txt['OS_Browser_Compatible'] = 'compatible';
$txt['OS_Browser_OS'] = 'Operating System';
$txt['OS_Browser_Unknown'] = 'Unknown';
$txt['OS_Browser_Browser'] = 'Browser';
$txt['httpBL_cache_length'] = 'Minutes to keep the data in the cache';
$txt['httpBL_cache_length_sub'] = 'Every time the mod checks an IP saves the data in the cache (if it\'s enabled) and in the visitor\'s session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won\'t check it again, but it will use the data stored in the cache and/or session.';
$txt['httpBL_view_os_whosonline'] = 'View OS & Browser data in "Who\'s Online" page';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Settings';
$txt['httpBL_honeyPot_link_sub'] = 'After you have installed a Honey Pot in your server, write here the link to it. It will be something like:<br /><strong>http://www.yourwebsite.com/yourhoneypot.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Please notice Project Honey Pot is not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_viewlog'] = 'Spammers Log';
$txt['httpBL_viewlogpass'] = 'Humans Log';
$txt['httpBL_viewlogerror'] = 'Errors Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots. Plus all the people detected as spammers in the database but with a threat level lower than the "Threat level considered bad" you have in your settings, so they were not stopped at all.';
$txt['httpBL_info_email_desc'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <strong>warning.php</strong>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <strong>[email protected]</strong> the first word is <strong>info</strong>, the second one <strong>yourwebsite</strong>, and the third one <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL uses the functions inside "Mod OS & Browser Detection" to display in the logs the operating system and the browser used by all the visits stored in those logs. If you want to see also in your "Who\'s Online" page, the operating system and the browser used by all your visitors, check this check-box. Of course, to be able to see them, in the logs and in your "Who\'s Online" page, you need to have installed either <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> or the small <a href="http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0" target="_blank">addon to see OS & Browser in httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
    $httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
    $httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'General Settings';
$txt['httpBL_general_settings_desc'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven\'t got them you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key.';
$txt['httpBL_info_email'] = 'Your email address';
$txt['httpBL_internal_settings'] = 'Internal Settings';
$txt['httpBL_internal_settings_desc'] = 'These are the internal settings to control the way mod httpBL works. We wouldn\'t recommend you to change them until you know the way every change will affect the mod.';
$txt['httpBL_extra_settings'] = 'Extra Settings';
$txt['httpBL_extra_settings_desc'] = 'Other settings you may like to change.';
$txt['httpBL_warning_settings'] = 'Warning Page Settings';
$txt['httpBL_warning_settings_desc'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br />That\'s the way it is going to appear to the not too dangerous ones. With a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (without captcha) use this link instead: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br />If you want to change its design or translate that page to other languages and you don\'t know how, or if you have any other question about the MOD, you will find useful information in the <a href="'. $httpBL_help_link. '">httpBL HELP section</a>.';
$txt['httpBL_use_two_languages'] = 'Use 2 languages on the warning page';
$txt['httpBL_use_two_languages_sub'] = 'By default the warning page is in 2 different languages: English and Spanish, so all your possible visitors can understand what it says. If you leave this check-box empty it will use only English instead.';
$txt['httpBL_horizontal_separator'] = 'Horizontal separator for the warning page';
$txt['httpBL_horizontal_separator_sub'] = 'The default horizontal separator for each block inside the warning page is &lt;hr /&gt; (horizontal grey line) but you can change it to any other thing you want using HTML language.<br />
For example &lt;br /&gt; will give you just a blank line.<br />
Or for example you can put here any horizontal picture you like just writing:<br />
&lt;img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" /&gt;<br />
(Replace the link inside the src="" with the actual path to your picture).';
$txt['httpBL_log_clear_this_log'] = 'Clear this log';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Spammers Log?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Humans Log?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Errors Log?';

// Help
$txt['httpBL_helping'] = 'Help';
$txt['httpBL_helping_description'] = 'I would recommend you to read this page carefully even if you don\'t need help with mod httpBL.';
$txt['httpBL_online_title'] = 'Online help';
$txt['httpBL_online_body'] = '<p>There are a lot of ways you can ask for help, but the best one is to ask me directly any doubt you may have, so we can talk about it and sort the problem without losing any time. I don\'t mind to answer questions through forums, emails, PMs, etc, but for me it\'s a lot easier to see what is the problem and find the solution when I can talk about it using a microphone. And also I think this is a lot faster and more effective way to sort problems.<p>
<p>I am connected around 10 hours every day using the programs <strong>"Skype"</strong>, <strong>"YIM"</strong> (Yahoo Messenger) and <strong>"MSN"</strong> (Live Messenger). I have also created a system in my server to write down what I am doing at every moment and have added a piece of code to the mod to read that info from my server (the piece you can see just next to these lines) so you can see if I am available or not.</p>
<p>If you have installed as well the program Skype, the process cannot be any easier. All you have to do is wait until I am available and click on the "Online" button. That will open automatically the program Skype in your computer and will start a conversation between us.</p>
<p>If you prefer to use YIM or MSN instead of Skype or if you haven\'t got a microphone, the button is not going to work automatically. In that case the button is going to be useful for you only to know if I am available or not, but to contact me you will need to add me first inside the program you use, like any other of your contacts. My ID inside those 3 programs is this one:</p>
<ul>
    <li>Skype and YIM : <strong>snoopy_virtual_studio</strong></li>
    <li>MSN : <strong>[email protected]</strong></li>
</ul>
<p><strong>NOTICE:</strong> Don\'t use my hotmail address to send me emails, as I almost never read them. If you need to send me an email use this other address instead: <a href="mailto:[email protected]">[email protected]</a></p>
<p><strong>WARNING:</strong> There are a lot of languages in the world I can understand even if it\'s only a little of it, but the only 2 I am really fluent with are English and Spanish. If you cannot speak any of those 2 languages you can call me if you want, but I cannot promise we will be able to understand each other.</p>
<p><strong>ANOTHER WARNING:</strong> Before you start asking questions it would be a good idea to do a quick search using the links you can see further down, to see if somebody else have already had the same problem and it has already been sorted. The main reason why I have created this "Online Help" system is to save time and it would make no sense at all if I end up answering hundreds of times the same questions every day.</p>';
$txt['httpBL_help_1_title'] = 'Other ways to ask for help';
$txt['httpBL_help_1_body'] = '<p>Of course, even if I personally prefer the "Online Help" system, there will be times when it will be impossible to use it. Either because you live too far away from me and we are never online at the same time, or because you don\'t like the instant messenger programs, or because you need help when I am too busy with other projects and cannot be connected, or whatever other reason. In any of these cases you can find and/or ask for help using a lot of different ways:</p>
<ul>
    <li><strong><a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english" target="_blank">Tutorial explaining how the mod works, how to install it and how to configure it properly</a></strong></li>
</ul>
<p>Every time I update the mod I try to update the tutorial as well, but of course that depends on the amount of free time I have at any given moment, so sometimes you will see the tutorial a little out of date with the actual performance of the mod. But I hope some day I will find time to update the tutorial properly. Besides I have been planing to add to the tutorial also a <strong>"FAQ"</strong> section with all the questions that people have been asking me over time and to add also some other useful sections. It won\'t be a bad idea to check from time to time if there is something new there.</p>
<ul>
    <li><strong><a href="http://www.simplemachines.org/community/index.php?topic=366399.0" target="_blank">Official mod\'s support thread</a></strong></li>
</ul>
<p>Full of very interesting questions and answers about the mod and other topics related to the protection against spammers. It is also the place to report any bugs you may find in the mod or to ask for new features you would like to see in future versions.</p>
<ul>
    <li><strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0;language=english" target="_blank">The section dedicated to this mod inside my personal forum</a></strong></li>
</ul>
<p>My personal forum is dedicated to sort any kind of problems anybody may have inside a lot of different IT fields. Inside it there is a section dedicated to mod httpBL, where you can see (among other things) how you can install as well this mod on other web sites made with PHP but without SMF.</p>';
$txt['httpBL_help_2_title'] = 'How you can help us';
$txt['httpBL_help_2_body'] = '<p>This mod is <strong>"Free Source"</strong> and that means it\'s a team work where all of us help each other. So it\'s not only about others solving your problems, but you should also ask yourself in what ways you can help all the people who use it. Depending on your skills and free time, the different ways you can help are these ones:</p>
<ul>
    <li><strong>Donations</strong></li>
</ul>
<p>If this mod have helped you out, donations are a great way of saying "Thanks!". Furthermore, the months when donations reach an acceptable level, I don\'t have to spend so many hours looking for customers to make other types of work and I can devote more time to what really matters: The various free software projects which I collaborate with.</p>
<ul>
    <li><strong>Reporting bugs</strong></li>
</ul>
<p>Whenever you see that the mod is behaving in a way that is not expected, you should report the bug in the appropriate forum. If you also have enough programming knowledge to find where is the failure and propose a solution, the better, but even if you have no idea of where the fault is, the mere fact of reporting it is helpful, because it will allow someone with more experience to know that the bug exists and to dedicate some time to solve it, which will make the mod work even better.</p>
<ul>
    <li><strong>Answering questions in the forum</strong></li>
</ul>
<p>If you\'ve been using this mod for some time and have some practice with it, you\'ll see at times that someone asks a question in the forum that you know the answer. If you answer that question it will save me some time and allow me to concentrate on more important problems.</p>
<ul>
    <li><strong>Helping with the development of this mod</strong></li>
</ul>
<p>If you have enough knowledge of PHP and some free time you can help solving mod bugs and/or developing future versions. To do this I have opened a <strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=36.0;language=english" target="_blank">sub-forum inside my personal forum</a></strong> where you are welcome if you are interested in the subject.</p>
<ul>
    <li><strong>More</strong></li>
</ul>
<p>Any other ideas you can think of to help us is welcome.</p>';
$txt['httpBL_about_title'] = 'About MOD httpBL';
$txt['httpBL_about_body'] = '<p>Mod httpBL was started in 2009 by me, J. C. Redondo "Snoopy", from <strong><a href="http://www.snoopyvirtualstudio.com/index.php?language=english" target="_blank">Snoopy Virtual Studio</a></strong>, based on ideas from Project Honey Pot message board, mainly <strong><a href="http://www.projecthoneypot.org/board/read.php?f=10&i=1&t=1" target="_blank">from this thread</a></strong> and also from the <strong><a href="http://drupal.org/project/httpBL" target="_blank">Drupal http:BL MOD made by praseodym</a></strong>.</p>
<p>Of course, Drupal code is very different from SMF code, so since the beginning I had to change it a lot. Furthermore, since I started it, I\'ve been modifying it a lot more and adding new features, as I have been having new ideas or they have been suggested to me by other people in SMF forum, so in the current version there is very little left from the original work, but all this would not have been possible without that initial work.</p>
<p>Since version 2.4 of October 2010, this mod also uses the functions created by <strong>Marcin Krol</strong> and modified by <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">X3mE</a></strong> in his mod <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">OS & Browser Detection</a></strong> to detect the Operating System and Browser of potential spammers.</p>
<p>This program, as most of my work, is free software (at least the parts I have done). You may redistribute it and/or modify it for your own projects anyway you want. Just mention where you got it from, to give me the credit I deserve for my efforts. Anyway if you are going to make any money with it, I will be very grateful if you consider donating me a small percentage of your profit.</p>';
// MOD httpBL END

The only file a human visitor may ever see is the file warning.php
telling him that his IP has been hijacked by a spammer and telling him what
to do in this case, so apart from the above lines you need to translate
this file if your visitors speak another language.

As all my websites are normally visited from people who speak either english or spanish,
I have done this file warning.php in both these 2 languages,
so if your visitors speak (let's say) either english or german,
you will only need to replace the spanish part with the same thing in german.

I welcome new translations here (http://www.simplemachines.org/community/index.php?topic=366399.0)



Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 04:13:11 PM
While we were waiting for the mod being approved we were already trying to improve it in my site, so we are going to continue  here the conversation we had there.

If you don't know what we are talking about, check previous post in:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0
Title: Re: httpBL
Post by: Wizzlefits on February 17, 2010, 04:30:30 PM
Congrats Snoopy!!!  ;D ;D ;D ;D ;D

And anyone reading this...
GET THIS MOD!!! It is freaking AWESOME!

And don't forget to pick up Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547)
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 04:43:07 PM
Thanks Wizzlefits

And continuing what we were saying in my site, don't forget to tell me if with this new version 2.2 you still get anybody with "No IP"

I am just installing anyway CrawlTrack so I can do a few more tests myself about that.
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 05:17:57 PM
Snoopy, my last post (and attached image) in your site was with v2.2 installed (sorry, I thought I said that).
Title: Re: httpBL
Post by: butchs on February 17, 2010, 05:29:21 PM
I had a 500 error with the old version.  Glad you fixed it?  Will advise if I ever see it again.

This mod is a must have.  Even if you do not have a spam problem this will cut back on spammer bandwidth!
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 05:41:34 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396
when try going to warning.php
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 05:43:56 PM
@madfitz

You mean the one I just attached here?

When I saw it was still coming with the error "No reverse IP" I thought you still had version 2.1

I hadn't realized the IP now is not blank. It has now the word "unknown" and of course the function httpBL_reverse_ip() cannot reverse a word.

But I see it's still coming every half hour.

I am going to continue searching all the pages I know to see if I find any more information on the subject to see what can cause this problem.

In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Apart from that, now that we are in a site visited for a lot more people than mine, maybe somebody else can give us more ideas.

======================

@butchs

What version gave you error 500 the 2.1?
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 05:46:25 PM
Quote from: Dismal Shadow on February 17, 2010, 05:41:34 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396
when try going to warning.php

What picture?

Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 05:50:44 PM
Quote from: snoopy_virtual on February 17, 2010, 05:46:25 PM
Quote from: Dismal Shadow on February 17, 2010, 05:41:34 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396
when try going to warning.php

What picture?

Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Oops, forget to add the picture. Edited.
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 06:05:31 PM
I don't see any error in the picture. The only thing I see in your httpBL log is the sentence:

(There is no entries in the MOD httpBL log)

And this actually means there is no entries in the log, so you haven't catched yet any spammer.

I have installed it already in 6 forums, and in some of them it's catching only 1 a day, but in other ones it's catching a spammer every 2 or 3 hours.

So wait a few hours and try again to see the log.

========================

The another problem is more worrying.

As I was saying getmobileproperties() doesn't belong to this mod and I haven't seen it before in SMF.

Anybody knows it?

The name sounds really funny to me. Like a hack or something.
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 06:10:48 PM
Quote from: snoopy_virtual on February 17, 2010, 06:05:31 PM
I don't see any error in the picture. The only thing I see in your httpBL log is the sentence:

(There is no entries in the MOD httpBL log)

And this actually means there is no entries in the log, so you haven't catch yet any spammer.

I have installed it already in 6 forums, and in some of them it's catching only 1 a day, but in other ones it's catching a spammer every 2 or 3 hours.

So wait a few hours and try again to see the log.

========================

The another problem is more worrying.

As I was saying getmobileproperties() doesn't belong to this mod and I haven't seen it before in SMF.

Anybody knows it?

The name sounds really funny to me. Like a hack or something.
Sorry it was a iPhone mod, SMF4iPhone.
I removed it, now the  warning.php works.
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 06:15:46 PM
Quote from: snoopy_virtual on February 17, 2010, 05:43:56 PM
In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Trying this now. What php file would you place the crawltrack tag?
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 06:22:08 PM
Quote from: madfitz on February 17, 2010, 06:15:46 PM
Quote from: snoopy_virtual on February 17, 2010, 05:43:56 PM
In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Trying this now. What php file would you place the crawltrack tag?

I haven't installed it yet because I never install a program without reading all the documentation and (if it's open source like this one) looking a little inside the code (I even do that sometimes with the other ones as well  ;D ) and I have been too busy today to finish with that, but I have already seen the answer to that.

Go to:

http://www.crawltrack.net/doccms.php

And scroll down to SMF   ;)
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 06:28:13 PM
Quote from: snoopy_virtual on February 17, 2010, 06:22:08 PM
... but I have already seen the answer to that.

Go to:

http://www.crawltrack.net/doccms.php

And scroll down to SMF   ;)

That will teach me to read the instructions :)
Title: Re: httpBL
Post by: butchs on February 17, 2010, 06:34:50 PM
Yes 2.1.  So far I have not seen it in 2.2.  ;)
Title: Re: httpBL
Post by: butchs on February 17, 2010, 06:46:46 PM
Quote from: snoopy_virtual on February 17, 2010, 05:46:25 PM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 07:16:36 PM
Quote from: butchs on February 17, 2010, 06:34:50 PM
Yes 2.1.  So far I have not seen it in 2.2.  ;)

Weird

From v2.1 to v2.2 I have changed these 3 things:

  1.- I have used the cache functions so now if you have cache enabled in your forum, everytime the mod do a dnslookup of an IP, it store the data in the cache for 120 seconds. This will make pages with lots of visitors load faster, but it won't affect at all to normal sites. And of course it won't affect you if you haven't cache enabled.

  2.- In version v2.1 I was using plain Mysql to display the page warning.php instead of the SMF functions db_query() or $smcFunc['db_query'] and I had put some default values just in case something went wrong. So the people using SqlLite or PostgreSQL were seeing in their warning.php always the default values.

I have found a way to sort that in v2.2 so everybody now should see in the page warning.php the values they put in the settings and not the default ones. By the way, everybody should edit the file httpBL_Subs.php to change my default values for theirs, just in case something goes wrong anyway with the db, but it's not too important. I will explain that better for normal users when I have time to continue the tutorial, so that can wait for now. (Advanced users can do it now).

Anyway this change (even if you are not using Mysql) only affects to the page warning.php, so I don't think it has anything to do with your error 500 either.

  3.- In version v2.1 I was using only $_SERVER['REMOTE_ADDR'] to find out the visitor's IP so we can check it out in the spammers db. Version v2.2 is using a lot more methods. See full list here:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=309.msg1292#msg1292

I don't think this change can have anything to do also with error 500

Of course the problem is error 500 is too generic. It can be almost anything.

Any of the 3 changes were affecting you?

Was there any more information with the error 500? Normally no, so I suppose we will need to wait to see if it comes back again.

Cheers.
Title: Re: httpBL
Post by: butchs on February 17, 2010, 07:26:55 PM
I am guessing that the updates in number 3.  When it happened I had several spammers get rejected.  Spammer rejection is slow at this moment.  Then again, it could be some of the things me a user were doing to test a program on the forum.  We will see in a day or so...  I really am not sure...    ???
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 08:14:30 PM
Quote from: butchs on February 17, 2010, 06:46:46 PM
Quote from: snoopy_virtual on February 17, 2010, 05:46:25 PM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Dismal Shadow if you tell Fabius85 about this problem tell him as well that the page warning.php is using SSI.php to load all the SMF functions. He will understand what that means and can help him understand where is the problem.

Anyway, as butchs was saying maybe you were just using an old version of smf4iphone. Try if there is any update.
Title: Re: httpBL
Post by: lc62003 on February 17, 2010, 08:59:07 PM
I see you plan to provide better instructions....that would be great! 

So...please pardon my noobiness.....where do you install the honey pot script?  In the root folder or something like root/forum folder? 
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 08:39:28 AM
Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, I'll look around first :)

Anyway, just in case there's any Indonesian who want to use it...

$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Periksa pengaturan MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL API salah. Periksa pengaturan MOD httpBL Anda.';
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP tiap pengunjung, apakah sudah ada dalam basis data projecthoneypot.
Jika ada, mod ini mengarahkan pengunjung ke halaman warning.php dan mencegah akses ke forum.<br />
Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa parameter.';

$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/Matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API Anda keliru. Silakan periksa dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memasang Honey Pot
pada server Anda. Jika Anda belum mendapatkannya, kunjungi
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>,
unduh dan pasang di server Anda. Setelahnya, tuliskan tautan ke Honey Pot tersebut.
Tautan tersebut mungkin seperti ini:<br /><b>http://www.situssaya.com/honeypotsaya.php</b>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki kunci API 
http:BL dari Project Honey Pot. Jika Anda belum memilikinya, kunjungi
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>,
daftar dan dapatkan kunci Anda, lalu tulis di sini. Harap diingat, mereka tidak akan memberikan kunci API jika
Anda belum memasang sebuah Honey Pot, jadi sebaiknya pasang dulu.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci untuk tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat oleh spammer.
Tulis sesuatu yang cukup menarik bagi spammer untuk mengekliknya, jangan sesuatu yang menyeramkan.
Jika Anda tidak tahu harus menulis apa, biarkan kosong. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika ada masalah dan
untuk memberi tahu pengunjung yang kurang beruntung memiliki IP yang dianggap sebagai spammer
dan tidak tahu cara keluar dari halaman <b>warning.php</b>, jadi mereka dapat meminta bantuan Anda.
Isikan dengan alamat email yang valid. Alamat ini dipecah dalam 3 kata sehingga tidak dapat dilihat robot.
Contoh, jika alamat email Anda adalah <b>[email protected]</b>, kata pertama adalah <b>info</b>,
kata kedua adalah <b>situssaya</b>, dan kata ketiga adalah <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda tuliskan. Anda tidak dapat mengosongkan salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari untuk menganggap sebuah IP baik-baik saja';
$txt['httpBL_bad_last_activity_sub'] = 'Jika suatu IP pernah digunakan oleh spammer, namun tidak ada yang salah
sejak sejumlah hari berlalu pada pilihan ini, kita anggap tidak berbahaya lagi
dan izinkan pengunjung masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberi setiap IP tingkat ancaman yang berubah tiap hari,
tergantung apa yang IP ini lakukan dan sudah berapa hari berlalu sejak saat itu.
Semua IP dengan tingkat ancaman lebih tinggi dari angka yang Anda berikan tidak dapat masuk.
Tidak disarankan untuk mengganti 2 nilai terakhir sampai Anda tahu cara kerja mod ini.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan pada log';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menandai pilihan ini, Anda akan melihat semua informasi
pada log, namun mungkin informasinya terlalu banyak dan Anda kehilangan fokus.
Sesekali lebih baik melihat hanya hal yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" dengan
pengaturan ini (halaman yang akan dilihat pengunjung dengan IP dianggap berbahaya)
klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan
tidak tahu caranya, silakan minta bantuan di forum dukungan (hanya dalam bahasa Inggris):';

$txt['httpBL_viewlog'] = 'Log MOD httpBL';
$txt['httpBL_viewlog_description'] = 'Setiap kali MOD httpBL menghentikan spammer atau
mendeteksi kesalahan internal menambah sesuatu ke log, Anda bisa melihatnya di sini.';
$txt['httpBL_log_no_entries'] = 'Tidak ada data pada log MOD httpBL';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'T.A.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - Tingkat ancaman IP ini di basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = Aktivitas Buruk Terakhir - Jumlah hari berlalu sejak IP ini
melakukan sesuatu yang buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen - Robot yang mencari alamat-alamat email untuk dikirimi spam.';
$txt['httpBL_log_comment'] = 'S.K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis ke blog dan forum, biasanya penuh dengan
tautan ke situs yang dipromosikan oleh spammer.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_user_agent'] = 'Peramban yang digunakan IP ini';
$txt['httpBL_log_error_message'] = 'Pesan Galat';
$txt['httpBL_log_no_error'] = 'Tidak ada galat';
$txt['httpBL_log_remove_all_confirm'] = 'Anda yakin ingin menghapus semua data log MOD httpBL?';
$txt['httpBL_log_remove_selected_confirm'] = 'Anda yakin ingin menghapus semua data log MOD httpBL terpilih?';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman berbahaya';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat berbahaya';
$txt['httpBL_threat_colors'] = 'Arti warna:';


And again a typo:

Quote$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen
doing domething wrong.';
something?

Anyway, since I haven't installed it yet, I don't know if my translation will break the page layout. I'll install an SMF offline and test my translation, but I need to take a dinner now :D

Thanks :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 08:51:50 AM
Quote from: Exsharaen on February 18, 2010, 08:39:28 AM
Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, ...


This is more urgent, so I answer this first:

Re-start your router until you get a different IP and try again my site

I will answer the rest later.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:02:00 AM
Quote from: lc62003 on February 17, 2010, 08:59:07 PM
I see you plan to provide better instructions....that would be great! 

So...please pardon my noobiness.....where do you install the honey pot script?  In the root folder or something like root/forum folder?

I'm writing just now an extensive tutorial in English and Spanish. It's not finished yet, but I'm on it just now, so I suppose it will be finished in a few hours, and that question is already answered there.

You can find it (the part it's done at least) here:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 09:19:37 AM
Cool!  Thanks!  BTW, great mod.  I have a half dozen sites to install.... ;D
Title: Re: httpBL
Post by: Fabius85 on February 18, 2010, 09:24:36 AM
Quote from: snoopy_virtual on February 17, 2010, 08:14:30 PM
Quote from: butchs on February 17, 2010, 06:46:46 PM
Quote from: snoopy_virtual on February 17, 2010, 05:46:25 PM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Dismal Shadow if you tell Fabius85 about this problem tell him as well that the page warning.php is using SSI.php to load all the SMF functions. He will understand what that means and can help him understand where is the problem.

Anyway, as butchs was saying maybe you were just using an old version of smf4iphone. Try if there is any update.
he was just using the older version of the mod, no matters with last update (as butchs said) ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:32:42 AM
@ Exsharaen

Thanks for the translation. That was quick.  ;)

I will start a full language package (as we do with mod Stop Spammer) as soon as I finish the tutorial.

Quote from: Exsharaen on February 18, 2010, 08:39:28 AM
And again a typo:

Quote$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen
doing domething wrong.';
something?

Yes, it's a typo.

I suppose I wrote that when I finished with the coffee and started with the beer.  ;D

I will correct that in the next version, but I don't recommend nobody changing it in their Modifications.english.php file now, because if you change even one character in your files, whenever I do the next version, the installer is going to complain and throw an error message, and it won't update properly.

======================

Going back to this problem:

Quote from: snoopy_virtual on February 18, 2010, 08:51:50 AM
Quote from: Exsharaen on February 18, 2010, 08:39:28 AM
Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, ...


This is more urgent, so I answer this first:

Re-start your router until you get a different IP and try again my site

I will answer the rest later.

This is a normal issue when you have a dynamic IP (as almost all of us have).

I have this problem sometimes, as normally, when I re-start my router I get a different IP, so sometimes I get an IP that is in the spammers DB and cannot enter my own site, so I just re-start the router again and that's it.

Anyway sometimes the IP doesn't change just re-starting the router and you need to leave the router off for a few minutes. Just check it has actually changed.

Of course, if after trying with some different IPs still you are blocked then the problem is you have a trojan and your computer is part of a botnet, but I suppose you must have good anti-virus, anti-trojans, etc.

Another thing you can do is go to http://www.projecthoneypot.org and check your IP to see why it's in the database.

projecthoneypot => IP data => Lookup IP => enter the IP you want to check

It gives you not only all the information about what have been done from that IP but also from IPs in your neighbourhood.

Even, once you are a member and have installed at least one honey pot, you have access to more pages inside their site and you can ask them to add your IP to the "white list".

But I don't do that any more, as they usually need a day to add you that list and it's a lot faster re-starting the router.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:35:39 AM
Quote from: lc62003 on February 18, 2010, 09:19:37 AM
Cool!  Thanks!  BTW, great mod.  I have a half dozen sites to install.... ;D

If you are installing it in some different sites (as I have done) you can use the same API key for all of them, but it's a lot better if you install a honey pot for each one of them, as the mod works faster if the honey pot is in the same domain as the forum.
Title: Re: httpBL
Post by: butchs on February 18, 2010, 09:39:38 AM
My caught spammer log is getting long.  Does it automatically trim it's self or goes forever?
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 10:03:09 AM
Quote from: butchs on February 18, 2010, 09:39:38 AM
My caught spammer log is getting long.  Does it automatically trim it's self or goes forever?

No, it's not automatic. You need to delete them manually if you want to.

Won't be a bad idea to add that in the next version, but just now I'm leaving them to grow in all my forums, as I want to study the entries later.

Remember what I said somewhere about not being sure yet about the best Settings.

When you install it the "Threat level considered bad" is set to 10, but I have change that manually in all my forums to just 1 to stop everybody in the DB and see the difference.

On top of that if a friend tell you he was trying to enter your forum and couldn't, knowing the date and the time, you can see what IP he was using and study in projecthoneypot what was wrong with that IP, and you won't be able to do that if you have deleted that entry.

Anyway I will consider adding that to the next version. Leaving the data in the log for x days.

Even adding an option to the settings for automatic trim or not and for how many days you want to keep the data.
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 12:05:45 PM
Well I can confirm that I have an antivirus and antispyware plus a firewall always turned on in a strict mode (I monitor any ingoing and outgoing network activities), and yes I have dynamic IP. The latest one, 125.164.136.108, is confirmed to be suspicious (FYI the first one I tried today to be blocked was 110 something, I forgot to note it down) although it might be obsolete.

Anyway, by translating I recall there's an option to set number of days to consider an IP being "good" again? Maybe I can alter that setting further and see which setting fits better...

Just call me lazy, but in fact I do feel lazy to restart the router everytime I am blocked, esp. that it's a wireless one, it's not in the same room as I'm using the Internet, and someone might be using it at the same time I am blocked, bla bla bla :P but I'll try again some time later (in fact I am really curious about your site :D)

For now, consider I am a little bit unlucky :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 12:55:12 PM
Quote from: Exsharaen on February 18, 2010, 12:05:45 PM
---
Just call me lazy,
...

OK, if you say so, I call you lazy.  ;D

Quote from: Exsharaen on February 18, 2010, 12:05:45 PM
---
The latest one, 125.164.136.108, is confirmed to be suspicious
...
For now, consider I am a little bit unlucky
...

You are really unlucky. I have been checking out that IP an the threat level is just 1  :D

OK. I have changed again the "Threat level considered bad" in my site up to 5.

Now you can pass. At least until you re-start your router and get a worst IP  :D
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 01:33:10 PM
Quote from: snoopy_virtual on February 18, 2010, 12:55:12 PM
Quote from: Exsharaen on February 18, 2010, 12:05:45 PM
---
Just call me lazy,
...
OK. I have changed again the "Threat level considered bad" in my site up to 5.

Now you can pass. At least until you re-start your router and get a worst IP  :D

Thanks, I'm there now, although now I forget what I should search there :P I assume the support forum for your mod is here?

Don't mind me though, just reset the threat level. I don't want spammers to get in there just because of me :)

That reminds me, what is the highest setting for threat level? You said you lowered your site to 5, but I recall somewhere the threat level 1 will block everyone. Does "everyone" here refer to "everyone in the PHPot DB" or literally "everyone"?

I'll try to activate the mod tomorrow and see if I am blocked :P by the way, isn't there any exception for admins to not be blocked?

Thanks :)

PS: I hesitate to register at your forum after reading the TOS; I might not be so active, although somehow I am interested there :)
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 01:52:16 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:06:34 PM
Quote from: Exsharaen on February 18, 2010, 01:33:10 PM
...
That reminds me, what is the highest setting for threat level? You said you lowered your site to 5, but I recall somewhere the threat level 1 will block everyone. Does "everyone" here refer to "everyone in the PHPot DB" or literally "everyone"?
...

Level 1 blocks everyone in the PHPot DB

Take a look at this:

http://www.projecthoneypot.org/threat_info.php

The highest I have seen so far in my logs is 73 but I am not sure how high it can go.

I have realized putting it down to 1 is too much. In PHPot page they say 10 is a safe enough number, but I wanted to experiment with different values to see what happen.

Quote from: Exsharaen on February 18, 2010, 01:33:10 PM
...
by the way, isn't there any exception for admins to not be blocked?
...

My god, Am I stupid or what?

I never thought about that. I need to put it in the next version ASAP

Quote from: Exsharaen on February 18, 2010, 01:33:10 PM
...
I hesitate to register at your forum after reading the TOS
...

I need to change that TOS. It was because 3 years ago we were having some people just looking for a laugh and we were fed up with them, but you are welcome, of course.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:08:04 PM
Quote from: lc62003 on February 18, 2010, 01:52:16 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D

What shoutbox mod are you using?
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 02:15:17 PM
Quote from: snoopy_virtual on February 18, 2010, 02:08:04 PM
Quote from: lc62003 on February 18, 2010, 01:52:16 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D

What shoutbox mod are you using?


Simple Portal.   :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:21:37 PM
@lc62003

Try uninstalling my mod, wait for a few minutes, check that the bot IP is still banned and then install the mod again.

Maybe will work.
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 02:46:38 PM
No dice.  Perhaps it will give up in a few days.   :-\
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 03:05:09 PM
I am not sure with Simple Portal, but can you uninstall just the shoutbox without uninstalling the full Simple Portal?

If you can, try uninstalling both the shoutbox and my mod, waiting for a while and install them again.
Title: Re: httpBL
Post by: butchs on February 18, 2010, 09:56:10 PM
Quote from: snoopy_virtual on February 18, 2010, 10:03:09 AM
Won't be a bad idea to add that in the next version, but just now I'm leaving them to grow in all my forums, as I want to study the entries later.

There is an idea.  Create statistics?  Take all the IPS from the same host and gather them together. The the admin can go to his cpanel and block the addresses.

For example I am getting a bunch of spammers from "Amsterdam NL" and "FDCservers.net  in Chicago IL".  It would be nice to see all the offending IP's from these two spammers then I can block all of the possible addresses from both of them.  Just an idea...  ;)
Title: Re: httpBL
Post by: butchs on February 18, 2010, 10:03:03 PM
Quote from: lc62003 on February 18, 2010, 02:46:38 PM
No dice.  Perhaps it will give up in a few days.   :-\

If you have access to cpanel ban the IP of the bot.  Or call your host and ask them to ban the IP of the bot.
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 10:12:52 PM
Quote from: butchs on February 18, 2010, 10:03:03 PM

If you have access to cpanel ban the IP of the bot.  Or call your host and ask them to ban the IP of the bot.


IP ban was the first thing I did.  But since it was sitting there with the page 'open' and trying to hit the shoutbox, there was no new action to cause the ban to work.  Picture this:  if you're viewing a page, and it changes, you won't see any of those changes until you either refresh or move to another page.  But until that action happens you're still looking at the same old thing.  Does that make sense? 
Title: Re: httpBL
Post by: snoopy_virtual on February 19, 2010, 04:16:45 AM
Yes, That's why I was saying a possible solution will be if you can uninstall just the shoutbox.

That way the page will disappear and the bot will have nothing to hold on to.

But I have never used Simple Portal and I don't know if you can do that without uninstalling the full mod.
Title: Re: httpBL
Post by: lc62003 on February 19, 2010, 08:37:50 AM
Quote from: snoopy_virtual on February 19, 2010, 04:16:45 AM
Yes, That's why I was saying a possible solution will be if you can uninstall just the shoutbox.

That way the page will disappear and the bot will have nothing to hold on to.




Uninstall would have no effect if the page is never refreshed.   ;)  The SP shoutbox is just a block on the page.  I uninstalled both the MOD and the shoutbox, but they still existed within his page view if that makes sense.   Let's say you put a simple html page on a server.  Someone opens that page in a browser but never navigates away from it.  You take that page off the server within 5 minutes.  The page still exists in the browser indefinitely so long as they don't close the browser, refresh, or follow a link.  Posting a shout in the shoutbox does not refresh the page, nor does it take you to a new one. 

Apparently this was one of those '24 hour' bugs as it stopped 24 hours to the minute.  It actually did attempt to enter the forum, at which time the MOD caught it and he was gone (a new action!!!).   8)

I'm probably doing a poor job explaining what was observed.  I'm not bringing this up to be confrontational at all, just thought it may be a behavior not seen without the use of this mod and it may be diagnostic in prevention.   ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 19, 2010, 08:53:42 AM
Quote from: lc62003 on February 19, 2010, 08:37:50 AM
...
I'm not bringing this up to be confrontational at all, just thought it may be a behavior not seen without the use of this mod and it may be diagnostic in prevention.   ;)

Yes, it's a new behaviour I had never seen before, and yes I interesting to be diagnostic, but I gather from your answer it's already gone.

A pity it was not in one of my forums to do a few more tests with it. I love when this things happen, because you can learn a lot about the way they work.  ;D
Title: Re: httpBL
Post by: lc62003 on February 19, 2010, 08:24:17 PM
OK, even with a full ban on the IP, no action in 24 hrs, now it's back!   :-\
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 05:51:17 AM
Quote from: lc62003 on February 19, 2010, 08:24:17 PM
OK, even with a full ban on the IP, no action in 24 hrs, now it's back!   :-\

With all the answers in this post and some googleing on my own and all the information I am getting via PM (thanks butchs, you are saving me lots of hours of googleing) I'm doing a new version of the mod.

Hopefully this problem will be sorted with the new version.

When I release it (don't know yet when, but maybe tomorrow or even later today) try it and tell me what happen.

In the mean time why don't you try to add a link inside your shoutbox to my site? http://www.snoopyvirtualstudio.com/

Robots tend to follow all the links they see too attack as many pages as possible and I would love to study this bast*** better.

If you don't want to break the design of your shoutbox you can put it hidden, so only robots can see it.

For example like this:


<div style="display: none;"><a href="http://www.snoopyvirtualstudio.com/">anything</a></div>
Title: Re: httpBL
Post by: lc62003 on February 20, 2010, 08:48:50 AM
OK, I'll try the link.  This thing (or is it things?) is/are coming from 4 IPs.  Overnight I have 22 pages in the log.   ::)


Maybe this will help in some way:

Today at 08:38:42 am     216.104.15.134     30     4     Yes         Yes     /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672991;xml     
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:37:29 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672931;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:37:24 am    216.104.15.142    30    18    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672901;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:53 am    216.104.15.142    30    18    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672811;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:53 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672751;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:28 am    216.104.15.130    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672781;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:34:14 am    216.104.15.130    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672721;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:33:54 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672691;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:32:46 am    216.104.15.138    31    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672661;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 10:33:18 AM
One thing for sure:

All those IPs are from S. Francisco California.

Maybe a botnet (a lot of computers with a trojan working from inside them) or maybe servers (with or without the owner knowledge)

I can see they use Windows NT 5.1 (and that's not normal for PC, but servers) and Internet Explorer (MSIE) 6.0

One way or another they are taking too much of your server time. I suppose this must be making your site slower, so until I investigate it a little more I have thought about another solution for you.

Stop them completely with "htaccess"

Look inside your root folder (the folder just above /forum/ - Normally it's called /public_html/ or /www/) see if you can find there a file called ".htaccess" (note the "dot" before the word htaccess)

The file ".htaccess" affects not only every file inside the folder where it is, but every file in every folder inside that one.

That's why I told you to use the one in your root folder, but if you want to protect only the forum it's up to you.

Anyway, look if there is a ".htaccess" already there.

If it is, open it with note-pad and add at the end of it these lines:


order allow,deny
allow from all
deny from 216.104.15.134
deny from 216.104.15.142


I have put only 2 IPs. Add all the rest yourself.

You don't need to finish every line with nothing, and you don't need to put anything also at the end of the file. Just as I have written it there.

Then save the file and FTP it to your server.

If there is no ".htaccess" already there, just create one. Open with note-pad a new text document. Put inside it the above lines (no need for anything special at the beginning either. Just the lines)

Save it, rename it .htaccess (remember the dot at the beginning) and FTP it.

More info:

http://vortexmind.net/2006-02-26-apache-htaccess-tweaking-tutorial/

I will continue looking for more information on those IPs.

A pity we cannot yet send an electric shock via internet.  ;D
Title: Re: httpBL
Post by: butchs on February 20, 2010, 12:13:48 PM
Hey lc62003, why not look up the IP information and get the host name.  Call the host and complain.  Have the host force them to stop!  8)


You can call:
They are Trend Micro inc:  TRENDMICRO.COM 
OrgName:    TREND MICRO INCORPORATED
OrgID:      TREND-7
Address:    10101 N. De Anza Blvd,
City:       Cupertino
StateProv:  CA
PostalCode: 95014
Country:    US

NetRange:   216.104.0.0 - 216.104.31.255
CIDR:       216.104.0.0/19
OriginAS:   AS16880,  AS36421
NetName:    NET-TRENDMICRO-COM
NetHandle:  NET-216-104-0-0-1
Parent:     NET-216-0-0-0-0
NetType:    Direct Assignment
NameServer: TMNS5.TRENDMICRO.COM
NameServer: TMNS6.TRENDMICRO.COM
Comment:   
RegDate:    2007-03-01
Updated:    2009-05-06

RAbuseHandle: TCH55-ARIN
RAbuseName:   Chou, Tai-Li
RAbusePhone:  +1-408-863-6403
RAbuseEmail:  [email protected]

RNOCHandle: YCH21-ARIN
RNOCName:   Chang, Yulin
RNOCPhone:  +1-408-850-1012
RNOCEmail:  [email protected]

RTechHandle: YCH21-ARIN
RTechName:   Chang, Yulin
RTechPhone:  +1-408-850-1012
RTechEmail:  [email protected]

RTechHandle: WWA18-ARIN
RTechName:   Wang, Wen-Chi
RTechPhone:  +1-408-863-6408
RTechEmail:  [email protected]

OrgTechHandle: YCH21-ARIN
OrgTechName:   Chang, Yulin
OrgTechPhone:  +1-408-850-1012
OrgTechEmail:  [email protected]


Call and or email Alex, Yulin & Terry, ask for the IT department.  If the ask why tell them why.  I believe either they have an employee who is bothering you or they were hacked!

Report the abuse.  I have done it before and it works.   Get them back!!!    8)

Title: Re: httpBL
Post by: lc62003 on February 20, 2010, 12:18:04 PM
Now that's a heck of an idea!  Thanks!  An interesting thing regarding the IP location....everywhere I've checked resulted in a different location.  Try Honey Pot, and a couple of others.  HP says Spring, TX.   ;D


And now to (another) downside of shared servers......my server doesn't allow .files, so no .htaccess.    :-[  Or if it does I don't know how to do it.   :-\
Title: Re: httpBL
Post by: butchs on February 20, 2010, 12:31:20 PM
Use this whois to search the IP's in USA:  http://www.networksolutions.com/whois/

Make sure you select the IP address button.
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:33:50 PM
My server is shared and I can do that and a lot more.

But then again, my hosting company is the best.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:39:25 PM
Quote from: butchs on February 20, 2010, 12:31:20 PM
Use this whois to search the IP's in USA:  http://www.networksolutions.com/whois/

Make sure you select the IP address button.

That whois is a lot better than the one I was using.

Filed for future whois searches.

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:42:17 PM
BTW, to find the country and even the city an IP is coming from I normally use:

http://www.geobytes.com/IpLocator.htm?GetLocation

If it fails I try others, but usually is always right.
Title: Re: httpBL
Post by: butchs on February 21, 2010, 07:37:02 PM
I heard that some people that were really mad at this sorta stuff too further action.  They would look up his property on the real-estate databases and send him a picture of his house as a reminder that they were not messing around.  Not that I know how to do that or know anyone who has done it.   ???
Title: Re: httpBL
Post by: julieo on February 22, 2010, 03:04:28 AM
Sorry for newbie question...I'm amazed I've gotten this far. My forum is hosted on hostmonster.

I read and followed your tutorial but still confused. Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL but don't know PHP and can't figure out what to do with the BL access key. You mention index.template.php on SMF mods page but can't find it anywhere. I use 1stPage for my web editor and have looked at the source but don't can't tell what I am supposed to change for my honeypot and BL access key from the comments in it.
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 04:43:28 AM
Quote from: julieo on February 22, 2010, 03:04:28 AM
...
Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL
...

If you have already mod httpBL installed, just go to the settings page. (See pictures attached)

Fill all the fields, enable the mod and save.

Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.

==================

BTW, I want to answer here a lot of messages I got, so I don't need to answer them one by one:

There was a mistake in my site yesterday (as I am changing the mod doing the new version and I was testing it on my site) and nobody was able to enter. Almost everybody was redirected to my warning page.

The problem was I couldn't sort it because just when I was doing it we had in Spain the worst storm I have seen in my life and I have been with no electricity, no telephone, etc for ages.

Just got power back a few minutes ago.

That's also the reason why I couldn't continue with the new version, the tutorial, etc.

Sorry.

===============

PS: If I ever hear somebody again saying the weather is not changing and it's all an invention of us anarchist hippies people I'm going to get really mad. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/tickedoff.gif)
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 04:47:01 AM
Quote from: snoopy_virtual on February 22, 2010, 04:43:28 AM
...
Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.
...

Anybody who already knows how to do it:

Can any of you explain it to julieo?

I have too many things to do now that I have electricity again (before it goes off again).
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 06:43:02 AM
Quote from: butchs on February 21, 2010, 07:37:02 PM
I heard that some people that were really mad at this sorta stuff too further action.  They would look up his property on the real-estate databases and send him a picture of his house as a reminder that they were not messing around.  Not that I know how to do that or know anyone who has done it.   ???

I have no idea too how to do something like that, and I swear I will never do something like that again.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 08:09:59 AM
Quote from: snoopy_virtual on February 20, 2010, 10:33:18 AM
...
I can see they use Windows NT 5.1 (and that's not normal for PC, but servers)
...

Sorry, that's a mistake.

Windows NT 5.1 actually means Windows XP, and that's very normal for PCs
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 09:27:39 AM
Quote from: julieo on February 22, 2010, 03:04:28 AM
Sorry for newbie question...I'm amazed I've gotten this far. My forum is hosted on hostmonster.

I read and followed your tutorial but still confused. Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL but don't know PHP and can't figure out what to do with the BL access key. You mention index.template.php on SMF mods page but can't find it anywhere. I use 1stPage for my web editor and have looked at the source but don't can't tell what I am supposed to change for my honeypot and BL access key from the comments in it.

I answered you a few hours ago this:

Quote from: snoopy_virtual on February 22, 2010, 04:43:28 AM
If you have already mod httpBL installed, just go to the settings page. (See pictures attached)

Fill all the fields, enable the mod and save.

Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.

As I see that the new version of the mod is going to take me longer that I was expecting and at least one of the changes you should do is an important one, I have updated the tutorial explaining that step.

Read it:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2

And tell me if everything goes ok for you.

If there is anything you don't understand, tell me as well.

BTW, you didn't tell me what versions of SMF and the mod you are using.

Everything in the tutorial is assuming you are using SMF 1.1.11 and the mod httpBL 2.2

For SMF 2.0 RC2 it's a lot easier.
Title: Re: httpBL
Post by: julieo on February 24, 2010, 12:01:32 AM
Thanks for the pictures. I did not see the MOD httpBL link on the side of the Admin panel and kept going into the Package area to find the settings.  Your pictures told me what to do...thanks again.  I can wait for you to finish your tutorial before I try the index changes.
Title: Re: httpBL
Post by: snoopy_virtual on February 24, 2010, 07:13:04 AM
Quote from: julieo on February 24, 2010, 12:01:32 AM
Thanks for the pictures. I did not see the MOD httpBL link on the side of the Admin panel and kept going into the Package area to find the settings.  Your pictures told me what to do...thanks again.  I can wait for you to finish your tutorial before I try the index changes.

The first change, the one I just wrote in the tutorial is very important, because without the links to your honey pot in all the pages the mod doesn't work properly.

You should do it ASAP and wait for the next version to do the rest.
Title: Re: httpBL
Post by: snoopy_virtual on February 24, 2010, 10:52:05 AM
I have just opened a section in my forum "For Developers Only" with the latest development file and all the old ones.

I'm getting a lot of suggestions via PM and I thought if we discuss all these kind of things in an open forum instead of via PM and we get more brains working together, we will work faster:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.0

Please if you are not a developer and you don't know PHP code don't try to use the files there. Use the latest stable version instead.
Title: Re: httpBL
Post by: butchs on February 25, 2010, 02:10:40 AM
You may regret inviting me....   I am a hack, not a developer!  I use text editor and I do not take courses on programming...  :o
Title: Re: httpBL
Post by: coyoteboy on February 25, 2010, 04:25:41 AM
Just to double-check on this, this works solely from IP address - i.e google/yahoo etc crawlers will not be affected as they should not be in the list of spammers?
Title: Re: httpBL
Post by: aussieherps on February 25, 2010, 04:29:10 AM
Have got to step three using 1.1.11 BTW and it tells me to link as many pages to it from my site.
Very new at this stuff and got stuckat the congrats page from http://mysite/honeypot/***.com
Where do I put html codes so they work properly?
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 05:52:47 AM
Quote from: coyoteboy on February 25, 2010, 04:25:41 AM
Just to double-check on this, this works solely from IP address - i.e google/yahoo etc crawlers will not be affected as they should not be in the list of spammers?

Exactly. Legal crawlers are all white listed and they are not affected. There are actually thousands of them and the guys at Project Honey Pot update the list daily to add new good crawlers.
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 05:56:23 AM
Quote from: aussieherps on February 25, 2010, 04:29:10 AM
Have got to step three using 1.1.11 BTW and it tells me to link as many pages to it from my site.
Very new at this stuff and got stuckat the congrats page from http://mysite/honeypot/***.com
Where do I put html codes so they work properly?

When you install the mod using the Packages Manager from your Admin area (as any other mod) all this html codes are done automatically.

The only thing you need to do manually is a little change in your index.template.php if you are not using the default Theme, but that's also in the manual.
Title: Re: httpBL
Post by: aussieherps on February 25, 2010, 06:59:28 AM
All good now thank you very much.
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 07:16:50 AM
Quote from: aussieherps on February 25, 2010, 06:59:28 AM
All good now thank you very much.

You're welcome.  ;)
Title: Re: httpBL
Post by: butchs on February 25, 2010, 10:35:27 PM
Those spammers are really hitting your httpBL hard at my forum.  I am seeing 20-30 hits from the same bot.  WOW!
Title: Re: httpBL
Post by: lc62003 on February 25, 2010, 10:45:07 PM
Quote from: butchs on February 25, 2010, 10:35:27 PM
Those spammers are really hitting your httpBL hard at my forum.  I am seeing 20-30 hits from the same bot.  WOW!


x2!!


In case the info is useful to you Snoopy.....

The same bot(s) hitting my forum have a pattern.  There are four IPs, but they do the same thing during the same period of time.  They hit the shoutbox for 24 hours, then off 24, then back again.  Just like clockwork.  At roughly 8 pm EST tomorrow evening I expect to see it/them again.   :o
Title: Re: httpBL
Post by: butchs on February 25, 2010, 10:50:28 PM
Most of mine use the same IP addres.  I decided that I will add honeypot code the the warning file to make them pay for the evil deed!   8)
Title: Re: httpBL
Post by: giveaway365.com on February 26, 2010, 02:29:41 AM
Snoopy Sir,
I installed your mod and its very nice...

Thank you so much for this wonderful mod.
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2010, 04:54:37 AM
Quote from: lc62003 on February 25, 2010, 10:45:07 PM
In case the info is useful to you Snoopy.....

The same bot(s) hitting my forum have a pattern.  There are four IPs, but they do the same thing during the same period of time.  They hit the shoutbox for 24 hours, then off 24, then back again.  Just like clockwork.  At roughly 8 pm EST tomorrow evening I expect to see it/them again.   :o

Looks like a small botnet. That means a guy who had controlled a few computers and have exactly the same trojan in all of them.

Quote from: butchs on February 25, 2010, 10:50:28 PM
Most of mine use the same IP addres.  I decided that I will add honeypot code the the warning file to make them pay for the evil deed!   8)

That's already done since version 1.0

Read the code carefully and you will see it just before the close body tag.

Quote from: giveaway365.com on February 26, 2010, 02:29:41 AM
Snoopy Sir,
I installed your mod and its very nice...

Thank you so much for this wonderful mod.

You're welcome.
Title: Re: httpBL
Post by: giveaway365.com on February 26, 2010, 09:34:04 AM
Dear Snoopy Sir,
There are 3 things which I wanted to ask you for this mod.
1. After installation of this mod, is there any thing else to be done like submiting suspicious behaviour data ? or every thing is done automatically?

2. I have dynamic IP. Some IPs in my range are getting classified under suspicious IPs and I am not able to use my website as a admin. Is there any way to overcome this? Can I disable the catching of suspicious IPs?

3. Even if I am classified under suspicious IPs , I am still allowed to browse my website. Is that normal? It happens when I do refresh or use back button and try again. Does that mean that I have not installed the mod properly?
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 05:24:55 AM
1.- Every thing is done automatically.

2.- I'm working on that and will be sorted in next version.

3.- You must have installed it wrong. If your IP is suspicious you cannot (with this version) see the web site at all.

In next version, the admin will be always allowed in and also if the IP is not too dangerous (less than level 30) they will see a captcha to prove they are human and be able to pass. But with this version that's not possible yet.
Title: Re: httpBL
Post by: GJSchaller on February 27, 2010, 10:33:00 AM
Thank you for all your hard work - you've saved me from pulling out what little hair I have left...  :o

A suggestion - on the Log page, it lists the IP addresses that are detected / blocked.  When one of my users noted that he was getting blocked (School connection, there must have been a bot in his school that flagged the whole network), I had to dig to figure out which IP was his.  I would like to suggest adding a column to the log of users associated with a given IP address, so that a quick visual scan will tell an Admin who may be blacklisted, that can later be excepted.

I know you're working on the exception part now, which is very nice.  Hopefully, including a list of users on the "short" log will make this even more useful.

Both myself and my forum users thank you!
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 11:10:13 AM
Quote from: GJSchaller on February 27, 2010, 10:33:00 AM
Thank you for all your hard work - you've saved me from pulling out what little hair I have left...  :o

A suggestion - on the Log page, it lists the IP addresses that are detected / blocked.  When one of my users noted that he was getting blocked (School connection, there must have been a bot in his school that flagged the whole network), I had to dig to figure out which IP was his.  I would like to suggest adding a column to the log of users associated with a given IP address, so that a quick visual scan will tell an Admin who may be blacklisted, that can later be excepted.

I know you're working on the exception part now, which is very nice.  Hopefully, including a list of users on the "short" log will make this even more useful.

Both myself and my forum users thank you!

You are welcome. I understand very well your feelings. I started doing all this work for myself, as I'm fed-up with the spammers in my forums and I realized with mod Stop Spammer (which of course I have also installed in all of them) on its own was not enough and I was pulling out my hair as well.  :D

Then, once the first version was ready, I decided to share it with everybody because I have always thought the more brains trying to sort a problem together the faster you find the solution.  ;)

Please notice, by default, the Log page is sorted by Date (newest ones first), but you can sort it by any column you want just clicking on the name of that column.

Clicking again the same column will change the order ("from smallest to highest" => "from highest to smallest")

So, if you want to find for example any given IP, just click on the "IP" column and you will see the entries for that particular IP all together.

Also, all the IPs are links to the "Track IP" page, so clicking on the actual IP number will show you which user has it, errors from that IP, etc.

Anyway I'm changing a little the Log page in the new version, adding a few more columns etc. I hope you will like it when it's finished.  ;)
Title: Re: httpBL
Post by: GJSchaller on February 27, 2010, 11:18:11 AM
Yes, I was able to hunt down the IP needed - it was more of the idea of a quick look at the log would show "Hey, I blocked 42 spammers, and Tom... I should let Tom know and / or correct that." ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 11:34:07 AM
Yes, one of the new columns I'm adding is the username. Of course, for a visitor the value there will be "Guest". And that column will be also "sortable".

Also I'm separating the log into 3 pages, with different things in each one, so it's easier to read and find the important info, but as I'm still working on it I think I should explain all that when it's done, because maybe I tell you one thing now and then I decide to do it different later after I see it working on an actual forum.  :D
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 01:59:04 PM
MOD httpBL v2.3
============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3
  • Release:
1st March 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I haven't finished all the things I had planned for this new version, but, as a few of them are really very important I have decided to release it the way it is just now and leave the rest of them for a future version.

This is the change log where you can see all the changes and new features:




Quote
Version 1.0 (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpbl) - 17th August 2009

  oInitial release
  oCan be installed in any PHP page, not only SMF
  oCan block any spammer from viewing your site
  oIt checks IP in Project Honey Pot DB
  oIf match, the visitor is redirected to the "warning.php" page
  oKeeps a log of "IPs stopped" in a text file in your server
  oCompatible with any PHP program, so it's compatible with all SMF versions
Version 2.0 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 11th February 2010

  -Eliminated compatibility with other programs, making it now exclusive for SMF
  +Added a powerful install script which now does everything for you with just one click
  +Added an easy-to-use configuration interface to control the mod
  -Eliminated the text file log, too difficult to find and read
  +Added a log table in the database
  +Added a view-log interface to see the information stored in it
  ?Unistall old version and install new one
  ?Need to edit manually 2 small things in index.template.php
if you are not using the default one
Version 2.1 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 15th February 2010

  +Added compatibility with SMF 2.0 RC2
  +Added a color system in the view-log page to see threat l
evel of each IP stopped by the mod
  +Added an option to see the view-log page with only important
information or with all the extra data
  +Added some lines to the language files for the new features
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.0
Version 2.2 (http://www.simplemachines.org/community/index.php?topic=366399.0) - 17th February 2010

  +Added cached values if cache is enabled to reduce time
  +Added more methods to find the visitor's IP
  !Sorted issue with servers not using Mysql
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
Version 2.3 - 1st March 2010

  !The mod now never checks the admin (bug reported by Exsharaen (http://www.simplemachines.org/community/index.php?topic=366399.msg2506339#msg2506339))
  +Added a value in config page for "threat level very very high"
  +Added a captcha in "warning.php"
  • If the threat level is below the "high level" the visitor pass
  • If the threat level is between the "high level" and the "very very high level"
    the captcha appears
  • If the threat level is higher than the "very very high level" it's stopped and
    doesn't see the captcha
  +Added a cookie valid for 24h. If the visitor sees the captcha
and proves is human, gets the cookie
  +Added a value in config page for "cookie lenght"
  +Added a counter with the number of spammers stopped by the mod
  +Added a a button in the view-log page to hide or show the legend
  +Added a a button in the view-log page to change quickly from
"normal view" to "see all the extra info"
  *View-log page now separated in 3 different ones:
  • Spammers stopped
  • Humans allowed in
  • Internal errors
  +Added a column in view-log for "username" with link to member profile
  +Added some more info in "see all the extra info" mode
  *Changed all the language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x

QuoteLegend

oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

I would like to explain a little more all the new features, but I think it's better if you just try this new version and see them for yourself while I concentrate in finishing the tutorial, as most of this new features are already self-explained as you are using them, and ask me here if you don't understand something.

Hopefully, by the time you find something you don't understand it will be already answered in the tutorial.

==========================

This is the list of things I had also planned for this version but I haven't had time yet to implement:




Quote
Things to do in the near future: (1st March 2010)


   *I need to finish the tutorial with the couple of small
things you need to edit in the file index.template.php
and the instruccions on how to use it.

   +I need to add an option in the config page ASAP
to decide what groups of members you don't
want to be checked never by the mod.

   +I need to add an option in the config page asking you
if you want the data to be deleted automatically from
the log after X days or not and how many days you
want to keep the data in the log.

   +When the mod finds an error it writes it in the log table.
It should also email the admin if the error is an important one.

   +I need to write a FAQ with some things I already know
they are going to start asking.


QuoteLegend

*To be Changed
+To be Added
-To be Eliminated
!Bug to be Fixed

As I was saying the first one I'm going to concentrate now is in finishing the tutorial.

Enjoy the new version.

Cheers (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 04:28:09 PM
What does response[raw] mean?   :)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 04:51:28 PM
Quote from: lc62003 on March 01, 2010, 04:28:09 PM
What does response[raw] mean?   :)

It's the raw response from PHPot before processing it to take the values for the threat level, the number of days since last bad action, etc. You can see more information here:

http://www.projecthoneypot.org/httpbl_api.php

Normally it has no use once you have process it and extract all the info (that's why I have put it inside the "extra" stuff) but if there is an error is good to have it there just in case.

Cheers. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 05:02:10 PM
Thanks snoopy!  This mod looks even better than before.   8)  Great work!
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 05:31:31 PM
You're welcome.

BTW, the new log system can do nothing with all the entries already in the log. Just now you should have almost all of them in the "Spammers log" and just a few (if any) in the "Errors log".

But all the new entries from mow on should go like that:

- The mod is supposed to stop only dangerous spammers, so all the new entries with red colors should go to the "Spammers log".

- The mod is supposed as well to let pass as many humans as possible, so all the new entries with light colors (less dangerous) should go to the "Humans log".

- It should be very few or no entries in the "Errors log".

If anybody see too many red entries in the "Humans" or too many light entries in the "Spammers" or too many errors, there is something wrong, so please tell me so we can see what's wrong.




Another BTW, I have set all my forums like that:

Bad days => 90
Bad level => 1
Very bad level => 30
Cookie => 24h

I'm studying their logs and everything seems fine, but if any of you tries different values and sees they work better please let us know.
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 09:09:46 PM
MOD httpBL v2.3.1
==============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.1
  • Release:
1st March 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

Well, that was quick.

I just released version 2.3 a few hours ago and butchs have already discovered a bug in it. We have sorted it together in a minute and here is the new version without it.

Luckily, this bug only affected at SMF 2 RC2. It didn't affect at all to SMF 1.1.x and anyway we have found it so quickly that only 3 people had already downloaded version 2.3

I know 2 of them have been lc62003 and butchs himself, and lc62003 uses SMF 1.1.11 so he has no problem.

I don't know who is the another person who downloaded it, but if it's you and you are reading this, if you use SMF 2 RC2 you need to update. If you use SMF 1.1.x it's exactly the same if you update or not. You won't see any difference.

Sorry for any inconvenience anyway.
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 09:38:21 PM
Actually....I am using 2.0 RC2 on 5 sites!   ;D  Thanks for pointing it out....I'll do the switch right away.   8)
Title: Re: httpBL
Post by: butchs on March 01, 2010, 10:19:57 PM
I have 2RC2 and I found another bug with the human test.   I would not recommend that you install this version on a production site until we hash out the 2RC specific bugs.
:o
Title: Re: httpBL
Post by: Exsharaen on March 01, 2010, 11:07:48 PM
Well, now I can install this mod and not be blocked by my "unlucky IPs" :D As soon as I have more time I will play around with the settings and translate the missing lines (and warning.php as well). Anyway, I love the captcha option in warning.php so unlucky visitors (like me used to be :D) can pass validate themselves as... human :)

Thanks snoopy, you are the best ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 11:36:15 PM
Quote from: Exsharaen on March 01, 2010, 11:07:48 PM
Well, now I can install this mod and not be blocked by my "unlucky IPs" :D As soon as I have more time I will play around with the settings and translate the missing lines (and warning.php as well). Anyway, I love the captcha option in warning.php so unlucky visitors (like me used to be :D) can pass validate themselves as... human :)

Thanks snoopy, you are the best ;)

You are welcome.

Anyway, not only the missing lines. I have changed a lot of the old ones as well. Sorry  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 11:41:18 PM
Quote from: butchs on March 01, 2010, 10:19:57 PM
I have 2RC2 and I found another bug with the human test.   I would not recommend that you install this version on a production site until we hash out the 2RC specific bugs.
:o

butchs is right. Be careful with that version if you have RC2

Is no problem with SMF 1.1.11, but with RC2 I'm not fully sure.

I only have a test forum with RC2 (the rest use 1.1.11) and it works for me OK in all of them, but in butchs forum is not working.

For those of you with RC2 it would be better to stay with version 2.2 until we test it a little more.

Of course if any of you is brave enough and want to try it (I mean on a test forum, not a production one) tell us what happen.
Title: Re: httpBL
Post by: lc62003 on March 02, 2010, 12:39:57 AM
Well.....now that it is on 4 RC2 active sites.....I don't see anything wrong, however I don't know what to look for either.   ;D  It's stopped several bots on all the sites.   :)  Is the human thing the issue? 
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 01:09:31 AM
Yes and no.

No with all humans. It's no problem if they are guests, but as soon as a member of your forum gets caught your log system stop working.

It's a problem when the log tries to write the link to the profile page of that member.

But as I said only in RC2
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 02:46:59 AM
MOD httpBL v2.3.2
==============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.2
  • Release:
2nd March 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I hope this time is the good one.

I have found were was the bug reported by butchs about the forum members not displaying properly in the "Humans Log" in SMF 2 RC2

The bad news is, as I was looking for that mistake, doing some more tests sending my forums all possible IP values, etc,  I have found another bug which affects all SMF versions.

When I have enter my forum (as admin) but with a fake IP, (with a bad number in PHPot DB) trying to see what will happen in that case, the mod had let me in (as expected) but has put in the log every page I have visited like I was being stopped. The mod shouldn't had done that, as I was not being stopped, I was entering with no problem.

The good news is I have found both mistakes and I have sorted them in this new version 2.3.2 so now everybody need to update, either using SMF 1.1.11 or SMF 2.0 RC2

I hope we don't find any more bugs for a while  ;D
Title: Re: httpBL
Post by: giveaway365.com on March 02, 2010, 04:20:22 AM
i uninstall old version and install new? i have 2.2 right now.
I think its the same mistake which I told you 2 - 3 days ago...
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 08:38:27 AM
I went to remove the old verison from my SMF 1.1.11 - the option to remove it is not listed.  It looks like I'll need to manually update it from 2.3 to 2.3.2 - is there anything special I need to do, or can I just write over the older files?
Title: Re: httpBL
Post by: giveaway365.com on March 02, 2010, 09:48:39 AM
In the new version I get the below error:
8: Undefined index: search_engine
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Subs.php
Line: 611
Line:611 =    if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')


8: Undefined variable: key
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Config.php
Line: 137
Line: 137 = if (!empty($_POST['httpBL_honeyPot_key']) && (preg_match('/[^a-z]/', $key) || strlen($_POST['httpBL_honeyPot_key']) != 12))
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 10:59:27 AM
Quote from: giveaway365.com on March 02, 2010, 04:20:22 AM
i uninstall old version and install new? i have 2.2 right now.
I think its the same mistake which I told you 2 - 3 days ago...

The new version is not 2.2 but 2.3.2

Please double check what version you have or contact me when you finish work through Skype and we look at it together.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:07:41 AM
Quote from: GJSchaller on March 02, 2010, 08:38:27 AM
I went to remove the old verison from my SMF 1.1.11 - the option to remove it is not listed.  It looks like I'll need to manually update it from 2.3 to 2.3.2 - is there anything special I need to do, or can I just write over the older files?

If you want to update from 2.3 to 2.3.2 manually it's very easy, but it it's from 2.2 to 2.3.2 it's completely different.

Please double check exactly what version is the old one you are updating from so I can give yo the exact instructions.

2.2 was the version I released the 17th of February, but 2.3 is the version I released just yesterday.
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 11:23:13 AM
I have 2.3 installed already.  As soon as I saw the update last night, I danced about in joy, then installed it. ;)  You did an EXCELLENT job, thank you!

So 2.3 is installed, I just can't remove it to install 2.3.2.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:28:52 AM
Quote from: giveaway365.com on March 02, 2010, 09:48:39 AM
In the new version I get the below error:
8: Undefined index: search_engine
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Subs.php
Line: 611
Line:611 =    if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')

I see.

I will sort this in a future version, but it's not very urgent.

Anyway you can sort it yourself manually:

Open your httpBL_Subs.php and find the line:


if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')


Should be around line 611 more or less  ;)

Change it to:


if ((!isset($values['search_engine']) || $values['search_engine'] == 0 || $values['search_engine'] == '') && $values['ip'] != '127.1.80.1')
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:39:55 AM
Quote from: GJSchaller on March 02, 2010, 11:23:13 AM
I have 2.3 installed already.  As soon as I saw the update last night, I danced about in joy, then installed it. ;)  You did an EXCELLENT job, thank you!

So 2.3 is installed, I just can't remove it to install 2.3.2.

I see, it was you.

I new just 3 people had downloaded version 2.3 yesterday and I already new 2 of them.  ;)

OK, then it's very easy.

Upload just the new files httpBL_Config.php and httpBL_Subs.php into your Sources folder.

Then, also inside that folder look for your Load.php file and look for the lines:


// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0 && !$user_info['is_admin']) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}


Change them to:


// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}


And that's it
Title: Re: httpBL
Post by: the epic winner on March 02, 2010, 12:36:10 PM
Hi, I tried installing this, but when I do, the following appears on my webpage.

/ MOD httpBL START // General $txt['httpBL_title'] = 'MOD httpBL'; $txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.'; $txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: '; // Config page $txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.
Here you can turn the mod on and off and change some of its parameters.'; $txt['httpBL_config'] = 'MOD httpBL settings'; $txt['httpBL_enable'] = 'Enable/Disable MOD httpBL'; $txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.'; $txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot'; $txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to www.projecthoneypot.org to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:
http://www.yourwebsite.com/yourhoneypot.php'; $txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key'; $txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to www.projecthoneypot.org to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.'; $txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link'; $txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.'; $txt['httpBL_info_email_1'] = 'First word of your email'; $txt['httpBL_info_email_2'] = 'Second word of your email'; $txt['httpBL_info_email_3'] = 'Third word of your email'; $txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page warning.php, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is [email protected] the first word is info, the second one yourwebsite, and the third one com.'; $txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.'; $txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP'; $txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.'; $txt['httpBL_bad_threat'] = 'Threat level considered bad'; $txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.'; $txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad'; $txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.'; $txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human'; $txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.'; $txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.'; $txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered VERY bad.'; $txt['httpBL_viewlog_extra'] = 'View extra information in the log'; $txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.'; $txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:'; $txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the official support forum or try to find more information reading the tutorial.'; // View log page $txt['httpBL_viewlog'] = 'httpBL Spammers Log'; $txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered VERY bad or because they saw the captcha and couldn\'t prove they were humans.'; $txt['httpBL_viewlogpass'] = 'httpBL Humans Log'; $txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.'; $txt['httpBL_viewlogerror'] = 'httpBL Errors Log'; $txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button "Show extra information".'; $txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.'; $txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.'; $txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.'; $txt['httpBL_viewlog_extra'] = 'Show extra information'; $txt['httpBL_viewlog_normal'] = 'Hide extra information'; $txt['httpBL_log_show_legend'] = 'Show legend'; $txt['httpBL_log_hide_legend'] = 'Hide legend'; $txt['httpBL_pages'] = 'Pages'; $txt['httpBL_log_date'] = 'Date'; $txt['httpBL_log_ip'] = 'IP'; $txt['httpBL_log_threat'] = 'Th. L.'; $txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.'; $txt['httpBL_log_activity'] = 'L. B. A.'; $txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.'; $txt['httpBL_log_suspicious'] = 'S.'; $txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.'; $txt['httpBL_log_harvester'] = 'H.'; $txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.'; $txt['httpBL_log_comment'] = 'C.'; $txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.'; $txt['httpBL_log_url'] = 'Page'; $txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.'; $txt['httpBL_log_user_agent'] = 'Browser'; $txt['httpBL_log_error_message'] = 'Message'; $txt['httpBL_yes'] = 'Yes'; $txt['httpBL_threat_colors'] = 'Meaning of colors:'; $txt['httpBL_threat_low'] = 'Low threat'; $txt['httpBL_threat_medium'] = 'Medium threat'; $txt['httpBL_threat_high'] = 'High threat'; $txt['httpBL_threat_very_high'] = 'Very high threat'; $txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.'; $txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?'; // Errors $txt['httpBL_log_no_error'] = 'No error'; $txt['httpBL_no_errorNumber'] = 'There is no error number'; $txt['httpBL_no_defined'] = 'No defined yet'; $txt['httpBL_answers_captcha'] = 'Answers on the captcha'; $txt['httpBL_answer_captcha'] = 'Answer on the captcha'; $txt['httpBL_good'] = 'Good'; $txt['httpBL_bad'] = 'Bad'; $txt['httpBL_empty_ip'] = 'Empty IP'; $txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place'; $txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha'; $txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass'; $txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass'; $txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass'; $txt['httpBL_unknown'] = 'unknown'; // MOD httpBL END


Why is it appearing on the webpage and not being executed? I'm using the latest version of SMF.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 12:58:46 PM
When you say you are using the latest version of SMF which one you mean, 1.1.11 or 2.0?

When you installed it with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote
Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 05:36:00 PM
Some people are still reporting errors in this version 2.3.2.

I don't think these errors are too important, as they just appears inside your "Forum Error Log" but they are not making the mod stop working or SMF crashing or something like that.

Anyway they are errors and need to be fixed, so I'm looking into it and I hope they will be fixed soon, but in the mean time I have uploaded again the old version 2.2 so if you see any of those errors you can go back to version 2.2 (if you want) and wait until I sort this issue or continue with version 2.3.2 and report here the particular errors you see to help me finding them.

Thanks, and sorry for any inconvenience.

Snoopy




@the epic winner

I asked you a few questions 7 hours ago trying to help you installing the mod and I can see you haven't answered yet.

Have you already managed to install the mod or you haven't answered because you haven't seen the questions yet?
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 06:50:33 PM
I'm good to go - thank you!
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 12:26:30 AM
Snoopy sir,
Can you upload your latest version in yr private servers so that we can test it.
I will completely remove httpbl and reinstall it from your server and check it.
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 07:38:39 AM
Quote from: giveaway365.com on March 03, 2010, 12:26:30 AM
Snoopy sir,
Can you upload your latest version in yr private servers so that we can test it.
I will completely remove httpbl and reinstall it from your server and check it.

It is there. I always put there everything I do so other developers can help me inside mi section "For Developers Only":

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314

If you are going to test it read first the explanation:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1374#msg1374

Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 09:10:19 AM
there seems some problem i get internal error 500 on yr website
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 09:25:52 AM
Quote from: giveaway365.com on March 03, 2010, 09:10:19 AM
there seems some problem i get internal error 500 on yr website

It must be something wrong from your computer.

I have been all day opening my site to do tests and butchs and me have been also writing what we find inside the developer's forum.

Last answer there from butchs was just a minute ago.
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 10:03:19 AM
500 - Internal Server Error
This is a temporary server error.
Please try to reload the webpage later.If you are the webmaster of this site please log in to Cpanel and check the Error Logs. You will find the exact reason for this error there.

Common reasons for this error are:

•Incorrect file/directory permissions: Above 755. In order files to be processed by the webserver, their permissions have to be equal or below 755. You can update file permissions with a FTP client or through cPanel's File Manager.
•Incorrect Apache directives inside .htaccess file. Make sure you have not specified unsupported directives inside the local .htaccess file. Such include PHP settings and Apache module settings.
Resources: Tutorials  Video Tutorials  Web hosting FAQ  Joomla templates  WordPress themes  Web hosting forum  Website Design
Quick links: eCommerce hosting  Joomla hosting  Magento hosting  phpBB hosting  WordPress hosting  cPanel hosting  FTP hosting  Flash hosting Copyright © 2009 SiteGround.com Inc
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 10:41:21 AM
ok i got to go in yr site...
i have not tested 2.3.3

but i tried the code u gave below.... but the error of line 611 and 137 still exists..

should I try 2.3.3 from yr server?
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 10:53:37 AM
Quote from: giveaway365.com on March 03, 2010, 10:41:21 AM
ok i got to go in yr site...
i have not tested 2.3.3

but i tried the code u gave below.... but the error of line 611 and 137 still exists..

should I try 2.3.3 from yr server?

No

It has a big mistake and that's why you got the 500 error

I'm doing a new developers version

But to talk about developers versions, please do it in the proper forum, not here.
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 11:39:12 AM
ok,,, I have installed yr 2.3.2 version as it is available on smf server,,,, ket us know once you have yr developer version ready ! or pm me when it is ready to test
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 11:55:05 AM
Quote from: giveaway365.com on March 03, 2010, 11:39:12 AM
ok,,, I have installed yr 2.3.2 version as it is available on smf server,,,, ket us know once you have yr developer version ready ! or pm me when it is ready to test

All the info about the developers versions is in the developers mod.

I am updating it every 5 minutes or so (everytime I do something new) so you can read it there.
Title: Re: httpBL
Post by: butchs on March 03, 2010, 02:53:33 PM
Snoopy does not sleep.   :o
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 05:06:59 PM
MOD httpBL v2.3.3
=============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.3
  • Release:
3rd March 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I had already that version finished a few hours ago, but I haven't released it until I have done a lot of tests in 2 of my forums (one with SMF 1.1.11 and the another one with SMF 2 RC2) and all the tests came OK, because I didn't wanted more surprises.

So I think this version will be the last one for a while and I can concentrate now in finishing the tutorial.

Of course, if any of you see any other error tell me and I will look at it.
Title: Re: httpBL
Post by: giveaway365.com on March 04, 2010, 11:58:11 AM
Sir,
the two file did not get copied in source directory and one in theme default directory.
This error in 2.3.3 version
Apply Filter: Only show the error messages of this URL  http://www.giveaway365.com/index.php?action=packages;sa=install2;package=httpBL_v2_3_3.zip
Apply Filter: Only show the errors with the same message
2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory
File: /home/content/XXX/html/Packages/temp/install_1.php
Line: 91

I had to manually upload them in their respective directory and chmod to 644
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2010, 12:33:33 PM
Quote
the two file did not get copied in source directory and one in theme default directory.
...
I had to manually upload them in their respective directory and chmod to 644

I have already installed this new version in all my forums and in all of them the files were copied properly and with the correct chmod permissions.

But of course it any of you have the same problem this is the right solution, upload them manually.  ;)

I will add that to the tutorial and the FAQ as soon as I arrive to that part.

Quote
This error in 2.3.3 version
...
2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory

This is not an error in the mod, but in the SMF packages manager. As soon as I have time I need to check if this error has been already reported to SMF and (if not) report it myself.

You can see more info here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1396#msg1396
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 04, 2010, 04:12:46 PM
while installing got error

Add Before     ./Themes/default/index.template.php     Test failed

near </body> tag.
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2010, 04:37:53 PM
Quote from: A.SK on March 04, 2010, 04:12:46 PM
while installing got error

Add Before     ./Themes/default/index.template.php     Test failed

near </body> tag.

It means somehow you have modified your default index.template.php and you haven't got the original one.

I suppose it must be because of any other mod you have installed.

In that case you will need to do that modification manually.

Please read how to do that in the tutorial:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2

If there is anything there you don't understand, tell me and I will try to explain it a little better here.

Anyway, in order to make the mod work properly, you only need to do that modification in the index.template.php file of the Theme you actually use, so if you are not using the default theme but another one, you can forget the default one if you want and do the modification only in the Theme you are using.
Title: Re: httpBL
Post by: giveaway365.com on March 04, 2010, 11:38:35 PM
index.template.php   seriously has a problem.... it is not getting rectified. I tried lot of combinations to let smf install it but ended up uploading index.template.php  manually only.

But apart from this this mod seems to be more stable.
I think now httpbl in combination with stopspammer is best solution !
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2010, 08:46:55 AM
Quote from: giveaway365.com on March 04, 2010, 11:38:35 PM
index.template.php   seriously has a problem.... it is not getting rectified. I tried lot of combinations to let smf install it but ended up uploading index.template.php  manually only.

Contact me via Skype when you finish work.

I would like to see what kind of index.template.php you have.
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2010, 05:22:53 PM
MOD httpBL v2.3.4
=============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.4
  • Release:
5th March 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

When trying to see what was the problem in A.SK installation I discovered a big mistake on version 2.3.3

It would install more or less without a problem if you already had any other version of the mod installed before, but it was impossible to install it new.

At least not in SMF 2 RC2, but maybe this was also why GJSchaller had problems installing it.

So I have sorted that big mistake.




At the same time I tried a suggestion from butchs to sort the problem about


2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory


reported by giveaway365.com.

As I said a few times, this is not a very important issue, but, as I had to do a new version anyway, I tried butchs suggestion and it works.

This time, as I was installing it I got no errors at all.




Anyway, as both errors are only at installation time, there is no real need to update if you have version 2.3.3 and it's working properly.
Title: Re: httpBL
Post by: giveaway365.com on March 05, 2010, 10:40:10 PM
the 2.3.4 version worked without any problem.
there are some main difference between 2.3.3 and 2.3.4 in index.template.php file

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';
these to lines are new in 2.3.4 in index.template.php

and the codes were after the </body> tag in 2.3.3 and in 2.3.4 they are before the </body> tag.

Also i want to know if  a new version of package is available.... in the pakage manager of smf 1.1.11 it still shows a green icon saying the latest version is install where the latest version actually has already released. I think it happens in all mods. It seems some bug in smf.
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 06, 2010, 04:03:08 AM
Working wonderfully.

Marked almost 2 pages of spammers so far.

Great work Snoopy.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 06:07:39 AM
Quote from: giveaway365.com on March 05, 2010, 10:40:10 PM
the 2.3.4 version worked without any problem.

Glad to hear it.  ;)

Quote from: giveaway365.com on March 05, 2010, 10:40:10 PM
there are some main difference between 2.3.3 and 2.3.4 in index.template.php file

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';
these to lines are new in 2.3.4 in index.template.php

These 2 lines had been there from version 2.0

The only differences between version 2.3.3 and 2.3.4 are at installation time. 2.3.3 was not creating the table in the database properly, so if you already had the mod installed before there was no problem, because even if you uninstall a mod, the changes it has done on the database stay there unless you undo them manually. So if you had the mod before, the database was already OK, but if you were installing it as a new mod it wouldn't install.

There are no differences at all between 2.3.3 and 2.3.4 inside the index.template.php

Quote from: giveaway365.com on March 05, 2010, 10:40:10 PM
and the codes were after the </body> tag in 2.3.3 and in 2.3.4 they are before the </body> tag.

All the things inside a web page are always before the </body> tag. Once you close the body you cannot write anything.

That's why I told you yesterday I wanted to see your index.template.php as I knew there was something really wrong with it, but it seems it's ok now.  ;)

Quote from: A.SK on March 06, 2010, 04:03:08 AM
Working wonderfully.
Marked almost 2 pages of spammers so far.
Great work Snoopy.

Thank you. Did you read my PM?
Title: Re: httpBL
Post by: butchs on March 06, 2010, 08:05:57 AM
I finally installed the latest version on-line.  I have been watching my spammer log and comparing it with the visitor log in my cpanel.  I have seen several bots visit that have a rating above my "Threat level considered VERY bad" (ie 30) bounce all over the place in a flurry of defiance, never touch my honeypot and then hit the warning.php page after a lengthy visit.

Here is part of my Cpanel latest visitor log (same as attached latest_visitors.jpg):
(http://img.photobucket.com/albums/v471/JdotMiller/Latest_visitors.jpg)

Here is the httpBL spammers log (same as attached Spammer_log.jpg):
(http://img.photobucket.com/albums/v471/JdotMiller/Spammer_log.jpg)

Why is it taking so long?  Does the software track their IP in the log and status in SMF cache then and direct them to the appropriate screen ASAP EVERY time?  What happens when they come back?




Second question.  If a bot comes bye and answers the warning question. Before the cookie time expires their status with project honeypot increases above the high level you configured, will they get kicked off the site or will we have to wait until the cookie expires for them to get the boot?
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 08:32:47 AM
I think both are the more important questions anybody had asked until now. They have been actually the core of all my worries since I started doing the mod and also the things I have been watching and thinking and that is why I have done the log system so complicated, because I want to see all that kind of things.

I was planning to talk about all that, either in the tutorial or the FAQ, and I think I will explain it more there, but as they are so important, here I can give you a quick answer.

1.- That's because of the cache.

When I turn cache off I see bots coming, hitting a few pages in a row (very few seconds between them) and go away. All these pages are shown in both logs (cPanel and the mod)

They may comeback again a couple of hours later and again hit a few pages, etc.

Try to turn cache off for a few hours and you will see the difference.

With cache on, the mod only checks them once every 2 minutes. The first page they hit is shown in the mod log, but the rest of the hits just re-direct them to the warning page without even giving them the option to prove they are human and without putting it in the log to save bandwidth and space.

At least that's the way I have design the mod. I will take your screenshots and analyze them carefully to see if that's what's happening.

Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003

The bot he's having hits for 24h non-stop (every few seconds) and then goes away for 24h and then comes back again, etc.

If he changes the value for the cache from 2 minutes to 24h he will get only one entry of this bot in the log every 48 h




Quote
Why is it taking so long?

What is taking so long? Don't understand what you mean there.




Anyway let me think a little more about it and I will continue with the next question and more about the first one.
Title: Re: httpBL
Post by: butchs on March 06, 2010, 08:42:22 AM
Catching the bad bot seems to take some time.  O:)

Why not use the database you already made to dispose of repeat offenders?  When an IP comes you check the database, if they are bad send them to warning.  If they are not known check the honeypot.  Then make a auto delete after x amount of time to trim the database.
:o
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 08:44:29 AM
Quote
I have seen several bots visit .... never touch my honeypot ...

If they touch your honey pot or not you are not going to see it.

Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

With all that information they built the threat level for that IP and that's what you get everytime it's analyzed by the mod.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 09:00:07 AM
Quote from: butchs on March 06, 2010, 08:42:22 AM
Catching the bad bot seems to take some time.  O:)

Why not use the database you already made to dispose of repeat offenders?  When an IP comes you check the database, if they are bad send them to warning.  If they are not known check the honeypot.  Then make a auto delete after x amount of time to trim the database.
:o

That's the system of white, grey and black lists I was talking here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=297.msg1230#msg1230

I explained there why I don't like it and that's why I am using the system with cache, cookies and session instead.

Of course it's another option and I could do a test version of the mod with that system and see the difference. Another one for the list of "TTDOOTTWIHT", but some how I don't think it will be better.

If the mod, everytime a bot arrives need to read the log table and delete the entries older than 2 minutes you will loose your logs. I will need another table to do that, and that will take even longer.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 09:33:46 AM
Quote
Second question.  If a bot comes bye ... Before the cookie time expires ...

Before anything else here is a fact very few people take into account:

Spam-bots don't use normal browsers as Firefox, Internet Explorer, Opera, etc. They use special ones (different for every bot) and all of them (at least all the ones I know of) don't have cookies, javascript, etc

For example, a human using Internet Explorer with Windows OS, have the program IE installed on his hard disk. Everytime IE opens a page which send a cookie, it store that cookie inside the hard disk in "Documents and settings", etc.

A spam-bot is a program the spammers send to crawl the net gathering information, writing spam messages, etc, but it is jumping from one server to another and running on that servers, it's not running on any computer, and usually it doesn't use a browser installed on any computer, but it's built-in inside the bot itself, so it has no hard disk to store the cookie if you give it one.

Of course, I can be mistaken, but this is what I have understood after reading hundreds of pages about it. If any of you find information saying the opposite give me a link.

One good thing about the bots not having javascript activated is you can hide your email address using javascript and they won't see it.

Of course, as they cannot understand everything on the pages they are, but they just look for keywords, you can hide your email using simpler ways.

For example a spam-bot harvester is looking for any @ written on a page. Everytime it finds one, it take the word where the @ is in and put it in its database to use it later.

For example if I write here this:

[email protected]

I bet you in less than 5 minutes that address will get an email selling viagra or something (unless the guys here in SMF are already using my mod)  ;D

Good thing that address is not mine (I hope it doesn't even exists)  :P

More information about how to hide your email address in public forums, blogs etc here:

http://www.projecthoneypot.org/how_to_avoid_spambots.php

It actually has 6 pages and all of them are very interesting.I will recommend everybody to read them carefully.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 10:24:08 AM
Sorry, after so much talking my throat was dry and needed a break. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif) Slange var

Continue:




Quote
Second question.  If a bot comes bye and answers the warning question. ...

I haven't seen yet a bot answering the questions in the warning page.

If you ever see one doing it please tell me ASAP, because then I will need to change the way the warning page is done.

That's why I have changed the way the log display the error message.

In version 2.2 and earlier, almost all of them were always "No error" and it will display something different only if there has been an internal error inside the mod.

From version 2.3 I don't call that column "error message" any more, but just "message", because if there is an internal error it will display which one, but if there is no error it will give you a lot of information about what happened with that IP.

For example it can tells you "Threat Level too high. Didn't show the captcha" or "0 Answers on the captcha" or "3 Answers on the captcha - 2 Good - 1 Bad" etc etc. There are a lot of possibilities.

The way the warning page is designed, all the spammers need to be either "Th. L. too high" or "0 Answers".

If a spammer can give even 1 good answer something is wrong.

And also, the way it's done, all the humans need to be either "2 Good - 0 Bad" or "2 Good - 1 Bad"

A human giving 2 or 3 bad answers means either it's somebody checking the warning page or something is very wrong.

I suppose anybody with enough knowledge to turn a computer on and move a mouse must know how much is 2 + 2

[mental-note]
Talk with any blind friend to check if the special browsers they use can read my warning page properly.
[/mental-note]
Title: Re: httpBL
Post by: butchs on March 06, 2010, 10:29:48 AM
Quote from: snoopy_virtual on March 06, 2010, 08:44:29 AM
[Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

Every page change hit shows up in my cpanel visitor log including honey pot hits.  Yesterday I saw a banned IP get a error message and actually hit my honeypot.  This is why I wonder about the page hits.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 10:33:19 AM
Now that I have explained all these points I can actually answer your question very easy:

Quote
Second question.  If a bot comes bye and answers the warning question. Before the cookie time expires their status with project honeypot increases above the high level you configured, will they get kicked off the site or will we have to wait until the cookie expires for them to get the boot?

If a human (not a bot because they don't have cookies) answers the 2 questions OK they get a cookie for as long as you set in the config page (default 24h) and they are not checked again AT ALL within PHPot database until the cookie expires.
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:41:03 AM
Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

In this warning page ... it seems that our website has a virus and good real user dont return...

So instead of writing so much about the virus and torgan horses , we just welcome them with our logo and below our logo a simple captcha .
Other conditions remain same like if the level is above 50 dont even show captcha etc etc.
Title: Re: httpBL
Post by: lc62003 on March 06, 2010, 10:45:44 AM
Quote from: snoopy_virtual on March 06, 2010, 08:32:47 AM


Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003



Is this hard coded, or is there something I'm missing.  If this is coded I can go in and change it to see what happens....right now is the 24hrs on for the bot.   :)
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 06, 2010, 10:49:26 AM
Hi Snoopy,

Good work, read the pm already.

And so far, Spammers stopped by MOD httpBL: 1198

Nice work . keep the good work.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 11:08:00 AM
Quote from: butchs on March 06, 2010, 10:29:48 AM
Quote from: snoopy_virtual on March 06, 2010, 08:44:29 AM
[Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

Every page change hit shows up in my cpanel visitor log including honey pot hits.  Yesterday I saw a banned IP get a error message and actually hit my honeypot.  This is why I wonder about the page hits.

Very interesting, so then you can actually check the hits in your honey pot.

I will check my cPanel log looking for that then. I haven't thought about it.

Anyway, think a minute about the way the bots actually crawl the net:

Everytime they enter a new web page they do the things they are programmed for. For example a harvester looks for @, a comment spammer looks for forms with input fields where it can write their spam messages or for links to "register here" to try and register an account in the forum, etc.

But all the bots have one thing in common. They need to store links to other pages to visit them when they finish their work inside the page they are in.

As far as I know, the way they do it is looking for links in all the pages they visit and storing them on a list in their DB. Their "List Of Pages To Visit In The Near Future".

Then the actual flow of events everytime they enter a new page is:

- Look for links inside the page

- Store them in the "LOPTVITNF" I suppose they won't store duplicates, so I think it's no point to put for example 3 links to your HP inside every page.

- Look for damage to do in this page Depending on the kind of bot it is.

- Do as much damage as possible

- Job finished. Visit next page on the list Don't know either if they do that in order or just take one at random. I suppose in order.

So suppose a bad bot have already 10 of your pages on its list (collected from other sites linking to yours it has visited before).

It will try to hit that 10 pages one after the other.

If the mod is working properly the 10 times it will see only the warning page so the only link it will collect from your site is the link to your honey pot. It won't collect any of the pages your page is linking to.

BTW. That's another good thing about the Project Honey Pot. The more people having it on their sites the less possibilities of bots crawling the net. Once a bot arrives to a dead end (a site with no outgoing links) if its "LOPTVITNF" is empty it has nowhere to go.

But, if the bot I was talking before visiting your site, have your honey pot in its list, it doesn't matter if it doesn't visit it today (maybe because it's at the bottom of a very long list) but it will end up visiting it one day.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 12:14:59 PM
Quote from: giveaway365.com on March 06, 2010, 10:41:03 AM
Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

Every bot I know can pass any captcha actually in the net very easily.

There is no one captcha just now that a normal bot cannot pass.

Please read this:

Quote from: Snoopy link=http://www.snoopyvirtualstudio.com/foro/index.php?topic=297.msg1230#msg1230 date=1267473850
It doesn't matter what captcha you put on a site. The robots always pass them without a problem and they are only a pain for the humans.

I have tested a program which can even pass the more complicated captchas I have found (and I have seen a lot of them).

That's why my captcha is so ridiculous, because I want everything as easy as possible for any human visitor. The main point is not the captcha, but all the empty fields I have put inside the form (some of them hidden and other visible). The robot will concentrate on passing the captcha, but I have never seen a spammer not writing on every form field it sees. And that's how I catch them. Human cannot write on hiding fields.

Anyway, of course, this is only a theory. But now I have this new version installed on a few forums I will study the logs and will be able to see if it's right or not.

Quote
In this warning page ... it seems that our website has a virus and good real user dont return...

I spent almost a month to write that warning page. Studying every word, changing them to see if the effect was different, showing it to friends to see their reaction to it, etc.

If you can find a better way of saying all the things that need to be said on this page please let me know and I will change it.

The way the page is just know states very clear "YOUR computer has been doing bad things YOU may have a trojan etc."

It doesn't says at all "OUR site has been doing bad things WE may have a trojan etc."

If anybody reads the opposite it means they cannot read properly.

Quote
... instead of writing so much about the virus and torgan horses, we just welcome them with our logo ...

I thought that was clear in the tutorial:

99% of the visits to your warning page are spam-bots, so the less information on that page they can actually use, the better.

Some of the humans visiting your warning page will be only because an un-lucky dynamic IP, but not too many. Most of them will be because actually they have a trojan and you need to warn them so they can phone a computer tech and clean it.

I love working playing the piano, designing web sites and writing programs, but very few customers actually phone me to do this things. Most of the people phoning me every day is because their computer is not working properly, it's too slow and it's doing funny things and the conversation is always the same:

Me - "It looks like you have a virus"
Customer - "Impossible. I use a brilliant anti-virus"
M - "OK, what anti-virus you use"
C - "This one"
M - "OK, I suppose you update it every day"
C - "Oh. Do you need to update the anti-virus?"
M - [another one] "Mmmm... When was the last time you updated Windows?" [ I already know the answer ]
C - "Oh. Do you need to update that as well? I thought, having automatic updates on ..."
M - "OK, let's see. What anti-trojan you use?"
C - "What was that sorry?"
M - "Doesn't matter. Let me update your system and your anti-virus, install a good updated anti-trojan and clean your system.

As I was saying I love to do more artistic and creative jobs, but as I need to eat, that's what I'm doing all day long.

And every computer I clean I find a minimum of a hundred different trojans, keyloggers, etc etc.

Just check inside google looking for "bot-nets" and you will see how bad is the problem and how many computers are just now zombie-computers working for a bot-net.




Anyway if you are too worried about loosing customers, check your logs and see if you need to change the values in your config page.

For example, if you are getting too many humans with a threat level of 6, 7, or something like it, you can change the settings like this:

From 0 to 10 - let them pass
From 10 to 30 - show the warning page
More than 30 - stop them completely

It's up to you to set the levels to your particular case.

But please remember when I say humans I mean people with 2 good, 0 bad answers. Even 1 bad answer is normal, but too many entries with 2 or 3 bad answers is not normal. Tell me if this ever happens




And of course, if you find a better way to explain the things in the warning page please tell me. I would love this page to be smaller and say the same things with less words, but cannot find a way to do it.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 12:58:42 PM
Quote from: lc62003 on March 06, 2010, 10:45:44 AM
Quote from: snoopy_virtual on March 06, 2010, 08:32:47 AM

Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003


Is this hard coded, or is there something I'm missing.  If this is coded I can go in and change it to see what happens....right now is the 24hrs on for the bot.   :)

It's a different thing. You are talking about the cookie for 24h the humans get when they prove they are humans.

BTW, if a friend calls you and say they are answering right the 2 questions and still cannot pass, tell them to turn the cookies on. For next version I'm working on a system that will work even if you haven't got cookies activated, but that's not implemented yet.

The bots haven't got cookies, so if your site is very busy and every bot hits an average of 10 pages in a row, if you need to connect to PHPot database to check their IP 10 times for every one of them, you are loosing too much band-width and server resources, so I had to look for another way to store the values of the response from PHPot database inside your server itself. Not in the visitor computer (as the cookies).

That's what the cache is for.

To have the cache activated you need to go first inside SMF to:

Admin => Server Settings => Caching

In SMF 1.x you will see there that, to be able to activate it, you need to have in your server one of these programs installed and working:

    *  APC
    * eAccelerator
    * Turck MMCache
    * Memcached
    * Zend Platform/Performance Suite (Not Zend Optimizer)

So you will need to ask first your hosting provider which one of those you have (if any) and the instructions on what settings you need to write on the SMF caching page.

For SMF 2 you don't need to have anything special on your server. It works better if you have one of those, but they are using a new system that works even without any of them. Also, by default, SMF 2 has already the "Caching Level " set to "Level 1 Caching (recommended)".

Just go there and check it's on.

For the next version I'm planning to copy their new SMF 2 caching system into my mod for SMF 1.x as well, but that's not done yet. It's only a plan just now.

And yes, the duration of the cache is hard coded and by default SMF have it set at 2 minutes.




Now you know what is the cache, look for it and see if you can turn it on.

In the mean time I'm going to have a break while I think an easy way you could change this value if you need to.

I have been writing here all day long.

The good thing is now in the tutorial, instead of explaining it again I just need to put a lot of links to all this. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/2funny.gif)
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 01:00:41 PM
Quote from: A.SK on March 06, 2010, 10:49:26 AM
Hi Snoopy,

Good work, read the pm already.

And so far, Spammers stopped by MOD httpBL: 1198

Nice work . keep the good work.

WOW, 1198 just in one day?

And thanks, I will continue doing my best.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 02:25:43 PM
@ lc62003

Let's finish the talk about the cache.

First thing you need to know:

As I said, in SMF the default value for the cache is 2 minutes, but they work in seconds here, so the actual default number is 120. If you don't say how many seconds you want it uses the default 120, so if you write: cache_put_data( whatever ) or you write cache_put_data( whatever, 120 ) it's exactly the same.

As I didn't thought about this when I was doing it, I didn't wrote any number, so that's why the mod is using the default.

Now, if you want to change it to 24h you need to write at the end the comma and the number 60 x 60 x 24, that is, the number 86400

So, first of all activate the cache in your Server Settings.

Then, open the file Sources/httpBL_Subs.php and look for the line:


$response = cache_get_data('httpBL-response-' . $ip2);


Change it to:


$response = cache_get_data('httpBL-response-' . $ip2, 86400);


The line:


cache_put_data('httpBL-response-' . $ip2, 'ok');


Change it to:


cache_put_data('httpBL-response-' . $ip2, 'ok', 86400);


And the line:


cache_put_data('httpBL-response-' . $ip2, $values);


Change it to:


cache_put_data('httpBL-response-' . $ip2, $values, 86400);


Save, upload the file and check if everything is OK.

If you want to experiment with other values, tell me how it goes. Just remember it's in seconds.
Title: Re: httpBL
Post by: lc62003 on March 06, 2010, 03:05:28 PM
Cool!  I may work on that tonight.  It's certainly worth experimentation.  Thanks Snoopy!   8)
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:14:08 PM
Spammers stopped by MOD httpBL: 2090
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:25:29 PM
sir, is this 2 minute bug anything related to the screenshot I have attached?
Should I make changes or you will update it in new version?
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 12:57:22 AM
Have upgraded to 2.0rc2 and the httpbl v2.3.1 and there is no /options like originally on the 1.1.11 smf version when I go to the members area.
Any help.
Re-installed scripts and the httpbl mod and still nothing.
Any help.
Title: Re: httpBL
Post by: butchs on March 07, 2010, 04:11:53 AM
httpBL_v2_3_4 is the version you should use.
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 05:02:32 AM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.
Title: Re: httpBL
Post by: snoopy_virtual on March 07, 2010, 07:26:57 AM
Quote from: aussieherps on March 07, 2010, 05:02:32 AM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.

Let me see:

If I understood correct you haven't installed SMF 2 RC2 like a new forum, but you have upgraded your old SMF 1.1.11 to 2 RC2 and in the old forum you have already installed a version of the mod.

Is that correct? and if so, What version of the mod you had before?




If this is correct, let me do another question:

Did you uninstall all the mods you had in your 1.1.11 forum (as you should) before you upgraded your forum to RC2?




If the answer is yes, another question more:

When you installed httpBL 2.3.4 in your new RC2 forum with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote
Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?




Depending on the answers of these 4 questions I will tell you what you need to do now to have the mod working properly.
Title: Re: httpBL
Post by: snoopy_virtual on March 07, 2010, 07:48:52 AM
Quote from: giveaway365.com on March 06, 2010, 10:25:29 PM
sir, is this 2 minute bug anything related to the screenshot I have attached?
Should I make changes or you will update it in new version?

First thing, it's not a bug at all. You can sort that just activating the cache in your forum.

The problem lc62003 has is completely different and anyway it won't work without cache activated first, so you shouldn't touch your files at all.

Of course, if you cannot activate the cache in your forum you will need to wait for the next version I'm doing.

What I am going to add to the new version is a solution for the people (like myself for example) that cannot activate the cache in SMF 1.1.11 because we don't have in our servers any of the programs needed.

In SMF 2 RC2 you don't need to have any special programs for that, so you can always have cache activated if you want.

Of course you could tell me that a solution will be to upgrade the forums from 1.1.11 to 2 RC2 as it seems aussieherps has done, but WHATEVER YOU DO, DON'T EVEN THINK ABOUT DOING THAT.

SMF 2 is still a beta version (that's what RC means) and it's not stable. It's only for test forums and you should never under no circumstances at all use it for a production site. As SMF says very clearly on their download page.
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 08:29:54 PM
Quote from: snoopy_virtual on March 07, 2010, 07:26:57 AM
Quote from: aussieherps on March 07, 2010, 05:02:32 AM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.

Let me see:

If I understood correct you haven't installed SMF 2 RC2 like a new forum, but you have upgraded your old SMF 1.1.11 to 2 RC2 and in the old forum you have already installed a version of the mod.

Is that correct? and if so, What version of the mod you had before?




If this is correct, let me do another question:

Did you uninstall all the mods you had in your 1.1.11 forum (as you should) before you upgraded your forum to RC2?




If the answer is yes, another question more:

When you installed httpBL 2.3.4 in your new RC2 forum with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote
Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?




Depending on the answers of these 4 questions I will tell you what you need to do now to have the mod working properly.
Yes to all of the questions.
2.3.4 was installed after your last post to my question.
2.3.1 was uninstalled first and then I re-installed the honeypot mod on the server aswell.
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 09:48:55 AM
@aussieherps

First of all there is something I didn't understand on your first question. When you said:

Quote
... don't see any report buttons or any check IP buttons ...

What buttons are you talking about? Are you sure you are talking about mod httpBL and you are not confusing it with my other mod Stop Spammer?

Mod Stop Spammer has buttons to check and report members, but mod httpBL don't, as it does it automatically.

Quote from: aussieherps on March 07, 2010, 08:29:54 PM
Yes to all of the questions.
2.3.4 was installed after your last post to my question.
2.3.1 was uninstalled first and then I re-installed the honeypot mod on the server aswell.

It seems when you upgraded from 1.1.11 to RC2 something went wrong and you still have part of your forum using 1.1.11 files or parts of your database have still the 1.1.11 form, completely different than the 2.0 form.

As I thought that was going to be your answer and I already suspected that was the problem, I have been checking, since you asked it yesterday, the SMF downloads section, looking for a package to upgrade a forum from 1.1.11 to 2.0 and there is not one done yet.

Can you tell me which one have you used?

The differences between 1.1.11 and 2.0 inside the database are too big to try and do it manually. So I suppose as soon as they finish the definitive stable version for 2.0 they will do an upgrade package so all of us will be able to move our forums to the new version, but as 2.0 is still in beta versions only suitable for test forums and nobody knows yet how it will be the final stable version, they haven't done yet this upgrade package. Beta versions change too much between one and the next and they change too often so it's no point to do an upgrade package from 1.x to 2.0 until 2.0 becomes stable.




Solutions:

The solution I would recommend is to take the security copy of all the files and the database you should have from your old forum and leave everything the way it was before.

If you didn't make a security copy before upgrading or you don't want to use that solution there is only another possible solution I can see:

Imaging you have your forum now installed for example in http://www.whatever.com/oldforum

Create a new folder in your server with a different name. For example "newforum".

Install in this new folder SMF 2 RC2 from scratch, with the original full new installation package from SMF, so you will have now another forum in http://www.whatever.com/newforum

To be sure this new forum doesn't touch any of the database tables in the old forum and the new installation is fully perfect, it would be better if you use a different database to install it, but you can also use if you want the same database just changing the prefix used for all the tables.

I mean: During installation, when you are asked for the database details you need to write a prefix for all the tables and, if you don't change it, the installer will use the default, that is: "smf_" so when you are installing this new forum be sure to write here something different to the one you used for the old forum. Something like "newsmf_" for example.

Another thing you need to be sure is you are using for this new forum a template compatible with SMF 2 as all the templates for SMF 1.x are not compatible at all with SMF 2

Once this new forum is installed, add here all your mods from scratch as well, and when you check everything is perfect here, ask all your members to register again in this new forum and leave the old forum just on "read only" mode. I mean, close all the posts so nobody can write there anything else.

This way everybody will continue talking in the new forum but you will still have your old forum there so everybody will be able to check old posts and see where the arguments where coming from.

A good idea will be to copy as well the important posts from the old forum to the new one, but that will be too much work for you, so I will suggest you can ask your members to copy themselves their own posts.

This way, as soon as all the important things from the old forum are already in the new one you can delete completely the old forum and forget about it.




Good luck and tell me if any of this is any use to you or if you still has a problem with it.

And, if everything goes OK, tell me as well, as I'm curious now and would like to know how all this ends up.
Title: Re: httpBL
Post by: Wizzlefits on March 08, 2010, 10:41:14 PM
For those that would like a bit of a visual aid, or map of how Mod httpBL and Mod Stop Spammer work, then see the attached file.

Before anyone asks.
No I didn't include the path from the bot trap links (those hidden links pointing to your Honey Pot trap page).
Simply because once installed, well...you can forget about that part of the mod. It doesn't need watching, tweaking or anything else.
Okay...so I forgot that part till just now.  :-[

But really...the bot links, just direct nasty bots to your Honey Pot page which has only one way out, and rest assured...it's not back to your site.  ;)

K! Intermission is over! Back to work!  ::)
Title: Re: httpBL
Post by: aussieherps on March 08, 2010, 10:47:45 PM
Thanks Snoopy it wouldn't work as the members have already been asked to rejoin when moving from phpbb to smf forum.
Lost a few good members that way.
If the site was older and a bit bigger it would work but its still in its growth stage.
Didn't realise there was so much difference in the tables and databases. I'm still a noob at this coding stuff.
It could have been the stop spammer mod I was thinking of.
Upgrade was a complete install of smf2.0rc2 and uploaded database so that members and posts were not lost so that is the problem and I will just have to wait until the stable version is released.

Thanks again for your help.
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 10:48:35 PM
Very nice job Wizzle.

I'm going to use it for the tutorial.

Keep the good work.

(http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 11:12:36 PM
Quote from: aussieherps on March 08, 2010, 10:47:45 PM
Thanks Snoopy it wouldn't work as the members have already been asked to rejoin when moving from phpbb to smf forum.
...
Didn't realise there was so much difference in the tables and databases.
...

The problem you have now is not only this mod, but a lot of other things aren't going to work properly.

Why don't you try to explain your problem and ask for help on the specific support forum for 2.0?

http://www.simplemachines.org/community/index.php?board=147.0

I suppose in that forum they may have seen things like that happening a few times already and may be they can give you a full list of the changes you need to do manually to the DB.

I will need to have 2 DBs in front of me (one 1.x and the other 2.0) to see all.

One important for sure is inside the table smf_members (or whatever prefix you have). Inside there the column for the usernames of each member is called "memberName" in SMF 1.x but now in 2.0 they called it "member_name" so you need to go inside your DB (using phpMyadmin for example) and change that manually.

Good luck.
Title: Re: httpBL
Post by: aussieherps on March 09, 2010, 04:54:27 AM
Not enough experience to do that myself and will have to wait until I see my brother.
He is a programmer in lots af languages and knows php quite well.
Problem is he is a 2.5 hr drive from me.
Title: Re: httpBL
Post by: snoopy_virtual on March 09, 2010, 05:51:58 AM
Quote from: aussieherps on March 09, 2010, 04:54:27 AM
Not enough experience to do that myself and will have to wait until I see my brother.
He is a programmer in lots af languages and knows php quite well.
Problem is he is a 2.5 hr drive from me.

When you see your brother tell him to contact me via Skype. If he's a programmer I can explain him in 2 minutes exactly what he need to do.

After that he will need to get tons of coffee and patience, because it's a long and boring job, but it can be done. And you better get it done, as nobody knows when SMF 2 is going to be stable. Can be a month or can be a year.

In the mean time I'm going to try to do a better search for an automatic script to do that job. As I told you the other day, I did a quick search in SMF downloads page and couldn't find any, but maybe somebody somewhere else has one already done. Who knows.

All the google specialists reading this: Do you think you could help here?
Title: Re: httpBL
Post by: Wizzlefits on March 10, 2010, 09:24:27 AM
Was wondering why I keep getting this log entry. It doesn't show on every hit, just every 3 or 4 blocked IP's.
And it's always the exact same entry. (3 Answers on the captcha
2 Good - 1 Bad )
As you can see by the time stamp, it's from the IP at the top.
Thanks!
Title: Re: httpBL
Post by: snoopy_virtual on March 10, 2010, 10:03:58 AM
Quote from: Wizzlefits on March 10, 2010, 09:24:27 AM
Was wondering why I keep getting this log entry. It doesn't show on every hit, just every 3 or 4 blocked IP's.
And it's always the exact same entry. (3 Answers on the captcha
2 Good - 1 Bad )
As you can see by the time stamp, it's from the IP at the top.
Thanks!

Looks really weird. I mean the fact that in that entries all the values have changed to "1".

Almost all the entries I have are either "0 Answers" or "2 Good 0 Bad". The only entries with bad answers I got in my logs are the ones I have done on purpose when testing the mod and giving bad answers to see what happens. But all of them always keep the values of every column unchanged.

It can be either a mistake in my code or the mod interacting with other mod you may have.

One way or the other I would like to take a closer look into that to see why it's happening. Contact me through Skype or Yahoo whenever you have a minute and we'll talk about it.
Title: Re: httpBL
Post by: giveaway365.com on March 15, 2010, 03:28:49 AM
Snoppy Sir,
gradually.. I have disabled stopspammer and going more strict with httpbl...

what would be ideal settings for httpbl?
Number of days to consider good an IP: 7?
Threat level considered bad:10?
Threat level considered VERY bad:20?
Hours until an IP needs to prove again it's human:24?

Suggestion:
Can you include the default recommended value also near the description in the next version.



Title: Re: httpBL
Post by: snoopy_virtual on March 15, 2010, 04:33:55 PM
I am not very sure yet about which ones would be the best settings. That's why I haven't put yet any recommended ones nowhere.

I was hopping here in this forum we could talk about that comparing the experiences of all the people using the mod, so we could find which ones are best.

The settings I am using in all my forums are:

Number of days to consider good an IP: 90
Threat level considered bad: 1
Threat level considered VERY bad: 30
Hours until an IP needs to prove again it's human: 24

These settings seem to work OK for me, but as I say, maybe yours are better. I don't really know.

If any of you is using different settings could you please tell us which ones and how are they working for you?
Title: Re: httpBL
Post by: giveaway365.com on March 16, 2010, 07:06:58 AM
As soon as I tried to pause stop spammer.... I got spammers in my forum !

Hence both Httpbl & stop spammers need to be installed.

Httpbl settings are :
90,20,30
And with stop spammer:
tick all except username.
Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2010, 11:23:50 AM
I agree: You need both mods working together. In fact I designed mod httpBL thinking always in the best way to stop the spammers that the other mod (Stop Spammer) cannot detect and vice-versa.

Still I think a "Threat level considered bad" as high as 20 is far too high. You are letting pass too many bad guys without even checking if they are humans or not.

Maybe the number I use there (1) is far too low and the best setting will be something in between. In fact, in Project Honey Pot they recommend to set that value to 10.

Please remember that the threat level scale is not linear but logarithmic. This means that to go for example from threat level 10 to threat level 11 you don't add something, but multiply it by something.

So the difference between let's say level 5 and level 6 is very small, but the difference between level 25 and level 26 is very high. And the higher you go up that scale the higher the differences between one level and the next.

You can see how they explain it in Project Honey Pot manual:

Quote
From http://www.projecthoneypot.org/threat_info.php

The Threat Rating is a logarithmic score -- much like the Richter's scale for measuring earthquakes. A Threat Rating of 25 can be interpreted as the equivalent of sending 100 spam messages to a honey pot trap.
Threat Rating   IP that is as threatening as one that has sent
25                     100 spam messages
50                     10,000 spam messages
75                     1,000,000 spam messages

Of course the best settings for each particular forum also depend on the kind of visitors it gets and the kind of forum it is.

For example, my forum is a free service where we get people from all over the world with computer problems and sort these problems for free, so I don't want to let anybody in without proving first at least they are humans if their IP have a threat level even as small as 1.

But your forum is a business where you want to attract customers and don't scare them too much with warning messages, so it's OK for you to let everybody in with a level less than 20 without even proving if they are humans or not, because this way you get more customers happy and this compensate the fact that sometime you get a bad robot mixed with them.




Anyway I have been thinking about another one of your suggestions:

Quote from: giveaway365.com on March 06, 2010, 10:41:03 AM
Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

In this warning page ... it seems that our website has a virus and good real user dont return...

So instead of writing so much about the virus and torgan horses , we just welcome them with our logo and below our logo a simple captcha .
Other conditions remain same like if the level is above 50 dont even show captcha etc etc.

When you suggested that I thought it was a bad idea, but after considering it more carefully I think you may have a point there.

The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

Adding everybody's logo to the top of the warning page will do no harm if robots see it (they cannot get any information from there) but will be less scary for humans.

So for the next version I will try to design a new warning page with the option of inserting your logo at the top, with less scary colors and maybe even with a CSS file where it will be easy to change the colors if you want to make it more similar to your own forum design.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 01:13:40 AM
Dear Snoppy Sir,
Thanks for the information... it helps a lot. I have changed it to 10 & 25 now.
Lets see...
and thanks for relooking my suggestion...
There is no point to explain any one the reason behind solving a capcha. If they are good.. they will not see the capcha and if they are bad they have to solve the capcha. If they are very Bad they cannot see a capcha and cannot move ahead.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 08:16:32 AM
Snoppy sir,
Can I use Akismet Spam Protection Mod (http://mods.simplemachines.org/index.php?mod=544) along with httpbl & Stop Spammer?
Title: Re: httpBL
Post by: butchs on March 17, 2010, 08:30:47 AM
Quote from: snoopy_virtual on March 16, 2010, 11:23:50 AM
The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

I am not sure if I like the unprotected (without defined('SMF') check) warning.php file.  Now the bots are poking fun at it.  Repeatedly I have seen them first sniff it then move on to other places.  I prefer to see them denied access to the page unless they are specifically sent there.

This bot was not in the httpBL log but did meet an untimely end when Bad Behavior (http://community.smfhelper.info/index.php/topic,5121.msg47285.html#msg47285) caught it.
8)
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 10:39:51 AM
this means httpbl mod is not effective at all?
snoppy sir, i also want to point out that as soon as I only depended on httpbl and disabled stopspammer I got 20 comment spammers in my forum.... I had to instantly start the stop spammer and also had to depend on various Ban Triggers of smf to get it normal.

My current httpbl settings are 90,7,25
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 01:38:06 PM
Quote from: butchs on March 17, 2010, 08:30:47 AM
...
I am not sure if I like the unprotected (without defined('SMF') check) warning.php file.
...

I told you already twice the code inside warning.php do the defined('SMF') check

How can I write code using SMF functions without checking first if SMF is defined or not? It would be impossible.

Please read in the manual how SSI works.
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 01:39:55 PM
Quote from: giveaway365.com on March 17, 2010, 08:16:32 AM
Snoppy sir,
Can I use Akismet Spam Protection Mod (http://mods.simplemachines.org/index.php?mod=544) along with httpbl & Stop Spammer?

I haven't try that one myself, so I don't know.

I would like to know though, so if you try it before I have time to do it myself, please tell me.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 01:46:52 PM
I installed it ... installation went without problem. but it had many errors in the error log. hence I uninstalled it.
Title: Re: httpBL
Post by: butchs on March 17, 2010, 03:48:48 PM
Quote from: giveaway365.com on March 17, 2010, 10:39:51 AM
this means httpbl mod is not effective at all?

NO! 8)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 04:09:29 PM
Quote from: butchs on March 17, 2010, 03:48:48 PM
Quote from: giveaway365.com on March 17, 2010, 10:39:51 AM
this means httpbl mod is not effective at all?

NO! 8)

Agree. Not at all.

For example. I have a test forum where there are no real members. Only the 3 admins (me and 2 of my colleagues) are real, the rest of the members and all the posts in that forum are all fakes we (the admins) create to test different things.

As this forum is not important at all (only a test one) sometimes we turn off all anti-spammers security to see what happen, and the results we get are these:

With BOTH mod StopSpammer and mod httpBL OFF we get around 100 spammers a day.

With ONLY mod StopSpammer ON we get around 40 spammers a day.

With ONLY mod httpBL ON we get around 20 spammers a day.

With BOTH mod StopSpammer and mod httpBL ON we get some days just 1 spammer and some days none at all.
Title: Re: httpBL
Post by: butchs on March 17, 2010, 05:25:40 PM
No means I disagree with qiveaways comment.  That means I believe that your version of httpBL is effective.  One of the best out there. 

Please do not run off on a tangent putting words in my mouth.  YOU KNOW THAT I BELIEVE THAT HTTPBL IS EFFECTIVE! Why else would I have helped you?   >:(
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 05:42:39 PM
When I said:

Quote from: snoopy_virtual on March 17, 2010, 04:09:29 PM
Quote from: butchs on March 17, 2010, 03:48:48 PM
Quote from: giveaway365.com on March 17, 2010, 10:39:51 AM
this means httpbl mod is not effective at all?

NO! 8)

Agree. Not at all.

I meant: "I agree with you butchs"  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 05:56:32 PM
The rest was an example for giveaway of a test I have done and anybody can repeat if they want.

Of course I wouldn't recommend nobody to try that test on an important forum. Only on test forums.  ;D
Title: Re: httpBL
Post by: Wizzlefits on March 17, 2010, 05:59:23 PM
Okay butches & snoopy!
You boys play nice or I'll get the beer powered fire hose out! I know how you hate that cheap beer. ;)
Anyway...
Quote from: snoopy_virtual on March 16, 2010, 11:23:50 AM
The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

This is very true. It scared the heck out of me the first I loaded it. But, Just to keep it simple and put the unlucky human at ease, I'm changing mine to something like this...
Quote
Sorry!
But you have been blocked you from viewing ', $context['forum_name'], '

Bet you're wondering what the heck is going on, right?
Well... in a nut shell, the IP address your computer is using has been listed as a bad boy. And since we like to provide a safe environment for our members, we check every IP to keep the rif raf out.
Now there is a chance that you are a real person and have been unlucky enough to get assigned a bad IP. More on how to fix that further down the page.
But for now, here's what we're going to do to prove that you are a real person and not a silly robot.

Below you will see a very simple math problem. All you have to do is put the correct answer in the "top box only " and click send.
HOLD ON!
There's a catch! You have to do this 2 times. Because a robot can get lucky once, but not twice. "wink wink"
Okay...go for it! We'll see you in a sec.
yada yada...

Yes it's a bit goofy, but it's not like head crab is going to turn them into a zombie.  :o

Oh, giveaway365.com
Since installing httBL and Stop Spammer....
Not a single bot has been able to post. Even went so far as turning on instant registration and turning off the smf visual verification.

Just my penny & a half. (can't afford the full 2 cents)
Title: Re: httpBL
Post by: butchs on March 17, 2010, 06:18:19 PM
Quote from: Wizzlefits on March 17, 2010, 05:59:23 PM
Okay butches & snoopy!
You boys play nice or I'll get the beer powered fire hose out! I know how you hate that cheap beer. ;)
Anyway...

Ha ha...  You should see us over at Snoop's place.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 06:20:01 PM
Quote from: Wizzlefits on March 17, 2010, 05:59:23 PM
...
You boys play nice or I'll get the beer powered fire hose out!
...

* Snoopy gets out the water proof suit just in case

Quote from: Wizzlefits on March 17, 2010, 05:59:23 PM
...
I'm changing mine to something like this
...

Something like that was my idea. Something more friendly and less scary.

We can do something:

Lets design each of us a different warning page and put them all here. We can see them all and take the best ideas of each one.
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 06:29:47 PM
@Wizzlefits

If you want to use the variable $context['forum_name'] inside the language strings you need to declare it global first, so if you want your warning page to work you need to change the line:


global $modSettings, $user_info, $txt, $boardurl;


For this one:


global $modSettings, $user_info, $txt, $boardurl, $context;
Title: Re: httpBL
Post by: Wizzlefits on March 17, 2010, 07:00:46 PM
Quote from: snoopy_virtual on March 17, 2010, 06:29:47 PM
@Wizzlefits

If you want to use the variable $context['forum_name'] inside the language strings you need to declare it global first, so if you want your warning page to work you need to change the line:


global $modSettings, $user_info, $txt, $boardurl;


For this one:


global $modSettings, $user_info, $txt, $boardurl, $context;

Yeper!
Otherwise it return an undefined (yada yada) error. I think, something like that, yea that the one. LOL!!
Title: Re: httpBL
Post by: giveaway365.com on March 18, 2010, 01:18:16 AM
I have full confidence in snoppy sir. He will make a nice warning page !
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2010, 01:43:46 AM
Quote from: giveaway365.com on March 18, 2010, 01:18:16 AM
I have full confidence in snoppy sir. He will make a nice warning page !
Agreed!  :)
But until snoopy & butchs stop poking each other with sharp sticks. (just kidding! I know the sticks are not sharp)
here's my "can't hit the side of a barn" shot at the warning.php.
Oh, it's only in english! Sorry.



Removed hard coded site name (should display your own site name) & tweaked css
Title: Re: httpBL
Post by: butchs on March 18, 2010, 10:40:53 AM
Do not confuse our creative process with bickering.  Instead bath in the spam free waters that we are helping to create as we are but two mad programmers who are heck :o  bent to rid all SMF forums of spammery.
:)
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2010, 05:30:35 PM
Quote from: butchs on March 18, 2010, 10:40:53 AM
Do not confuse our creative process with bickering.  Instead bath in the spam free waters that we are helping to create as we are but two mad programmers who are heck :o  bent to rid all SMF forums of spammery.
:)
LOL!
Your bickering.....errr I mean "creative process" is interesting, not to mention fun to watch!  ;)
So ya'll just keep them "process" flowing! I'm learning a lot.  :D
Title: Re: httpBL
Post by: giveaway365.com on March 21, 2010, 07:24:15 AM
I am sure that creative thinkers are going to make a very very nice warning page now ! We have not disturbed them since last 100 hours !
Title: Re: httpBL
Post by: giveaway365.com on March 23, 2010, 01:09:44 AM
Sir,
I have made a warning page... Its a bit personalise for my website...
Test it here : http://www.giveaway365.com/warning.php

Have a look at it...
Please note : All visitors are advice not to use this file for production as its just for testing. It may have bugs and errors.
Title: Re: httpBL
Post by: rich357 on April 04, 2010, 11:49:42 PM
error message:
8: Undefined index: REQUEST_URI
C:\Inetpub\vhosts\example.com\httpdocs\forums\Sources\httpBL_Subs.php
478

What's with this error?

I reinstalled the entire forum, then reinstalled the mod. So far, nothing tells me the mod is even working.
I dont see the magnifying glass thing besides the names.

What am I missing?

Yes I have the API key from honeypot.


Title: Re: httpBL
Post by: mane16 on April 14, 2010, 03:17:02 PM
Snoopy, I have a problem with the mod instalation, I upload the package into smf, but when I´ll go to install it, it says ERROR in the 4th line (4.     Executar Modificación     ./Themes/default/index.template.php     Prueba fallida), and i don´t know why..., anyway, if someone has the same problem, and is already solve, maybe could tell me how to solve..., if is in spanish lenguage, better, but if is in english, is all right anyway ^^
thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2010, 06:13:11 AM
Quote from: mane16 on April 14, 2010, 03:17:02 PM
Snoopy, I have a problem with the mod instalation, I upload the package into smf, but when I´ll go to install it, it says ERROR in the 4th line (4.     Executar Modificación     ./Themes/default/index.template.php     Prueba fallida), and i don´t know why..., anyway, if someone has the same problem, and is already solve, maybe could tell me how to solve..., if is in spanish lenguage, better, but if is in english, is all right anyway ^^
thanks

I already answered you that question in Spanish here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=328.0  ;)

Salú
Title: Re: httpBL
Post by: flapjack on April 16, 2010, 12:28:22 PM
unfortunatley, until a whitelist system is added, I am saying goodbye to this mod. too many false positives, too much hassle for users everytime go through the warning message.
Title: Re: httpBL
Post by: Wizzlefits on April 24, 2010, 11:25:19 AM
Just noticed something interesting.
2 spammers just got past httpBL by brute force.
They tried to register 2 times per second until it let them pass. 1 hit the page 8 times, the other hit 6 times.

StopSpammer caught them on the back side.  ;D
Title: Re: httpBL
Post by: giveaway365.com on April 28, 2010, 12:45:19 AM
the logic is simple.
httpbl takes time to identify because of formalities and stopspammer works on inputs of people like you and me !
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 09:01:26 AM
Quote from: giveaway365.com on April 28, 2010, 12:45:19 AM
the logic is simple.
httpbl takes time to identify because of formalities and stopspammer works on inputs of people like you and me !
Not sure what you mean by formalities.
Mod httpBL checks the IP of everyone that hits the site.
Stop Spammer checks (depending on how one has it set) email, user name and IP of the registration info.

In my case, the bot was hitting the registration page url directly on every request. httpBL stopped most of the requests, but my guess is, and it's only a guess, that due to a slight delay between my server and the project honeypot server the bot was able to submit the info.

BTW,
Some auto post software does not use a browser to do its job. Which means it doesn't have to wait for images, java etc to load and thus can hit a page, submit the info and be gone very very fast.
Title: Re: httpBL
Post by: Arantor on April 28, 2010, 09:04:42 AM
It's down to what is actually done by the other site. Stop Forum Spam / Stop Spammer don't actually do that much in terms of authenticating the submissions; Motoko-chan (former project manager here) once submitted his own IP to SFS (as used by SS) to prove that it doesn't validate it, it just takes submissions.

I don't know what the honeypot site does, but I'm guessing it does more than just accepting user submissions.
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 10:19:36 AM
If I'm not mistaken, honeypot is basically the same as SFS. (talking about blocking, not trapping spammers)
It returns info on the IP in question, but it's up to the requesting site (your forum) to block or let pass.
They both are just black lists to one degree or another.

While playing with my honeypot trap page.. I submitted my IP to their database.  It's still listed, but it's white listed.  :P
Title: Re: httpBL
Post by: Arantor on April 28, 2010, 10:23:51 AM
Actually, not quite the same. It's insanely easy to get an IP blacklisted on SFS but much harder to do on honeypot.
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 10:35:26 AM
Quote from: Arantor on April 28, 2010, 10:23:51 AM
Actually, not quite the same. It's insanely easy to get an IP blacklisted on SFS but much harder to do on honeypot.

LOL!
You do have a point there!
At least you can easily remove your IP from SFS. Yep! did that too. ::)
Title: Re: httpBL
Post by: snoopy_virtual on May 01, 2010, 02:54:07 PM
Arantor is right, it's very difficult to get your IP black-listed in PHP (Project Honey Pot).

In SFS you just submit an IP without giving any explanation and they don't even check if it's right or not, but in PHP if you submit an IP you need to explain what this IP has been doing and why you are submitting it, and the points (Threat Level) it will get will depend on the kind of actions you tell them it's been doing, the amount of people reporting that IP, etc. And anyway they don't accept everything you say about an IP if they cannot confirm it's true.

They trust a lot more the results sent from the Honey Pots pages, because all the links to these Honey Pots are hiding, so humans never get inside them and the spambots are kind enough to report themselves from them.

Actually if you get spammers inside your forum (anybody who has passed all your security barriers) you will need to report them to PHP only if you are sure they are humans. If they are robots they will end up reporting themselves.

On the other hand, if your IP gets ever black-listed in PHP it's very easy to get it white-listed. Just log into PHP's site. As soon as the site recognizes you as a member of the project you will see a link to white-list your IP.




I find a lot more interesting what Wizzlefits said a few days ago about a couple of spambots passing httpBL by brute force.

We need to talk about it to see how they managed, because that shouldn't happen.
Title: Re: httpBL
Post by: butchs on May 01, 2010, 05:06:46 PM
I can see the brute force pass bye happen because it takes a little time to look up each ip.  Add a cache buffer and that will be the end of that.  Yea, yea, I know what you are going to say.   ;)
Title: Re: httpBL
Post by: Wizzlefits on May 01, 2010, 06:58:13 PM
Quote from: butchs on May 01, 2010, 05:06:46 PM
I can see the brute force pass bye happen because it takes a little time to look up each ip.  Add a cache buffer and that will be the end of that.  Yea, yea, I know what you are going to say.   ;)

Have to agree, cache the ip for 5 min. would do it.

Or
add a delay of 5 seconds between registration requests from the same IP.
Title: Re: httpBL
Post by: kaamaru on May 09, 2010, 01:03:21 PM
If the honey post server goes down, would my site still function?
Title: Re: httpBL
Post by: Arantor on May 09, 2010, 01:04:39 PM
Sure it will. Just with one less measure of protection.
Title: Re: httpBL
Post by: giveaway365.com on May 10, 2010, 02:06:22 AM
which is that "with one less measure of protection."?
Title: Re: httpBL
Post by: Arantor on May 10, 2010, 05:56:06 AM
If the honey pot site goes down, your site says up, and that includes any other measures of anti spam you have.
Title: Re: httpBL
Post by: kaamaru on May 10, 2010, 02:37:17 PM
OK, awesome. Do any of you know when honey pot will be back online? I need to get an API.
Title: Re: httpBL
Post by: Wizzlefits on May 10, 2010, 04:21:42 PM
Figured they would be back up by now. It's been a week since the new hard drive was installed.
Title: Re: httpBL
Post by: Wizzlefits on May 10, 2010, 04:28:04 PM
O...
Even though the honey pot site is down, it's only the front end of the site. They are still tracking spammers and httpBL is working just fine.
Title: Re: httpBL
Post by: Sea Mac on May 17, 2010, 09:11:51 PM
Thank you for this MOD!

I got a honeypot (I got 2   actually) and tried Installing this Mod.

At install time it   showed all "Test Successful" or "File Skipped" so I installed it.

My   site quit working. http://thetruthabouthemp.com/hempity/index.php (http://thetruthabouthemp.com/hempity/index.php)

QuoteTemplate Parse Error!        There was a problem loading the /Themes/default/languages/Modifications.english-utf8.php   template or language file.  Please check the syntax and try again -   remember, single quotes (') often have to be escaped with a   slash (\).  To see more specific error information from PHP,   try accessing   the file directly (http://thetruthabouthemp.com/hempity/Themes/default/languages/Modifications.english-utf8.php).

You may want to try to refresh this page (http://www.simplemachines.org/community/javascript:location.reload%28%29;) or use the   default theme (http://thetruthabouthemp.com/hempity/index.php?theme=1). 

214: $txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
215: $txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
216: $txt['httpBL_info_email_1'] = 'First word of your email';
217: $txt['httpBL_info_email_2'] = 'Second word of your email';
218: $txt['httpBL_info_email_3'] = 'Third word of your email';
219: $txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>[email protected]</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
220: $txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
221: $txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
222: $txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
223: $txt[httpBL_bad_threat
224:
225:
What Happened?

It looks as if I'm going to have to reinstall the WHOLE SMF Forum!
Title: Re: httpBL
Post by: snoopy_virtual on May 18, 2010, 07:34:04 AM
You don't need to reinstall SMF. Just edit the file giving you the problem:

Navigate to the folder /Themes/default/languages/ and look for the file Modifications.english-utf8.php

At the end of the file you should have exactly this:


// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_config'] = 'MOD httpBL settings';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>[email protected]</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <b>VERY</b> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';
$txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:';
$txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a> or try to find more information <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">reading the tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <b>VERY</b> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <b>"Show extra information"</b>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';
// MOD httpBL END


If you have something different you will get an error.

By the way: Very nice site you have  ;)
Title: Re: httpBL
Post by: esoteric on June 01, 2010, 09:11:10 AM
Hi, first time mod installer here and I've done the honeypot thing, got the congrats screen and I have an api key. I installed httpBL successfully and it shows up in my admin package place as being installed. I then had to manually edit my theme index.template.php file and thought I'd done that ok, but when I go back to admin page I don't have the Mod httpBL link under my members menu as in the picture. I do however have quite a big space, as if it's made room for the link.

(http://i418.photobucket.com/albums/pp269/esotericbydesign/indexhttpBL.png)

Here's the stuff I already had in my index.template.php file:

Quote// The following will be used to let the user know that some AJAX process is running
   echo '
   <div id="ajax_in_progress" style="display: none;', $context['browser']['is_ie'] && !$context['browser']['is_ie7'] ? 'position: absolute;' : '', '">', $txt['ajax_in_progress'], '</div>';

echo '
</body>
</html>';
}

And after inserting the bit of code:

Quote// The following will be used to let the user know that some AJAX process is running
   echo '
   <div id="ajax_in_progress" style="display: none;', $context['browser']['is_ie'] && !$context['browser']['is_ie7'] ? 'position: absolute;' : '', '">', $txt['ajax_in_progress'], '</div>';

echo '
';

   /*****************
   ** httpBL START **
   *****************/
   global $sourcedir, $modSettings;
   if ($modSettings['httpBL_enable'])
   {
      require_once($sourcedir . '/httpBL_Subs.php');
      $honeyLink = httpBL_honeylink($modSettings['httpBL_honeyPot_link'], $modSettings['httpBL_honeyPot_word']);
      echo $honeyLink;
   }
   /*****************
   **  httpBL END  **
   *****************/
   
    echo '
</body>
</html>';
}

I'm sorry if I'm missing something glaringly obvious.  I really worry that I've bitten off more than I can chew here so please be kind.
Title: Re: httpBL
Post by: butchs on June 01, 2010, 10:13:48 AM
I wonder if it is there and you just need to reset your cache?  Go to Forum Maintenance => Empty the file cache and see if that helps?
:o
Title: Re: httpBL
Post by: Exsharaen on June 03, 2010, 01:30:45 PM
I wonder why SMF doesn't notify me of updates while I'm monitoring for updates... should update ASAP and retranslate then...
Title: Re: httpBL
Post by: esoteric on June 09, 2010, 09:44:50 AM
Quote from: butchs on June 01, 2010, 10:13:48 AM
I wonder if it is there and you just need to reset your cache?  Go to Forum Maintenance => Empty the file cache and see if that helps?
:o

Thanks for the reply butchs, unfortunately i don't see an option to empty any cache from within Forum Maintenance.
I have these options though:

GENERAL MAINTENANCE
*Optimize all tables to improve performance.
*Check all files against current versions.
*Find and repair any errors.
*Recount all forum totals and statistics.
*Empty out unimportant logs.
*Convert HTML-entities to UTF-8 characters

REMOVE OLD POSTS
*Remove all topics not posted in for x days
Title: Re: httpBL
Post by: Arantor on June 09, 2010, 10:26:15 AM
esoteric: Might have been useful to say you're using 1.1.11...
Title: Re: httpBL
Post by: Wizzlefits on June 09, 2010, 08:55:51 PM
esoteric...

Open up Sources/Subs.php and look for...

if (allowedTo('admin_forum'))
$context['admin_areas']['members']['areas']['httpBL'] = '<a href="' . $scripturl . '?action=httpBL">' . $txt['httpBL_title'] . '</a>';


if it's  not there, which it most likley isn't..., then find

if (allowedTo('manage_bans'))
$context['admin_areas']['members']['areas']['ban_members'] = '<a href="' . $scripturl . '?action=ban">' . $txt['ban_title'] . '</a>';

and add the first bit of code below it. That should fix the missing link.
Title: Re: httpBL
Post by: codysan on June 18, 2010, 12:27:22 AM
Hi Snoop . . . thanks for the MOD . . .

I have a question . . . what happens if a spammer gets through?
I had an individual register today and post spam to one of my boards.
I removed the post, banned the spammer and deleted his (her) account.

Is there a way I can report this IP or add the address, myself, to the spammer database?

Thanks . . .
Title: Re: httpBL
Post by: Wizzlefits on June 18, 2010, 03:34:54 PM
codysan,
You should use Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547) along side httBL.
What one doesn't catch, the other will. Plus with Stop Spammer, you can report the offender.
Title: Re: httpBL
Post by: codysan on June 18, 2010, 06:20:46 PM
Thanks, Snoop . . .

Appreciate the help!!
Title: Re: httpBL
Post by: shaitanfr on July 01, 2010, 03:43:26 PM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.
Title: Re: httpBL
Post by: shaitanfr on July 01, 2010, 04:51:03 PM
Quote from: shaitanfr on July 01, 2010, 03:43:26 PM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.


More Info: I can browse your forum. The différence: My domain is managed in IPV6.
I have déactivated IPv6 on my Domain, I should Waiting 24 hours and I will retry.

I can confirm that all my members In IPv6 are redirected to the Warning Page.
Title: Re: httpBL
Post by: snoopy_virtual on July 04, 2010, 08:22:25 AM
Quote from: shaitanfr on July 01, 2010, 04:51:03 PM
Quote from: shaitanfr on July 01, 2010, 03:43:26 PM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.


More Info: I can browse your forum. The différence: My domain is managed in IPV6.
I have déactivated IPv6 on my Domain, I should Waiting 24 hours and I will retry.

I can confirm that all my members In IPv6 are redirected to the Warning Page.

Unluckily I cannot experiment with that to sort it, because all my domains and my computers use IPv4 instead of IPv6

I don't even really know how IPv6 works and the differences between both systems.

I will write it in my "List Of Things To Do" but I can't promise anything.

Anybody there with more experience with IPv6 who could give me a hand with it?
Title: Re: httpBL
Post by: butchs on July 04, 2010, 10:26:46 AM
They have been trying to implement that for many years.  For fun I found a few links:

http://stackoverflow.com/questions/444966/working-with-ipv6-addresses-in-php
http://phpro.org/tutorials/Filtering-Data-with-PHP.html#9
http://www.weberdev.com/get_example-3921.html


Just in case you get adventuresome.
:o
Title: Re: httpBL
Post by: shaitanfr on July 04, 2010, 03:53:59 PM
Thank you.

Now it's ok for me, I don't need IPV6.

Other problem, I have error code in the warning page:

"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"

On line 127
$response = $_SESSION['response'];

replaced by:

if (isset($_SESSION['response'])) $response = $_SESSION['response'];

Ok now. But I have others errors on the second page.
(no php knowlege, my members helped me  ::) )

My warning page: http://passion-xbmc.org/warning.php

Smf 1.1.11

French translation.

$txt['httpBL_warn_title_1'] = 'Attention';
$txt['httpBL_warn_head_1'] = '<span class="red">Attention</span><br />Votre accès au site Passion-Xbmc a été bloqué, non sans raisons.';
$txt['httpBL_warn_infected_1'] = 'La cause la plus probable de ce blocage est que votre ordinateur, ou un ordinateur sur votre réseau local, a été <b>infecté par un virus, cheval de Troie ou ver</b>. Les ordinateurs infectés sont utilisés à l\'insu de leurs propriétaires par des criminels, pour attaquer de différentes façon des sites tels que celui que vous essayez de visiter.';
$txt['httpBL_warn_dinamic_IP_1'] = 'Si votre IP est dynamique et non pas fixe, celle ci change à chaque fois que vour redémarrez votre routeur. Peut être le problème est il seulement que vous utilisez aujourd\'hui une IP qui a servie récemment à un ordinateur infecté. Aussi vous pouvez tenter de redémarrer votre routeur et revenir ensuite sur ce site afin de vérifier si l\'accès s\'y fait alors normalement.';
$txt['httpBL_warn_technician_1_1'] = 'Dans tous les cas, nous vous recommandons de vérifier ou faire vérifier par un technicien que votre ordinateur n\'est pas infecté. Le site <b>www.projecthoneypot.org</b> référence votre IP';
$txt['httpBL_warn_technician_2_1'] = 'sur sa liste noire, vous pourrez le vérifier aisément et obtenir plus de détails.';
$txt['httpBL_warn_info_1'] = 'Pour plus d\'informations, n\'hésitez pas à contacter:';
$txt['httpBL_warn_at_1'] = 'at';
$txt['httpBL_warn_dot_1'] = 'dot';
$txt['httpBL_warn_hurry_1'] = 'Vous trouverez des explications détaillées à la suite de ces lignes que nous vous engageons vivement à lire, dans votre intérêt. Toutefois, si vous êtes pressés, vous pouvez accéder immédiatement au site, mais sachez qu\'il est probable que votre ordinateur est infecté. Nous allons vous poser deux fois de suite des questions faciles sous une forme telle qu\'un robot ne saurait y répondre. Répondez à la question ci dessous (juste le nombre) pour prouver que vous n\'êtes pas un robot et cliquez sur le bouton <b>"Envoyer"</b>:';
$txt['httpBL_warn_send_1'] = 'Envoyer';
$txt['httpBL_warn_blank_1'] = 'Ne mettez rien dans ce champ.<br />Saisissez la réponse dans la première case.';
$txt['httpBL_warn_wrong_answer_1'] = 'Peut être nos explications étaient elles confuses ou avez vous frappé la mauvaise touche par mégarde. On reprends :) Ci dessous, deux cases, il ne faut mettre la réponse que dans la première, la somme du calcul simple ci dessous. Ne mettez rien dans la seconde case.';
$txt['httpBL_warn_good_answer_1'] = 'Votre réponse était la bonne, mais un robot, bien que ne comprenant pas la question, pourrait aussi avoir donné la bonne en entrant des chiffres aléatoirement. Un deuxième et dernier test est une contre mesure efficace autant que nécessaire. Saisissez à nouveau la bonne réponse et cliquez sur: <b>Envoyer</b>';


Thank you for this awesome Mod.

( I have 80 mod installed, this one without crying and like a charm with package manager).  ;)

Sorry for my poor English.

Edit:

Others errors fixed:

$_SESSION['response']['errorNumber'] = $_SESSION['response']['errorNumber'] + 10;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);


Replaced by:

if (isset($_SESSION['response']['errorNumber']))
{
$_SESSION['response']['errorNumber'] = $_SESSION['response']['errorNumber'] + 10;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);
}


Search

$_SESSION['response']['errorNumber']++;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);


Replace by:

if (isset($_SESSION['response']['errorNumber']))
{
$_SESSION['response']['errorNumber']++;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);
}


3 errors remaining:

Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 209

Notice: Undefined index: errorNumber in /home/shaitan/www/passion-xbmc/warning.php on line 209

Notice: Undefined index: ID in /home/shaitan/www/passion-xbmc/warning.php on line 211

Will be fixed tomorrow
Title: Re: httpBL
Post by: pviagem on July 05, 2010, 06:36:55 PM
This looks a really great MOD but I'm having a problem no enable it.

I'm using SMF 1.1.11 and httpBL 2.3.4 and on a 1st look everything seems ok, but in fact I can't enable the MOD. On the httpBL settings I can add and save data in all fields except the Enable/Disable MOD httpBL one. The check box is unclickable.

Thanks for any comment or help.
Title: Re: httpBL
Post by: shaitanfr on July 05, 2010, 06:52:38 PM
pviagem:

You should complet all fields.
Title: Re: httpBL
Post by: pviagem on July 05, 2010, 07:04:36 PM
Quote from: shaitanfr on July 05, 2010, 06:52:38 PM
pviagem:

You should complet all fields.

Great! Thanks a lot.
Title: Re: httpBL
Post by: snoopy_virtual on July 06, 2010, 07:05:45 AM
Quote from: shaitanfr on July 04, 2010, 03:53:59 PM
...
Now it's ok for me, I don't need IPV6.
...

Glad to hear it.

It means I'm not in a hurry now to make it compatible with IPv6. Anyway we will need to do it someday, as IPv6 is the future of the web.




Quote from: shaitanfr on July 04, 2010, 03:53:59 PM

...

"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"

On line 127
$response = $_SESSION['response'];

replaced by:

if (isset($_SESSION['response'])) $response = $_SESSION['response'];

Ok now. But I have others errors on the second page.
(no php knowlege, my members helped me  ::) )

...

Others errors fixed:

...

3 errors remaining:

Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 209

Notice: Undefined index: errorNumber in /home/shaitan/www/passion-xbmc/warning.php on line 209

Notice: Undefined index: ID in /home/shaitan/www/passion-xbmc/warning.php on line 211

Will be fixed tomorrow

You are not fixing the errors. You are making them worst.

If the response is not set in $_SESSION there is something wrong somewhere else, because you really need the response if you want the page warning.php to work.

What you are doing is something like: "If the response is not set, forget about it".

Let me think about it for a while to see if I find why you get that error.

In the mean time I suggest you leave your page warning the way it was.




Thanks for the French translation.

Really appreciate that.
Title: Re: httpBL
Post by: snoopy_virtual on July 06, 2010, 09:42:58 AM
Quote from: snoopy_virtual on July 06, 2010, 07:05:45 AM
Quote from: shaitanfr on July 04, 2010, 03:53:59 PM

...

"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"

etc etc


You are not fixing the errors. You are making them worst.

If the response is not set in $_SESSION there is something wrong somewhere else, because you really need the response if you want the page warning.php to work.

What you are doing is something like: "If the response is not set, forget about it".

Let me think about it for a while to see if I find why you get that error.

In the mean time I suggest you leave your page warning the way it was.

OK, I have been thinking about this problem for a while and I think I know now why you get these errors:

The warning.php page is supposed to work when somebody have a bad IP and is redirected here through the mod.

When that happen they already have a "response" inside their "$_SESSION", so there are no errors. (Shouldn't be at least)

You are getting the errors because you are going to the page warning.php directly to see how it looks like, without passing first through the mod, so you haven't got a "response" inside your "$_SESSION".

The way you are modifying the page warning.php you are not going to have any errors when you visit it to see how it looks like, but (if you are not careful) maybe it's not going to work properly when a spammer arrives to it.

I will sort this in the next version so you never get an error visiting the page warning.php in any case. Either when you are redirected there automatically or when you are just viewing the page to see how it looks like.

In the mean time I think it would be better if you leave the page the way it was and just ignore any errors you may get when you just visit it.
Title: Re: httpBL
Post by: shaitanfr on July 06, 2010, 09:50:41 AM
Thank you for these explanations very clear, I will follow your recommendations.
Title: Re: httpBL
Post by: kaamaru on July 07, 2010, 06:17:35 AM
Many of my members view the site on there phones using 3G. Lodes of spammers use ips from carries like tmobile and AT&T so some of my members get blocked from the site. How can I disable HTTBL for mobile carriers?
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2010, 09:32:54 AM
Quote from: Calumks on July 07, 2010, 06:17:35 AM
Many of my members view the site on there phones using 3G. Lodes of spammers use ips from carries like tmobile and AT&T so some of my members get blocked from the site. How can I disable HTTBL for mobile carriers?

I am not an expert on 3G mobile phones because I don't use them so, if anybody more expert than me in this matter sees I'm not right here, please tell me.

A quick search on any security web page will tell you that there are already thousands of viruses and trojans for mobile phones but almost nobody uses anti-viruses in their phones, so a very big percentage of all the mobiles in the world are already infected.

So when you said:

Quote
Lodes of spammers use ips from carries like tmobile and AT&T

That's not exactly true. You should have said instead:

Quote
A lot of phones from tmobile and AT&T are already infected with trojans sending spam all over the world.

As far as I know, it doesn't matter if somebody is viewing your site from a computer or from a mobile. In any case the IP is always unique. So the problem is not if they are viewing your site using one method or other but if their IP is from a spammer or not.

I think you should try and find out the threat level your member's IPs have and then adjust the "Threat level considered bad" and the "Threat level considered VERY bad" so most of them haven't got any problem.

Anyway you should consider as a possibility that maybe if your members are stopped by mod httpBL is because they have a trojan inside their mobiles, so instead of you changing anything in your site, they should try to clean them.
Title: Re: httpBL
Post by: FragaCampos on July 07, 2010, 11:55:40 AM
I just installed this mod after almost 2 years with a honeypot installed in my forum and i must say this to snoopy_virtual:
I have 45 mods installed and this one is surely one of the best. Installed flawlessly and i didn't even had to edit the index.template of my theme. Absolutely awesome. And the mod's configuration... how brilliant is that?
I have Stop Spammer installed since a long time ago and i must congratulate you for all the work, patience and support you've done here. I can't even think about all the hours you lost here to give us this free and absolutely must have software. Thanks a lot mate.

Best regards,
FragaCampos.

PS: Hope i'm not being misleading when i say "i didn't even had to edit the index.template", because i read your great tutorial and followed the instructions to edit the index.template ;)
Title: Re: httpBL
Post by: snoopy_virtual on July 08, 2010, 07:15:03 AM
Thank you FragaCampos.

Really appreciate your opinion.   ;)
Title: Re: httpBL
Post by: Kakers on July 08, 2010, 06:14:17 PM
I've used SMF for about 3 years now and I do prefer it over the other forums out there, the only downside is hearing about and experiencing the amount of spam/bots that the 1.1.11 SMF forums gets hit with. Currently I administrate two SMF boards and both were getting around 1 spam bot a day sign up, even with admin approval set up it becomes tiresome quickly. I have tried other mods like 'Are you Human?' and if I'm honest, it didn't make any difference to the levels of spam at all. It had progressed and gotten to the point where I had to banned the IPs for all the ISPs in 4 different countries via that .htaccess file!

I will admit I was a bit dubious about setting up this mod at first as I had only taken a quick glance at it while I was at work. I like many others were just looking for a quick fix and didn't really want to go through all the hassle of setting up accounts on sites and uploading files. I AM SO GLAD I DID!!! After 12 hours of having it installed I have not had any spam accounts sign up and even seen that there have been 6 bots or suspicious IPs that have been denied access to the forums. Now that I have set it up once doing it for the other forum should be quick and simple. I am going to see how it runs for the next few days and if all is well, I might be able to unblock those 4 countries. (Russia, Germany, Korea & China .... Not that I expect any of them will visit my site... but you never know).

I don't normally write reviews and such but... thank you for this Mod, It has made my life easier! ;)
Title: Re: httpBL
Post by: snoopy_virtual on July 09, 2010, 05:40:24 AM
Thanks for your kind words Kakers.

As I also administer a few forums and had the same problems with spam (that's the reason why I did this mod in the first place) I'm going to give you a couple of advises:

If you are installing the mod in a few different forums, you can use the same API key for all of them, so you don't need to register another account with "Project Honey Pot", but the mod works a little faster if the honey pot is installed in the same domain as the forum, so it's better if you install a different honey pot inside each forum. It's just a little more work, but it's worth the hassle.

I will recommend you as well to install in every forum my other mod StopSpammer:

http://custom.simplemachines.org/mods/index.php?mod=1547

Both mods are complementary and you will see a big difference when using both at the same time.

Each one uses a different database to see if they are spammers and uses a completely different method to check it.

Also mod StopSpammer is a lot easier to install than mod httpBL  ;D
Title: Re: httpBL
Post by: Kakers on July 09, 2010, 02:33:31 PM
Thanks for the advice, I will also try that mod.

I currently have the honeypot sat in the root '/' of my html directory where our wordpress blog sits. (I have now installed Bad Behaviour on our WP blog to use the honey pot!)  ;D The SMF forums are in a sub-directory '/forums/' The site normally gets about 6k hits a day, 1k unqiue hits. The forums get visited less then that however and having installed the WP and SMF mods I haven't noticed any decrease in speed. For this site I own the domain name but not the hosting.

The other forums are hosted on my domain/hosting so I will be creating a seperate hot pot for that one which will sit in the '/forums/' directory purely because the main page is html  ::)
Title: Re: httpBL
Post by: shaitanfr on July 11, 2010, 11:25:27 AM
Something strange. I was contacted by a member who is blocked by httpBL. But his IP is not in the projecthonepot database. In my logs I can see his IP with S - Low Threat.
I chek and found others IP in the same configuration, blocked but not referenced on the database.




Title: Re: httpBL
Post by: snoopy_virtual on July 12, 2010, 07:07:10 AM
Quote from: shaitanfr on July 11, 2010, 11:25:27 AM
Something strange. I was contacted by a member who is blocked by httpBL. But his IP is not in the projecthonepot database. In my logs I can see his IP with S - Low Threat.
I chek and found others IP in the same configuration, blocked but not referenced on the database.

It looks like an error somewhere.

Can you tell me one of the IPs and all the info you can see in your log about it (including the "extra info")?

I would like to investigate the issue.
Title: Re: httpBL
Post by: shaitanfr on July 12, 2010, 02:58:35 PM
Yep,

For example:

(http://passion-xbmc.org/fichiers_multimedia/upploadimages/images/1278961073-ip.jpg)

Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 08:13:22 AM
I don't really know how the web site in "Project Honey Pot" works. All I know is what I have read on their site and what I have seen while using their API to create this mod, so most of what I am going to tell you here is just guessing, but anyway I think it's a good guess.

As far as I know, the database with all the spammers information (the database used by the mod to check if an IP is spammer) is a dynamic one, changing every hour with all the information received from all the Honey Pots around the world. It's also a very big database and it has a lot of information. Not only about "Harvesters" and "Comment Spammers" but also about a lot of other "Suspicious" behaviours which the program cannot identify just now.

If you read their API manual: http://www.projecthoneypot.org/httpbl_api.php you can see they are working on it and in they have reserved some other values of the response from the database for future use, but I think they will identify only really dangerous behaviour and will leave as just "Suspicious" any kind of behaviour not too dangerous.

As I said this database is dynamic. All the process is fully automatic and it's hosted in a few mirror servers, so it's always on-line. (At least I have never seen this database off-line in the last 2 years).

As you can see, when the mod checked the IP 84.97.153.127 inside this database it got the response 127.29.3.1

The first number (127) just means that the response is correct.

The next number (29) is the number of days since this IP was last seen doing something wrong.

The next number (3) is the threat level of this IP. A very low number really. In Honey Pot's site they say a few times any IP with a threat level less than 10 is not really dangerous at all.

The last number (1) means this IP has not been seen doing "Harvesting" or "Commenting" work yet, and it's only "Suspicious".

You can also see that when, whoever was trying to see your site from this IP, was redirected to your "warning" page didn't give any answers to the captcha questions.

That means that either it was a trojan robot working inside the computer with that IP (one who doesn't know how to answer captcha questions) or it was a human who was very scared when he read he may have a virus and just closed the web page because he didn't know what else he should do.




On the other hand, when you check an IP inside Honey Pot's site you are using a completely different database. You are using the database which keeps Honey Pot's web site on.

This is not a fully automatic database and the information it has is very different from the first database. It doesn't get all the input automatically from the Honey Pots around the world, but also from comments the site users leave about different IPs.

Some things anyway come from the Honey Pots automatically. Mainly the actions done by "Harvesters", "Comment Spammers", etc, but here it has different information than the first database. Instead of just "numbers" about how many times an IP did something wrong, how many days ago, etc it has "text" information. For example from a "Comment Spammer" it tells you what kind of posts it writes in the forums, what links to malicious sites, etc

But a big difference is that this database only has "Proven facts", not just "Suspicious actions", so when you check the IP 84.97.153.127 here and you get nothing, it means that IP has been doing only something suspicious, but nothing really dangerous that can prove it is a spammer.

That is why it has only a 3 in the threat level.




As I said at the beginning all this is only guessing. It would be better if we ask this question in their own forum:

http://www.projecthoneypot.org/board/

The problem is that forum has very few movement. I have asked a few questions myself there and only a couple of them have been answered.
Title: Re: httpBL
Post by: shaitanfr on July 14, 2010, 08:41:25 AM
Ok, I understand. It's frustrating for me not to speak better English to respond.

QuoteYou can also see that when, whoever was trying to see your site from this IP, was redirected to your "warning" page didn't give any answers to the captcha questions.

I have an explanation:

In my sign you can see the link to "Cine-Passion". A free service that I host and used by different media center solutions. (thousands users every days)  So these are the machines and programs that connect to this service, this explains why there are no answers to the captcha.

It is a real problem for me to continue to use httpBL.
In fact I've never had problems with spam. I installed several anti-spam mods and although my sections are mostly accessible to guests in more than two years, only one spammer has managed to post spam, Xrumor the famous, and he could not save links in the message.

I also installed StopSpammer just before httpBL. I scanned my base member, only one spamer was registered, the email address left no doubt he is a spammer.
To conclude, I installed httpBL because I found it's a very great system, beautiful, but because of the nature the service that my site offers, I do not think I can continue to use it.

I hope you anderstand my answer :)
Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 11:43:19 AM
Don't worry about your English. I understand you very well.  ;)

So, your problem is a lot of your visitors are robots coming from different media centre solutions, but these robots are not spammers.

Well, the httpBL system normally recognizes this kind of robots and let them pass.

The problem is they haven't got inside their database all the "legal" robots in the world. Only the more important ones.

At least, the robots from the main software companies (Google, Microsoft, Yahoo, etc) are always recognized, because the owners of these robots have told everybody about them so we know what they do and how to recognize them.

But if a robot is not recognized (because it's not in the database) it will always get a very low threat level (less than 10) if it's not doing something really bad.

For example, as you can see, this 2 you got only have a threat level of 3.

I can assure you, if an IP get a threat level of 40 or more, it is for sure a very dangerous spammer. Remember the threat level is not a linear scale, but a logarithmic one.

What I think you should do is to check your logs to see what is the threat level of all the IPs stopped by the mod with only "Suspicious" on, with no "Harvesters" or "Comment Spammers", and change your configuration to let pass all this robots and stop only the really dangerous.

A good configuration (good for almost everybody) will be to put the "Threat level considered bad" up to 10 and the "Threat level considered VERY bad" to 30.

This way everybody with a threat level less than 10 will pass.
With a treat level between 10 and 30 will see the captcha.
More than 30 will be stopped.

But as I say, it's up to you to see your logs to decide the best numbers for your site.

These numbers cannot be always the same for every web site. That's the reason why I put in the last version all this log system and all these different numbers in the configuration that were not there in earlier versions.
Title: Re: httpBL
Post by: shaitanfr on July 14, 2010, 12:24:45 PM
But yes, it is the solution !

QuoteBut as I say, it's up to you to see your logs to decide the best numbers for your site.


I looked at my logs and only one service user has a score of 14 is the maximum. I can see its user agent and its activity that tell me that it's software.
(http://passion-xbmc.org/fichiers_multimedia/upploadimages/images/1279124553-14.jpg)

( We ask the developers that their software return a user agent with requests )

All others have a score between 3 and 4
So here, I just have to adjust accordingly.
Again merci Monsieur.   :)
Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 03:05:08 PM
Il n'y a pas problème  ;)
Title: Re: httpBL
Post by: Saint_Frater on August 17, 2010, 08:03:48 AM
I don't know if there is any french translation; here is my contribution:

// MOD httpBL START - Translation by Frater
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Mauvaise URL honeyPot. V&eacute;rifiez votre configuration MOD httpBL.';
$txt['httpBL_honeyPot_key_error'] = 'Maivaise cl&eacute; http:BL API. V&eacute;rifiez votre configuration MOD httpBL.';
$txt['httpBL_honeyPot_key_error_2'] = 'Echec de Connection. Cela veut dire que soit votre cl&eacute; http:BL API est incorrect ou qu\'il y a probl&egrave;me avec votre configuration DNS.';
$txt['httpBL_caught'] = 'Spammers bloqu&eacute; par MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'Le MOD httpBL v&eacute;rifie l\'adresse IP de chaque visiteur pour savoir si celle-ci est d&eacute;j&agrave; dans la base de donn&eacute;es projecthoneypot. Si c\'est le cas, la modication redirige ceux-ci vers la page warning.php interdisant l\'acc&egrave;s au forum.<br />Ici vous pouvez activer ou d&eacute;sactiver la modification et changer quelques un de ses param&egrave;tres.';
$txt['httpBL_config'] = 'Param&egrave;tre MOD httpBL';
$txt['httpBL_enable'] = 'Activer/D&eacute;sactiver MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'La cl&eacute; API que vous avez &eacute;crite est mauvaise. V&eacute;rifiez soigneusement celle-ci et essayez &agrave; nouveau.';
$txt['httpBL_honeyPot_link'] = 'URL vers votre Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'Si vous d&eacute;sirez utiliser httpBL, vous devez avoir un Honey Pot install&eacute; sur votre serveur. Si vous n\'en avez pas, vous devez allez sur <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> pour en cr&eacute;er un et l\'installer sur votre serveur. Apr&egrave;s cela, inscrire l\'URL de ce honeypot ici. Cela peut &ecirc;tre quelque chose comme:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Votre cl&eacute; Honey Pot http:BL API';
$txt['httpBL_honeyPot_key_sub'] = 'Si vous d&eacute;sirez utiliser httpBL vous devez avoir aussi une cl&eacute; http:BL API r&eacute;&ccedil;ue du Project Honey Pot. Si vous n\'en avez pas rendez-vous a l\'URL <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> pour vous enregistrer et en obtenir une que vous inscrirez ici. Veuillez noter que vous ne recevrez pas de cl&eacute; si vous n\'avez pas installer votre Honey Pot, il vaut mieux commencer par cela.';
$txt['httpBL_honeyPot_word'] = 'Mot cl&eacute; de votre URL Honey Pot';
$txt['httpBL_honeyPot_word_sub'] = 'Ce mot cl&eacute; est le seul mot dans votre URL Honey Pot que les spammers verons. Ecrivez quelque chose qui va les attirer et les faire cliquer dessus et pas quelques choses qui va les effrayer. Si vous ne pouvez pas trouver de bon mot, laissez ce champ vide, httpBL va le choisir pour vous.';
$txt['httpBL_info_email_1'] = 'Premier mot de votre email';
$txt['httpBL_info_email_2'] = 'Second mot de votre email';
$txt['httpBL_info_email_3'] = 'Troisi&egrave;me mot de votre email';
$txt['httpBL_info_email_sub'] = ' httpBL a besoin de votre adresse address pour vous informer en cas de probl&egrave;me et aussi d\'afficher celle-ci aux malheureux humains qui on une adresse IP consid&eacute;rer comme spammer et qui ne savent pas comment sortir de la page <b>warning.php</b>, ainsi ils peuvent vous demander de l\'aide. Donc cette adresse doit &ecirc;tre valide. Nous l\'avons s&eacute;parer en 3 mots afin que les robots ne puissent pas la voir. Par exemple, si votre adresse est <b>[email protected]</b> le premier mot est <b>info</b>, le second est <b>yourwebsite</b>, et le troisi&egrave;me est <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'V&eacute;rifiez l\'adresse email que vous avez &eacute;crit. Vous ne pouvez pas laisser les champs vide.';
$txt['httpBL_bad_last_activity'] = 'Nombre de jours pour examiner une bonne IP';
$txt['httpBL_bad_last_activity_sub'] = 'Si une adresse IP a &eacute;t&eacute; consid&eacute;rer comme appartenant &agrave; un spammeur avant, mais que personne n\'a vu quelque chose de suspect depuis au moins ce nombre de jours, nous pouvons consid&egrave;re la requete comme non dangereuse et laisser le visiteur passer.';
$txt['httpBL_bad_threat'] = 'Niveau de menace consid&eacute;r&eacute; comme mauvais';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot donne &agrave; toutes les adresses IP un niveau de menace qui &eacute;volue chaque jour en fonction de ce que l\'adresse IP fait et depuis combien de jours il l\'a fait. Chaque IP avec un niveau de menace inf&eacute;rieur au nombre que vous mettez ici passera sans m&ecirc;me &ecirc;tre v&eacute;rifi&eacute;.';
$txt['httpBL_very_bad_threat'] = 'Niveau de menace consid&eacute;r&eacute; comme TRES mauvais';
$txt['httpBL_very_bad_threat_sub'] = 'Tout IP avec un niveau de menace plus grande que le nombre que vous mettez ici seront bloqu&eacute;. Les adresses IP avec un niveau de menace entre les deux nombres auront un "captcha" et, s\'ils prouvent qu\'ils sont bien des &ecirc;tres humains, il leur sera accord&eacute; un laissez-passer pour quelques heures.';
$txt['httpBL_cookie_length'] = 'Nombre d\'heures avant de devoir prouver &agrave; nouveau que le visiteur est humain';
$txt['httpBL_cookie_length_sub'] = 'Comme les adresses IP changent tr&egrave;s souvent, lorsque les visiteurs voient les "captcha" et qu\'ils prouvent qu\'ils sont humains, ils sont autoris&eacute;s uniquement pour ce nombre d\'heures. Apr&egrave;s ce temps, il se peut que l\'adresse IP soit attribu&eacute;e a une autre ordinateur. Nous ne vous conseillons pas de modifier ces 4 derni&egrave;res valeurs jusqu\'&agrave; ce que vous connaissez la fa&ccedil;on dont fonctionne httpBL.';
$txt['httpBL_no_negative_here'] = 'Le nombre de jours et le niveau de menace ne peuvent pas &ecirc;tre des nombres n&eacute;gatifs ou 0.';
$txt['httpBL_no_higher_than'] = 'Le niveau de menace per&ccedil;u comme mauvais ne peut pas &ecirc;tre plus &eacute;lev&eacute; que le niveau de la menace consid&eacute;r&eacute; <b>tr&egrave;s</b> mauvais.';
$txt['httpBL_viewlog_extra'] = 'Voir des informations suppl&eacute;mentaires dans le log';
$txt['httpBL_viewlog_extra_sub'] = 'Si vous activ&eacute; cette option, vous allez voir toutes les informations dans le journal, mais c\'est peut-&ecirc;tre un peu trop et vous risquez de vous y perdre. Parfois, il vaut mieux ne voir que les choses importantes.';
$txt['httpBL_config_sub_1'] = 'Si vous voulez voir le look de votre "warning.php page" avec ces param&egrave;tres (la page vers laquelle sera redirig&eacute;e toute personne avec une IP consid&eacute;r&eacute;e comme dangereuse ), appuyez sur cette URL:';
$txt['httpBL_config_sub_2'] = 'Si vous voulez changer de design ou la traduction de cette page et vous ne s \'avez pas comment faire, ou si vous avez toute autre question sur le httpBL, vous pouvez demander de l\'aide dans le <a href = "http://www.simplemachines.org/community/index.php?topic=366399" target = "_blank">Forum de support officiel</a> ou d\'essayer de trouver plus d\'informations dans <a href = "http:// www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2 "target =" _blank ">le tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Chaque fois que httpBL bloque un spammeur ou d&eacute;tecte une erreur interne, il ajoute une entr&eacute;e &agrave; ce journal, vous pouvez le consulter ici. Voici est la liste des spammeurs arr&ecirc;t&eacute; par le httpBL soit parce que leur niveau de menace est plus &eacute;lev&eacute; que le niveau de menace consid&eacute;r&eacute;e comme <b>tr&egrave;s</ b> ou mauvaise parce qu\'il voyait les "captcha" et qu\'ils n\'ont pas prouver qu\'ils &eacute;taient des humains.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'Ceci est la liste des humains bloqu&eacute; par httpBL, mais autoris&eacute;s apr&egrave;s qu\'ils aient prouv&eacute; qu\'ils n\'&eacute;taient pas des robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'Ceci est la liste des erreurs internes d&eacute;tect&eacute;es par httpBL en essayant de v&eacute;rifier une adresse IP. Selon l\'erreur, certains d\'entre eux ont &eacute;t&eacute; bloqu&eacute;s et d\'autres peuvent avoir &eacute;t&eacute; autoris&eacute;s &agrave; passer. Pour voir tous les d&eacute;tails, vous devez appuyer sur le bouton <b>"Plus d\'informations"</ b>.';
$txt['httpBL_log_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL spammeurs Log. Soit vous n\'avez pas encore surpris de spammeur ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_logpass_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL Humans Log. Soit personne n\'a prouv&eacute; qu\'il &eacute;tait humain ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_logerror_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL Errors Log. Soit aucune erreur ne s\'est pr&eacute;sent&eacute;e ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_viewlog_extra'] = 'Plus d\'informations';
$txt['httpBL_viewlog_normal'] = 'Moins d\'informations';
$txt['httpBL_log_show_legend'] = 'Afficher la l&eacute;gende';
$txt['httpBL_log_hide_legend'] = 'Cacher la l&eacute;gende';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Niv. M.';
$txt['httpBL_log_threat_long'] = 'Niveau de Menace - Le niveau de menace de l\'adresse IP dans la base de donn&eacute;es project Honey Pot.';
$txt['httpBL_log_activity'] = 'D. M. A.';
$txt['httpBL_log_activity_long'] = 'Derni&egrave;re Mauvaise Action - Le nombre de jours &eacute;coul&eacute;s depuis cette adresse IP a &eacute;t&eacute; vu faire quelque chose de mal.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspect -  Juste suspect&eacute; d\'&ecirc;tre un spammeur.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - Un robot qui navigue &agrave; la recherche d\'adresses e-mail pour les utiliser plus tard pour envoyer du spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Spammer de Commentaires - Un robot qui post sur des blogs et des forums. Ces postes sont g&eacute;n&eacute;ralement plein de liens vers des sites promue par les spammeurs.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'La page que l\'adresse IP visitait quand httpBL expulser le visiteur';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Oui';
$txt['httpBL_threat_colors'] = 'Signification des couleurs:';
$txt['httpBL_threat_low'] = 'Menace faible';
$txt['httpBL_threat_medium'] = 'Menace moyenne';
$txt['httpBL_threat_high'] = 'Menace forte';
$txt['httpBL_threat_very_high'] = 'Menace tr&egrave;s &eacute;lev&eacute;e';
$txt['httpBL_log_remove_all_confirm'] = 'Etes-vous certains de vouloir supprimer tout les enregistrements httpBL Log? - Cette action aura effet sur l\'ensemble des logs, pas seulement sur celui de cette section.';
$txt['httpBL_log_remove_selected_confirm'] = 'Etes-vous s&ugrave;r de vouloir supprimer tout les enregistrements du journalh ttpBL s&eacute;lectionn&eacute;?';

// Errors
$txt['httpBL_log_no_error'] = 'Aucune erreur';
$txt['httpBL_no_errorNumber'] = 'Il n\'ya pas de num&eacute;ro d\'erreur';
$txt['httpBL_no_defined'] = 'Pas encore d&eacute;fini';
$txt['httpBL_answers_captcha'] = 'R&eacute;ponses sur le captcha';
$txt['httpBL_answer_captcha'] = 'R&eacute;ponse sur le captcha';
$txt['httpBL_good'] = 'Bonne';
$txt['httpBL_bad'] = 'Mauvaise';
$txt['httpBL_empty_ip'] = 'IP vide';
$txt['httpBL_wrote_hidding'] = 'a &eacute;crit sur un espace cach&eacute;';
$txt['httpBL_no_show_captcha'] = 'Niv. M. trop &eacute;lev&eacute;. Nous n\'avons pas affich&eacute; de "captcha"';
$txt['httpBL_no_reverse_ip'] = 'Impossible de v&eacute;rifier. l\'IP n\'est pas normal. Authoris&eacute;e &agrave; passer';
$txt['httpBL_log_key_error'] = 'Impossible de v&eacute;rifier &agrave; cause d\'une erreur de cl&eacute; API. Authoris&eacute;e &agrave; passer';
$txt['httpBL_no_127'] = 'Impossible de v&eacute;rifier. La response[brute] ne commence pas par 127. Authoris&eacute;e &agrave; passer';
$txt['httpBL_unknown'] = 'inconnu';
// MOD httpBL END
Title: Re: httpBL
Post by: snoopy_virtual on August 17, 2010, 12:06:26 PM
I should have talked about this already inside the tutorial, so anybody trying to translate this mod will have it a little easier, but it seems I never find the right time to do it.

OK, I will try to give a quick explanation here and I will put it more clear in the tutorial whenever I can:

To translate this mod completely there are actually 2 different things which need to be translated:


What you (Saint_Frater) have translated just now is the first part. The sentences inside the /Themes/default/languages/Modifications.whatever_language_it_is.php which control all the sentences inside the "Admin" => "MOD httpBL" => "Configuration", "Logs", etc.

As I said, only admins can see this, so it will help any French admin who want to configurate properly this mod but doesn't speak good english, and no, it wasn't translated yet to French, so thanks a lot for the contribution.

The second part, the sentences inside the warning page, had already been translated to French by shaitanfr (see here: http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621 ) so actually French is the first language this mod has been fully translated already.

Thanks again to both of you (shaitanfr and Saint_Frater).

Keep the good work.  ;)
Title: Re: httpBL
Post by: Saint_Frater on August 18, 2010, 06:52:30 AM
no problem

as this mod is very useful, I think it should be usable to everyone, he speaks English or not ...
Title: Re: httpBL
Post by: Trishah on August 18, 2010, 08:33:16 PM
I have a member who wants to login to our forum from work at Yankee Stadium but HoneyPot keeps blocking him.  He can login from from home.  I've read through everything I can find and went to PHP site and tried to find info there about how I can wither whitelist his work IP on there or just for my website but I can't find the answer.  The IP address is:  12.71.69.114

How do I "white list" him?
Title: Re: httpBL
Post by: mjmfighter on August 19, 2010, 09:46:45 AM
Hey,

First off, great mod.  Blocked a couple of spammers already.  but i have a problem with the warning page.  This shows up at the top of the warning page when viewed

array( 'tag' => 'random', 'type' => 'unparsed_content', 'content' => '$1', 'validate' => create_function('&$tag, &$data, $disabled', ' $data = strtr($data, array(\'
\' => \'\')); $data = random_bbcode($data); '), ), array( 'tag' => 'random', 'type' => 'unparsed_equals_content', 'content' => '$1', 'disallow_children' => array('email', 'ftp', 'url', 'iurl'), 'disabled_after' => ' ($1)', 'validate' => create_function('&$tag, &$data, $disabled', ' $data[1] = strtr($data[1], array(\'
\' => \'\')); $data[0] = random_bbcode($data); '), ),


How can i fix this?
Title: Re: httpBL
Post by: snoopy_virtual on August 19, 2010, 09:55:10 AM
Quote from: Trishah on August 18, 2010, 08:33:16 PM
I have a member who wants to login to our forum from work at Yankee Stadium but HoneyPot keeps blocking him.  He can login from from home.  I've read through everything I can find and went to PHP site and tried to find info there about how I can wither whitelist his work IP on there or just for my website but I can't find the answer.  The IP address is:  12.71.69.114

How do I "white list" him?

Hi Trishah,

To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

Normally, every time I need to send them an email, they answer me pretty soon.

Anyway, if you check exactly why this IP is black listed (see here: http://www.projecthoneypot.org/ip_12.71.69.114 ) you will see that somebody has been sending emails selling viagra from that IP, so if this is the address of your friend's work, I will suggest it would be better to inform the guy in charge of computer security there.

I suppose, if that's the IP of Yankee Stadium, they must have somebody responsible for computer security.

It looks like either one of the computers inside the stadium is infected with a trojan sending that emails or one of the workers is using one of the computers to make some extra money.
Title: Re: httpBL
Post by: snoopy_virtual on August 19, 2010, 09:59:02 AM
Quote from: mjmfighter on August 19, 2010, 09:46:45 AM
Hey,

First off, great mod.  Blocked a couple of spammers already.  but i have a problem with the warning page.  This shows up at the top of the warning page when viewed

array( 'tag' => 'random', 'type' => 'unparsed_content', 'content' => '$1', 'validate' => create_function('&$tag, &$data, $disabled', ' $data = strtr($data, array(\'
\' => \'\')); $data = random_bbcode($data); '), ), array( 'tag' => 'random', 'type' => 'unparsed_equals_content', 'content' => '$1', 'disallow_children' => array('email', 'ftp', 'url', 'iurl'), 'disabled_after' => ' ($1)', 'validate' => create_function('&$tag, &$data, $disabled', ' $data[1] = strtr($data[1], array(\'
\' => \'\')); $data[0] = random_bbcode($data); '), ),


How can i fix this?

Hi mjmfighter,

There is nothing inside the warning page I did with any connexion with that array there.

Have you modified the original warning page somehow?

What version of SMF and what version of the mod are you using?

Can you give me a link to your warning page so I can look at it myself?
Title: Re: httpBL
Post by: mjmfighter on August 19, 2010, 12:55:12 PM
i am using SMF 2.0 RC3 and have not modified the page in any way.

here is the link to my warning page http://cnkgaming.com/site/warning.php
Title: Re: httpBL
Post by: snoopy_virtual on August 20, 2010, 09:00:59 AM
Quote from: mjmfighter on August 19, 2010, 12:55:12 PM
i am using SMF 2.0 RC3 and have not modified the page in any way.

here is the link to my warning page http://cnkgaming.com/site/warning.php

I think I have found the problem.

When I tried to see your warning page I saw the error message you said, but you didn't gave me the full message.

Apart from those lines about arrays you were talking about, there is another line more, with the real error message:


<b>Notice</b>:  SSI.php was unable to load a session!
This may cause problems with logout and other functions - please make sure SSI.php is included before
*anything* else in all your scripts! in
<b>/usr/www/*****/public/site/SSI.php</b> on line <b>172</b>


This means your warning page cannot work properly because it cannot find the file SSI.php or because you have a SSI file corrupted.

The file SSI.php is an important part of SMF and it has to be always in the same folder as the index.php of your forum (in your case the folder /usr/www/*****/public/site/ ) and without this file this mod is not going to work properly.

Please make sure you uploaded to your server that file to the proper folder when you were installing SMF. If you didn't (or just in case you uploaded a corrupted one) take a fresh copy of SMF 2.0 RC3 from here: http://download.simplemachines.org/

You will find inside the file SSI.php you need and you will be able to check if you have any other important files missing.

After you do that, check if you can see now your warning page properly and if the mod is working and tell us.

You can check if the mod is working just activating it, waiting a few hours and checking the mod logs. Depending on how many visitors you have, in some forums the mod stop one spammer every 24 hours, but in most forums the mod normally stop one spammer every hour or even every few minutes.
Title: Re: httpBL
Post by: mjmfighter on August 20, 2010, 06:49:00 PM
I have uploaded the default SSI.php file, and the error is still there, but i do not see the code that you saw anymore. 

Edit:
I found the problem, one of the mods installed something wrong into the subs.php file.  all fixed.  thanks for your help
Title: Re: httpBL
Post by: snoopy_virtual on August 21, 2010, 05:46:56 AM
Quote from: mjmfighter on August 20, 2010, 06:49:00 PM
I have uploaded the default SSI.php file, and the error is still there, but i do not see the code that you saw anymore. 

Edit:
I found the problem, one of the mods installed something wrong into the subs.php file.  all fixed.  thanks for your help

Glad to hear it.

Let me know if you get any more problems.  ;)
Title: Re: httpBL
Post by: allotments4all on August 29, 2010, 07:35:13 AM
Hi,

Bit of a puzzler this, hopefully easily cleared up.

Installed the mod yesterday, all looks good apart from one thing.

I've set the 'Threat level considered bad' to 10, and checked in the db and it has been set, but I'm still getting entries like these on the Spammers log

Today at 12:16:44 78.147.8.138 3 38 Yes

the threat level of this entry is 3.

Is this users / IP blocked or not?

Thanks

Dan
Title: Re: httpBL
Post by: snoopy_virtual on August 30, 2010, 08:42:44 AM
Quote from: allotments4all on August 29, 2010, 07:35:13 AM
Hi,

Bit of a puzzler this, hopefully easily cleared up.

Installed the mod yesterday, all looks good apart from one thing.

I've set the 'Threat level considered bad' to 10, and checked in the db and it has been set, but I'm still getting entries like these on the Spammers log

Today at 12:16:44 78.147.8.138 3 38 Yes

the threat level of this entry is 3.

Is this users / IP blocked or not?

Thanks

Dan

No, that IP has not been blocked.

The log writes down every IP inside Honeypot's database. If they are blocked or not depends on the level you set in your configuration, but you can see in your log all of them, so you can decide if you are letting pass too many or blocking too many.

Anyway, I just realized I have a mistake here:

In this case, if you see the "extra info" you will see it says "0 answers in the captcha", and it should say instead: "Threat level too low. Didn't see the captcha" or something like that.

My mistake, because when I was building the logs I have always the 'Threat level considered bad' down to 1 so I forgot to consider this possibility.

I have put this in my list of "bugs to sort in future versions" (whenever I have time to do another version).

Thanks for pointing out this bug.

It's not a serious bug, because the mod is working as expected, but the log is not too clear in these cases and it can lead people to confusion.
Title: Re: httpBL
Post by: thing2 on September 01, 2010, 05:16:35 PM
I've had the mod loaded for about a month now but have noticed that its blocking valid members who just happen to be using an IP assigned to them from a range.  Is there anyway of the mod checking to see that they are already a valid member who just happen to have been assigned a dodgy IP, if not valid then send them off to the warning page?

Also the valid members who have been caught are saying that they are entering the information required but then nothing happens for them.  I've checked our email and nothing has been coming thru to allow us to allow them access.  Are we missing something?  I've read the instructions and couldn't see anything there to help me with this.

And last question.  We have a member who uses a dongle on her laptop when she's at home and this is not letting her in at all.  If there was a way of adding an IP in that you know is ok, because I'm sure that the dongle would have a static IP

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on September 02, 2010, 08:25:44 AM
Quote from: thing2 on September 01, 2010, 05:16:35 PM
I've had the mod loaded for about a month now but have noticed that its blocking valid members who just happen to be using an IP assigned to them from a range.  Is there anyway of the mod checking to see that they are already a valid member who just happen to have been assigned a dodgy IP, if not valid then send them off to the warning page?

We have discussed this a few times and I already added it long ago to our list of "Things to do in the near future":

(http://www.snoopyvirtualstudio.com/descargas/MOD-httpBL/road_map.jpg)
http://custom.simplemachines.org/mods/index.php?mod=2155#post_roadmap (http://custom.simplemachines.org/mods/index.php?mod=2155#post_roadmap)

So this feature will be available on the next version of the mod. (Whenever I have time to finish it).

Just now, unfortunately, there is no way of doing this yet and the only thing you can do (as I have also explained a few times already) is to check your logs to see the threat level these users have and change your configuration accordingly so most of them can access your site.

Check for example the problem shaitanfr had a month ago:

http://www.simplemachines.org/community/index.php?topic=366399.msg2698116#msg2698116

And read all the conversation we had about it, from reply #244 to reply #250.

=========================================================

Quote from: thing2 on September 01, 2010, 05:16:35 PM
Also the valid members who have been caught are saying that they are entering the information required but then nothing happens for them.  I've checked our email and nothing has been coming thru to allow us to allow them access.  Are we missing something?  I've read the instructions and couldn't see anything there to help me with this.

That's not normal. You must have installed it wrong somehow.

I have the mod installed in a few different forums and I check this every now and then and it always works properly for me.

What I do to check it is to force my computer to get a bad IP (one in HoneyPot's database) and visit one of my forums to see what happens.

When I do that, I'm always re-directed to the "warning" page, and when I tell that page that 2 + 2 equals 4 and 3 + 4 equals 7 (or whatever questions I get) I'm always allowed inside the forum no problem.

If you want me to check your forum, contact me through Skype whenever you see I'm online and I will check your installation and your warning page to see why it's not working properly.

I have Skype connected more or less 10 hours every day sorting problems for my customers and I don't mind to stop working for a while to sort a problem somebody have with any of my mods.

And don't worry about money. I only charge the customers. Whenever I sort a problem somebody has with any of my mods I always do it for free.  ;)

=========================================================

Quote from: thing2 on September 01, 2010, 05:16:35 PM
And last question.  We have a member who uses a dongle on her laptop when she's at home and this is not letting her in at all.  If there was a way of adding an IP in that you know is ok, because I'm sure that the dongle would have a static IP

If a laptop have a static IP and this IP is black-listed in HoneyPot's database then you can be 100% sure there is a trojan inside that laptop sending spam (and who knows what else it's doing). (Assuming, of course your friend is not sending herself spam on purpose). So the first thing that laptop owner should do is to clean the laptop.

If she doesn't know how to do that or if she has already tried and she cannot find the trojan she should contact a good specialist to do that. Sometimes the viruses (at least the new ones created lately) are very good at hiding themselves and it's not easy at all to find them even with the best anti-virus and anti-trojan programs in the market.

Of course one of the best specialist about this I know is myself.   8)

Remember what I said a minute ago about me sorting computer problems 10 hours a day? That's one of the main problems I sort every day. Using Skype and TeamViewer I can access any computer in the world and kill all the viruses inside it.

So if your friend doesn't know any other specialist (or if she just want the best) tell her to contact me and I will sort that out.

Of course, as I said before, I charge my customers and this kind of work will fall into that category, so I would need to charge her for my work, but tell her not to worry too much about it though: My fees are pretty cheap. :)

=========================================================

After her laptop is clean, it's very easy to get an IP "white-listed" inside HoneyPot's database and we have discussed it here many times too.

Check for example the instructions I gave a couple of weeks ago to the guy with the computer inside the Yankee Stadium:

http://www.simplemachines.org/community/index.php?topic=366399.msg2751909#msg2751909

But whatever you do, don't try to white-list the IP before that laptop is fully cleaned. If you get that IP white-listed and the trojan is still inside it sending spam, the IP will be black-listed again in a few hours and it will be a lot more difficult to white-list it back again a second time.

(By the way, I wonder what happened with that computer inside Yankee Stadium. After I told them what to do nobody have contacted me back telling me if everything went OK or what.)  >:(

=========================================================

[edited on 5-sep-2010 to correct some spelling mistakes]
Title: Re: httpBL
Post by: Propbndr on September 05, 2010, 06:33:33 AM
I have tried several times to install this mod and keep getting the following error message:

Quote
!!
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

I am using SMF Version 1.1.11, default theme.  Any ideas where to start looking for the cause?
Title: Re: httpBL
Post by: snoopy_virtual on September 05, 2010, 06:48:27 AM
Quote from: Propbndr on September 05, 2010, 06:33:33 AM
I have tried several times to install this mod and keep getting the following error message:

Quote
!!
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

I am using SMF Version 1.1.11, default theme.  Any ideas where to start looking for the cause?

When you get an error message like that one, you also get underneath a list of all the files the package has, telling you which ones are ok and which one is giving you the error.

I need to know exactly which one is the file causing the error to see why you are getting it.
Title: Re: httpBL
Post by: Propbndr on September 05, 2010, 04:27:48 PM
Sorry, did not see the list.  Here it is:

QuoteInstalling this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
2.    Execute Modification    ./Sources/Subs.php    Test successful
3.    Execute Modification    ./index.php    Test successful
4.    Execute Modification    ./Themes/default/index.template.php    Test failed
5.    Execute Modification    ./Themes/default/languages/Modifications.english.php    Test successful
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Test successful
7.    Execute Modification    ./Themes/default/languages/Modifications.english_british.php    Skipping file
8.    Execute Modification    ./Themes/default/languages/Modifications.english_british-utf8.php    Test successful
9.    Execute Modification    ./Themes/default/languages/Modifications.spanish.php    Skipping file
10.    Execute Modification    ./Themes/default/languages/Modifications.spanish-utf8.php    Skipping file
11.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es.php    Skipping file
12.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es-utf8.php    Test successful
13.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin.php    Skipping file
14.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin-utf8.php    Test successful
15.    Extract File    ./Sources/httpBL_Subs.php    
16.    Extract File    ./Sources/httpBL_Config.php    
17.    Extract File    ./Themes/default/httpBL.template.php    
18.    Extract File    ./Themes/default/httpBL_css.css    
19.    Extract File    ./warning.php    
20.    Execute Code    install_1.php

It appears that the Index.Template.php failed the test, what ever that is.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 07:18:05 AM
I explained inside the tutorial how to do the changes to the file index.template.php but I suppose it wasn't very clear.

The quickest way to sort this would be if I see your index.template.php myself.

Look for that file inside your /Themes/default/ folder and send it to me by email:

info [at] snoopyvirtualstudio [dot] com

I will check it to see why it's giving you error and I will sort it.
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 07:47:47 AM
Sent index.template.php to you via email.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 09:10:32 AM
I see the error.

You have installed "Simple Portal", and the way I have done the mod, it's not compatible with Simple Portal.

Sorry, my mistake. I have already write it down in my list of changes I need to do in the next version so this mod will be compatible with Simple Portal as soon as I finish the next version, because there are a lot of people using it. It's estrange though nobody told me before about it.

In the mean time it's very easy to make them compatibles. You just need to edit manually the file index.template.php and then ignore the error message telling you the test failed when trying to change that file.

=====================================

To edit that file manually you need to do 2 different changes.

Inside the tutorial I only explained the first one because it's the only important one and I can see you have already done that change yourself.

The second change is not so important, because it's only something "aesthetic" and it only affects the look of the mod, but not the way it works.

I didn't talked too much about this second change inside the tutorial because, before I had the tutorial finished, I started doing a new version for the mod and I thought it would be better to finish first the new version and then finish the tutorial with the new things in it.

Anyway, with all the problems I had lately in my personal life, it seems this new version is going to take me longer than I thought, so I'm going to explain it here just in case anybody has the same problem:

This second change needed is not too complicated. You just need to look (inside the file index.template.php) for the function:


function template_menu()


Inside that function look for the lines:


// Work out where we currently are.
$current_action = 'home';


And underneath them add these 2 lines:


if ($context['current_action'] == 'httpBL')
$current_action = 'admin';


The problem is, when you install Simple Portal it changes the lines saying:


// Work out where we currently are.
$current_action = 'home';


To:


// Work out where we currently are.
global $modSettings;
$current_action = $modSettings['sp_portal_mode'] == 3 && empty($context['standalone']) && empty($context['disable_sp']) ? 'forum' : 'home';


So my mod cannot find the original lines and give you the error.

The solution is very easy. Just add my 2 lines somewhere underneath the lines you have just now but before the function finish.

For example, a good place will be to look for these other lines:


// Are we using right-to-left orientation?
if ($context['right_to_left'])
{
$first = 'last';
$last = 'first';
}
else
{
$first = 'first';
$last = 'last';
}


And write my 2 lines just above these ones.

As you can see I have already done myself this change in your file and I have sent it back to you by email.

=====================================

Once you have the file index.template.php edited manually, upload it back to your forum and try to install the mod again.

You will get again the error telling you the installation script cannot do the changes required to the file index.template.php, because they have been done manually, but (if you don't see any more errors and this is the only one) just ignore it and continue with the installation.

After you finish with the installation check if everything is working as expected and let me know either if everything it's OK or if it isn't.
Title: Re: httpBL
Post by: shaitanfr on September 06, 2010, 09:16:25 AM
Quote from: snoopy_virtual on September 06, 2010, 09:10:32 AM
Sorry, my mistake. I have already write it down in my list of changes I need to do in the next version so this mod will be compatible with Simple Portal as soon as I finish the next version, because there are a lot of people using it. It's estrange though nobody told me before about it.


I use SP but even if I do not remember, I have certainly done manually install .....
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 09:35:08 AM
THANK YOU SNOOPY!  I uploaded the index file.  The mod installed just as you described, no errors seen after install.  I hope it reduces the number of bogus registrations to my forum.  Thanks for the really fast response.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 09:40:40 AM
Quote from: shaitanfr on September 06, 2010, 09:16:25 AM
I use SP but even if I do not remember, I have certainly done manually install .....

Doing the installation manually they are perfectly compatibles.

The error only appears when you try to install the mod automatically, and this is what I need to change, because for most people it's always better (and easier) to install the mod using the "Packages Manager", and not everybody knows enough code to edit this kind of files manually.

Quote from: Propbndr on September 06, 2010, 09:35:08 AM
THANK YOU SNOOPY!  I uploaded the index file.  The mod installed just as you described, no errors seen after install.  I hope it reduces the number of bogus registrations to my forum.  Thanks for the really fast response.

Thank you for telling me about this bug. If you hadn't tell me I wouldn't have known I needed to sort it.

And yes, it reduces the number of bogus registrations considerably, but anyway it's better if you install as well my other mod StopSpammer:

http://custom.simplemachines.org/mods/index.php?mod=1547

With both mods installed you will see a big difference.
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 10:26:39 AM
SMF was installed by my ISP so I had nothing to do with its setup or location.  I installed simple portal as a easy way of giving my site a non-forum style portal.   I installed Stop Spammer before I tried to install httpbl.  It installed without any problems.  Thank you again.   :)

DEATH TO ALL SPAMMERS!  >:(
Title: Re: httpBL
Post by: Vandaahl on September 06, 2010, 07:18:42 PM
I have a problem with warning.php on my SMF 2 RC3 install. When I open warning.php all I see is a blank page, so there's something going wrong there. The file is in the root of my forum, along with SSI.php. The httpBL mod seems to be working fine otherwise, but I can't open warning.php. What could be wrong? I tried replacing it with a fresh copy of the file, but that didn't work...
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 08:53:13 PM
Quote from: Vandaahl on September 06, 2010, 07:18:42 PM
I have a problem with warning.php on my SMF 2 RC3 install. When I open warning.php all I see is a blank page, so there's something going wrong there. The file is in the root of my forum, along with SSI.php. The httpBL mod seems to be working fine otherwise, but I can't open warning.php. What could be wrong? I tried replacing it with a fresh copy of the file, but that didn't work...

Even if the mod seems to be working fine we should try to sort this problem, because any human visitor (no spammer) with a bad IP will be redirected to that page and will see just a blank page with no information at all and won't know what to do.

I have been checking your site and I can see you have a lot of mods installed in it. I don't know if any of them could be interacting with this one.

Anyway it's the first time I see this thing happening (a blank page when trying to see the warning page), so just now I have no idea if the error can be caused by any of the other mods you have or if it may be because something else.

I will continue thinking about it to see if I get any ideas about what can be happening, but I think it would be a lot faster if you contact me through Skype so we can talk about it and sort it together.
Title: Re: httpBL
Post by: Wizzlefits on September 07, 2010, 01:16:59 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php

  error_reporting(E_ALL);


it should look like this...


<?php
  error_reporting
(E_ALL); 
/**********************************************************************************
* warning.php 

Now call the page in your browser, it "should" show you an error.  Should I say!
If it still shows a blank page then it's down to the the "echo" trick.
Might be wrong, but I really think Snoopy is correct that one of your mods is effecting it. Might even be one that was uninstalled and left behind a line or two.

@Snoopy
warning.php gives me this error... 2 different sites, totally different mods.
Undefined index:  response in /warning.php on line 128
Which is..
$response = $_SESSION['response'];
Remark it out... no errors... but......?

Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 06:33:13 AM
Quote from: Wizzlefits on September 07, 2010, 01:16:59 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php

  error_reporting(E_ALL);


it should look like this...


<?php
  error_reporting
(E_ALL); 
/**********************************************************************************
* warning.php 

Now call the page in your browser, it "should" show you an error.  Should I say!
If it still shows a blank page then it's down to the the "echo" trick.
Might be wrong, but I really think Snoopy is correct that one of your mods is effecting it. Might even be one that was uninstalled and left behind a line or two.

error_reporting(E_ALL); doesn't show any errors unfortunately.

I just tried the echo trick (good idea!), and the script stops right after it loads SSI.php. I tried a vanilla copy of SSI (I have a small modification in my SSI), but it did not solve the problem.

snoopy_virtual, I sent you a personal message btw.
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 06:38:23 AM
Quote from: Wizzlefits on September 07, 2010, 01:16:59 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php

  error_reporting(E_ALL);


etc...

Wizzlefits is right. That's one of the first things I want to do as soon as Vandaahl contact me, so we can have an idea about where is the error. Anyway, I would like to look first (using phpinfo) inside the server properties to see what else (apart from the error_reporting) has been turn off in that server and how is everything in there.

The possibilities are too many (for example the state of the globals can also affect the mod, as you are going to understand if you continue reading) and that's why I suggested it was better if we look at them together while talking through Skype.

Even better. We can make an appointment. Look for a day and time suitable for the 3 of us (I mean Vandaahl, Wizzlefits and myself) and connect to Skype the 3 of us at the same time to look at it.

As they say, 6 eyes see more than 2.

And of course, anybody else interested in this problem will be welcome. As far as I know there is no limit on how many people can join a multi-conference in Skype.

Quote from: Wizzlefits on September 07, 2010, 01:16:59 AM
@Snoopy
warning.php gives me this error... 2 different sites, totally different mods.
Undefined index:  response in /warning.php on line 128
Which is..
$response = $_SESSION['response'];
Remark it out... no errors... but......?

shaitanfr already asked that here:

http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621

I gave him a quick answer then:

http://www.simplemachines.org/community/index.php?topic=366399.msg2692346#msg2692346

But I can explain it a little more:

When you are NOT just "visiting" the warning page (to check the design or something like that) but you have been re-directed to the warning page by the mod itself, the process your IP follows is this one:

First of all the mod try to find your IP and it sends it to PHP (Project Honey Pot) to see if there is any information in there, using the function httpBL_dnslookup().

All the "response" from PHP is then stored in an array called $response.

If there is no information in the DB about that IP, $response has only one value: The boolean value "FALSE", but if there is any information there, $response is a big array with a lot of values in it.

Next the mod checks some of the values of $response. If it is FALSE or if the threat level is too low, etc, the mod just doesn't do anything else and SMF continue loading as always.

But if the mod decide your IP is a bad one and re-directs you to the warning page, the first thing it does is to stop loading SMF and start a brand new script, so all the variables SMF had created until that point are lost.

But we don't want to loose all the values in $response, so before re-directing you anywhere, the mod store all those values inside the server using one of the GLOBAL variables available there. In this case inside $_SESSION['response'].

Then, as soon as you are already inside the warning page, the script need to read the values inside the global $_SESSION to restore the array $response and use it.

Maybe now you can understand better what I told shaitanfr here:

Quote from: snoopy_virtual on July 06, 2010, 09:42:58 AM
...

The warning.php page is supposed to work when somebody have a bad IP and is redirected here through the mod.

When that happen they already have a "response" inside their "$_SESSION", so there are no errors. (Shouldn't be at least)

You are getting the errors because you are going to the page warning.php directly to see how it looks like, without passing first through the mod, so you haven't got a "response" inside your "$_SESSION".

The way you are modifying the page warning.php you are not going to have any errors when you visit it to see how it looks like, but (if you are not careful) maybe it's not going to work properly when a spammer arrives to it.

I will sort this in the next version so you never get an error visiting the page warning.php in any case. Either when you are redirected there automatically or when you are just viewing the page to see how it looks like.

In the mean time I think it would be better if you leave the page the way it was and just ignore any errors you may get when you just visit it.
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 06:48:08 AM
Quote from: snoopy_virtual on September 07, 2010, 06:38:23 AM
Quote from: Wizzlefits on September 07, 2010, 01:16:59 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php

  error_reporting(E_ALL);


etc...

Wizzlefits is right. That's one of the first things I want to do as soon as Vandaahl contact me, so we can have an idea about where is the error. Anyway, I would like to look first (using phpinfo) inside the server properties to see what else (apart from the error_reporting) has been turn off in that server and how is everything in there.

The possibilities are too many (for example the state of the globals can also affect the mod, as you are going to understand if you continue reading) and that's why I suggested it was better if we look at them together while talking through Skype.

Even better. We can make an appointment. Look for a day and time suitable for the 3 of us (I mean Vandaahl, Wizzlefits and myself) and connect to Skype the 3 of us at the same time to look at it.

As they say, 6 eyes see more than 2.

And of course, anybody else interested in this problem will be welcome. As far as I know there is no limit on how many people can join a multi-conference in Skype.

I think it is really cool that you offer support like this! Do you have a MSN account? I would prefer that over Skype.

Regarding my warning.php issue: I'm pretty sure it must be a mod conflict, because I have a copy of my site running locally and it does not work there either. But it HAS worked locally, because I remember testing warning.php and it worked fine. But now it doesn't.
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 06:59:00 AM
Quote from: Vandaahl on September 07, 2010, 06:33:13 AM
snoopy_virtual, I sent you a personal message btw.

Message answered.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 09:44:37 AM
Problem half sorted.

We have been (Vandaahl and me) checking his site and we have found the problem was inside his SSI.php file, more or less around line 150:


// Load the current or SSI theme. (just use $ssi_theme = id_theme;)
loadTheme(isset($ssi_theme) ? (int) $ssi_theme : 0);


After adding a lot of "echo" statements and deleting some lines to see what happen, we discovered that as soon as we arrived to that line the page crashed and stopped.

It means any of the mods Vandaahl has in his site has modified the function loadTheme somehow.

We haven't found what mod can be doing this, but as we don't need any SMF theme for the warning page we have changed those lines for these ones:


// Load the current or SSI theme. (just use $ssi_theme = id_theme;)
// Only if we are not coming from the httpBL_warning page
if (!$httpBL_warning) {
    loadTheme(isset($ssi_theme) ? (int) $ssi_theme : 0);
}


And now his warning page works as expected.

Still I would like to know what mod is causing this, to find a more permanent solution and make this mod also compatible with the one causing the problem, but the function loadTheme(), defined inside the file /Sources/Load.php has more than 400 lines, so it would take too long to compare the original one with the modified one to find why it's crashing.

Any ideas?
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 12:01:52 PM
I will start checking which MOD it could be when I have some extra time. I think I can narrow the list of mods down to maybe 2 or 3, because that's how many mods I installed AFTER I installed httpBL (which was working correctly up to that point). I will report back here soon.
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 01:38:22 PM
I made a Dutch translation of Warning.php:

/*******************
*  Set 2 - Dutch *
*******************/
$txt['httpBL_warn_title_2'] = 'Waarschuwing';
$txt['httpBL_warn_head_2'] = '<span class="red">WAARSCHUWING!</span><br />Je computer is mogelijk betrokken bij schadelijk online gedrag.';
$txt['httpBL_warn_infected_2'] = 'Dit komt waarschijnlijk doordat je computer, of een andere computer binnen je lokale netwerk, <b>besmet is met een virus, trojan of worm</b>. Besmette computers worden door criminelen gebruikt, zonder dat hun eigenaar daar erg in heeft, om spam mee te verzenden en websites zoals deze aan te vallen.';
$txt['httpBL_warn_dinamic_IP_2'] = 'Als je gebruik maakt van een dynamisch IP adres (het type dat iedere keer verandert zodra je je computer opnieuw opstart) is het probleem mogelijk dat je een IP gebruikt dat eerder werd toegeschreven aan een besmette computer. Daarom kun je proberen je computer te herstarten en deze website opnieuw te openen om te kijken of je hem nu wel normaal kunt benaderen.';
$txt['httpBL_warn_technician_1_2'] = 'Om te testen of je computer besmet is met een virus en om deze te verwijderen, raden we je aan om zo snel mogelijk een computer technicus te contacteren en hem te vragen om <b>www.projecthoneypot.org</b> te bezoeken en daar je IP adres te controleren:';
$txt['httpBL_warn_technician_2_2'] = 'om te zien zien wat er fout ging.';
$txt['httpBL_warn_info_2'] = 'Voor meer informatie, neem contact op met:';
$txt['httpBL_warn_at_2'] = 'at';
$txt['httpBL_warn_dot_2'] = 'punt';
$txt['httpBL_warn_hurry_2'] = 'Als je nu geen tijd hebt om je computer of IP adres te controleren, of je vermoedt een vals alarm, dan kun je onze website tijdelijk bereiken. We stellen hieronder 2 vragen die spam robots niet kunnen beantwoorden, maar echte bezoekers wel. Vul aub alleen de eerste vraag in om te bewijzen dat je geen robot bent en druk op de <b>"Verstuur"</b> knop:';
$txt['httpBL_warn_send_2'] = 'Verstuur';
$txt['httpBL_warn_blank_2'] = 'Laat dit veld leeg.<br />Typ het antwoord in het bovenstaande invoerveld.';
$txt['httpBL_warn_wrong_answer_2'] = 'Misschien hebben we het verkeerd uitgelegd of het je op de verkeerde knop gedrukt. Hier zie je twee verschillende rijen. In de eerste rij zie je een eenvoudige rekensom, een leeg veld en een "Verstuur" knop. In dat eerste lege veld moet je het antwoord (cijfer) invullen en op de knop klikken. Het veld op de tweede rij moet je leeg laten.';
$txt['httpBL_warn_good_answer_2'] = 'Je antwoord was correct, maar let wel dat een robot, zelfs als hij de vraag niet begrijpt, het juiste antwoord zou kunnen invullen door willekeurige cijfers te proberen. Natuurlijk is het vrijwel onmogelijk om het juiste antwoord 2 keer achter elkaar te raden, dus, als je het niet erg vindt, beantwoordt aub deze laatste vraag en druk nogmaals op de <b>"Verstuur"</b> knop:';
Title: Re: httpBL
Post by: Propbndr on September 08, 2010, 06:40:12 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.
Title: Re: httpBL
Post by: Vandaahl on September 08, 2010, 07:21:25 AM
Quote from: Propbndr on September 08, 2010, 06:40:12 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.

You check the checkbox to enable the mod. Is that really hard to understand?
Title: Re: httpBL
Post by: snoopy_virtual on September 08, 2010, 08:15:00 AM
Quote from: Vandaahl on September 08, 2010, 07:21:25 AM
Quote from: Propbndr on September 08, 2010, 06:40:12 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.

You check the checkbox to enable the mod. Is that really hard to understand?

Yes, with the checkbox checked the mod is ON. With the checkbox unchecked the mod is OFF.

Anyway I suppose Propbndr was not asking something so obvious. His question actually is "How do you tell if httpbl is enabled?"

The problem here is you don't see any difference at all in your forum with the mod enable or disable, so it's not easy to tell if the mod is working properly or not.

Of course there are differences, so you can find out if the mod is working.

There are some ways to check if the mod is working, but the easiest way is to enable the mod, wait a couple of hours and then check the mod's log.

Depending on the traffic your site has and a few other things, the mod stop at least one spammer every hour or every couple of hours.

Of course that's not a fix rule. In some of my forums, some days I see the mod has stopped only 5 spammers, and other days has stopped a hundred, but I haven't seen yet a forum where the mod didn't stop a spammer after 24 hours working.
Title: Re: httpBL
Post by: snoopy_virtual on September 08, 2010, 08:20:56 AM
Quote from: Vandaahl on September 07, 2010, 01:38:22 PM
I made a Dutch translation of Warning.php:

Thanks a lot mate.

Now the mod has already been translated to a few different languages, so I will start a "language pack" as soon as I can so anybody interested can find them all in one place.
Title: Re: httpBL
Post by: Propbndr on September 08, 2010, 10:01:27 AM
You are right Snoopy, I was asking how you could tell if it was enabled.  Some mods enable themselves when they are loaded.  Others, like this one, require action by the admin.

Thanks, Snoopy. 
Title: Re: httpBL
Post by: Vandaahl on September 13, 2010, 08:46:51 AM
I am having an issue with httpBL.template.php. When I view the httpBL Spammers log, and I go to page 2 for example, then the upper part of the admin area disappears, because the page index URL's are not correct. The URL should be index.php?action=admin;area=httpBL;sa=viewlog;sort=date;desc;start=30, but in my case it is index.php?action=httpBL;area=httpBL;sa=viewlog;sort=date;desc;start=30 (I highlighted the wrong part).

It seems like $context['page_index'] is not properly set, is that correct?
Title: Re: httpBL
Post by: snoopy_virtual on September 13, 2010, 09:16:57 AM
Quote from: Vandaahl on September 13, 2010, 08:46:51 AM
I am having an issue with httpBL.template.php. When I view the httpBL Spammers log, and I go to page 2 for example, then the upper part of the admin area disappears, because the page index URL's are not correct. The URL should be index.php?action=admin;area=httpBL;sa=viewlog;sort=date;desc;start=30, but in my case it is index.php?action=httpBL;area=httpBL;sa=viewlog;sort=date;desc;start=30 (I highlighted the wrong part).

It seems like $context['page_index'] is not properly set, is that correct?

The correct link should be:

action=httpBL;sa=viewlog;sort=date;desc;start=30

whithout any area=whatever

The mod httpBL has its own action defined (independent of the rest of actions you can do with SMF) and inside the mod there are only a few sub-actions (sa) defined (config, viewlog, etc) but no areas at all.

If you have anything different there is something wrong somewhere, but I cannot imaging where.

If the problem persists contact me through Skype and we check it out.
Title: Re: httpBL
Post by: Vandaahl on September 13, 2010, 10:18:18 AM
Quote from: snoopy_virtual on September 13, 2010, 09:16:57 AM
The correct link should be:

action=httpBL;sa=viewlog;sort=date;desc;start=30

Oh really? Hmm... The reason I thought action=admin should be there, is because without action=admin a few missing index errors show up in my log when I browse the httpBL spam log.

I will go through the installation files to see if anything went wrong there.
Title: Re: httpBL
Post by: Wizzlefits on September 13, 2010, 08:34:20 PM
Snoopy
SMF 1.1.11 uses...
action=httpBL;sa=yada yada

SMF 2.0 RC3 uses...
action=admin;area=httpBL;sa=yada yada

Vandaahl is using 2.0 RC3  ;)
Title: Re: httpBL
Post by: Wizzlefits on September 13, 2010, 09:03:43 PM
Vandaahl,
Ya know, it looks like "maybe" when the mod installed, something went haywire and it installed the 1.1.11 version. Although I don't think 1.1.11 would even work on 2.0 RC3. But what do I know! lol!

Just tried the URL from 1.1.11 in 2.0 RC3 and it WORKED!
Well, it has the same problem as your having, missing part of the admin page.
Sooooo.....
Make sure that you have /Sources/httpBL_2_Config.php
and not /Sources/httpBL_Config.php


That was a dumb idea! ::)
Unless.... :-X
Title: Re: httpBL
Post by: Vandaahl on September 14, 2010, 07:41:55 AM
Quote from: Wizzlefits on September 13, 2010, 09:03:43 PM
Vandaahl,
Ya know, it looks like "maybe" when the mod installed, something went haywire and it installed the 1.1.11 version. Although I don't think 1.1.11 would even work on 2.0 RC3. But what do I know! lol!

Just tried the URL from 1.1.11 in 2.0 RC3 and it WORKED!
Well, it has the same problem as your having, missing part of the admin page.
Sooooo.....
Make sure that you have /Sources/httpBL_2_Config.php
and not /Sources/httpBL_Config.php


That was a dumb idea! ::)
Unless.... :-X

Hi Wizzlefits, thank you for thinking along here! Yes, I forgot to mention I am using SMF 2, sorry about that. I checked the installation files, and it looks like it installed the correct version of httpBL, including httpBL_2_Config.php.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2010, 09:38:36 AM
Sorry. I thought Vandaahl was using SMF 1.1.11, so yesterday I only checked that part.

I have just checked it on my SMF 2.0 RC3 forum and I have the same problem, so it means there is a bug in that part of the mod.

I will sort that as soon as I can.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2010, 09:57:52 AM
OK, I have sorted it.

I will include this in the next version I'm doing. In the mean time, any of you with SMF 2.0 (RC2 or RC3) download the file attached httpBL_2_Config.zip, unzip it to extract the file httpBL_2_Config.php and put it inside your Sources folder instead of the one you must have there.

That will sort the bug Vandaahl was talking about.
Title: Re: httpBL
Post by: Wizzlefits on September 14, 2010, 10:24:28 AM
Quote from: snoopy_virtual on September 14, 2010, 09:57:52 AM
OK, I have sorted it.

I will include this in the next version I'm doing. In the mean time, any of you with SMF 2.0 (RC2 or RC3) download the file attached httpBL_2_Config.zip, unzip it to extract the file httpBL_2_Config.php and put it inside your Sources folder instead of the one you must have there.

That will sort the bug Vandaahl was talking about.
Dangit Snoopy!
You sorted it to fast! 8)
I was just 8 minutes to slow.  :P

array httpBL_ViewLog()
- show a list of logged access attempts by spammers and internal errors from MOD httpBL.
- is accessed by ?action=admin;area=httpBL;sa=viewlog.
              -  ?action=admin;area=httpBL;sa=viewlogpass.
              -  ?action=admin;area=httpBL;sa=viewlogerror.


Should have waited to get more coffee! LOL!
Title: Re: httpBL
Post by: Vandaahl on September 14, 2010, 10:32:14 AM
Thank you Snoopy, problem solved!
Title: Re: httpBL
Post by: Ryan2320 on September 18, 2010, 12:27:00 PM
Can you replace the captcha and use recaptcha for this mod? or would that be too complicated?

Ryan

Title: Re: httpBL
Post by: snoopy_virtual on September 18, 2010, 03:46:11 PM
Quote from: Ryan2320 on September 18, 2010, 12:27:00 PM
Can you replace the captcha and use recaptcha for this mod? or would that be too complicated?

Ryan

I have explained this many times, but anyway, OK. Here we go again:

It doesn't matter at all what kind of captcha system you use.

I can assure you the kind of robot programs the spammers use now-a-days can pass all of them.

I have seen them working and I have tried all the captchas in the world. None of them can stop a good spammer robot.

With this in mind, when I created this mod I decided it was a lot better to use a captcha system as simple as possible, because I don't want to stop humans. I want to stop only spammer robots.

If I put a very complicated captcha system (as recaptcha for example) that won't stop at all spammer robots. It will only stop humans with no enough knowledge to understand what they are supposed to do.

Instead I decided to work from a completely new point of view.

The way a human being sees the warning page is completely different to the way a robot sees it.

A human being sees an explanation of what is happening, a very simple maths operation (like for example "How much is 2 + 2?") and an empty space with a note saying "Please leave this blank".

But a robot (apart from all that) sees as well a lot more empty spaces (hidden for humans) with no signs at all saying if they are suppose to leave them blank or not.

The main idea here is that it doesn't matter how thick a human can be. All of them know that 2 + 2 equals 4 and all of them understand they are not suppose to write on a blank space with the notice "Please leave this blank".

But a spammer robot, designed to write as many viagra links as possible, cannot resist the temptation to write all over the place.

So far I haven't seen yet a robot understanding the question "How much is 2 + 2?", but even if they understand it and give the right answer, it won't matter too much, because all of them always write something inside the blank space and inside the blank spaces hidden to humans, and that's when the mod catch them.

Of course I suppose some time somebody will invent a new kind of spammer robot clever enough to pass my mod, and then we will need to think on a new system to catch them, but that hasn't happen yet.
Title: Re: httpBL
Post by: Ryan2320 on September 18, 2010, 07:19:43 PM
snoopy I do appreciate your time for repling to my post..

Sorry if was a repeated question..

Thanks so much of this MOD, as it is working great so far..I just had the idea for the recaptcha and don't know that most bots can pass those things... that's interesting..

Thanks again,
Ryan
Title: Re: httpBL
Post by: snoopy_virtual on September 19, 2010, 08:42:13 AM
If you have ever used programs as for example Cryptload or JDownloader you can see some of the techniques used to pass captchas.

Spammer robots use a different approach, even more sophisticated.
Title: Re: httpBL
Post by: Gaming4JC on September 20, 2010, 11:28:37 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(
Title: Re: httpBL
Post by: thing2 on September 21, 2010, 04:45:19 AM
Hi there, sorry for the very, very late reply to your reply.  I'd been away and of course its been quite a mission to get thru everything was I got back.

I've had one of my mods caught and he was kind enough to give me the attached, which shows what he gets when he answers the question:

le to run the query faster! if (empty($db_persist)) $memcached = memcache_connect($server[0], empty($server[1]) ? 11211 : $server[1]); else $memcached = memcache_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]); if (!$memcached && $level > 0) get_memcached_server($level - 1); } ?>
Warning: Cannot modify header information - headers already sent by (output started at /home/dgeek/public_html/forum/Sources/Load.php:2720) in /home/dgeek/public_html/forum/Sources/httpBL_Subs.php on line 125

Warning: Cannot modify header information - headers already sent by (output started at /home/dgeek/public_html/forum/Sources/Load.php:2720) in /home/dgeek/public_html/forum/warning.php on line 190

Now in answer to your questions:

1. I think I installed the mod correctly and have not changed the coding in anyway, even though I've been asked to change it so our normal users would like to see it looking more like the site.

I'm not sure how to get my PC to get a bad IP and my PC at home is a work one that has been setup for me to access the network at work for on-call/after hours emergencies.  I do have access to Skype but only on my phone, so if you want that info I'll PM it to you and we can go thru all the settings, setup, etc.

2. Seems the issue with the Dongle user has cleared itself up i.e. hasn't had any bad activity in the past 60 days.

And lastly, this mod has been a godsend.  Its not picking up all but its keeping probably the worst of them at bay which has made our Admin lives a lot easier.

Thanks

Thing2
Title: Re: httpBL
Post by: Vandaahl on September 21, 2010, 08:19:15 AM
Quote from: Gaming4JC on September 20, 2010, 11:28:37 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 09:33:57 AM
Quote from: Vandaahl on September 21, 2010, 08:19:15 AM
Quote from: Gaming4JC on September 20, 2010, 11:28:37 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.

I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 09:44:46 AM
Quote from: snoopy_virtual on September 21, 2010, 09:33:57 AM
I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Both 1.1.11 and 2.0RC3 will "should" CHMOD the Packages folder and create/delete the temp folder during the install process.
At least they do on my box.

Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 09:58:13 AM
Quote from: thing2 on September 21, 2010, 04:45:19 AM
...
I've had one of my mods caught and he was kind enough to give me the attached, which shows what he gets when he answers the question:

le to run the query faster! if (empty($db_persist)) $memcached = memcache_connect($server[0], empty($server[1]) ? 11211 : $server[1]); else $memcached = memcache_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]); if (!$memcached && $level > 0) get_memcached_server($level - 1); } ?>

etc ..

It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

Quote from: thing2 on September 21, 2010, 04:45:19 AM
...
Now in answer to your questions:

1. I think I installed the mod correctly and have not changed the coding in anyway, even though I've been asked to change it so our normal users would like to see it looking more like the site.
...

I am actually working (at last) on the new version of the mod, and that's one of the things I am doing, so hopefully that will be sorted soon.

Anyway your "normal users" are not supposed to see the warning page never. Ideally only spammer robots are supposed to be redirected to that page.

Quote from: thing2 on September 21, 2010, 04:45:19 AM
...
I'm not sure how to get my PC to get a bad IP and my PC at home is a work one that has been setup ... etc

That's not something easy at all if you are not a developer with some good knowledge of coding.

Quote from: thing2 on September 21, 2010, 04:45:19 AM
...
I do have access to Skype but only on my phone, so if you want that info I'll PM it to you and we can go thru all the settings, setup, etc.

I suggested Skype because calls are free between computers. If you contact me from your phone it will cost you something (I suppose). It would be better if you install Skype on your computer and use the same user and password you already have in your phone.

But I have as well MSN, Yahoo and some other messengers we can use to talk. Just PM me and let me know which one you prefer.
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 10:02:19 AM
Quote from: Wizzlefits on September 21, 2010, 09:44:46 AM
Quote from: snoopy_virtual on September 21, 2010, 09:33:57 AM
I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Both 1.1.11 and 2.0RC3 will "should" CHMOD the Packages folder and create/delete the temp folder during the install process.
At least they do on my box.

Yes, but I wanted to redirect him to the proper support forum were they normally sort this kind of issues, as apparently there are a lot of people with it and it has nothing to do with any mod. Is a SMF general issue.

BTW, Did you read my PM in my forum?
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 11:00:02 AM
Quote from: snoopy_virtual on September 21, 2010, 10:02:19 AM
Yes, but I wanted to redirect him to the proper support forum were they normally sort this kind of issues, as apparently there are a lot of people with it and it has nothing to do with any mod. Is a SMF general issue.
Didn't think it was a mod prob. But... :-X
Quote
BTW, Did you read my PM in my forum?

Responded!  :)
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 01:31:17 PM
Quote from: Wizzlefits on September 21, 2010, 11:00:02 AM
Quote
BTW, Did you read my PM in my forum?

Responded!  :)

Where? I don't see any answers.
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 01:46:19 PM
Quote from: snoopy_virtual on September 21, 2010, 01:31:17 PM
Where? I don't see any answers.

Not looking very hard!  ;)
Title: Re: httpBL
Post by: Sea Mac on September 21, 2010, 02:42:36 PM
Quote from: snoopy_virtual on May 18, 2010, 07:34:04 AM
You don't need to reinstall SMF. Just edit the file giving you the problem:

Navigate to the folder /Themes/default/languages/ and look for the file Modifications.english-utf8.php

At the end of the file you should have exactly this:


// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_config'] = 'MOD httpBL settings';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>[email protected]</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <b>VERY</b> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';
$txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:';
$txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a> or try to find more information <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">reading the tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <b>VERY</b> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <b>"Show extra information"</b>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';
// MOD httpBL END


If you have something different you will get an error.

By the way: Very nice site you have  ;)
Sorry I didn't get back to you on this, Snoopy ....

It turns out that your wonderful MOD had nothing to do with the death of my site. All unbeknown by me I had RUN out of Server Space and only a piece of the MOD got uploaded. I got more space and re-uploaded my WHOLE Forum and restored the database backup. The only thing that got it unscrambled was converting the Forum Database to UTF-8 ... all totally unrelated to your MOD.

So, Months later, let me thank you again for saving a half dozen forums (that I Know of). I installed this MOD (And the Re-Captcha, and Stop Forum Spam MODs) on all my SMF forums and the Spam attacks stopped that very hour!

In 4 months your MOD has stopped 5,210 plus spammers on just my Software Santa (http://softwaresanta.com/) forum alone!

Your MOD is the Key Player in the SMF Protection Scheme I've Published: http://thetruthabouthemp.com/hempity/index.php/topic,383.msg839.html#msg839 (http://thetruthabouthemp.com/hempity/index.php/topic,383.msg839.html#msg839)
And every SMF forum Admin I've told about these MODs has thanked me for the info.

http://softwaresanta.com/smf/index.php?topic=2720.0 (http://softwaresanta.com/smf/index.php?topic=2720.0) I made a point of placing the link to your httpBL MOD near the top ....
8) ;D
Title: Re: httpBL
Post by: Gaming4JC on September 21, 2010, 02:51:43 PM
Quote from: Vandaahl on September 21, 2010, 08:19:15 AM
Quote from: Gaming4JC on September 20, 2010, 11:28:37 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.

Thanks! Worked perfectly. And so simple too... lol  ;D

Edit: Just noticed you had asked my version. My SMF Version is 2.0 RC3, so far no problems. :)
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 08:46:15 PM
Quote from: Sea Mac on September 21, 2010, 02:42:36 PM
Sorry I didn't get back to you on this, Snoopy ....

It turns out that your wonderful MOD had nothing to do with the death of my site.

etc etc

Your MOD is the Key Player in the SMF Protection Scheme I've Published:

etc etc

I made a point of placing the link to your httpBL MOD near the top ....

Sad to hear about the death of the wonderful site you had. I really loved it, because it was about the smoking thingy I normally use to concentrate when I'm designing a web site.  ;D

Anyway I have seen in your new site http://thetruthabouthemp.com you are using the same icon and it's talking about the same subject. The old site is dead. Long life the new one!

I have been reading what you say in there and in the other site http://softwaresanta.com about this mod and I really appreciate it. Not for me, but for the cause. You are spreading the word and helping in the big fight to make internet as free as possible. Open Source is the real thing. We created internet and it's ours. They cannot win. They have money, but we have the code, and we are "Legion". A lot of us. All over the world.

That's the reason why I use and write code for Linux, SMF, etc.

A pity you live so many miles away, but maybe one day I will visit your country or you will visit mine, and then we will have a few beers and smoke some good stuff together.

(http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)   (http://www.snoopyvirtualstudio.com/foro/Smileys/default/weed.gif)

And, of course, any problems with code, just let me know.
Title: Re: httpBL
Post by: Sea Mac on September 22, 2010, 12:19:19 AM
Thank you!

That site didn't die: it just relocated to http://thetruthabouthemp.org/
It is every bit as nice as you remember. The Arcade works, too!  Your MOD has already protected it from thousands of attacks.

And I would be honored to share a pipe of Medicine with you one day. It is only illegal because of Richard Nixon's lies, and his hatred of the people he perceived as using it. He did the Exact Opposite of what his hand picked Shafer Commission (http://thetruthabouthemp.com/hempity/index.php/topic,45.0.html) recommended.

Yes: It is part of my mission to spread the word about Open Source. You do good work coding, and my job is finding the best Open Source (Or FREE) projects and sharing them.

Actually, I made my little list at Software Santa as a reference for ME. I do IT work for self, and many friends, and often need one of these resources or programs - I just couldn't keep track of all of the thousands of useful things without making an ever growing list. I have nothing for sale there, no need to advertise, and definitely don't wish to list malware for my future use.   
8) ;D    And I don't care if other people poke through my personal list and find treasure for themselves.

The MOD you coded here IS Treasure! I'm pleased to Use it AND post about it there. And I get to thank you for it.
Title: Re: httpBL
Post by: thing2 on September 23, 2010, 05:01:17 AM
Quote from: snoopy_virtual on September 21, 2010, 09:58:13 AM
It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

Ooops sorry about that, its RC 2.0 I think - our site's down at the moment due to a hosting issue.

Will get back to you when I try the above and on all the other stuff.

Thanks

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on September 23, 2010, 05:45:16 AM
Quote from: thing2 on September 23, 2010, 05:01:17 AM
Quote from: snoopy_virtual on September 21, 2010, 09:58:13 AM
It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

Ooops sorry about that, its RC 2.0 I think - our site's down at the moment due to a hosting issue.

Will get back to you when I try the above and on all the other stuff.

Thanks

Thing2

In SMF 1.x you need Memcached or any other kind of cache system in your server to be able to activate SMF caching, but in SMF 2.0 you don't need it at all, because SMF 2.0 has its own internal cache system already implemented inside it.

I am actually working on a system to implement the same kind of internal cache system for SMF 1.x (because that's what I use in almost all my forums) but it's not finished yet.

Anyway, as your forum is SMF 2.0 you don't have the same problem I have. The only thing you need to do is activate the internal SMF caching system and deactivate Memcache.

To do that, as soon as your site if on-line again, navigate to:

Admin => Configuration => Server Settings => Caching

Set the "Caching Level" at "Level Caching 1" and leave empty the "Memcache settings".

Or, if you can, contact your host to ask them if Memcached is activated in your server and (if it is) which ones are exactly the Memcache settings you need to use here, but as I said, you don't really need it. The cache will work a little faster with Memcache but only a little more, and I don't think the difference is worth the hassle.
Title: Re: httpBL
Post by: thing2 on September 23, 2010, 11:12:32 PM
The server is back up again, was getting a little worried  :(

I had a look and we are already at Level 1 and the memcache settings are blank.  I did notice in the text above this that right at the bottom in red it says: "SMF has not been able to detect a compatible accelerator on your server."  I wonder if this could be the issue?

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on September 24, 2010, 10:35:57 AM
Quote from: thing2 on September 23, 2010, 11:12:32 PM
The server is back up again, was getting a little worried  :(

I had a look and we are already at Level 1 and the memcache settings are blank.  I did notice in the text above this that right at the bottom in red it says: "SMF has not been able to detect a compatible accelerator on your server."  I wonder if this could be the issue?

Thing2

I don't understand it.

In SMF 1.x you definitely need a compatible accelerator to be able to activate SMF cache, but in SMF 2.0 you don't need it.

At least (as far as I know) you don't need it if you want Level 1

Have you tried to search the SMF 2.0 support forum to see if anybody else has a similar problem? (or to ask them for help with the cache system)

Maybe after all there is something wrong with your SMF installation.
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 04:43:55 AM
MOD httpBL v2.4
============






  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.4
  • Release:
2nd October 2010
  • Languages:
(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2 - RC3

After so many months busy with other things, I had found finally some time to work for a while in this mod.

I have sorted all the bugs we have been talking about lately here in this thread, I have implemented most of the features requested here as well and I have developed some ideas from my own.

The full list of all the changes in this new version is:




Quote
Version 2.4 - 2nd October 2010

  +Added a new system so now you can decide what group of members you don't
want to be scanned never by the mod
  !Sorted the bug in RC3 we talked about in the support forum. (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2783223#msg2783223) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2784316#msg2784316)
  *Small change in the template file to make the mod compatible with SimplePortal
for people using SMF 1.1.11 (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2775518#msg2775518)
  !Sorted a bug inside the logs (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2764797#msg2764797)
  *Changed the design of the page warning.php as requested by giveaway365.com
(here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2525796#msg2525796) and discussed in some other places in the support forum
  !Sorted the bug "Undefined index: response" reported so many
times (for example here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621)
  +Added a system to check if the mod is ON, if it is up-to-date and if the
connexion with HoneyPot's DB is OK
  +Added 2 columns in view-log for "Operative System" and "Browser" using the
Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  +Added OS & Browser Detection to the "Who's Online" page
  +Added a checkbox to the config page to decide if you want to view OS & Browser
data in "Who's Online" page
If you want to see these last 3 features you need either to:

  • Download and install Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  • Download and install my small addon to see OS & Browser in httpBL (http://custom.simplemachines.org/mods/index.php?mod=2155)
  +Added cache values to session so it works if cookies and cache are off
  *Changed completely the system to store and retrieve data from cache and/or session
  +Added a value to the config page to set the amount of minutes to keep the data
in the cache and/or session
  *Replaced my function httpBL_look_for_empty_ip() for the function
httpBL_get_real_ip_address() made by butchs (here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1547#msg1547)
  *Changed 2 lines and added 20 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
unless you are not using the default Theme and you have the file
Who.template.php inside the folder of the particular Theme
you are using
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using

QuoteLegend

oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

There are too many changes to explain all of them here in detail just now, so I suppose it would be better if you read the explanations I wrote already in my own site.

As you know, in my personal forum I have a section for "Programming - Coding", and inside there I have a section for this MOD httpBL: http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0

Inside that section there is a thread called "For Developers Only" where I write always all the changes I do to the mod and also other developers-programmers give me a hand sorting bugs, testing new features, talking about new ideas, etc.

During the last 10 days I have been implementing all the new features inside this new version and I have published in that thread 3 different "developer" versions of this mod, talking about them with Wizzlefits and butchs, testing them, etc.

So it's better if you read the explanations I wrote in that thread for the 3 "developer" versions:


You can also read the rest of the conversation we had there about these new versions. Some parts maybe are too techy, but even if you don't know too much code you can get the idea.

After that, if you have any questions (or if you find a bug) tell us here.

===============

I want also to say to the guys who already had translated this mod to different languages "I'm very sorry about this": I have changed 2 lines and added 20 new ones in the languages files, so now all the translations are not completed.

It's more work for everybody, but I hope you will enjoy the new features and will think that it was worth the effort.  ;)

Cheers (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: EL34xyz on October 02, 2010, 09:31:10 AM
Hi Snoop
I just installed 2.4
I see this error in my forum error log file
I xxx'd out the important info

8: Undefined index: REQUEST_URI
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 721

The mod installed without any errors
It accepted my api key and honey pot page url

At the top of the admin mod page it says this
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 10:22:10 AM
Quote from: EL34xyz on October 02, 2010, 09:31:10 AM
Hi Snoop
I just installed 2.4
I see this error in my forum error log file
I xxx'd out the important info

8: Undefined index: REQUEST_URI
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 721

Interesting...

So it means sometimes in certain circumstances the global $_SERVER['REQUEST_URI'] is not defined. I hadn't seen that before.

Maybe that's why sometimes we get some "unknown" values.

Luckily that bug is easy to sort (yes butchs, before you say anything the answer is obvious: Using your new function httpBL_get_env()) and maybe at the same time it's going to sort most of the "unknown" values (hope).

Anyway, as soon as I published this version I started thinking in a few things I would have liked to add as well to the mod but realized too late.

Now I have the excuse to do a minor update with this bug sorted plus the couple of things I have been thinking about.

Anyway I will wait for a while just in case somebody else find another bug.   8)

Quote from: EL34xyz on October 02, 2010, 09:31:10 AM
The mod installed without any errors
It accepted my api key and honey pot page url

At the top of the admin mod page it says this
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect

Glad to hear it. Now just wait a couple of hours and take a look at the logs. You will see how the mod start catching bad guys pretty soon.   ;D
Title: Re: httpBL
Post by: EL34xyz on October 02, 2010, 03:32:56 PM
cool, thanks
I'll wait for an update on the mod

I hope it is soon because I have to reset the forum error log frequently
Every member is creating another one of the error messages
The forum error log becomes huge in a short time

Since I reset the error log this morning, there are six pages of errors

BTW, If you want me to test a patch before you release a new version, just say so
I can edit some variables or whatever to see if the fix works.
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 04:00:36 PM
Quote from: EL34xyz on October 02, 2010, 03:32:56 PM
BTW, If you want me to test a patch before you release a new version, just say so
I can edit some variables or whatever to see if the fix works.

OK. Try this:

Inside the file httpBL_Subs.php in your Sources folder, around line 721, find this code:


$values['url'] = $_SERVER['REQUEST_URI'];
$values['user_agent'] = $_SERVER['HTTP_USER_AGENT'];


Replace it with:


$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');


I think that should sort tour problem.
Title: Re: httpBL
Post by: butchs on October 02, 2010, 05:11:50 PM
Quote from: snoopy_virtual on October 02, 2010, 10:22:10 AM
Luckily that bug is easy to sort (yes butchs, before you say anything the answer is obvious: Using your new function httpBL_get_env()) and maybe at the same time it's going to sort most of the "unknown" values (hope).

Sorry, I did not know you were going to release it so fast.  I was not done with the IP code and made comments at your site today.  With updates a few min ago.  I think todays post is the best but it may need some sorting and or movement of the REMOTE_ADDR.

My URI code is different.  I take in account the IIS variations.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 12:35:53 AM

Inside the file httpBL_Subs.php in your Sources folder, around line 721,

find this code:
$values['url'] = $_SERVER['REQUEST_URI'];
$values['user_agent'] = $_SERVER['HTTP_USER_AGENT'];

Replace it with:
$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');


Ok snoop
that seems to have worked
The forum error log does not report that error any more

btw, my forum is on a windows server if that makes any difference
Title: Re: httpBL
Post by: butchs on October 03, 2010, 09:10:51 AM
Quote from: EL34 on October 03, 2010, 12:35:53 AM
btw, my forum is on a windows server if that makes any difference

Are you using Internet Information Services (IIS) f/k/a Internet Information Server?  If so, it does make a difference.  I just gave sir snoopy some code that should work for it that he may like to test on your server.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 12:43:12 PM
I am not up on the server tech stuff.

But I have two servers for two different web sites that I rent from a web host
They are not Linux boxes.

Both are Windows servers because I still like to use some of the features of front page extentions for my html editor software, Web expressions 2.

I believe that both servers are both IIS, but how can I tell?
Title: Re: httpBL
Post by: butchs on October 03, 2010, 02:42:40 PM
I am not 100% sure if this test will work or not but here we go...

Take the attached and place it in your root directory.  Run it (ie.  "http://www.yourdomain.com/IIS_test.php").  Copy and paste the text from the top of your screen and post it here.

Do not forget to delete the file afterwards.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 07:05:24 PM
Here is what your php script says when accessed in a browser

QuoteYou have IIS server

script has been deleted
Title: Re: httpBL
Post by: snoopy_virtual on October 03, 2010, 07:26:31 PM
Sorry

I was out for a while because I got a customer.

Luckily (for you, unfortunately for me) I got no more customers now, so I'm back.  ;D

@EL34: Apparently your problem with the error logs is sorted now. Leave this small change I told you for now (so you don't get any more error messages) until we finish the next version.

@butchs: I saw yesterday the things you wrote on my site, but was too busy to study them properly. I'm going to look at them now and will answer you there.
Title: Re: httpBL
Post by: butchs on October 03, 2010, 07:35:52 PM
Quote from: EL34 on October 03, 2010, 07:05:24 PM
QuoteYou have IIS server

Thanks for checking.  That means there is a good chance my code works.  yay!  :)
Title: Re: httpBL
Post by: snoopy_virtual on October 03, 2010, 07:57:58 PM
Quote from: butchs on October 02, 2010, 05:11:50 PM
Sorry, I did not know you were going to release it so fast.  I was not done with the IP code and made comments at your site today. 

I released it before we started talking about IPs, and when I released it I marked the checkbox "Send an email to the people using this mod".

You must have missed it or maybe you turned out the "notification" in your profile.

Title: Re: httpBL
Post by: EL34 on October 03, 2010, 08:45:58 PM
Thanks guys

I am leaving the code that snoop gave me in place for now

There has been no more errors in the forum error log since I changed the code.
Title: Re: httpBL
Post by: EL34 on October 04, 2010, 07:59:41 PM
Snoop,
I am editing the warning.php to only display english only
I am editing all the table and getting rid of the right side of the screen that currently has spanish text.
I noticed that there is a blank.gif inside a <td> </td>in all the tables.

Do I need to leave that gif there or can I get rid of it?
Wanted to check first in case it is important.

Also, just a FYI

Dynamic is spelled with a Y. Just a heads up.
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 09:32:11 AM
Quote from: EL34 on October 04, 2010, 07:59:41 PM
Snoop,
I am editing the warning.php to only display english only
I am editing all the table and getting rid of the right side of the screen that currently has spanish text.
I noticed that there is a blank.gif inside a <td> </td>in all the tables.

Do I need to leave that gif there or can I get rid of it?
Wanted to check first in case it is important.

Also, just a FYI

Dynamic is spelled with a Y. Just a heads up.

You only get English speaking visitors?

On my site I get visitors from all over the world, so I have put there by default the 2 more commonly spoken languages just in case. If anybody arrives to my site and cannot understand any of them, I'm sorry, but that's that languages I speak.

But of course it's up to you if you want to change it.

The <td> in the middle of both languages is there just to separate them, and it has a blank.gif inside with a width of 10 pixels to be sure both languages are properly separated. If you are going to erase one language you can erase that <td> as well.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 09:45:42 AM
Ok thanks, just wanted to check
It seemed strange to see a blank.gif there

QuoteYou only get English speaking visitors?

Most of the spammers that give me grief are Russian or from eastern block countries, not Spain.

And yes I get visitors from all over the world, but the forum is in english.
There's no reason to have Spanish warning messages for french, or vietnamese guys and so they all just deal with english on my forum.

Besides, the warning screen was really crowded trying to lay out tables with side by side languages.
Technically, it would be better if they are human to ask them what languge they prefer to see their warning in and then load a set of variables based on that.

A robot does not care what the language is, so it would only apply to a real human.
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 10:01:58 AM
Quote from: EL34 on October 05, 2010, 09:45:42 AM
Most of the spammers that give me grief are Russian or from eastern block countries, not Spain.

The text in the warning page is not there for the sake of the spammers, but for the real human visitors. It's them who need to understand it.

Quote from: EL34 on October 05, 2010, 09:45:42 AM
Technically, it would be better if they are human to ask them what languge they prefer to see their warning in and then load a set of variables based on that.

I have been thinking about that a lot, but I cannot find a way to do it without adding some links to the warning page.

And remember that if you want your warning page to work properly you cannot have any link at all inside it.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 10:05:57 AM
QuoteThe text in the warning page is not there for the sake of the spammers, but for the real human visitors.
It's them who need to understand it

Yes, of course
But what about mongolian's, they probably don't need to see Spanish warnings.  ;D
Title: Re: httpBL
Post by: butchs on October 05, 2010, 10:56:44 AM
You can have one language displayed.

Here is one way:
SMFs built in loadLanguage() (http://support.simplemachines.org/function_db/index.php?action=view_function;id=63) function can take care of that for members who are logged in.  Possibly others?  If you have two language files (english and spanish) they should load the correct language on a multi-language forum.

Something more elaborate:
If you want to do it for all languages you can inspect the incoming browser headers via the "Accept-Language" field for the visitors language and direct them to the correct language file via loadLanguage().

Any volunteers for the second one?  O:)
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 11:04:47 AM
Any human trying to visit my forum has to be able to read english because all the post are in english so non english warnings make no sense for my needs.
If they can't read english, they would not be able to read any of the post on my forum, so why bother.

Of course, having multiple language warnings may be of interest to other forum admins

Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:11:51 AM
Quote from: butchs on October 05, 2010, 10:56:44 AM
You can have one language displayed.

Here is one way:
SMFs built in loadLanguage() (http://support.simplemachines.org/function_db/index.php?action=view_function;id=63) function can take care of that for members who are logged in.  Possibly others?  If you have two language files (english and spanish) they should load the correct language on a multi-language forum.

Something more elaborate:
If you want to do it for all languages you can inspect the incoming browser headers via the "Accept-Language" field for the visitors language and direct them to the correct language file via loadLanguage().

Any volunteers for the second one?  O:)

For members already logged in the more normal situation is you have already given them permission to over-pass the mod, so they won't never see the warning page anyway.

And about the second solution I'm not very happy with it because it can lead to ridiculous situations.

For example all my browsers always send in the headers that info saying my language is Spanish and sometimes if I want to see an English page I cannot do it if they are using this system.

For example Microsoft uses this system, so if I want to see any page inside www.microsoft.com I always see it in Spanish, doesn't matter what I try, and usually the translation is wrong, but I cannot see the original file in English unless I open it with a browser in a computer done completely in English.

Completely nuts. I have even sent an email to Microsoft telling them, but got no answer.
Title: Re: httpBL
Post by: butchs on October 05, 2010, 11:14:43 AM
MS will not bother with us low life's.  But you can one up MS by adding an button in the warning message to see the default ie English?
8)
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:17:03 AM
Quote from: butchs on October 05, 2010, 11:14:43 AM
MS will not bother with us low life's.  But you can one up MS by adding an button in the warning message to see the default ie English?
8)

To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:19:04 AM
Quote from: EL34 on October 05, 2010, 11:04:47 AM
Any human trying to visit my forum has to be able to read english because all the post are in english so non english warnings make no sense for my needs.
If they can't read english, they would not be able to read any of the post on my forum, so why bother.

Of course, having multiple language warnings may be of interest to other forum admins

That's why I said it's up to you.

Even better, in the next version I can add a variable inside the warning page in case you want to display 2 languages or just one.

That will be more general and will fit most forum admins.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 11:26:17 AM
yes, ok, that sounds good
thanks
Title: Re: httpBL
Post by: butchs on October 05, 2010, 12:04:53 PM
Quote from: snoopy_virtual on October 05, 2010, 11:17:03 AM
To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page

Why not?  There is a honeypot link?

Besides it can be encoded in the page.
Title: Re: httpBL
Post by: snoopy_virtual on October 07, 2010, 09:08:12 AM
Quote from: butchs on October 05, 2010, 12:04:53 PM
Quote from: snoopy_virtual on October 05, 2010, 11:17:03 AM
To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page

Why not?  There is a honeypot link?

Besides it can be encoded in the page.

OMG butchs. After all this time you still don't know how my warning page works?
Title: Re: httpBL
Post by: butchs on October 07, 2010, 08:31:16 PM
I know, just have another point of view.
O:)
Title: Re: httpBL Upgrade fails
Post by: Sea Mac on October 11, 2010, 01:36:22 AM
I tried updating all 4 of my SMF 1.1.11 forums to the latest version of httpBL and discovered that this MOD is not compatible with the SMF Arcade MOD ....  :(

http://www.smfarcade.info/ http://about.smfarcade.info/

I get this Error:  Type            Action                                             Description
1.     Execute Modification     ./Sources/ManagePermissions.php     Test failed

The 2 Forums that DID NOT have The Arcade MOD Installed upgraded to the latest version of httpBL without problem. This MOD is compatible with the AVEA 1.3a MOD / the Hide Info Center MOD / and the Re-Captcha MODs. The Arcade MOD was the only deal breaker. 

I also found a 1 word Typo in the English part of the Warning page.

Thanks again for all your good work! This is one of the more important SMF MODs! (http://softwaresanta.com/shsmf/Smileys/classic/bowing.gif)
Title: Re: httpBL Upgrade fails
Post by: snoopy_virtual on October 11, 2010, 07:53:28 AM
Quote from: Sea Mac on October 11, 2010, 01:36:22 AM
I tried updating all 4 of my SMF 1.1.11 forums to the latest version of httpBL and discovered that this MOD is not compatible with the SMF Arcade MOD ....  :(


Try installing the file attached. It's exactly MOD httpBL 2.4 but with a small modification to make it compatible with SMF Arcade 2.0.18 (the latest version they have)

If it give you no problem tell me and I will add also that modification to future versions.

You will have a small problem here though. If you ever need to upgrade SMF Arcade you will need to remember to do this:


Always in that order.

Quote from: Sea Mac on October 11, 2010, 01:36:22 AM

I also found a 1 word Typo in the English part of the Warning page.


Cannot see it. Tell me where it is so I can correct it as well.

Thanks (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: EL34 on October 11, 2010, 08:58:45 AM
He is probably talking about the word "Dynamic" as I mentioned in one of my post above

You have it spelled dinamic in the text portion and also your variables are spelled dinamic
Of course the variable names are fine, they still work spelled any way you like
Title: Re: httpBL
Post by: snoopy_virtual on October 11, 2010, 12:46:38 PM
I see.

Yes, I remember you saying something about "dynamic" before, but I was too concentrated on something else and forgot completely.

OK, I will correct that in next version. Thanks.  ;)
Title: Re: httpBL
Post by: Sea Mac on October 11, 2010, 04:30:25 PM
That fixed it .... I think.
I Am using Arcade Version 2.0.16 instead of 2.0.18 - but it installed OK!
Thank You VERY Much!

But I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....

I cleared ALL the log entries after I installed the new version (in 2 forums - yesterday - and 2 more just now) and No Spammers have been caught since then in the Forums with a Custom Theme.

Why are my logs staying empty when I WAS getting hundreds of entries, per day, before this?

I worry this new version is not working in custom themed forums. 2.4 is Installed on all 4 forums now and no spammers are being blocked in the forums with a non-default theme now. (Or at least they are not being logged.)


Did I need to modify anything in my Custom Themed Forums to get the log entries back?
Title: Re: httpBL 2.4 and Who.template.php
Post by: Sea Mac on October 11, 2010, 09:36:38 PM
snoopy, is it your MOD, or the OS_Browser_Detection MOD, (Or both), that are incompatible with that old Who.template.php MOD? http://www.simplemachines.org/community/index.php?topic=19243.0

I still miss having each page sorted into Users/Guests/Spiders categories even though it is really cool to be able to see the OS & User Agent displayed for each IP ....

And I've only dabbled in php so far .... But I think they could just be interleaved or something ...

Thank You!
Title: Re: httpBL
Post by: Sea Mac on October 12, 2010, 04:10:27 AM
Quote from: Sea Mac on October 11, 2010, 04:30:25 PM
That fixed it .... I think.
I Am using Arcade Version 2.0.16 instead of 2.0.18 - but it installed OK!
Thank You VERY Much!

But I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....

I cleared ALL the log entries after I installed the new version (in 2 forums - yesterday - and 2 more just now) and No Spammers have been caught since then in the Forums with a Custom Theme.

Why are my logs staying empty when I WAS getting hundreds of entries, per day, before this?

I worry this new version is not working in custom themed forums. 2.4 is Installed on all 4 forums now and no spammers are being blocked in the forums with a non-default theme now. (Or at least they are not being logged.)


Did I need to modify anything in my Custom Themed Forums to get the log entries back?
Wait ....I think it is working again. I took a bunch of screen shots of confused Package Manager behavior ....

but now at least one of those forums has log entries again.

Maybe I am barking at ghosts ....
Title: Re: httpBL 2.4 and Who.template.php
Post by: snoopy_virtual on October 12, 2010, 12:03:22 PM
Quote from: Sea Mac on October 11, 2010, 09:36:38 PM
snoopy, is it your MOD, or the OS_Browser_Detection MOD, (Or both), that are incompatible with that old Who.template.php MOD?

I also have the page Who.template.php changed to see Users/Guests/Spiders separately in some of my forums so I know what are you talking about.

I cannot understand exactly where is the problem, because both mods OS_Browser_Detection and httpBL are compatible with the page Who.template.php I am using.

Maybe the problem is you have the file Who.template.php inside the folder of the particular Theme you are using. As you know, every time you install a mod all the modifications are done only to the files inside the default Theme folder. Every file inside your particular Theme folder need to be modified by hand.

If that's the case you need to modify manually the file Who.template.php inside the folder of your particular Theme.

Apparently you are using the old one did by Owdy ages ago. As far as I know, modd httpBL is also compatible with that old version, but there is an updated one you can find here:

http://www.simplemachines.org/community/index.php?topic=401980.0

If you are using this last one, I have attached here exactly the same file but with the modifications needed to see OS & Browser if you are using my mod. (Plus 3 more spiders added by me).

Anyway, if you are using any other Who.template.php the 2 modifications my mod try to do are these ones:

Almost at the top of the page, just after the file have opened the function template_main() and declared a few globals, you need to add:



// Include OS & Browser Detection if it's installed and enabled
global $sourcedir, $modSettings;
$os_browser_exists = FALSE;
if (file_exists($sourcedir.'/os_browser_detection.php') && $modSettings['httpBL_view_os_whosonline'])
{
require_once($sourcedir . '/os_browser_detection.php');
$os_browser_exists = TRUE;
}



And then later down the file you will find a place were the first <td> (where you print the name of the user) closes and the second <td> (where you print the time) start:


echo '
</td>
<td nowrap="nowrap">', $member['time'], '</td>


Just before this echo statement you need to add:



// OS & Browser Detection
// Parse the user agent only if OS & Browser Detection is installed and enabled
if ($os_browser_exists)
$os_browser_detected = parse_user_agent($member['query']['USER_AGENT']);
// Display only if allowed
if (allowedTo('view_os_browser') && $os_browser_exists){
if ($os_browser_detected['system'] || $os_browser_detected['browser']){ //Do not display if both are unknown
echo '<br />';
if ($os_browser_detected['system']) {
echo '
<b>', $txt['OS_Browser_OS'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['system_icon'], '.png" align="top" alt="', $os_browser_detected['system'], '" /> ', $os_browser_detected['system'], '<br />';
} else {
echo '
<b>', $txt['OS_Browser_OS'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'], '<br />';
}

if ($os_browser_detected['browser']) {
echo '
<b>', $txt['OS_Browser_Browser'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['browser_icon'], '.png" align="top" alt="', $os_browser_detected['browser'], '" /> ', $os_browser_detected['browser'];
} else {
echo '
<b>', $txt['OS_Browser_Browser'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'];
}

}
}
                   


As I said, if you are using the latest Who.template.php done by MoreBloodWine in the link I gave you, you only need to replace it with the file I have attached here.
Title: Re: httpBL
Post by: snoopy_virtual on October 12, 2010, 01:15:58 PM
Quote from: Sea Mac on October 12, 2010, 04:10:27 AM
Quote from: Sea Mac on October 11, 2010, 04:30:25 PM
I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....
etc...

Wait ....I think it is working again.
etc...


I have just now 7 forums. 6 of them with SMF 1.1.11 and 1 with 2.0 RC3

All the 7 forums use a custom Theme. None of them use the default and the mod is working fine in them, so that's not the problem.

There is a big difference between the old version 2.3.7 and the new version 2.4

In the old version, every time you had a visitor, the mod checked their IP in the HoneyPot's database and (if it was a bad one) added it to the logs.

The problem is sometimes robots try to open a lot of your pages in a very quick row. That's very difficult for a human, but very easy for a robot. So sometimes you had in your logs a lot of entries, all of them from the same IP, with only a few seconds (or fractions of a second) between them.

That was not happening for the people with cache activated, because every time the mod detected a bad IP, apart from writing it in the logs, it also wrote the data in the cache. So if the same IP tried to open again another of your pages a few seconds later, the mod, instead of checking the data in the DB, checked it in the cache.

The problem is, every time the mod needs to check HoneyPot's DB, it needs to open a connexion from your server to HoneyPot's server, and if you need to do that too often it will slow down your forum too much.

In the new version 2.4 I have added a system to emulate the cache for everybody (using the session as well) so now it doesn't matter if you have cache activated or not.

If a robot try to open 100 of your pages in a quick row, the mod will only check the DB and write the data in the logs the first time.

The next 99 times the robot will be redirected to the warning page without needing to check the DB (because the data is already inside the cache and/or session). So now it works a lot faster and it's not slowing down the forums with a lot of visitors per second.

I have added in the mod's config page also a place so you can control how many minutes you want to keep the data in the cache and/or session. The default is 5 minutes. I'm not sure yet if that's the best number, but I think is a good one.

If you have erased all the entries you had in the logs before, we cannot check if that's what it's happening, but maybe you were having 100 entries a day but it was really only 1 spammer visiting 100 of your pages in a row.

Anyway you may have seen I have added also in this new version 2.4 a system to check if the mod is working properly. It is at the top of the mod's config page. If it is green every thing is OK. If it is red it will tell you what is the problem.
Title: Re: httpBL Who Template - Works perfectly!
Post by: Sea Mac on October 14, 2010, 05:32:17 PM
Thanks snoopy_virtual!

All 4 of my forums are working perfectly now with these 2 custom versions! I have one forum with Only 2 MODS (OS & Browser Detect and httpBL), and one that is all tricked out with lots of MODS, and those files on this and the previous page work perfectly in all of them!

I LOVE the look of my Who's online page (http://softwaresanta.com/smf/index.php?action=who)! It's eye candy now - That's really Cool!
(I'm sure that hurts a few people's eyes  8) )

Many, many thanks! (http://softwaresanta.com/shsmf/Smileys/classic/bowing.gif) (http://softwaresanta.com/shsmf/Smileys/classic/beating.gif)  (http://softwaresanta.com/shsmf/Smileys/classic/beating.gif)  (http://softwaresanta.com/shsmf/Smileys/classic/beating.gif)
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:15:05 PM
I have tried to install this mod on a 1.1.9 version of SMF, but seem to have a problem.  Though it seem to install ok, when it transfers you to the configuration page at the end of the install, all of the text seems to disappear.  The form fields are there, some being populated with information, but none of the labels telling what the field represents are visable.  Also, even though there is a space under Members for the link to the configuration page, there is nothing there text wise either.  And last but not least, the option bar above the form has the tabs visible, but no text or link in them either.  It's like the language file is missing or something that fills these fields.  I haven't a clue where to look or what to do.  I tried uninstalling and re-installing the mode, both appearing to work fine, but still no text.  I've attached an image showing what is there or should I say not there. ;D

Thanks for any advice

Jack

Update: I've uninstalled the mod again, upgraded to 1.1.11 and re-installed the mod, but have the same problem.
Title: Re: httpBL
Post by: Sea Mac on October 22, 2010, 06:31:21 PM
I had a crazy problem one time with missing text. I tried everything ....

I backed up my database first. Then I clicked the button in the Admin panel ---> Forum Maintenance ---->
Convert Forum and Database to UTF-8 and THAT Finally fixed it.

One Question: Is your forum/database already converted to UTF-8 or not?
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:35:13 PM
I'll have to look, I don't have a clue if I converted it or not.  I'll get back as soon as I check.

Jack
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:42:05 PM
Ok, I backed up my database, did the conversion all looks fine on the website.  So I uninstalled the mod again, and I reinstalled the mod again and still have the same problem, but thanks for the suggestion.

Any other thoughts?

Jack
Title: Re: httpBL
Post by: Sea Mac on October 22, 2010, 07:31:59 PM
How does the Default Theme look? Is It OK?

I suspect the problem is in your theme and not this MOD ...  :-X

I also suggest you download the SMF 1.1.11 Update package (Backing everything up, again, of course) and upload any changed files. Then run the update.php script.

I had crazy problems with a forum I installed 3 years ago. I faithfully installed each security/version update that appeared in the Admin Panel over the years. The crazy problems continued until one day an error popped up stating that I was using a 1.1.3 database (It was version 1.1.7 by then - years later) and said I needed to update the Database to the latest version!

Well, installing a version update from the admin center link DOES NOT Update the database! I still had the same version database that the forum install script had put in back in 2006! Yipe! Anyone that just updated one or more versions from the Admin Center link/Package Manager (the "2 Click" forum upgrade) SHOULD download the UPDATE 1.1.11 Package and FTP upload all the files in it to your forum. (Close the forum for maintenance first.)

Run the Update.php script to Update your forum database to database version 1.1.11 (Update your forum too.). Keeping up with version updates is Critical! But you need to update your database, too, and only the update.php script does that!

(I need to do that myself, I just realized ... Nuts! FOUR TIMES ....  :o )
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 08:32:12 PM
OK, when I switched to the default theme, all was well and I was able to complete the configuration and believe it is running now.  But, when I switch back to my custom theme, I have the same problem in the admin section.  I have done all upgrades, including running the upgrade.php, updating all the files from the upgrade package, yada, yada, yada.  The only thing I haven't done yet is to update the index.template.php file with the newest version adding my custom changes to it.  Is there any other template file that might need looking at?

Jack
Title: Re: httpBL
Post by: jrcarr on October 23, 2010, 12:28:04 AM
Ok, I got it working correctly.  It seems that I must have missed something in the tutorial about the language/modification.template.php needs to be moved to the language folder in the custom theme.

Thanks for all suggestions and help.

Jack
Title: Re: httpBL
Post by: snoopy_virtual on October 23, 2010, 04:18:43 AM
Hi Jack,

Sorry I didn't see you problem earlier. By the time I have seen it it seems it's already sorted.

This mod should work properly with SMF 1.1.9 but I have not tried it, so I'm not fully sure.

Anyway of course (as Sea Mac suggested) the best thing was to update SMF to the latest version. From 1.1.9 to 1.1.11 had been some important security updates and it was a risk to continue using the old version.

Also the problem is the tutorial is not finished yet (my fault) so the instructions there are not really clear. I hope I will have time to finish it some day. Luckily you managed to do it.

Anyway, it shouldn't be any language files on your custom Theme. All the language files should be in the default folder, that's why I never mentioned that in the tutorial. I need to remember to add that as well to the tutorial just in case somebody has the same problem.

If you get any more troubles let me know.
Title: Re: httpBL
Post by: EL34 on October 25, 2010, 06:20:23 AM
Hey Snoop,
Got a suggestion.

Please add the page index at the bottom of the log pages also.

I find myself looking at all the log entries and then having to go back up to the top of the page to click on the next page link.

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on October 25, 2010, 06:34:27 AM
I see what you mean. Yeah, good idea.

I will add it in the next version.
Title: Re: httpBL
Post by: EL34 on October 25, 2010, 07:15:50 AM
Thanks Snoop
Title: Upgrades
Post by: Lou69 on October 28, 2010, 12:02:26 AM
First, a long overdue

THANK YOU!!

for this wonderful mod. To date, 239 baddies have been trapped. Fantastic!!

My current version is 2.3.4 and I will upgrade to 2.4 soon. Will upgrading delete all honeypot date and trap counts? Anything special I need to do before the upgrade?

thanks

Lou

:)
Title: Re: Upgrades
Post by: snoopy_virtual on October 28, 2010, 08:22:53 AM
Quote from: Lou69 on October 28, 2010, 12:02:26 AM
First, a long overdue

THANK YOU!!

for this wonderful mod. To date, 239 baddies have been trapped. Fantastic!!

You are welcome  ;)

Quote from: Lou69 on October 28, 2010, 12:02:26 AM
My current version is 2.3.4 and I will upgrade to 2.4 soon. Will upgrading delete all honeypot date and trap counts?

Just un-install old version and install new one.

If you are using SMF 1.x it won't touch at all the info already in your DB.

If you are using SMF 2.0 there is a new option (when you are un-installing a mod) asking you if you want to erase as well from your DB all the data associated with this mod. Just leave that option un-marked and all the data you already have will be untouched as well.

Quote from: Lou69 on October 28, 2010, 12:02:26 AM
Anything special I need to do before the upgrade?

The only thing really is to check the files inside your custom Theme (assuming you are not using the default one).

This mod (as all SMF mods) only change the files inside the default Theme so if you have any of the needed files in your custom Theme you need to do the required changes manually

In version 2.3.4 the mod was doing an important change inside the file index.template.php to display hiding links to your honey pot inside all your forum pages.

It doesn't matter what Theme you are using, you will always have an index.template.php inside it, so I suppose if you are not using the default (following the instructions on the tutorial) you have already made this change there.

The new version 2.4 do exactly the same change inside index.template.php so if you have already made that change leave it the way it is. Un-installing the old version will only erase that change from the default Theme, no from your custom Theme, so installing version 2.4 you won't need to do the same change again.

But version 2.4 also do a change inside the file Who.template.php (that's new from the old version). So you just need to check if you have this file inside your custom Theme.

It is not normal to have the file Who.template.php inside a custom Theme. Usually that file is only inside the default Theme, but if you have it, let me know and I will give you instructions to edit it manually.

============

Of course if in the middle of the un-installing / installing process you get any kind of error message, don't continue with the process. Copy the error message and let me know.

============

After upgrading check also your forum error log.

Not the mod httpBL log, but the forum one in Admin => Maintenance => Forum Error Log

If you are not using the default Theme you will see there 2 or 3 errors telling you "Required file not found" or something like that, because for a few seconds (in the middle of the process) your forum would have tried to display the hiding link to your honey pot and the required data was not there. (The few seconds just after you un-installed the old version and before you finished installing the new one).

Just erase these few errors and forget about them.

============

That's all really. Don't forget to check the new things in the mod config page. There are a few of them.

Don't forget also to add the new permission to the groups of your members you really trust and you don't want to be checked never by the mod.

To do that go to Admin => Members => Permissions => Permissions by Membergroup choose the group of members you trust and click on Modify. You will see there the new permission.

This is a kind of "white-list" system I have added to the mod (in case you missed the explanations I have written about it where-ever it was I wrote it).

By default this new permission is ON only for the group Administrator and is OFF for the rest of the groups.

============

Check also all the new info there is now in the mod logs.

If you have installed as well the mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515) (or if you install my small addon to see OS & Browser in httpBL) I think you will like it.

BTW, before you ask, you can install this mod (or my addon) whenever you want. Either before of after upgrading. It's exactly the same.

Also, if you don't want to install this it doesn't really matter. Mod httpBL will work exactly the same. The only difference is without it you will see less info in the logs.
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 09:50:16 AM
does the Humans Log shows all the users that were asked the varification question, or also those who passed without questioning?
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 10:06:19 AM
one more question if i may (i'm being bombarded with spam the last week, it's a nightmare):

i just got a "girl viagra sex" topic from 95.67.80.146. this ip has a 41 threat level, and the httpbl log shows it was blocked just a few hours ago. how come it got through now?

f.y.i., my settings are -
Number of days to consider good an IP - 10
Threat level considered bad - 23
Threat level considered VERY bad - 40
Minutes to keep the data in the cache - 120   
Hours until an IP needs to prove again it's human - 200

and one last question - is there a way to clear all visitors from a certain range or geographic location?
Title: Re: httpBL
Post by: snoopy_virtual on October 30, 2010, 12:20:18 PM
Quote from: IdanC on October 30, 2010, 09:50:16 AM
does the Humans Log shows all the users that were asked the varification question, or also those who passed without questioning?

Anybody allowed to pass without questioning is not in any log at all.

Inside the humans log is all the people who where questioned and answered properly, proving they were humans.


EDIT: That's not true. Please read answer #382 (http://www.simplemachines.org/community/index.php?topic=366399.msg2834700#msg2834700)

Quote from: IdanC on October 30, 2010, 10:06:19 AM
i just got a "girl viagra sex" topic from 95.67.80.146. this ip has a 41 threat level, and the httpbl log shows it was blocked just a few hours ago. how come it got through now?

I think it is because all your settings are wrong. Let's see them more detailed:

Quote from: IdanC on October 30, 2010, 10:06:19 AM
Number of days to consider good an IP - 10

That's definitely very wrong.

You are saying you consider that anybody who has not done anything wrong for the last 10 days is now for sure a good guy, so you let them in un-checked by the mod.

Well, suppose this viagra spammer, the first time it arrived to your forum, the last time it has done something wrong was 9 days and 20 hours before. That, for the mod, is the same as 9 days.

The mod checked that, saw that 9 is less than 10, so it checked the threat level, saw that it was 41, so stopped the bast***

Then 4 hours later it tried again. This time the last time it has done something wrong was already 10 days before, so the mod saw that 10 equals 10 and let it pass without checking any further.

You definitely need to change this setting. I have it setup to 90 in all my forums and wouldn't recommend anybody to change that number.

Quote from: IdanC on October 30, 2010, 10:06:19 AM
Threat level considered bad - 23

So you are saying that anybody with a threat level of 23 or less is a good guy and can enter your site un-checked.

You need to remember that the threat level is not a linear scale, but a logarithmic one. So somebody with a threat level of 20 is not 10 times worst that another one with a Th. L. of 10, but a lot worst than that.

To see this a little more clearly you can read what they said in Project Honey Pot when they invented this system:

http://www.projecthoneypot.org/threat_info.php

Of course it's up to you to set this number to anything you like, but I have it in my forums down to 10 in some of them and even 5 in others.

Quote from: IdanC on October 30, 2010, 10:06:19 AM
Threat level considered VERY bad - 40

So then, everybody with a Th.L. of 40 or less will see the captcha to prove they are human.

Well, remember what I said abut the TH.L. being a logarithmic scale. I consider that anybody with a Th.L. more than 30 is for sure a spammer, so I don't care if they are humans or robots. So I don't give them the chance in my forums to see the captcha and have this number down to 30 in all my forums.

Quote from: IdanC on October 30, 2010, 10:06:19 AM
Minutes to keep the data in the cache - 120

So if the mod checks an IP and finds no data about it you give that IP a "free pass" to do whatever they want in your site for 2 hours without being checked again.

I think that's too much.

The idea of the cache is to stop the logs growing too much when a robot try to see hundreds of your pages at the same time.

Remember a human has a limit in the amount of clicks per minute they can do in a web page. A human can open only a few pages per minute. But a robot hasn't got this limitation. They can open hundreds (even thousands) of pages per minute.

But remember also that the Th.L. system is also dynamic. It is changing every minute. So an IP with no data just now can have a very high Th.L. the next minute.

I have this number down to 5 minutes in my forums, but I have been thinking maybe that's even too high as well, so maybe I will change it to 1 or 2 minutes.


Quote from: IdanC on October 30, 2010, 10:06:19 AM
Hours until an IP needs to prove again it's human - 200

200 hours is a little more than 8 days.

So if somebody prove in your site to be a human, you give that IP again a "free pass" to do whatever they like in your site for more than 8 days without being checked again.

If that human guy was using a dynamic IP (as almost everybody in the world) theirs IP will be changing very often, every 2 or 3 days (sometimes dynamic IPs even change a few times on the same day) so it's almost sure that if somebody arrives to your site a few days later with that IP it will be from a completely different computer. Maybe spammer maybe not.

I have this down to 24 hours and again I think it's too high, so maybe I will put this down too in my forums.

Quote from: IdanC on October 30, 2010, 10:06:19 AM
and one last question - is there a way to clear all visitors from a certain range or geographic location?

No with this mod. You can do it with a lot more methods though. The easiest ones are using .htaccess or using SMF "Ban List".

I don't like it anyway. Having a lot of spammers from one country doesn't mean everybody in that country is a spammer.

For example almost half the spammers in my forums are from USA, almost the other half from Russia and a few more from India, Hong-Kong, Korea, etc.

But I have legal visitors, friends and even members from almost all that countries, so it will be a bad idea if I stopped everybody from any of these countries entering my sites.

==========

Of course, as I said, it's up to you what you do with your site.



==========
EDIT:
I just modified this post to sort some spelling mistakes.
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 05:30:50 PM
(http://images.tribe.net/tribe/upload/photo/d8f/db6/d8fdb623-c3ef-41ea-ab42-cb6105a1b0bf)

this is by far the best answer i ever got in these forums!

a small donation shall be made soon to show my appreciation  :)
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 10:24:32 AM
Quote from: IdanC on October 30, 2010, 05:30:50 PM
this is by far the best answer i ever got in these forums!

a small donation shall be made soon to show my appreciation  :)

Well, thanks for your kind words. Actually, I always answer everybody as best as I can, but I think that's the first time somebody shows so much gratitude for one of my answers. I really appreciate that.

And by the way, when you talked about making a donation I just realized I forgot to add a "donate" button to the mod.

I have been so concentrate in making the mod working as best as possible that I really forgot about it completely.

I have just added the donate button, so you're ok now.  ;D
Title: Re: httpBL
Post by: IdanC on October 31, 2010, 11:17:35 AM
my pleasure!

i still feel unsecure about the settings: it's been 24 hrs with no viagras, but i'm afraid it's too strickt now - 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -

IP Th.L LBA
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes



ok, now i'm really confused - all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 12:41:20 PM
Quote from: IdanC on October 31, 2010, 11:17:35 AM
i still feel unsecure about the settings: it's been 24 hrs with no viagras, but i'm afraid it's too strickt now - 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -

IP Th.L LBA
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes



ok, now i'm really confused - all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.

Sorry, I had a mistake when I answered you to this. I was thinking about something different.

Let me see if I can explain this properly.

When I said:

Quote from: snoopy_virtual on October 30, 2010, 12:20:18 PM
Anybody allowed to pass without questioning is not in any log at all.

That's not true. I should have said instead:

Anybody with no data inside HoneyPot's DB ( Threat Level = 0 ) is not in any log at all.

And when I said:

Quote from: snoopy_virtual on October 30, 2010, 12:20:18 PM
Inside the humans log is all the people who where questioned and answered properly, proving they were humans.

I should have said:

Inside the humans log is all the people who where questioned and answered properly (proving they were humans) plus all the people that were not questioned at all because they had a Threat Level too low.

So all the entries in your Humans Log saying "Threat Level too low. Allowed to pass" are from visitors that were not questioned and never saw the warning page at all. They never noticed any difference and visited your forum undisturbed.

======

Another thing: I have been recommending everybody to install as well the anti-spam mods:


Do you have them?

======

Anyway, if you use Skype call me there and we can talk about it. I'm going to be connected all day and it would be an easier way to check everything in your forum and leave the settings proper.

Every forum is different and maybe the ideal settings for my forums are not ideal for yours.
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 01:24:43 PM
Quote from: IdanC on October 31, 2010, 11:17:35 AM
- 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -
.....
- all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.

Before you start wondering about this and ask me about it I am going to answer you:

If google analytics says there has been 40 unique views for warning.php it means there has been 40 different IPs who have seen that page.

So 40 of your visitors have visited that page.

To check that inside the httpBL logs, you need to count all the different IPs inside the 3 logs who have visited that page.


So the total is 12, but google analytics says there has been 40. Why this difference?

The difference are all the web crawlers (spider searchers from Google, Yahoo, Bing, etc etc) visiting all the pages in the world all the time.

Mod httpBL recognize them as legal robots doing their work and never disturbs them, so they don't appear in any log doesn't matter how many times they visit your warning page.

Anyway, instead of google analytics I will recommend you to use CrawlTrack, from http://www.crawltrack.net/

It's a free program and it not only has a lot better statistics that any other similar program. It also protects your site from hackers, sql injections, etc, acting in fact as the best firewall I have seen so far. I have it installed in all my sites.
Title: Re: httpBL
Post by: IdanC on October 31, 2010, 04:33:29 PM
another wonderful answer, thank you so much!

you covered pretty much everything, if i'll come across anything new i'll be sure to share.

and about the other mods, Stop Spammer isn't much help for me (a simple verification question covers the registration problem), same goes for Anti-Spam Verification Questions.

i do use Anti-Spam Links (which is a bummer for all the guests wishing to post links), and BadBehavior, which doesn't seem to catch that many...
Title: Re: httpBL
Post by: SOC Caesar on November 01, 2010, 10:05:58 AM
Excellent mod, every forum should have it. Great work Snoopy  8)

SpectresOfConvoy[dot]net
Title: Re: httpBL
Post by: snoopy_virtual on November 01, 2010, 10:23:31 AM
Thanks.

My pleasure. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: snoopy_virtual on November 02, 2010, 11:16:50 AM
New SMF version 1.1.12 thoroughly checked for compatibility with mod httpBL version 2.4

No changes needed at all in this mod, so if you are going to update your forum to the latest stable version (as you should) you shouldn't have any problem:

Mod httpBL version 2.4 is fully compatible with SMF version 1.1.12

Of course, as always, before I say anything, I only checked it a hundred times instead of a thousand times (as I should) so I am only 99.99% sure of what I say. I may have made a mistake somewhere.   ;D

So if you have any problem updating SMF to the new version let me know and I will look into it.
Title: Re: httpBL
Post by: wlchase on November 04, 2010, 10:17:14 AM
This is probably obvious to everyone but me, but in the database, what is the time format? If I see log time "1269900272", what does that translate to?

TIA!

And thanks for a great mod!
Bill
Title: Re: httpBL
Post by: IdanC on November 04, 2010, 10:35:08 AM
Quote from: wlchase on November 04, 2010, 10:17:14 AM
This is probably obvious to everyone but me, but in the database, what is the time format?

it is, and it is this - http://www.epochconverter.com/.
Title: Re: httpBL
Post by: snoopy_virtual on November 04, 2010, 10:37:05 AM
Quote from: wlchase on November 04, 2010, 10:17:14 AM
This is probably obvious to everyone but me, but in the database, what is the time format? If I see log time "1269900272", what does that translate to?

Inside the database all the times are stored in Unix timestamp.

So that number you see there is the time measured in the number of seconds since the Unix Epoch (January 1 1970 00:00:00 GMT).

We do it this way so it's easy to check if a number is higher than other one, measure differences between 2 of them, etc.

Of course this number is only useful for programs but it's no practical for humans trying to see it, that's why inside the logs it is already formatted to the forum time.

If you check that same entry in the httpBL logs (instead of inside the DB) you will see it as something like:

Today at 01:37:50 AM

Or:

02 - November - 2010, 09:13:52 PM

Or something like that.

Also you need to take into consideration that inside the database, the timestamps are using the server time, but inside the httpBL logs they use the forum time.

If your server and your forum are in the same place it will be no difference, but for example I have a forum in Spain with the server in Texas, so they have 7 hours difference, so I have set that up inside the Admin => Configuration => Features and Options => Overall time offset
Title: Re: httpBL
Post by: wlchase on November 04, 2010, 11:44:32 AM
Thanks for the quick reply!

I wanted to know because I have 1500 pages of data in the logs I need to trim, going back to April, and doing via phpMyAdmin seems the best way, but I couldn't figure out the date string... I can now!

Bill
Title: Re: httpBL
Post by: IdanC on November 06, 2010, 06:22:54 PM
maybe it's just me, but trying to install the mod on rc4 got me this error -

BLOB/TEXT column 'user_agent' can't get default something something...

i fixed it by removing all the lines
'default' => ''
from text fields in install2.php.

Title: Re: httpBL
Post by: snoopy_virtual on November 07, 2010, 05:16:03 AM
You are absolutely right IdanC that is a big mistake I made.

The strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions.

I don't remember how many times I have installed this mod myself (more than 10 for sure) and have never seen it. I suppose that it depends on the error warning level you have on your server or something like that, but it is definitely a big error and I need to sort it ASAP.

In the mean time, before I publish a new version of the mod, any of you installing it new on any forum you should edit as well the package manually:


For those of you using SMF 1.x:



url text NOT NULL default '',
user_agent text NOT NULL default '',
error text NOT NULL default '',




url text NOT NULL,
user_agent text NOT NULL,
error text NOT NULL,


For those of you using SMF 2.x:



array (
'name' => 'url',
'type' => 'text',
'null' => '',
'default' => ''
),
array (
'name' => 'user_agent',
'type' => 'text',
'null' => '',
'default' => ''
),
array (
'name' => 'error',
'type' => 'text',
'null' => '',
'default' => ''
),




array (
'name' => 'url',
'type' => 'text',
'null' => ''
),
array (
'name' => 'user_agent',
'type' => 'text',
'null' => ''
),
array (
'name' => 'error',
'type' => 'text',
'null' => ''
),



Of course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database .
Title: Re: httpBL
Post by: EL34 on November 07, 2010, 06:47:42 AM
QuoteThe strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions

That error did not come up for my install
My Forum is on a windows server
Not sure if that make a difference or not.


QuoteOf course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database
What table are you talking about Snoop?
Title: Re: httpBL
Post by: snoopy_virtual on November 08, 2010, 09:52:05 AM
Quote from: EL34 on November 07, 2010, 06:47:42 AM
QuoteThe strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions

That error did not come up for my install
My Forum is on a windows server
Not sure if that make a difference or not.

No, it doesn't make any difference if it's a windows or linux server. The error has been there all the time in all the servers, but nobody has seen it before because it depends on the error level you have set-up in your server.

Quote from: EL34 on November 07, 2010, 06:47:42 AM
QuoteOf course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database
What table are you talking about Snoop?

I'm talking about the table that keep on your database all the data for the httpBL logs. If you can see your httpBL logs it means that table has already been created and it's working properly, so you don't need to worry about that error at all.

As I said only people installing the mod fresh (as a new installation) need to worry about it, and anyway I think I will have the next version of the mod ready very soon, with this problem sorted in it, of course.
Title: Re: httpBL
Post by: Saint_Frater on November 08, 2010, 10:28:01 AM
Here is the Mod admin French's page:

modification.french.php
// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';
$txt['httpBL_cookie_length_sub'] = 'Comme les adresses IP changent tr&egrave;s souvent, lorsque les visiteurs voient les "captcha" et qu\'ils prouvent qu\'ils sont humains, ils sont autoris&eacute;s uniquement pour ce nombre d\'heures. Apr&egrave;s ce temps, il se peut que l\'adresse IP soit attribu&eacute;e a une autre ordinateur. Nous ne vous conseillons pas de modifier ces 5 derni&egrave;res valeurs jusqu\'&agrave; ce que vous connaissez la fa&ccedil;on dont fonctionne httpBL.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'httpBL Mod ne v&ecute;rifie pas ce groupe';
$txt['permissionhelp_httpBL_free_pass'] = 'Si cette permission est active, tout les membres du groupe ont un acc&egrave;s authoris&eacute; au site sans v&eacute;rification par httpBL, m&ecirc;me si le PC est sous le contr&ocirc;le d\'un trojan.<br />---<br />Activez cette option seulement si vous savez ce que vous faites.';
$txt['httpBL_last_act_too_high'] = 'La derni&egrave;re activit&eacute; remonte &acute; trop de temps. L\'acc&eagrave;s est authorisaeacute;';
$txt['httpBL_threat_too_low'] = 'Niveau de menace trop bas. L\'acc&eagrave;s est authorisaeacute;';
$txt['httpBL_enable_sub'] = 'Avec cette option s&eacute;lectionn&eacute;e, le Mod est actif. Si vous d&eacute;sactiv&eacute; l\'option; le mod sera inactif.';
$txt['httpBL_config_sub_3'] = 'Voici la pr&eacute;sentation pour les utilisateurs qui n\'ont pas trop l\'air dangereux. Avec un captcha, ainsi il peuvent prouver qu\'ils sont bien humains. Si vous d&eacute;sirez v&eacute;rifier ce qui sera pr&eacute;sent&eacute; aux visiteurs REELEMENT dangereux(sans captcha) utilisez plut&ocirc;t ce lien:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.';
$txt['httpBL_mod_no_connect_2'] = 'Si lez probl&egrave;me presistent, vous pouvez demander de l\'aide dans le <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum de suport officiel</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL est ACTIF, mais pas &agrave; jour.';
$txt['httpBL_mod_new_version_2'] = 'Il y a une nouvelle version de ce mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Veuillez mettre a jour d&egrave;s que possible</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL est ACTIF, il est &agrave; jour et la connection vers le HoneyPot est parfaite.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL est INACTIF.';
$txt['OS_Browser_Compatible'] = 'compatible';
$txt['OS_Browser_OS'] = 'Syst&egrave;me d\'exploitation';
$txt['OS_Browser_Unknown'] = 'Inconnu';
$txt['OS_Browser_Browser'] = 'Navigateur';
$txt['httpBL_cache_length'] = 'Dur&eacute;e de vie (en minutes) pour conserver les r&eacute;sultats dans le cache';
$txt['httpBL_cache_length_sub'] = 'Chaque fois que le mod v&eacute;rifier une IP, il sauve le r&eacute;sultat dans le cache (si celui-ci est activ&eacute;) et dans la session du visiteur pour le nombre de minutes donn&eacute;es ici. Si la m&ecirc;me IP se pr&eacute;sente a nouveau avant l\'expiration du d&eacute;lais que vous avez donn&eacute;, le mod ne va pas faire de v&eacute;rification, mais il utilisera le r&eacute;sultat stock&eacute; dans le cache et/ou la session.';
$txt['httpBL_view_os_whosonline'] = 'Voir les donn&eacute;es OS & Navigateur dans la page "Qui est en ligne"';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL utilise des fonctions de "Mod OS & Browser Detection" pour afficher dans le log les syst&egrave;me d\'exploitation et navigateur utilis&eacute; pour chaque visites stock&eacute;es das ces logs. Si vous d&eacute;sirez avoir ces informations (Syst&egrave;me d\'exploitation et navigateur) &eacute;galement dans la page "Qui est en ligne", activez cette option. Bien sur, pour pouvoir ls afficher correctement dans les logs et dans votre page "Qui est en ligne", vous devez avoir install&eacute; soit <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> ou la version \'l&eacute;g&egrave;re\' <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">addon to see OS & Browser in httpBL</a>.';



warning.php

/*******************
*  Set 1 - French *
*******************/
$txt['httpBL_warn_title_1'] = 'Attention';
$txt['httpBL_warn_denied_1'] = 'Acc&eagrave;s Refus&eacute;';
$txt['httpBL_warn_head_1'] = 'Notre programme anti-spam a d&eacute;tect&eacute; que vous &ecirc;tes un robot qui tente de poluer notre forum via du SPAM.';
$txt['httpBL_warn_infected_1'] = 'La cause la plus probable de ce blocage est que votre ordinateur, ou un ordinateur sur votre r&eacute;seau local, a &eacute;t&eacute; <b>infect&eacute; par un virus, cheval de Troie ou ver</b>. Les ordinateurs infect&eacute;s sont utilis&eacute;s &agrave; l\'insu de leurs propri&eacute;taires par des criminels, pour attaquer de diff&eacute;rentes façon des sites tels que celui que vous essayez de visiter.';
$txt['httpBL_warn_dinamic_IP_1'] = 'Si votre IP est dynamique et non pas fixe, celle ci change &agrave; chaque fois que vour red&eacute;marrez votre routeur. Peut &ecirc;tre le probl&eagrave;me est il seulement que vous utilisez aujourd\'hui une IP qui a servie r&eacute;cemment &agrave; un ordinateur infect&eacute;. Aussi vous pouvez tenter de red&eacute;marrer votre routeur et revenir ensuite sur ce site afin de v&eacute;rifier si l\'acc&eagrave;s s\'y fait alors normalement.';
$txt['httpBL_warn_technician_1_1'] = 'Dans tous les cas, nous vous recommandons de v&eacute;rifier ou faire v&eacute;rifier par un technicien que votre ordinateur n\'est pas infect&eacute; et demandez lui de visiter le site <b>www.projecthoneypot.org</b> pour y v&eacute;rifier les d&eacute;tails de votre IP:';
$txt['httpBL_warn_technician_2_1'] = 'et voir excatement ce qui y est indiqu&eacute;.';
$txt['httpBL_warn_info_1'] = 'Pour plus d\'informations, n\'h&eacute;sitez pas &agrave; contacter:';
$txt['httpBL_warn_at_1'] = 'at';
$txt['httpBL_warn_dot_1'] = 'dot';
$txt['httpBL_warn_hurry_1'] = 'Vous trouverez des explications d&eacute;taill&eacute;es ci-dessous. Toutefois, si vous &ecirc;tes press&eacute;s, vous pouvez acc&eacute;der imm&eacute;diatement au site, mais sachez qu\'il est possible que votre ordinateur soit infect&eacute;. Nous allons vous poser deux fois de suite des questions faciles sous une forme telle qu\'un robot ne saurait y r&eacute;pondre. R&eacute;pondez &agrave; la premi&eagrave;re question ci dessous (juste le nombre) pour prouver que vous n\'&ecirc;tes pas un robot et cliquez sur le bouton <b>"Envoyer"</b>:';
$txt['httpBL_warn_send_1'] = 'Envoyer';
$txt['httpBL_warn_blank_1'] = 'Ne mettez rien dans ce champ.<br />Saisissez la r&eacute;ponse dans la premi&eagrave;re case.';
$txt['httpBL_warn_wrong_1'] = 'Mauvais';
$txt['httpBL_warn_wrong_head_1'] = 'Mauvaise r&eacute;ponse.';
$txt['httpBL_warn_wrong_answer_1'] = 'Peut-&ecirc;tre n\'avons nous pas expliquer correctement ou peut-&ecirc;tre vous avez entr&eacute; une mauvaise r&eacute;ponse. Vous avez deux lignes diff&eacute;rentes. Dans la premi&eagrave;re vous une addition simple, un champs vide et un bouton "Envoyer". C\'est dans ce champs vide que vous devez &eacute;crire la r&eacute;ponse (juste des chiffres) et cliquer sur le bouton. Vous devez laisser le champs vide dans la seconde ligne.';
$txt['httpBL_warn_good_1'] = 'Bien';
$txt['httpBL_warn_good_head_1'] = 'R&eacute;ponse Correcte.';
$txt['httpBL_warn_good_answer_1'] = 'Votre r&eacute;ponse est bonne, mais veuillez noter qu\'un robot, m&ecirc;me si il n\'est pas capable de voir ou de comprendre la question, peut deviner la bonne r&eacute;ponse en essayant des chiffres au hasard. Bien sur il est impossible de donner deux fois la bonne r&eacute;ponse juste par chance donc, si vous le voulez bien, veuillez r&eacute;pondre une fois encore, et cliquer sur le bouton "Envoyer":';
Title: Re: httpBL
Post by: snoopy_virtual on November 08, 2010, 11:26:07 AM
Wonderful. Thanks Saint_Frater

Merci beaucoup.  ;)
Title: Re: httpBL
Post by: thing2 on November 10, 2010, 12:23:52 AM
Hi there

Have just installed the new update and everything seems to be working well, and its saying "Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect." which is always good to see.  I'm assuming that its now compatible with the cache on our server as there is now nothing telling me that its not working properly - yay.

In the Log you have said that we can decide what group of members we don't want to be scanned, which is a really great feature and thanks for putting it in.  Keep up the good work and thanks for the help that you gave me previous even though it couldn't be solved due to the incompatibility with our cache.

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on November 10, 2010, 04:23:09 AM
Quote from: thing2 on November 10, 2010, 12:23:52 AM
Hi there

Have just installed the new update and everything seems to be working well, and its saying "Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect." which is always good to see.  I'm assuming that its now compatible with the cache on our server as there is now nothing telling me that its not working properly - yay.

In the Log you have said that we can decide what group of members we don't want to be scanned, which is a really great feature and thanks for putting it in.  Keep up the good work and thanks for the help that you gave me previous even though it couldn't be solved due to the incompatibility with our cache.

Thing2

It should be compatible now with your cache.

Leave the cache level to the recommended level 1 and leave the "Memcache settings" blank.

Check anyway your error logs. (Both the httpBL error log and your forum error log). If you see anything strange there let me know.
Title: Re: httpBL
Post by: BellGab.com on November 17, 2010, 06:28:36 AM
this is one of the most innovative and important mods i've installed in the time i've used SMF.  i hope it works as advertised, and i believe it will.  great work.
Title: Re: httpBL
Post by: IdanC on November 17, 2010, 11:32:32 AM
Quote from: IdanC on October 30, 2010, 05:30:50 PM
a small donation shall be made soon to show my appreciation  :)

excuse me for the lack of modesty, but i just wanted to prove i stand by my word, see transaction 4WF97435MB975280D  :)

keep up the good work!
Title: Re: httpBL
Post by: snoopy_virtual on November 18, 2010, 07:50:25 AM
Quote from: IdanC on November 17, 2010, 11:32:32 AM
Quote from: IdanC on October 30, 2010, 05:30:50 PM
a small donation shall be made soon to show my appreciation  :)

excuse me for the lack of modesty, but i just wanted to prove i stand by my word, see transaction 4WF97435MB975280D  :)

keep up the good work!

Thank you very much.

With more people thinking as you maybe I could forget about working on other projects and concentrate more on these anti-spam mods.

Really appreciated it.
Title: Re: httpBL
Post by: EL34 on November 21, 2010, 07:47:59 AM
Yo Snoop,
Found a bug this morning.

There were 5 pages to the spammers log
There were 2 pages of the humans log

Clicking on page 2 of the humans log sends me to the spammers log
I can't view page 2 of the humans log.
Screen shot attached

Title: Re: httpBL
Post by: snoopy_virtual on November 21, 2010, 08:47:29 AM
Quote from: EL34 on November 21, 2010, 07:47:59 AM
Yo Snoop,
Found a bug this morning.

There were 5 pages to the spammers log
There were 2 pages of the humans log

Clicking on page 2 of the humans log sends me to the spammers log
I can't view page 2 of the humans log.
Screen shot attached

I saw that bug a few weeks ago and it's already sorted in the next version I'm doing. In the mean time, before I finish testing and debugging this new version and I publish it, you can sort it manually:

========================

For SMF 1.x

Open the file /path/to/your/forum/Sources/httpBL_Config.php

Find the line:


$context['page_index'] = constructPageIndex($scripturl . '?action=httpBL;sa=viewlog;sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $entries_per_page);


Replace it with:


$context['page_index'] = constructPageIndex($scripturl . '?action=httpBL;sa=' . $context['sub_action'] . ';sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $entries_per_page);


========================

For SMF 2.x

Open the file /path/to/your/forum/Sources/httpBL_2_Config.php

Find the line:


$context['page_index'] = constructPageIndex($scripturl . '?action=admin;area=httpBL;sa=viewlog;sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $items_per_page);


Replace it with:


$context['page_index'] = constructPageIndex($scripturl . '?action=admin;area=httpBL;sa=' . $context['sub_action'] . ';sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $items_per_page);
Title: Re: httpBL
Post by: EL34 on November 21, 2010, 05:11:47 PM
Thanks, I'll do the manual edit as per your post
Title: Re: httpBL
Post by: Lou69 on November 25, 2010, 02:36:15 PM
You got 25 clams coming your way Snoopy, thanks for the excellent mod. PM sent to you with confirmation number.

I just upgraded to RC4 and upgraded to your 2.4 httpBL mod as well. Made the two edits noted on the previous 2 or 3 pages and all went well. Your previous version of the honeypot trapped over 500 bad actors in maybe 8 or so weeks.

:)

best regards,

Lou

Title: Re: httpBL
Post by: snoopy_virtual on November 25, 2010, 03:29:57 PM
Thanks for the donation Lou. Every little helps...

I see now what mod you were talking about, so you don't need to answer now my other PM lol
Title: Re: httpBL
Post by: Lou69 on November 25, 2010, 05:37:02 PM
.
.
You are very welcome.   :) 
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 07:52:27 AM
Was thinking, if I wanted to put 'Spammers stopped by MOD httpBL: 2395' and keep it updating on a custom HTML or PHP block. Is this possible?
If not its no biggy, just a thought  ;)
Title: Re: httpBL
Post by: EL34 on November 28, 2010, 09:13:25 AM
Sure, how I would do it is to use php to open the database table and grab the spammer count figure
Then you could post it on a web page.

I don't have any code handy, just wanted to say that it can be done.
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 02:03:56 PM
Quote from: SOC Caesar on November 28, 2010, 07:52:27 AM
Was thinking, if I wanted to put 'Spammers stopped by MOD httpBL: 2395' and keep it updating on a custom HTML or PHP block. Is this possible?
If not its no biggy, just a thought  ;)

I have done it in my forum.

I was going to add this to the tutorial, but it seems I never find time to finish it, so I will explain it here. Check this:

http://www.snoopyvirtualstudio.com/foro/

At the top of the forum you can see a picture saying "Spammers Needed Urgently" if you see it in English or "Necesitamos Spammers Urgentemente" if you see it in Spanish.

Both in English or Spanish have a number at the bottom right corner where the amount of spammers caught is updated automatically.

To do this I have used this code:


  echo '
  <!-- BANNER -->
  <div align="center" style="background: #transparent;">
    <div style="position: relative; width: 700px; height: 185px; overflow: hidden;">
      <table width="100%" border="0" cellpadding="0" cellspacing="0">
        <tr>
          <td align="center" width="100%" valign="top">
            <a href="http://www.snoopyvirtualstudio.com/miel/" target="_blank"><img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></a></td>
        </tr>
      </table>
      <div style="position: relative; top: -35px; right: -289px; width: 95px; height: 17px; color: white; background: transparent; font-size: 15px; font-family: verdana, sans-serif; text-align: right; overflow: hidden;">
        <b>' . $modSettings['httpBL_count'] . '</b>
      </div>
    </div>
  </div>
  <!-- /BANNER -->';


Of course the actual code I use in my forum is a lot more complicated, because I count all the spammers caught by both mod httpBL and Stop Spammer, and not only in my forum, but in the 6 forums I administer, and also the output is slightly different if you are watching the page in English or Spanish.

I have reduced it there to give you only the English version and only with the spammers caught by mod httpBL in my main forum.

Feel free to copy the pictures if you like them and to copy and modify that code to whatever you want.

If you like the picture but want to modify the text, the background or whatever, here you have it in PhotoShop format:

http://www.snoopyvirtualstudio.com/descargas/MOD-httpBL/mod_A_S.psd.zip

Also, as you can see, my picture is a link to another of my forums. You should change the href="" to whatever you want or delete the link completely, replacing this:


          <td align="center" width="100%" valign="top">
            <a href="http://www.snoopyvirtualstudio.com/miel/" target="_blank"><img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></a></td>


With this:


          <td align="center" width="100%" valign="top">
            <img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></td>


Also, please, if you are going to use my picture, don't use the code exactly as it is there. It will take bandwidth from my server. Copy the picture, upload it to your server and replace:


            <img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" />


With:


            <img src="http://www.your.web.page.com/path/to/your/images/mod_A_S.english.png" title="whatever title you want" alt="whatever alt you want" border="0" />


====================

You also need to remember that the actual number of spammers caught is inside the variable:

$modSettings['httpBL_count']

So you can just use this number if you want to do the code completely different. No need to do any database query or anything like that.

====================

Whatever way you code this, you need to check that $modSettings has been declared global before you can use it, so if you are going to put this for example inside the file index.template.php inside the function template_main_above() you need to be sure inside the Theme you are using, the variable $modSettings is written inside all the globals at the beggining of the function.

If it's not, you need to add the line:


global $modSettings;


Just before whatever you put your code.

====================

I hope the explanation was clear enough.

Any doubts (as always) just ask.  ;)
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 02:21:21 PM
Thanks Snoopy, excellent info. Was looking at putting it in a portal block either html or php.
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 05:13:31 PM
In a portal as in TinyPortal or SimplePortal or any other portal published here in SMF as mod?

If the answer is yes you won't have any problem at all.

Just remember to declare $modSettings has global inside the block you are using (if it hasn't been already done there). And that's it.

If you are talking about a portal as Joomla, Mambo, Drupal, etc, it's a little more difficult but can be done as well using the SMF file SSI.php
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 05:15:46 PM
btw, you cannot do it HTML, it will need to be PHP, because you need to use the PHP variable $modSettings['httpBL_count'] which is the one with the number of spammers blocked inside it.
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 09:52:58 PM
Its with Simpleportal 2.3.3 and SMF 2.0RC4
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 10:20:53 PM
When you have it done give me a link to see the result. I'm curious now.  ;)

And if you find any problem in the process tell me and I will give you a hand.
Title: Re: httpBL
Post by: SOC Caesar on November 30, 2010, 03:28:57 PM
Thanks it works, just need to make a graphic now. Link to forum also sent.
Many thanks
Title: Re: httpBL
Post by: societyofrobots on December 06, 2010, 07:14:05 PM
I noticed this bug I can't figure out . . . I'm using v2.4 with SMF 1.1.12.

First, I have "Number of days to consider good an IP" set to 40, so why is this user being triggered? Why does it say 65 days at 5pm, but 71 days for the other times? I have 'Hours until an IP needs to prove again it's human" set to 48 hours, so why is it repeatedly triggered?
QuoteDate      IP            Th. L. L. B. A.   S.   H.   C.   User    
Today at 03:47:02 PM   195.112.221.78   15   71   Yes         Aber   
Today at 05:00:43 PM   195.112.221.78   15   65   Yes         Aber   
Today at 05:42:23 PM   195.112.221.78   15   71   Yes         Aber   
Today at 06:17:37 PM   195.112.221.78   15   71   Yes         Aber   
Today at 06:34:32 PM   195.112.221.78   15   71   Yes         Aber

Second, if I click httpBL Humans Log, and then click on any page number, it'll incorrectly jump to that page number for httpBL Spammers Log instead.
Title: Re: httpBL
Post by: snoopy_virtual on December 07, 2010, 06:49:44 AM
Quote from: societyofrobots on December 06, 2010, 07:14:05 PM
I noticed this bug I can't figure out . . . I'm using v2.4 with SMF 1.1.12.

There are a lot of different questions there. Let me try to answer them one by one:

Quote from: societyofrobots on December 06, 2010, 07:14:05 PM
First, I have "Number of days to consider good an IP" set to 40, so why is this user being triggered?

All the entries from this user are inside the "Humans log". That means the user has not been bothered at all. He has never seen the warning page or noticed anything wrong.

The entries are logged anyway so you can see somebody has been in your forum with some data inside the spammers DB in Project Honey Pot, but the log is telling you that, as the "number of days..." was bigger than 40, the mod didn't stop the user.

Quote from: societyofrobots on December 06, 2010, 07:14:05 PM
Why does it say 65 days at 5pm, but 71 days for the other times?

Unfortunately, the connexion with Honey Pot's DB is not 100% perfect all the time, so every now and then there is a mistake like that.

You need to remember there are thousands of people using that DB every day. Only here in SMF the last count was more than 1500 forums using it, and there are mods using that DB for almost all other forums, CMS programs (Mambo, Drupal, Joomla, etc), Blogs, etc.

If too many people try to access the DB at the same time it is possible one of the answers is wrong. That's the reason why this mod never do anything too drastic (like banning a user forever or giving a "free pass" card to somebody forever) but always try to confirm if it's true we are dealing with a spammer or a good guy.

Quote from: societyofrobots on December 06, 2010, 07:14:05 PM
I have 'Hours until an IP needs to prove again it's human" set to 48 hours, so why is it repeatedly triggered?

The cookie you are talking about is only given to users who have actually proven they are human.

This only happens when they see the warning page and they answer the 2 questions to prove they are human. Anybody in your forum in that situation won't see the warning page again for 48 hours.

This user you have here in your logs has never seen the warning page, so he hasn't really proved he's human. You cannot be really sure if it's actually the human user who is visiting your forum or if it's a trojan inside his computer, acting as the user but without the user's knowledge.

When the mod cannot be sure if a visitor is human or robot, it puts the data in the cache, instead of giving a cookie to the visitor, so it will be checked again when the cache expires (default is 5 minutes) not when the cookie expires.

When something like that happens in my forums I contact as soon as possible the users (if I can) to let them know they may have a trojan in their computer.

When the users answer me saying they have checked the computer and there is no trojan there, I move them (if I really trust them) to one of the "trusted" member groups I have in my forums, so they won't be checked by the mod ever again.

You need to remember (from version 2.4 onwards) I have added a new permission you can set for all the member groups you really trust, so the mod won't check them. But you need also to remember that sometimes people cannot really recognize a trojan inside their computer.

I have friends who have told me they haven't got any viruses in their computers but, when I have checked their computers myself, I have found some. I trust those friends for anything else, but I don't "trust" them recognizing viruses or trojans.

Quote from: societyofrobots on December 06, 2010, 07:14:05 PM
Second, if I click httpBL Humans Log, and then click on any page number, it'll incorrectly jump to that page number for httpBL Spammers Log instead.

That bug was reported a couple of weeks ago here (http://www.simplemachines.org/community/index.php?topic=366399.msg2857270#msg2857270).

I have it already sorted in the next version I am doing for this mod. This new version should have been already published but, every time it's almost finished, I find something else I need to change or fix, so it's taking me longer than I thought.

In the mean time, before I finish this new version, you can patch it manually following these instructions:

http://www.simplemachines.org/community/index.php?topic=366399.msg2857312#msg2857312
Title: Re: httpBL
Post by: societyofrobots on December 07, 2010, 11:50:07 PM
best. reply. ever. :)
Title: Re: httpBL
Post by: EL34 on December 08, 2010, 03:56:35 PM
Snoop,
Just a suggestion on something  I would find useful.

I would like to reset the spammer log entries but keep the human logs.
I would like to keep an eye on some of the forum members that show up in the human log for a few days, but I don't really need 6 pages of spammer log entries.

As it is now, hitting the remove all button on either page, removes everything on both pages.

It would be nice if the remove all button (or a new button) only removed all entries on either the spammer or human log
Title: Re: httpBL
Post by: snoopy_virtual on December 08, 2010, 05:46:09 PM
Nice idea.

I will check it out. If I find an easy way to do that it will be in the next version.
Title: Re: httpBL
Post by: EL34 on December 08, 2010, 06:32:42 PM
Thanks snoop
Title: Re: httpBL
Post by: ms_ukyankee on December 09, 2010, 04:44:01 PM
This is a fabulous mod, thank you so much. I've searched for this but haven't found an answer, in the httpBL errors log, there is an entry that is confusing me.

Today at 01:29:28 PM 0:0:0:0:0:0:0:1      Guest
934
Unknown  Unknown  unknown  Cannot check. IP not normal. Allowed to pass 
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.12) Gecko/20101027 Ubuntu/10.04 (lucid) Firefox/3.6.12  /index.php?action=unread 

The IP address being bold, 0:0:0:0:0:0:0:1. If I understand correctly this is the IPv6 localhost address, if so I don't understand how it could be in a shared hosting environment?
Title: Re: httpBL
Post by: snoopy_virtual on December 12, 2010, 11:36:56 AM
@purplepaisley68:

There are 2 different matters to consider in your question:

First we have the problem of the people visiting our forums using already IPv6 instead of IPv4. I was trying for a while to make this mod compatible with IPv6. To do that I have been reading a lot of pages about IPv6. The more interesting one so far is:

http://en.wikipedia.org/wiki/IPv6 (and all the links inside it).

The problem is, to check a visitor's IP, the mod uses the database inside HoneyPot and there is no data yet in HoneyPot's DB about IPv6. It's all based only in IPv4. So I cannot make the mod compatible with IPv6 until HoneyPot change their DB.

In the mean time I only see 2 options:


So far I am using the second option because anyway almost every visitor is still using IPv4. I have seen very few IPv6 and all of them (so far) humans. I haven't seen yet any robot using IPv6.

Any visitor using IPv6 will pass undisturbed by the mod, but we will see all these entries in the error log, so we can study them and decide (if we see too many of them) if it's time to change the mod and start stopping them.

======================

That one you have here is obviously a human. If you check the user agent, you can see it's using Linux Ubuntu Lucid and there are no spammers robots (or trojans) at all written for that Operative System.

But we have the problem of the IP they are using. 0:0:0:0:0:0:0:1

I am not a big expert in IPv6 but (if I understood properly all I read about it) that IP is the same as 127.0.0.1 in IPv4: localhost.

So I am as puzzled about it as you are. How is it possible that a visitor in your forum is using the localhost address?

To get the answer maybe we should ask this question in a forum more specialized in IPv6 or here in SMF in another part were the big gurus can see it and give us an answer.

Remember the mod has nothing to do with the IP. It only has put it there in your log so you can study it, but it's using exactly the same method SMF is using to find the visitor's IP: It's using the SMF variable $user_info['ip']

When a visitor enter your forum SMF uses the more general method $_SERVER['REMOTE_ADDR'] to find the visitor's IP and then stores it inside the variable $user_info['ip'] and that's the one the mod uses to check HoneyPot's DB.

So if we are going to ask this question in a IPv6 specialized forum we should ask how is it possible that $_SERVER['REMOTE_ADDR'] returns a localhost value. And if we ask the question to a SMF guru it should be how is it possible that $user_info['ip'] has a localhost value.

I will try myself to find an answer. If you find it first please let me know.
Title: Re: httpBL
Post by: V@no on December 13, 2010, 08:40:44 PM
Hello.
The OS/Browser detection addon installs under the same ID as httpBL itself, this creates problem when one tries uninstall either - SMF shows that the other is uninstalled as well.
Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2010, 07:05:16 AM
Quote from: V@no on December 13, 2010, 08:40:44 PM
Hello.
The OS/Browser detection addon installs under the same ID as httpBL itself, this creates problem when one tries uninstall either - SMF shows that the other is uninstalled as well.

Sorry, I never thought of that possible problem.

I tried first to upload it with a different ID, but couldn't, as SMF doesn't allow 2 different files inside the same mod with 2 different IDs.

I thought also to publish this addon as a stand-alone mod (with its own ID) but couldn't also, because this is not really a stand-alone mod but it's a modification of another modification and SMF doesn't allow that either.

At the end I put it there with the same ID as mod httpBL, not realising that will give us problems when uninstalling one of them.

I don't really know what to do with it then. In the mean time (while I find a better solution) I have moved the addon to my own server, giving it the proper ID it should have.

From now on you can find it here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0

=====================

Anyway you don't really need the package manager to uninstall the addon. The only thing this addon does is to copy the file os_browser_detection.php inside your /Sources/ folder and to copy a folder with all the possible OS & Browsers icons (the folder os_browser_detection) inside your /Themes/default/images/ folder.

So, to uninstall the addon you just need to delete the file /Sources/os_browser_detection.php and the folder /Themes/default/images/os_browser_detection/. After that you can delete the addon_OS_Browser_httpBL package from your mod's list.
Title: Re: httpBL
Post by: V@no on December 14, 2010, 07:10:35 PM
Thank you very much for this mod. So far this is the only mod that actually does the job done.
One thing is missing though, is the number of humans httpBL let through. It shows the log, but it doesn't tell how many of them in there...Having that number would be helpful to also show what is the percentage false positive it produces, aka how efficient it is. Also, in the human logs, does it log the same person twice?

Thank you.


Quote from: snoopy_virtual on December 14, 2010, 07:05:16 AM
So, to uninstall the addon you just need to delete the file /Sources/os_browser_detection.php and the folder /Themes/default/images/os_browser_detection/. After that you can delete the addon_OS_Browser_httpBL package from your mod's list.
Then perhaps that addon could be included in the package and at the install page (or right after) let user decide if they want also activate the addon? IMO would be less headache.
Title: Re: httpBL
Post by: snoopy_virtual on December 16, 2010, 07:05:46 AM
Quote from: V@no on December 14, 2010, 07:10:35 PM
One thing is missing though, is the number of humans httpBL let through. It shows the log, but it doesn't tell how many of them in there...Having that number would be helpful to also show what is the percentage false positive it produces, aka how efficient it is.

Actually, when I started with the log, my idea was to do a lot more statistics, so we could see a lot more things, but I'm always finding a lot of urgent things to do first.

Maybe if one day I have more free time I will continue with the statistics and I will add not only the number you are talking about, but a lot more of them.

In the mean time there is an easy way to count them (if you don't delete any log entries) because there are exactly 30 entries per page.

Quote from: V@no on December 14, 2010, 07:10:35 PM
Also, in the human logs, does it log the same person twice?

Yes.

The way it is just now, the mod writes an entry in the logs every time it finds an IP inside the Honey Pot's DB. It doesn't matter if that IP was already in the logs or not. If that IP is blocked it writes it in the first log, if it is allowed to pass it writes it in the second one and if there is an error it writes it in the 3rd one.

Actually, the names "Spammers Log" and "Humans Log" are not accurate. They should be called instead "Log of the IPs that has been blocked" and "Log of the IPs that has been allowed in". I have named them like that because ideally that is what the mod is supposed to do. Stop only the spammers and let through the non-spammers humans. And, of course, never have an error.

Most of the changes I have been doing to the mod since I started it has been to achieve that goal: Get all the bad guys in the first log, all the good ones in the second and get 0 errors.
Title: Re: httpBL
Post by: henrik1782 on December 16, 2010, 07:16:41 PM
Hi...

How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.
Title: Re: httpBL
Post by: teh_Krall on December 17, 2010, 01:17:29 AM
Quote from: henrik1782 on December 16, 2010, 07:16:41 PM
Hi...

How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.

You also registered on their site?

----

Just out of curiousness, what exactly is the worse case scenario if I let a spammer sign up when PHP said they were high risk?

I've let a few spammers on because they came up clean and didn't seem like spammers. The only think I've seen happen is either they put a link in their profile or make a spam post and leave. 
Title: Re: httpBL
Post by: henrik1782 on December 17, 2010, 10:41:03 AM
Yes I did register...

You can be right about spammers but you never know before its to late and the you may have to use some time to sort it out.
I have seen some suspecius use from some russian, korean and Chinese  IP adresses and I just don't want them to mess anything up.
Title: Re: httpBL
Post by: MCK on December 17, 2010, 02:52:18 PM
Great mod! Thank you very much!
Title: Re: httpBL
Post by: snoopy_virtual on December 17, 2010, 07:03:45 PM
Quote from: henrik1782 on December 16, 2010, 07:16:41 PM
How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.

Did you read the tutorial (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2) I wrote explaining it?

The rest of the tutorial is not finished yet, but that part is, and I thought it was very clear.

Quote from: teh_Krall on December 17, 2010, 01:17:29 AM
Just out of curiousness, what exactly is the worse case scenario if I let a spammer sign up when PHP said they were high risk?

Depending on what kind of robots they are, they normally register inside our forums for 2 main things:


I don't mind too much one of them writing a lot of "viagra links" inside a post. It will be a lot worst if they get the list of email addresses of all my members.

Of course it also depends on the way you have configured your forum, but in most forums visitors cannot see member's email addresses, but as soon as they register they can see them.

What I have done in all my forums is to create a special member-group called "Suspicious" with almost no power at all. The members inside that member-group cannot see other member's email address, they can publish only one post, they can send only one PM, etc.

When PHP tells me a guy is one of the bad ones, but I am not really sure, I let them to register, but put them inside the "Suspicious" group and send them a welcome PM. If one day one of them answers my PM normally or post something normal I will move them to a normal member-group, but that hasn't happened yet.

Quote from: MCK on December 17, 2010, 02:52:18 PM
Great mod! Thank you very much!

You're welcome  ;)
Title: Re: httpBL
Post by: MCK on December 18, 2010, 11:25:26 AM
Honestly... More than 100 potential spammers declined by the mod in a day. I am happy! Thank you very much!
Title: Re: httpBL
Post by: teh_Krall on December 18, 2010, 12:19:32 PM
Quote from: snoopy_virtual on December 17, 2010, 07:03:45 PM
Depending on what kind of robots they are, they normally register inside our forums for 2 main things:


  • Write as much spam they can
  • Try to collect as many email addresses they can (to send them spam later)

I don't mind too much one of them writing a lot of "viagra links" inside a post. It will be a lot worst if they get the list of email addresses of all my members.

Of course it also depends on the way you have configured your forum, but in most forums visitors cannot see member's email addresses, but as soon as they register they can see them.

What I have done in all my forums is to create a special member-group called "Suspicious" with almost no power at all. The members inside that member-group cannot see other member's email address, they can publish only one post, they can send only one PM, etc.

When PHP tells me a guy is one of the bad ones, but I am not really sure, I let them to register, but put them inside the "Suspicious" group and send them a welcome PM. If one day one of them answers my PM normally or post something normal I will move them to a normal member-group, but that hasn't happened yet.

Thanks, as always you have a viewpoint I hadn't considered and that was email harvesting.

I will create a member group like that as some of the 'people' registering I can't quite tell if they are real or a spammer. Thanks again for your help and for supporting your mod in such an active way :)
Title: Re: httpBL
Post by: henrik1782 on December 19, 2010, 07:32:09 AM
Thanks Snoopy...

Read the toturial and everything is working!
Title: Re: httpBL
Post by: snoopy_virtual on December 19, 2010, 09:19:00 AM
Quote from: teh_Krall on December 18, 2010, 12:19:32 PM
Thanks, as always you have a viewpoint I hadn't considered and that was email harvesting.

I will create a member group like that as some of the 'people' registering I can't quite tell if they are real or a spammer. Thanks again for your help and for supporting your mod in such an active way :)

You are welcome. Anyway, both things are related. I normally have a lot of different viewpoints because I am very active supporting the mod, so I always get a lot of feedback from the people using it and benefit from everybody's suggestions.

For example the idea of creating this "Suspicious" group was not mine. Somebody else (don't remember who just now) suggested it when we were talking about another problem.  ;)

Quote from: henrik1782 on December 19, 2010, 07:32:09 AM
Thanks Snoopy...

Read the toturial and everything is working!

Glad to here it's OK now.
Title: Re: httpBL
Post by: Exsharaen on December 24, 2010, 12:32:56 PM
Hello snoopy, it's been a long time since my last reply :D this is the new Indonesian translation for httpBL (sorry, been too busy with my lectures):

// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error_2'] = 'Koneksi gagal. Ini dapat berarti kunci API http:BL Anda tidak tepat atau ada masalah pada sistem DNS Anda.';
$txt['httpBL_caught'] = 'Spammer yang dihentikan MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP setiap pengunjung untuk memastikan apakah ada dalam basis data projecthoneypot. Jika ada, mod akan mengarahkan ulang pengunjung ke halaman warning.php, menolak akses ke forum.<br />Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa pengaturan.';
$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API yang Anda tuliskan salah. Periksa dengan teliti dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot yang terinstal di server Anda. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstalnya ke server Anda. Setelah itu, tuliskan di sini tautan ke Honey Pot tersebut, seperti berikut:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda juga harus memiliki sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>  untuk mendaftar dan mendapatkan kunci API, kemudian tuliskan di sini. Harap diperhatikan bahwa mereka tidak akan memberikan kunci API jika Anda tidak menginstal sebuah Honey Pot terlebih dahulu, jadi pastikan Anda sudah menginstalnya.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat spammer. Tuliskan sesuatu yang menarik spammer untuk mengekliknya, jangan sesuatu yang menakutkan. Jika Anda tidak mendapat ide sama sekali, kosongkan saja. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika terjadi masalah dan untuk menunjukkannya ke manusia yang kurang beruntung dengan memiliki IP yang dianggap sebagai spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, sehingga mereka dapat meminta bantuan Anda. Maka dari itu, ini harus berupa alamat email yang valid. Kita membaginya menjadi tiga kata agar robot tidak dapat membacanya. Sebagai contoh, jika alamat email Anda adalah <strong>[email protected]</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda masukkan. Anda tidak dapat mengosongi salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari suatu IP dianggap baik';
$txt['httpBL_bad_last_activity_sub'] = 'Jika dulunya suatu IP adalah milik spammer, namun tidak ada yang melihatnya melakukan sesuatu yang salah sejak paling tidak sejumlah hari ini, kita menganggapnya tidak berbahaya lagi dan mengizinkannya masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberikan tingkat ancaman pada setiap IP yang berubah setiap hari, tergantung apa yang IP tersebut lakukan dan berapa hari yang lalu terjadinya. Setiap IP dengan tingkat ancaman yang lebih rendah dari angka yang Anda berikan di sini diizinkan masuk tanpa harus diperiksa.';
$txt['httpBL_very_bad_threat'] = 'Tingkat ancaman yang dianggap SANGAT buruk';
$txt['httpBL_very_bad_threat_sub'] = 'Setiap IP dengan tingkat ancaman yang lebih tinggi dari angka yang Anda berikan di sini tidak akan dapat masuk sama sekali. IP dengan tingkat ancaman di antara keduanya akan melihat captcha, dan jika dapat membuktikan dirinya manusia, ia diizinkan masuk selama beberapa jam.';
$txt['httpBL_cookie_length'] = 'Jam sampai sebuah IP harus membuktikan lagi bahwa dirinya manusia';
$txt['httpBL_no_negative_here'] = 'Jumlah hari dan tingkat ancaman tidak boleh negatif atau nol.';
$txt['httpBL_no_higher_than'] = 'Tingkat ancaman yang dianggap buruk tidak boleh lebih tinggi dari yang dianggap <strong>SANGAT</strong> buruk.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan di log';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menyalakan opsi ini, Anda akan melihat semua informasi di log, namun mungkin informasinya terlalu banyak dan Anda akan kehilangan fokus. Sesekali lebih baik hanya melihat yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" Anda dengan pengaturan ini (halaman yang akan dilihat siapa saja yang memiliki IP yang dianggap berbahaya), klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan terkait MOD ini, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> atau cobalah cari informasi tambahan dengan <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">membaca tutorial ini</a> <strong>(hanya dalam bahasa Inggris)</strong>.';

// View log page
$txt['httpBL_viewlog'] = 'Log Spammer httpBL';
$txt['httpBL_viewlog_description'] = 'Tiap kali MOD httpBL menghentikan spammer atau mendeteksi kesalahan internal, sebuah catatan akan ditambahkan di sini untuk Anda baca. Ini adalah daftar spammer yang dihentikan mod, baik karena tingkat ancaman mereka lebih tinggi dari tingkat ancaman yang dianggap <strong>SANGAT</strong> buruk, atau mereka tidak dapat membuktikan diri sebagai manusia saat melihat captcha.';
$txt['httpBL_viewlogpass'] = 'Log Manusia httpBL Humans';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan mod namun diizinkan masuk setelah dapat membuktikan diri bahwa mereka bukan robot.';
$txt['httpBL_viewlogerror'] = 'Log Kesalahan httpBL Errors';
$txt['httpBL_viewlogerror_description'] = 'Ini adalah daftar kesalahan internal yang terdeteksi saat memeriksa suatu IP. Tergantung kesalahannya, beberapa IP mungkin dihentikan dan lainnya mungkin diizinkan masuk. Untuk melihat seluruh informasi di sini, Anda harus mengeklik tombol <strong>"Tampilkan informasi tambahan"</strong>.';
$txt['httpBL_log_no_entries'] = 'Tidak ada catatan pada Log Spammer httpBL, baik karena Anda belum menangkap spammer sama sekali atau Anda telah menghapus semua catatan.';
$txt['httpBL_logpass_no_entries'] = 'Tidak ada catatan pada Log Manusia httpBL, baik karena tidak ada yang terbukti sebagai manusia atau Anda telah menghapus semua catatan.';
$txt['httpBL_logerror_no_entries'] = 'Tidak ada catatan pada Log Kesalahan httpBL, baik karena tidak ada kesalahan yang terjadi atau Anda telah menghapus semua catatan.';
$txt['httpBL_viewlog_extra'] = 'Tampilkan informasi tambahan';
$txt['httpBL_viewlog_normal'] = 'Sembunyikan informasi tambahan';
$txt['httpBL_log_show_legend'] = 'Tampilkan legenda';
$txt['httpBL_log_hide_legend'] = 'Sembunyikan legenda';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Tk. Anc.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - tingkat ancaman IP ini pada basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = 'Aktivitas Buruk Terakhir - jumlah hari sejak IP ini terlihat melakukan sesuatu buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen (Harvester) - Robot yang mencari alamat email untuk di-spam nantinya.';
$txt['httpBL_log_comment'] = 'K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis di blog dan forum. Tulisannya biasanya penuh dengan tautan ke situs yang dipromosikan robot ini.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_error_message'] = 'Pesan';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_threat_colors'] = 'Maksud warna:';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman tinggi';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat tinggi';
$txt['httpBL_log_remove_all_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan log httpBL? - Harap diperhatikan aksi ini tidak hanya menghapus seluruh entri pada bagian ini, namun SEMUA ENTRI PADA LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan log httpBL terpilih?';

// Errors
$txt['httpBL_log_no_error'] = 'Tidak ada kesalahan.';
$txt['httpBL_no_errorNumber'] = 'Tidak ada nomor kesalahan.';
$txt['httpBL_no_defined'] = 'Belum terdefinisi.';
$txt['httpBL_answers_captcha'] = 'Jawaban captcha';
$txt['httpBL_answer_captcha'] = 'Jawaban captcha';
$txt['httpBL_good'] = 'Baik';
$txt['httpBL_bad'] = 'Buruk';
$txt['httpBL_empty_ip'] = 'IP Kosong';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Tk. Anc. terlalu tinggi. Tidak menampilkan captcha.';
$txt['httpBL_no_reverse_ip'] = 'Tidak dapat memeriksa. IP tidak normal. Diizinkan masuk.';
$txt['httpBL_log_key_error'] = 'Tidak dapat memeriksa akibat kesalahan kunci API. Diizinkan masuk.';
$txt['httpBL_no_127'] = 'Tidak dapat memeriksa. response[raw] tidak dimulai dengan 127. Diizinkan masuk.';
$txt['httpBL_unknown'] = 'Tidak diketahui';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berganti, saat pengunjung melihat captcha dan terbukti sebagai manusia, mereka diizinkan masuk hanya selama sejumlah jam ini. Setelah itu, IP tersebut mungkin berasal dari komputer lain. Kami tidak menyarankan Anda mengganti lima nilai terakhir sampai Anda paham betul cara mod ini bekerja.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Tidak pernah diperiksa oleh mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Jika perizinan ini diaktifkan, seluruh anggota grup ini akan dapat selalu masuk tanpa diperiksa mod httpBL, sekalipun komputer mereka dikendalikan robot spammer (trojan).<br />---<br />Aktifkan hanya jika Anda tahu apa yang Anda perbuat.';
$txt['httpBL_last_act_too_high'] = 'Aktivitas terakhir sudah lama sekali. Diizinkan masuk.';
$txt['httpBL_threat_too_low'] = 'Tingkat Ancaman terlalu rendah. Diizinkan masuk.';
$txt['httpBL_enable_sub'] = 'Jika kotak cek ini bertanda, mod AKTIF. Jika tidak, mod ini MATI.';
$txt['httpBL_config_sub_3'] = 'Halaman inilah yang akan ditampilkan pada yang tidak terlalu berbahaya (dengan captcha, sehingga mereka dapat membuktikan diri sebagai manusia). Jika Anda ingin memeriksa yang akan tampil untuk yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL AKTIF namun ada masalah koneksi dengan HoneyPot. Silakan coba lagi nanti.';
$txt['httpBL_mod_no_connect_2'] = 'Jika masalah ini terus muncul, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> <strong>(hanya dalam bahasa Inggris)</strong>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL AKTIF namun bukan yang terbaru.';
$txt['httpBL_mod_new_version_2'] = 'Ada versi terbaru mod ini. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Silakan perbarui saat Anda sempat</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL AKTIF, terbaru, dan koneksi dengan HoneyPot sempurna.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL MATI.';
$txt['OS_Browser_Compatible'] = 'kompatibel';
$txt['OS_Browser_OS'] = 'Sistem Operasi';
$txt['OS_Browser_Unknown'] = 'Tidak diketahui';
$txt['OS_Browser_Browser'] = 'Peramban';
$txt['httpBL_cache_length'] = 'Lama menyimpan data di tembolok (dalam menit)';
$txt['httpBL_cache_length_sub'] = 'Tiap kali mod mengecek IP, ia akan menyimpan data pada tembolok (jika diaktifkan) dan pada sesi pengunjung selama jumlah menit yang Anda tuliskan di sini. Jika IP yang sama mengunjungi halaman Anda sebelum waktu ini, mod tidak akan memeriksanya, namun akan menggunakan data yang tersimpan pada tembolok dan/atau sesi.';
$txt['httpBL_view_os_whosonline'] = 'Lihat data peramban dan sistem operasi pada halaman "Pengguna Online"';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL menggunakan fungsi dari "Mod OS & Browser Detection" untuk menampilkan sistem operasi dan peramban yang digunakan seluruh pengunjung di catatan log. Jika Anda ingin melihat pula sistem operasi dan peramban yang digunakan pengunjung situs Anda pada halaman "Pengguna Online", tandai kotak ini. Tentu saja, agar dapat melihatnya (pada log maupun halaman "Pengguna Online"), Anda harus menginstal baik <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> atau <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">add-on kecil untuk melihat sistem operasi dan peramban pada httpBL</a>.';
// MOD httpBL END


A side note: I changed any <b> tag to <strong> tag to comply with XHTML standards. Anyway, some few typos:

Quote$txt['httpBL_config_sub_3'] = 'That\'s the way it is going to appear to the not too dangerous ones. Whith a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (whithout captcha) use this link instead:';

I think it should be with?

Quote$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';

What do you mean by hidding? Do you mean hiding? I didn't translate that line :)

Quote$txt['OS_Browser_OS'] = 'Operative System';

I think it should be operating, but it's just a matter of taste, isn't it? ;)

I also included the translated warning.php, along with some corrections to the typos, and in as few lines as possible so the layout is not screwed up. Hope it's useful for everyone.

Merry Christmas!
Title: Re: httpBL
Post by: snoopy_virtual on December 24, 2010, 03:04:03 PM
Quote from: Exsharaen on December 24, 2010, 12:32:56 PM
Hello snoopy, it's been a long time since my last reply :D this is the new Indonesian translation for httpBL (sorry, been too busy with my lectures):

Hi Exsharaen, pleased to see you here again.

I have bad news for you. I have been very busy during the last month doing the next version for this mod (2.5) and I have it almost ready. In fact this new version was almost finished a couple of weeks ago and it's not ready because all the problems I had lately with my other mod "Stop Spammer" and with the "SMF Spanish Translator's Team". But it seems that both these problems are a little more settled now, so I hope I will have time now to finish at last the new version in just a few days.

This new version 2.5 have a lot of changes and new features, so I have changed lots of language lines and have added also a lot of new ones. I have even changed too the warning page. You will see it as soon as I have it ready.

I suppose that will mean you will need to check again all the work you did here. Sorry. Anyway I have tried (as I did with the last version) to keep separate the lines changed and the new lines in this version, to make life easier for translators, but (even with that) there are a lot.

======================

Let's see the points you talk about here:

Quote from: Exsharaen on December 24, 2010, 12:32:56 PM
I changed any <b> tag to <strong> tag to comply with XHTML standards.

You are right. I saw that some time ago, but forgot to do it. I should change it as well, not only in all the language files, but also in the template file.

Quote from: Exsharaen on December 24, 2010, 12:32:56 PM
Whith a captcha, ...

I think it should be with?

Yes, I saw that one and it's already corrected in version 2.5

Quote from: Exsharaen on December 24, 2010, 12:32:56 PM
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';

What do you mean by hidding? Do you mean hiding? I didn't translate that line :)

It is a typo. It should be hiding. In that part is talking about the hiding fields I put in the captcha, only visible to robots. Anybody writing on those fields is not human for sure.

Quote from: Exsharaen on December 24, 2010, 12:32:56 PM
$txt['OS_Browser_OS'] = 'Operative System';

I think it should be operating, but it's just a matter of taste, isn't it? ;)

English is not my native language, so I am not sure about that. I am only sure as how we say it in Spanish. In English I have seen it always as Operative System but I suppose we could ask all the British and Americans around here. They should know.  ;)

======================

Thanks for your translation, and sorry again you will need to re-check it again in a few days.

And Merry Christmas to you too.  ;)
Title: Re: httpBL
Post by: Exsharaen on December 26, 2010, 01:21:52 AM
That's OK, I will gladly translate it again. Now you make me curious about the new version ;D
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 07:35:57 PM
MOD httpBL v2.5
============











Author:snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
Version:2.5
Release:27th December 2010
Languages:(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
Compatible With:SMF 1.1.1 - 1.1.12

SMF 2 RC2 - RC3 - RC4

Change Log:



Quote
Version 2.5 - 27th December 2010

  +Added a help section
  +Added the page index at the bottom of the log pages too (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2828764#msg2828764)
  *Changed again the function get_real_IP() (See here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=362.0)
  +Added a new variable to the config page to see 2 languages or just one in the warning page
  *Changed the config page to make it easier to understand
  +Added a new button to the log pages to delete the entries of just one log (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2875367#msg2875367)
  !Sorted the bug Undefined index: REQUEST_URI (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2804696#msg2804696)
  !Sorted the bug TEXT column can't get default values (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2842435#msg2842435)
  !Sorted the bug about log pages displaying wrongly (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2857270#msg2857270)
  !corrected a few typos (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2814818#msg2814818) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2890848#msg2890848)
  *Changed 10 lines and added 78 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using

QuoteLegend

oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

As you can see this new version has a lot of changes. I will try to update the tutorial as soon as possible to explain them there, but in the mean time if there is anything you don't understand just ask as always.
Title: Re: httpBL
Post by: Wizzlefits on December 27, 2010, 07:50:40 PM
SWEET!  ;D
You have been busy!
Oh, you forgot the "Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

The little tweak to SP has had an unexpected (good) effect.
Read the last pm & email me. LOL!!!
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 08:14:20 PM
What tweak to SP? I'm lost now.

EDIT: I get it. I thought you were talking about Simple Portal. lol

Almost everything are new features already requested here or bugs also reported here. The only really new thing from my own side has been the new "Help" section and the changes in the "Config" section.

Check them out. You are going to like them.

Quote from: Wizzlefits on December 27, 2010, 07:50:40 PM
Oh, you forgot the "Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

I hope I haven't forgotten any more things lol
Title: Re: httpBL
Post by: butchs on December 27, 2010, 08:26:17 PM
No comment.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 10:38:41 PM
"Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

MOD httpBL v2.5.1
=============


Author:snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
Version:2.5.1
Release:28th December 2010
Languages:(http://www.simplemachines.org/site_images/lang/english.gif) (http://www.simplemachines.org/site_images/lang/english_british.gif) (http://www.simplemachines.org/site_images/lang/spanish.gif) (http://www.simplemachines.org/site_images/lang/spanish_latin.gif)
Compatible With:SMF 1.1.1 - 1.1.12
SMF 2 RC2 - RC3 - RC4

Change Log:



Quote
Version 2.5.1 - 28th December 2010

  *Changed the design of the help page. It was not displaying properly with some Themes
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using

QuoteLegend

oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

I had the new version 2.5 already installed in a few forums when suddenly I found out in one of them the new "Help" section was not displaying properly because of a mistake in the HTML design.

It's not a big deal, but it was very difficult to read it, so I have change the design.

If you see any other Themes where that new section is not displaying properly, let me know and I will see if I can do anything better there.

Luckily very few people had already installed the version 2.5 because now they will need to update again. Sorry.
Title: Re: httpBL
Post by: Gianni_T on December 28, 2010, 04:30:22 AM
Hi,
what's the exact procedure to update httpBL from 2.4 to 2.5.1?
Do I have to setup again all the module settings after the update?

Thanks in advance.
Title: Re: httpBL
Post by: Exsharaen on December 28, 2010, 10:44:02 AM
@Gianni_T: The settings are left intact; I uninstalled 2.4, installed 2.5.1 and they are back.

@snoopy: I wonder why I got this error when uninstalling httpBL 2.4 prior to update to 2.5.1:

QuoteFatal error: require_once() [function.require]: Failed opening required '/my_forum_path/Sources/httpBL_Subs.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /my_forum_path/Sources/Load.php on line 524

I'll edit Load.php and see what's causing it.

EDIT:
This is weird, the httpBL codes are still there, the one that says

global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}


Somehow my Load.php didn't revert back. I commented those lines and regained access, and found something silly: All previous httpBl installations were still there; I forgot to delete them :P deleting them causes some fatal errors at the end of every page (still says something about missing lines for httpBL), but they are gone once I installed 2.5.1.

I'll translate now for the missing lines (magically some lines are already translated ;D).

Thanks and have a nice day,

EDIT 2:

I am a little bit reluctant to translate the Help section, since it's heavily related to... you ;D I think translating it will lose some of its meaning, and people may assume you can speak in any language (even though when refering to other site only in English, I always give a little warning at the translated strings). Lest, if you still want me to translate this section, I will try to translate it appropriately, so people won't be disappointed after knowing you only speak English :)

This is my current translation, without the HELP section:

// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error_2'] = 'Koneksi gagal. Ini dapat berarti kunci API http:BL Anda tidak tepat atau ada masalah pada sistem DNS Anda.';
$txt['httpBL_caught'] = 'Spammer yang dihentikan MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP setiap pengunjung untuk memastikan apakah ada dalam basis data projecthoneypot. Jika ada, mod akan mengarahkan ulang pengunjung ke halaman warning.php, menolak akses ke forum.<br />Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa pengaturan.';
$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API yang Anda tuliskan salah. Periksa dengan teliti dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot yang terinstal di server Anda. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstalnya ke server Anda. Setelah itu, tuliskan di sini tautan ke Honey Pot tersebut, seperti berikut:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda juga harus memiliki sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>  untuk mendaftar dan mendapatkan kunci API, kemudian tuliskan di sini. Harap diperhatikan bahwa mereka tidak akan memberikan kunci API jika Anda tidak menginstal sebuah Honey Pot terlebih dahulu, jadi pastikan Anda sudah menginstalnya.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat spammer. Tuliskan sesuatu yang menarik spammer untuk mengekliknya, jangan sesuatu yang menakutkan. Jika Anda tidak mendapat ide sama sekali, kosongkan saja. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika terjadi masalah dan untuk menunjukkannya ke manusia yang kurang beruntung dengan memiliki IP yang dianggap sebagai spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, sehingga mereka dapat meminta bantuan Anda. Maka dari itu, ini harus berupa alamat email yang valid. Kita membaginya menjadi tiga kata agar robot tidak dapat membacanya. Sebagai contoh, jika alamat email Anda adalah <strong>[email protected]</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda masukkan. Anda tidak dapat mengosongi salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari suatu IP dianggap baik';
$txt['httpBL_bad_last_activity_sub'] = 'Jika dulunya suatu IP adalah milik spammer, namun tidak ada yang melihatnya melakukan sesuatu yang salah sejak paling tidak sejumlah hari ini, kita menganggapnya tidak berbahaya lagi dan mengizinkannya masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberikan tingkat ancaman pada setiap IP yang berubah setiap hari, tergantung apa yang IP tersebut lakukan dan berapa hari yang lalu terjadinya. Setiap IP dengan tingkat ancaman yang lebih rendah dari angka yang Anda berikan di sini diizinkan masuk tanpa harus diperiksa.';
$txt['httpBL_very_bad_threat'] = 'Tingkat ancaman yang dianggap SANGAT buruk';
$txt['httpBL_very_bad_threat_sub'] = 'Setiap IP dengan tingkat ancaman yang lebih tinggi dari angka yang Anda berikan di sini tidak akan dapat masuk sama sekali. IP dengan tingkat ancaman di antara keduanya akan melihat captcha, dan jika dapat membuktikan dirinya manusia, ia diizinkan masuk selama beberapa jam.';
$txt['httpBL_cookie_length'] = 'Jam sampai sebuah IP harus membuktikan lagi bahwa dirinya manusia';
$txt['httpBL_no_negative_here'] = 'Jumlah hari dan tingkat ancaman tidak boleh negatif atau nol.';
$txt['httpBL_no_higher_than'] = 'Tingkat ancaman yang dianggap buruk tidak boleh lebih tinggi dari yang dianggap <strong>SANGAT</strong> buruk.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan di catatan';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menyalakan opsi ini, Anda akan melihat semua informasi di catatan, namun mungkin informasinya terlalu banyak dan Anda akan kehilangan fokus. Sesekali lebih baik hanya melihat yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" Anda dengan pengaturan ini (halaman yang akan dilihat siapa saja yang memiliki IP yang dianggap berbahaya), klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan terkait MOD ini, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> atau cobalah cari informasi tambahan dengan <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">membaca tutorial ini</a> <strong>(hanya dalam bahasa Inggris)</strong>.';

// View log page
$txt['httpBL_viewlog'] = 'Catatan Spammer httpBL';
$txt['httpBL_viewlog_description'] = 'Tiap kali MOD httpBL menghentikan spammer atau mendeteksi kesalahan internal, sebuah catatan akan ditambahkan di sini untuk Anda baca. Ini adalah daftar spammer yang dihentikan mod, baik karena tingkat ancaman mereka lebih tinggi dari tingkat ancaman yang dianggap <strong>SANGAT</strong> buruk, atau mereka tidak dapat membuktikan diri sebagai manusia saat melihat captcha.';
$txt['httpBL_viewlogpass'] = 'Catatan Manusia httpBL';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan mod namun diizinkan masuk setelah dapat membuktikan diri bahwa mereka bukan robot.';
$txt['httpBL_viewlogerror'] = 'Catatan Kesalahan httpBL';
$txt['httpBL_viewlogerror_description'] = 'Ini adalah daftar kesalahan internal yang terdeteksi saat memeriksa suatu IP. Tergantung kesalahannya, beberapa IP mungkin dihentikan dan lainnya mungkin diizinkan masuk. Untuk melihat seluruh informasi di sini, Anda harus mengeklik tombol <strong>"Tampilkan informasi tambahan"</strong>.';
$txt['httpBL_log_no_entries'] = 'Tidak ada catatan pada Catatan Spammer httpBL, baik karena Anda belum menangkap spammer sama sekali atau Anda telah menghapus semua catatan.';
$txt['httpBL_logpass_no_entries'] = 'Tidak ada catatan pada Catatan Manusia httpBL, baik karena tidak ada yang terbukti sebagai manusia atau Anda telah menghapus semua catatan.';
$txt['httpBL_logerror_no_entries'] = 'Tidak ada catatan pada Catatan Kesalahan httpBL, baik karena tidak ada kesalahan yang terjadi atau Anda telah menghapus semua catatan.';
$txt['httpBL_viewlog_extra'] = 'Tampilkan informasi tambahan';
$txt['httpBL_viewlog_normal'] = 'Sembunyikan informasi tambahan';
$txt['httpBL_log_show_legend'] = 'Tampilkan legenda';
$txt['httpBL_log_hide_legend'] = 'Sembunyikan legenda';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Tk. Anc.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - tingkat ancaman IP ini pada basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = 'Aktivitas Buruk Terakhir - jumlah hari sejak IP ini terlihat melakukan sesuatu buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen (Harvester) - Robot yang mencari alamat email untuk di-spam nantinya.';
$txt['httpBL_log_comment'] = 'K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis di bcatatan dan forum. Tulisannya biasanya penuh dengan tautan ke situs yang dipromosikan robot ini.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_error_message'] = 'Pesan';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_threat_colors'] = 'Maksud warna:';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman tinggi';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat tinggi';
$txt['httpBL_log_remove_all_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan httpBL? - Harap diperhatikan aksi ini tidak hanya menghapus seluruh entri pada bagian ini, namun SEMUA ENTRI PADA CATATAN.';
$txt['httpBL_log_remove_selected_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan httpBL terpilih?';

// Errors
$txt['httpBL_log_no_error'] = 'Tidak ada kesalahan.';
$txt['httpBL_no_errorNumber'] = 'Tidak ada nomor kesalahan.';
$txt['httpBL_no_defined'] = 'Belum terdefinisi.';
$txt['httpBL_answers_captcha'] = 'Jawaban captcha';
$txt['httpBL_answer_captcha'] = 'Jawaban captcha';
$txt['httpBL_good'] = 'Baik';
$txt['httpBL_bad'] = 'Buruk';
$txt['httpBL_empty_ip'] = 'IP Kosong';
$txt['httpBL_wrote_hiding'] = 'Ditulis di tempat tersembunyi';
$txt['httpBL_no_show_captcha'] = 'Tk. Anc. terlalu tinggi. Tidak menampilkan captcha.';
$txt['httpBL_no_reverse_ip'] = 'Tidak dapat memeriksa. IP tidak normal. Diizinkan masuk.';
$txt['httpBL_log_key_error'] = 'Tidak dapat memeriksa akibat kesalahan kunci API. Diizinkan masuk.';
$txt['httpBL_no_127'] = 'Tidak dapat memeriksa. response[raw] tidak dimulai dengan 127. Diizinkan masuk.';
$txt['httpBL_unknown'] = 'Tidak diketahui';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'Agen Pengguna';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berganti, saat pengunjung melihat captcha dan terbukti sebagai manusia, mereka diizinkan masuk hanya selama sejumlah jam ini. Setelah itu, IP tersebut mungkin berasal dari komputer lain. Kami tidak menyarankan Anda mengganti lima nilai terakhir sampai Anda paham betul cara mod ini bekerja.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Tidak pernah diperiksa oleh mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Jika perizinan ini diaktifkan, seluruh anggota grup ini akan dapat selalu masuk tanpa diperiksa mod httpBL, sekalipun komputer mereka dikendalikan robot spammer (trojan).<br />---<br />Aktifkan hanya jika Anda tahu apa yang Anda perbuat.';
$txt['httpBL_last_act_too_high'] = 'Aktivitas terakhir sudah lama sekali. Diizinkan masuk.';
$txt['httpBL_threat_too_low'] = 'Tingkat Ancaman terlalu rendah. Diizinkan masuk.';
$txt['httpBL_enable_sub'] = 'Jika kotak cek ini bertanda, mod AKTIF. Jika tidak, mod ini MATI.';
$txt['httpBL_config_sub_3'] = 'Halaman inilah yang akan ditampilkan pada yang tidak terlalu berbahaya (dengan captcha, sehingga mereka dapat membuktikan diri sebagai manusia). Jika Anda ingin memeriksa yang akan tampil untuk yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL AKTIF namun ada masalah koneksi dengan HoneyPot. Silakan coba lagi nanti.';
$txt['httpBL_mod_no_connect_2'] = 'Jika masalah ini terus muncul, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> <strong>(hanya dalam bahasa Inggris)</strong>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL AKTIF namun bukan yang terbaru.';
$txt['httpBL_mod_new_version_2'] = 'Ada versi terbaru mod ini. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Silakan perbarui saat Anda sempat</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL AKTIF, terbaru, dan koneksi dengan HoneyPot sempurna.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL MATI.';
$txt['OS_Browser_Compatible'] = 'kompatibel';
$txt['OS_Browser_OS'] = 'Sistem Operasi';
$txt['OS_Browser_Unknown'] = 'Tidak diketahui';
$txt['OS_Browser_Browser'] = 'Peramban';
$txt['httpBL_cache_length'] = 'Lama menyimpan data di tembolok (dalam menit)';
$txt['httpBL_cache_length_sub'] = 'Tiap kali mod mengecek IP, ia akan menyimpan data pada tembolok (jika diaktifkan) dan pada sesi pengunjung selama jumlah menit yang Anda tuliskan di sini. Jika IP yang sama mengunjungi halaman Anda sebelum waktu ini, mod tidak akan memeriksanya, namun akan menggunakan data yang tersimpan pada tembolok dan/atau sesi.';
$txt['httpBL_view_os_whosonline'] = 'Lihat data peramban dan sistem operasi pada halaman "Pengguna Online"';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Pengaturan';
$txt['httpBL_honeyPot_link_sub'] = 'Setelah menginstal Honey Pot di server Anda, tuliskan di sini tautannya, yang berbentuk seperti ini:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Harap perhatikan bahwa Project Honey Pot tidak akan memberikan kunci jika Anda belum menginstal Honey Pot, jadi sebaiknya lakukan itu dulu.';
$txt['httpBL_viewlog'] = 'Catatan Spammer';
$txt['httpBL_viewlogpass'] = 'Catatan Manusia';
$txt['httpBL_viewlogerror'] = 'Catatan Kesalahan';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan oleh mod namun diizinkan masuk setelah membuktikan mereka bukan robot, dan seluruh pengunjung yang terdeteksi sebagai spammer pada basis data namun dengan tingkat ancaman yang lebih rendah dari "Tingkat ancaman yang dianggap buruk" pada pengaturan Anda, sehingga mereka tidak dihentikan.';
$txt['httpBL_info_email_desc'] = 'Mod membutuhkan alamat email Anda untuk memberitahu Anda jika ada masalah dan pada siapapun yang kurang beruntung dengan memiliki alamat IP yang dianggap spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, jadi mereka dapat meminta bantuan Anda. Karena itu, ini harus berupa alamat email yang benar. Kita membaginya menjadi tiga kata agar tidak terbaca robot. Sebagai contoh, jika alamat email Anda adalah <strong>[email protected]</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berubah, ketika pengunjung melihat captcha dan membuktikan diri sebagai manusia, pengunjung diizinkan masuk hanya selama beberapa jam yang Anda tentukan di sini. Setelah itu, IP-nya mungkin berasal dari komputer lain.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL menggunakan fungsi dari "Mod OS & Browser Detection" untuk menampilkan sistem operasi dan peramban yang digunakan seluruh pengunjung di catatan. Jika Anda ingin melihat pula sistem operasi dan peramban yang digunakan pengunjung situs Anda pada halaman "Pengguna Online", tandai kotak ini. Tentu saja, agar dapat melihatnya (pada catatan maupun halaman "Pengguna Online"), Anda harus menginstal baik <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> atau <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">add-on kecil untuk melihat sistem operasi dan peramban pada httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
$httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
$httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'Pengaturan Umum';
$txt['httpBL_general_settings_desc'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot (yang terinstal pada server Anda) dan sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstal Honey Pot pada server Anda, serta meminta kunci API http:BL Anda.';
$txt['httpBL_info_email'] = 'Alamat email Anda';
$txt['httpBL_internal_settings'] = 'Pengaturan Internal';
$txt['httpBL_internal_settings_desc'] = 'Berikut adalah pengarutan internal untuk mengendalikan cara kerja mod httpBL. Tidak disarankan untuk menggantinya hingga Anda mengetahui persis pengaruhnya ke cara kerja mod ini.';
$txt['httpBL_extra_settings'] = 'Pengaturan Tambahan';
$txt['httpBL_extra_settings_desc'] = 'Pengaturan lainnya yang mungkin ingin Anda ganti.';
$txt['httpBL_warning_settings'] = 'Pengaturan Halaman Peringatan';
$txt['httpBL_warning_settings_desc'] = 'Jika Anda ingin melihat tampilan halaman "warning.php" dengan pengaturan ini (halaman yang akan dilihat setiap pengunjung dengan IP dianggap berbahaya), klik di sini: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br />Halaman tersebut yang akan tampil untuk pengunjung yang tidak terlalu berbahaya, dengan captcha agar mereka dapat membuktikan diri sebagai manusia. Jika Anda ingin melihat halaman yang sama untuk pengunjung yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br />Jika Anda ingin mengganti desainnya atau menerjemahkannya dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan tentang mod ini, Anda akan menemukan informasi lebih banyak di <a href="'. $httpBL_help_link. '">bagian BANTUAN httpBL</a> (sementara dalam bahasa Inggris).';
$txt['httpBL_use_two_languages'] = 'Gunakan dua bahasa pada halaman peringatan';
$txt['httpBL_use_two_languages_sub'] = 'Pada dasarnya, halaman peringatan terdiri dari dua bahasa: Inggris dan Indonesia, sehingga seluruh pengunjung dapat memahami arti halaman tersebut. Jika dimatikan, halaman tersebut hanya akan tampil dalam bahasa Inggris.';
$txt['httpBL_horizontal_separator'] = 'Pemisah mendatar untuk halaman peringatan';
$txt['httpBL_horizontal_separator_sub'] = 'Pemisah mendatar dasar untuk setiap blok dalam halaman peringatan menggunakan &lt;hr /&gt; (garis mendatar abu-abu), namun Anda dapat menggantinya dengan apa saja menggunakan HTML.<br />
Sebagai contoh, &lt;br /&gt; akan memberi Anda sebuah garis polos.<br />
Atau Anda bisa menggunakan gambar garis mendatar yang Anda suka dengan menuliskan:<br />
&lt;img src="http://www.situsanda.com/gambar_apapun.jpg" alt="" border="0" /&gt;<br />
(Ganti tautan di dalam src="" dengan path sebenarnya ke gambar Anda).';
$txt['httpBL_log_clear_this_log'] = 'Bersihkan catatan ini';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Spammer MOD httpBL?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Manusia MOD httpBL?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Kesalahan MOD httpBL?';

// MOD httpBL END


As for the warning.php, the translation stays the same :)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 12:58:14 PM
Quote from: Gianni_T on December 28, 2010, 04:30:22 AM
Hi,
what's the exact procedure to update httpBL from 2.4 to 2.5.1?
Do I have to setup again all the module settings after the update?

Thanks in advance.

Exsharaen is right. When you uninstall your old version and install the new one all your settings are left untouched. Check them just in case, but they should be exactly the same as before.

You should worry now only about the 2 new settings controlling the design of your warning page. (The last 2 settings). You didn't have them before.

Another thing I always do before uninstalling a version of httpBL and installing a new one is to save a copy of my warning_css.css file, as it always get overwritten when installing a new version, and I have a different version of that file for every forum.

The file warning_css.css is the css for the warning page and you can modify it to give it the feeling you want for every forum. I will talk more about this in the tutorial when I arrive to that part, but you can see here a couple of examples of how a warning page looks after tweaking a little the css file:

Forum: http://www.snoopyvirtualstudio.com/foro/
Warning page: http://www.snoopyvirtualstudio.com/foro/warning.php

Forum: http://www.snoopyvirtualstudio.com/miel/
Warning page: http://www.snoopyvirtualstudio.com/miel/warning.php

As you can see, in the first one I changed completely the design. The warning page looks completely different as the forum, but in the second example they look almost exactly the same.

In both cases I just played a little with the css file (apart from a small change inside the warning page in the first one).

Quote from: Exsharaen on December 28, 2010, 10:44:02 AM
@snoopy: I wonder why I got this error when uninstalling httpBL 2.4 prior to update to 2.5.1:

QuoteFatal error: require_once() [function.require]: Failed opening required '/my_forum_path/Sources/httpBL_Subs.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /my_forum_path/Sources/Load.php on line 524

...

This is weird, the httpBL codes are still there ...

...

Somehow my Load.php didn't revert back. ...

That's strange. When uninstalling it should erase all the lines in the Sources files. Anyway it has happened to me a couple of times when uninstalling other mods. Luckily if doesn't happen very often, but when it happens the only solution is what you did: Check all the files and do the changes manually.

I don't think it's a fault in any mod or in the Package Manager. I suppose it must be that the server is too busy doing something else at that particular moment and fail to follow all the instructions the Package Manager is asking it to do.

The only file is never touched when I uninstall a version of httpBL is the file index.template.php, because I don't use the default Theme, so I always get a few errors saying "Fatal error: require_once() ....." (but referring to that index.template.php file, not the Load.php one).

I could easily avoid those errors editing manually my index.template.php when uninstalling, but then I would need to edit it again after installing the new version (to put it back the same way it was) so its easier for me just to ignore those errors and delete them from the "Forum Error Log" after updating.

Quote from: Exsharaen on December 28, 2010, 10:44:02 AM
I am a little bit reluctant to translate the Help section, since it's heavily related to... you ;D I think translating it will lose some of its meaning, and people may assume you can speak in any language (even though when refering to other site only in English, I always give a little warning at the translated strings). Lest, if you still want me to translate this section, I will try to translate it appropriately, so people won't be disappointed after knowing you only speak English :)

I think you are right. I suppose you have seen I have added anyway a warning saying that I am only fluent in English and Spanish, but there are a lot of people who never read the warnings.  ;D

If anybody calls me speaking Indonesian I suppose I wouldn't even recognize what language they were speaking.  ;D

Also, inside the help section, the English part is pointing to web pages (tutorial, forums, etc) in English and the Spanish part to web sites in Spanish. So I suppose if you translate the Help section to Indonesian you should need to translate as well the tutorial, open a support thread in Indonesian, change my Skype ID to yours, etc. Too much hassle. (Unless you like to complicate your live).  ;)

===============

Just a small question:

I have separated now the languages files in 2 different ones, saving one of them with UTF-8 encoding and the other one with ISO-8859-15 (valid for English and Spanish).

I want to do the same with Indonesian, but I am not sure which ones I should use. One of them will be UTF-8 (of course) but the other one?
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 07:51:44 PM
Hey Snoopy_Virtual.

I downloaded your mod (version 2.4) and thought it was mandatory to add the OS/Browser Plugin (not the add-on).
But then, the new 2.5.1 version came out, so I uninstalled (but did not remove) the OS/Browser Plugin, and HTTPBL, and installed the new 2.5.1 version and its companion OS Plugin.

My problem is, when I go to the forum and look at the threads, now there's this large empty space between the members' info on the left and their thread.  The space was previously taken by their OS/Browser Info (WindowsXP/Windows XP, Mozilla Firefox version x.xxx, etc.).

How do I revert this back to normal?  Even when I uninstall everything, the tables are still somewhat messed up.  Even with the add-on correctly installed, it's still too wide and now I'm thinking I'll have to edit the Template's section to shrink that part of the forum tables... I think I may have messed something up even though everything installed/uninstalled properly.  And you logged out of Skype before I could catch you. xD

Here's an image of the problem.  The problem is highlighted in red with white letters:
(http://www.inverteddungeon.com/jorgefuentes/images3/OSBrowser-error.png)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 08:43:18 PM
Quote from: Jorge D. Fuentes on December 28, 2010, 07:51:44 PM
I downloaded your mod (version 2.4) and thought it was mandatory to add the OS/Browser Plugin (not the add-on).
But then, the new 2.5.1 version came out, so I uninstalled (but did not remove) the OS/Browser Plugin, and HTTPBL, and installed the new 2.5.1 version and its companion OS Plugin.

I don't really get what you mean. When you say you installed OS/Browser Plugin Do you mean "Mod OS & Browser Detection" made by "X3mE"?

It's not mandatory to install it at all if you don't want. It is a completely different mod that has nothing to do with mod httpBL. They are independent and you can install or uninstall any of the 2 without any problem.

Mod httpBL uses one of the functions inside the other mod to display the OS/Browser inside the logs and inside the "Who's online" page while the "Mod OS & Browser Detection" displays the OS/Browser inside the threads of the forum.

You shouldn't have uninstalled "Mod OS & Browser Detection" to update mod httpBL.

Anyway I think all that will be a lot more clear once I have time to finish the tutorial (I hope).

Quote from: Jorge D. Fuentes on December 28, 2010, 07:51:44 PM
My problem is, when I go to the forum and look at the threads, now there's this large empty space between the members' info on the left and their thread.  The space was previously taken by their OS/Browser Info (WindowsXP/Windows XP, Mozilla Firefox version x.xxx, etc.).

If the empty space is in the threads it means somehow the installation of "Mod OS & Browser Detection" has been messed up when uninstalling and re-installing it.

Anyway, even as that mod is not mine, I can help you putting it back properly, because I use it, so I have read all the code inside (as I always do with all the mods I use) and I know it very well.

Quote from: Jorge D. Fuentes on December 28, 2010, 07:51:44 PM
And you logged out of Skype before I could catch you. xD

I logged out because it was 2 in the morning here and I thought I should go to bed, but I have found some interesting posts to read and I am still awake, so since I saw your post I have logged in again in Skype and will be there for a while yet.  ;)

If I don't see you today I'll see you tomorrow and we take a look at that.
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 08:49:24 PM
Ok, let me talk to you on skype then.  Then I can explain it all more easily.
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 10:48:21 PM
Thanks for all of your help.
That was pretty awesome, and I learned a lot, so Kudos to you, sir! :)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 11:17:09 PM
No problem at all.

Actually I learn a lot when I'm teaching something (believe it or not). The big problem normally is with the people that comes to you saying "They know everything and you can teach them nothing" (I'm thinking on a few examples just now).

With this kind of people usually you find out at the end there is nothing to learn from them and, as much as I like to teach, I like even more to learn new things every day.

If you get what I mean.  ;)
Title: Re: httpBL
Post by: Baby Daisy on December 29, 2010, 01:07:26 AM
Thank you for the effort you put into this modification. :)
Title: Re: httpBL
Post by: snoopy_virtual on December 29, 2010, 06:47:59 AM
Quote from: Baby Moonview Daisy on December 29, 2010, 01:07:26 AM
Thank you for the effort you put into this modification. :)

You're welcome.
Title: Re: httpBL
Post by: V@no on December 29, 2010, 01:37:08 PM
Hello.

I haven't update to v2.5.1 yet, and don't know if this has been changed since v2.4 (which I have right now), but would it be possible display what is currently installed version and what is new version in this message:
QuoteMod httpBL is ON but it is not up-to-date.
It's not a big deal, but would be convenient ;)

Thank you.
Title: Re: httpBL
Post by: snoopy_virtual on December 29, 2010, 05:30:13 PM
Not a bad idea. I will write it down to do it whenever I can.

Just now it's not done. It only tells you the mod is not up-to-date, but you need to check manually what version you have and what version is in the download page.
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 12:33:15 PM
Hi, Happy New Year. :) I have a feature request for an ip whitelist facility. I have a couple of regular users, one is a moderator, who access the site from large institutions (one a university and the other a medical establishment) where the IT departments aren't bothered if they (staff) are blacklisted and the severity is enough to not offer them the captcha. I can customise it myself but would have to patch for each new release, maybe this is a feature others could use as well?
Title: Re: httpBL
Post by: EL34 on January 02, 2011, 12:37:07 PM
I also have a moderator that accesses the forum from a university
He gets flagged as a spammer because of the IP's he is forced to use.

Some way to white list him and others would be great.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 12:49:32 PM
That feature was done since version 2.4 last October.

The white list is not done by IPs as they can change very often if you got a dynamic one. It's done by membergroups.

Just go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod, edit the permissions for that group and you will find that permission there. It's the first one in the left hand side (if I remember correctly).

You can have as many "trusted" groups as you want.

If you only trust one guy and don't trust the whole group, make a new group, change the permission for just that group, and put your friend in that group (not as his primary group, but as one of the "additional groups")
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 12:54:41 PM
Yes I understand and have done that much, but this requires that they don't log out, which in a multi-user environment is potentially not secure, if you see what I mean.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:11:38 PM
If I put a white list by IP and they are coming from a multi-user environment it's even worse.

Everybody coming from that IP will be able to do whatever they want in the forum at any time.

If the mod is stopping that IP the most likely reason is they may have a trojan in the computer.

We already had that problem a couple of times here. I don't remember what companies they were (I think one of them was from somebody working in the Yankees Stadium in New York or something like that). They ended up explaining the problem to the IT responsible there, doing a check up and finding a big trojan hiding in one of the computers. They wouldn't have known about the trojan if it wouldn't have been for this problem.

Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:14:57 PM
Anyway, if an IP is blacklisted in Project Honey Pot, you can always go to their site, explain the problem to them and ask them to white list that particular IP.

If they know something about that IP that prevent them from white list it they will tell you.
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 01:23:28 PM
I'm sorry, you're right actually, I told them before that they only needed to visit the ProjectHoneyPot ip search page from the offending ip to get whitelisted themselves without bothering the IT Dept (according to the Project website) and they didn't bother looking at it as far as I know, so nevermind. ;) Thank you for the quick response though.

Love this mod, between it and stopforumspam, I have had only one spam post in a month, instead of the previous few daily.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:59:50 PM
If you are using SMF 2 go to Admin => Security and Moderation => Anti-Spam => Verification Questions

If you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
Title: Re: httpBL
Post by: EL34 on January 02, 2011, 04:02:58 PM
QuoteJust go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod

Thanks Snoop
I changed my moderators to not be checked by httpbl
Title: Re: httpBL
Post by: henrik1782 on January 08, 2011, 10:11:34 PM
Hi

Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

Best regards
Henrik Poulsen
Title: Re: httpBL
Post by: snoopy_virtual on January 09, 2011, 10:55:22 PM
Quote from: henrik1782 on January 08, 2011, 10:11:34 PM
Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

The system used by Honey Pot is dynamic and it's changing every day. You need to check in your logs to see the actual figures, but let's say for example you have configured your mod like this:

Allow in all the users with Threat Level less than 10
Show a warning page with captcha to all the users with Threat Level between 10 and 30
Stop completely all the users with Threat Level higher than 30

Now let's say a user with Threat Level 11 arrives to your forum. They will see the warning with a captcha.

Now imagine this IP is not doing anything wrong any more. The Threat Level will go down every day. So lets say the next day the Threat Level is only 9. They will pass with no problem.

===============

This is only one case, but there are a lot more possibilities for this to happen. The only way to know exactly which one of them is happening in your forum will be to see your logs.
Title: Re: httpBL
Post by: EL34 on January 12, 2011, 07:31:50 AM
SMF 1.1.12
httpBL 2.5.1

Yo Snoop,
I am seeing the errors below in the forum log, not the httpBL error log.

Both errors below were for the same Guest, not a forum member.
Saw a bunch of these errors yesterday, all for guest,  but did not have time to report them.

8: Undefined variable: ip
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 519

2: Missing argument 1 for httpbl_look_for_empty_ip()
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 517
Title: Re: httpBL
Post by: snoopy_virtual on January 14, 2011, 06:19:25 AM
Hi EL34

I have been trying to duplicate those errors you have seen, but I cannot do it.

I don't get any errors at all in any of my forums.

You must have something else interfering with mod httpBL, but I cannot find out what it may be.

If you are still getting those errors try to contact me to see if we can sort it.
Title: Re: httpBL
Post by: EL34 on January 14, 2011, 07:13:15 AM
Hey Snoop,
It only happened on two days and has not happenned since.

If I see it happen again I'll report back.

Here is a screen shot of my package screen.
Title: Re: The Spam killer Team
Post by: Sea Mac on January 14, 2011, 03:54:56 PM
I have administrative access to FIVE SMF 1.1.12 forums that use the httpBL MOD (3 I own and 2 I've been left in charge of) and the Stop Spammer MOD. Since installing this MOD May 24th 44436 Bad IPs have been spit out of those forums: and about 500 stopped by Stop Spammer!

Thank You. I wish I could have donated 10 times as much!
Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2011, 08:17:33 AM
Quote from: Sea Mac on January 14, 2011, 03:54:56 PM
Thank You. I wish I could have donated 10 times as much!

Hey Sea Mac. Every little helps ... Thank You.  ;)
Title: Warning screen .. wrong logo
Post by: Lou69 on January 16, 2011, 12:23:39 PM
Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

Title: Re: Warning screen .. wrong logo
Post by: snoopy_virtual on January 16, 2011, 01:06:58 PM
Quote from: Lou69 on January 16, 2011, 12:23:39 PM
Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

Open the page warning.php

Look for this code:


    <div id="warn_logo" class="catbg">';

// You can change all the staff here inside the div id="warn_logo" to whatever you want
// Just be sure you don't put here any links at all, just pictures or text.
if (empty($settings['header_logo_url']))
echo '
<span style="font-family: Verdana, sans-serif; font-size: 140%; ">', $context['forum_name'], '</span>';
else
echo '
<img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';

echo '
</div>';


It is from line 306 to 318. All that div id="warn_logo" is the stuff on top of your warning page.

For example, in this page:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:


    <div id="warn_logo">
<img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
</div>';


For example in this other page:

http://www.snoopyvirtualstudio.com/miel/warning.php

I have changed that code to:


<div id="header">
  <div id="head-l">
  <div id="head-r">
<span id="logo"> </span>
</div>
  </div>
</div>';


In both of them I have also made a few changes to the file warning_css.css to get exactly the effect I wanted.

If you know a little of HTML and CSS you should be able to see what you need to do to get what you want. If you cannot manage contact me through Skype.

Anyway, whatever you do, don't puy any links in your warning page.
Title: Re: httpBL
Post by: Lou69 on January 16, 2011, 01:48:36 PM
Hi Snoopy,

I do not have Skype and am not familar with HTML.

I will guess that from your example,

echo '
               <img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';


the url for the old site image is declared in the 'header_logo_url'.

Any idea what file that is declared in?
Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2011, 05:03:08 PM
It's inside the database, in the table settings, but you don't need that. Just take for example the first one I gave you:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:


       <div id="warn_logo">
         <img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
      </div>';


Even easier:

Send me a link to your warning page (just here or in a PM) so I can see the way it is just now, and tell me where do you have the logo you want to display in there and I will send you a warning.php file already modified.

When I said "where do you have the logo" I mean the full url. For example my logo is this one: http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg

QuoteI do not have Skype

I suggested Skype because it's the one I use normally, but as you can see inside the httpBL help page I have added in the last version, I have also open all day Yahoo and MSN.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 07:13:36 AM
Hey snoop, the errors showed up again in the main forum log again.
The same errors I talked about in post #470

The undefined variable and missing argument errors show up together in pairs.
There were four pairs in the log this morning.



Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 11:18:00 AM
@EL34

I have found the problem.

It is a bug in the code.

While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:


$ip = httpBL_look_for_empty_ip();


Replace it with:


$ip = httpBL_look_for_empty_ip($ip);


Save the modified file and upload it to your forum.

===============

Anyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Could you check your httpBL logs to see if there are any entries with no IP?

I am very interested, as this is a very extremely rare case and I never had any other opportunity to study it yet.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 11:20:34 AM
I edited the code the code.

No errors show up in the httpBL errors log.
This is the same as the last time it happened also.
The errors only show up in the main forum error log.

Thanks snoop

Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 11:33:08 AM
No. They won't be inside the httpBL error log.

If somebody arrives with a blank IP they will see the captcha, so they will be either in the spammers log (if they didn't answer correctly) or in the humans log (if they did).

But in any case they won't have an IP
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 11:38:46 AM
QuoteAnyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Depends if you really mean blank or not a real IP address ;)

Truly blank should only occur if SMF is really not able to get an IP address, and even then it should be defaulting to its standard unknown 0.0.0.0 IP address (e.g. using IPv6 or something else prevents PHP getting an IP address, like it's being invoked through CLI or something equally weird)
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 11:52:02 AM
Ok, sorry, I read your post too fast.

I had already reset the spammers log this morning before I had looked at the forum log.
The logs are empty now so I can't look for blank IP guest.
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:04:25 PM
Quote from: Arantor on January 19, 2011, 11:38:46 AM
QuoteAnyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Depends if you really mean blank or not a real IP address ;)

Truly blank should only occur if SMF is really not able to get an IP address, and even then it should be defaulting to its standard unknown 0.0.0.0 IP address (e.g. using IPv6 or something else prevents PHP getting an IP address, like it's being invoked through CLI or something equally weird)

All that started when (more than a year ago) somebody reported he was getting strange things in the logs, with entries with nothing at all in the IP (not even 0.0.0.0, but completely blank).

This mod is getting the IP from $user_info['ip'] and (as far as I know) that shouldn't be blank doesn't matter what, so I modified the mod and added a conditional inside it:


$ip = $user_info['ip'];

// some more code doing other things, but not affecting the IP

if ($ip == '')
{
    // some code to see what happens here
}
else
    // the mod continues as always


So that piece of code will be triggered only if the IP is blank.

As I said I haven't seen it happening yet.
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 12:07:26 PM
There shouldn't be any reason for it to be actually blank that I remember - even if the user's IP can't be established through conventional means, it should be falling back to 0.0.0.0. I suspect your user had modified something there that he wasn't meant to.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:12:32 PM
QuoteI suspect your user had modified something there that he wasn't meant to.

You can erase all your suspicions and be at peace.  :)

I have not modded anything that snoop did not tell me to mod.

Looks at post #472 to see a list of the mods I have installed if you think another mod is messing with the httpBL mod.
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 12:14:11 PM
I didn't think you had, EL34 - I was referring to the user snoopy mentioned that was getting what should be an impossible circumstance in their forum...
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:17:31 PM
Sorry, two different things going on at the same time

see ya
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:21:23 PM
It was madfitz:

http://www.simplemachines.org/community/index.php?topic=283309.msg2504550#msg2504550

Answered here:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=309.0

The problem was he never reported back so I didn't had a chance to study the case properly.

But if the visitor EL34 is getting has triggered that piece of code it means the IP there is also blank, so I hope this time I will have a chance to see what is happening.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:24:42 PM
Snoop,
Should I change the code back to stock and report back if it happens again?
This time I will scan the httpBL logs and look for an empty IP?
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:35:39 PM
I don't think so. Leave it the way it is just now.

Just check every now and then to see if you get any blanks IPs in your httpBL logs.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:43:35 PM
ok, will do
Title: Re: httpBL
Post by: perf on January 20, 2011, 05:35:35 AM
Hi, and thanks for a great mod. Together with Stop Spammer, it saves me at least half an hour a day (not having to check and delete spammer accounts).

I did however have som problems installing it under 2.0 RC4. The installation script wouldn't create the log_httpBL table.  Here's the entry from the log:

http://forum.student.lth.se/index.php?action=admin;area=packages;sa=install2;package=httpBL_v2_5_1.zip;pid=0
Database Error: Table 'smf.student_log_httpBL' doesn't exist
File: /usr/local/apache2/htdocs.student/Packages/temp/install_2.php
Line: 69


I managed to work around this problem by creating the table manually.

On anoter RC4 forum (using the same database) I had prevously used httpBL with SMF 1.12, and on that forum there were no problems installing it under RC4.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 05:43:50 AM
Quote from: perf on January 20, 2011, 05:35:35 AM
I did however have som problems installing it under 2.0 RC4. The installation script wouldn't create the log_httpBL table.

That's strange.

Of course, the only RC4 forum I have was RC2 when I installed the mod, so the table was created then without a problem.

I will create another RC4 forum (whenever I have time) to test that up and see if I can reproduce the error to find why it's happening.
Title: Re: httpBL
Post by: Arantor on January 20, 2011, 05:52:58 AM
There was a change to how the table create statement worked sometime around RC2 where previously, it didn't use to require the db_prefix being in the table name (because it would add by default) but now it requires the db_prefix to be explicitly specified in the table-create call.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 06:11:18 AM
It is:


$smcFunc['db_create_table'](
'{db_prefix}log_httpBL',
array (
etc etc


It even has $db_prefix and $smcFunc declared globals at the top of the file just in case. (To be sure to be sure).
Title: Re: httpBL
Post by: Arantor on January 20, 2011, 06:29:28 AM
What you can try instead, as I know this has been contentious at times:

$smcFunc['db_create_table'](
$db_prefix . 'log_httpBL',
array (
etc etc
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 06:44:37 AM
In theory both things should be the same, but who knows ...

I will try both in a fresh RC4 forum and see what happens.
Title: Re: httpBL
Post by: perf on January 20, 2011, 06:54:17 AM
I don't know if it is significant, but the forum in question was orignally installed as 1.1 RC2, and has been upgraded numerous times. The only mods installed are your two, and recaptcha (which currently is uninstalled due to alignment probles.)
Title: Re: httpBL
Post by: Knuth Konrad on January 20, 2011, 01:09:58 PM
Let me start by saying that I really like your work and this mod works flawless for me.

But I'd also like to make a suggestion: In order to save the mod a couple of roundtrips to Project Honeypot, how about checking SMF's own ban list first for banned IP addresses before passing the IP over to Project Honeypot for evaluation?

Due to our forum's nature I'm in the lucky position that I can block lots of IP ranges from our forum. But from what I can tell mod:httpBL still tries to validate already banned IP addresses. Which is an unecessary waste of bandwidth both for the forum and Project Honeypot.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 03:05:44 PM
@Knuth Konrad

I have been suggesting today something very similar in the forum where we discuss the development of new versions for both mods.

The only difference with what you suggest here and my idea is that I didn't realized mod httpBL is checking the IPs before testing if that IP has been banned in the forum.

We would need to take that into consideration.
Title: Re: httpBL
Post by: Sea Mac on January 21, 2011, 03:38:01 AM
Quote from: snoopy_virtual on January 02, 2011, 01:59:50 PMIf you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
  http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)  It says it is not compatible with the version of SMF (1.1.12) I am using .....
Title: Re: httpBL
Post by: Knuth Konrad on January 21, 2011, 04:39:31 AM
Quote from: snoopy_virtual on January 20, 2011, 03:05:44 PM
We would need to take that into consideration.

Cool. :)

It's not a pressing issue as the mod works fine the way it handles it now. Those IPs just keep filling up httpBL's logs to the point where it becomes difficult to spot a new bot herd.
Title: Re: httpBL
Post by: snoopy_virtual on January 21, 2011, 02:45:42 PM
Quote from: Sea Mac on January 21, 2011, 03:38:01 AM
Quote from: snoopy_virtual on January 02, 2011, 01:59:50 PMIf you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
  http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)  It says it is not compatible with the version of SMF (1.1.12) I am using .....

I read somewhere that Deprecated had stopped updating that mod, but I don't remember the reasons. You can try to contact him or ask in the support thread for that mod.

Anyway, what I did was to write a specific version for every one of my forums. I cannot send you any of them as they won't work on any other forum, but if you don't get an answer there, contact me through Skype and I will modify one of the versions I use so it will work in your forum.
Title: Re: httpBL
Post by: jmpenasse on January 21, 2011, 08:32:55 PM
Hi Snoopy_virtual,

I just wanna say you thank you for this mod !  :)
I installed it today :  It's scary! Less than an hour after the activation of the mod, 14 attacks have been blocked! Most of them are hacking attempts to the members accounts ( already logged by SMF for weeks, but I had not seen )

This mod is a must to have !

Thx again

PS If I find a little free time I'll try to translate to French
Title: Re: httpBL
Post by: snoopy_virtual on January 21, 2011, 09:00:36 PM
It has been already translated to French before:

http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621

http://www.simplemachines.org/community/index.php?topic=366399.msg2749249#msg2749249

http://www.simplemachines.org/community/index.php?topic=366399.msg2749511#msg2749511

It has also been translated to Dutch and Indonesian. The only problem is I haven't had time yet to finish the package I am doing with those languages to put it in the main page so everybody can download them.

Anyway, as you can see, the French translation was for an older version and I have changed and added a lot of lines since then. So if you want to help with that it will be appreciated.  ;)
Title: Re: httpBL
Post by: oreodunno on January 23, 2011, 03:33:38 PM
thanks to the author(s) of this mod, incredible and generous work you've given to the community
Title: Re: httpBL
Post by: snoopy_virtual on January 23, 2011, 03:39:50 PM
You're welcome.  ;)
Title: Re: httpBL
Post by: DJ-X on January 28, 2011, 07:41:48 AM
For 4 days - Spammers stopped by MOD httpBL: 1950   :)
Title: Re: httpBL
Post by: DJ-X on January 28, 2011, 09:07:04 AM
Already - Spammers stopped by MOD httpBL: 2010
Title: Re: httpBL
Post by: zzuzu on January 28, 2011, 04:55:39 PM
Hello, I need a little help. I'm sorry if it was already posted. I have few members that it's showing they are bots. But they aren't. Is there any whitelist or something?
Title: Re: httpBL
Post by: snoopy_virtual on January 29, 2011, 07:28:45 AM
Quote from: zzuzu on January 28, 2011, 04:55:39 PM
Hello, I need a little help. I'm sorry if it was already posted. I have few members that it's showing they are bots. But they aren't. Is there any whitelist or something?

Yes it has been already posted and yes there are in fact 2 ways of whitelist some people:

- By IP
- Or by membergroup

If you are new to SMF you should notice at the top right corner of every page here in this forum there is a "Search" function, very useful when you are searching for something.

If you write there the keyword whitelist and in the dropdown box you select "Search This topic" you will get all these results:

http://www.simplemachines.org/community/index.php?action=search2;search=whitelist;topic=366399

As you can see that will give you some answers, but you can get even more if you split the keyword whitelist into 2 separate keywords as well:

Write the keywords white list and in the dropdown box select again "Search This topic" and this time you will get all these results:

http://www.simplemachines.org/community/index.php?action=search2;search=white+list;topic=366399

If you don't have enough with all that info you can try with more keywords and if you still need more help ask here again.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 01, 2011, 02:14:44 PM
At last I found some time to finish the language package I was doing with the translations that have been published here.

So just now the mod is translated to these languages:





QuoteLanguages for the admin section (normal & utf-8)
Translation completed:

  • English
  • English_british
  • Spanish_es
  • Spanish_latin

  • Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)

Missing the lines added in v2.5:

  • French by Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Languages for the warning page
Translation completed:

  • English-Spanish

  • English-Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)
  • French-English by shaitanfr (http://www.simplemachines.org/community/index.php?action=profile;u=151244) and Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Missing the lines added in v2.4:

  • English-Dutch by Vandaahl (http://www.simplemachines.org/community/index.php?action=profile;u=88822)

   
QuoteLegend
  • Included in MOD package
  • Included in language_full.zip and translation complete
  • Included in language_full.zip but translation incomplete

If anybody want to use any of these languages, download the file language_full_2-5-1.zip (http://custom.simplemachines.org/mods/index.php?mod=2155) and read the included file How_to_install.txt

I need to ask the translators to please check if I haven't done any mistakes in this package, as I am not fluent in all those languages.

Thanks.
Title: Re: httpBL
Post by: MCK on February 10, 2011, 11:56:01 PM
Just here to say thanks. This mod along with Stop Spammer & Forum Firewall has helped me tremendously. Appreciate your hard work.
Title: Re: httpBL
Post by: EL34 on February 12, 2011, 07:42:26 AM
Hey Snoop,
Got this PM from one of my long time forum members
I don't know what to tell him?

That's him in the human log screen shot


QuoteSubject : I cannot log in through a T-Mobile network
I just got one of them there fancy pants telephones with the internets all built in.  If I'm connected through my wifi network, there's no problem but If I used the T-Mobile 4G network, I get asked 2 algebra questions and promptly get booted off.  My money is on operator error (me) at this point but there's no harm is asking.
Thanks!
-richard
Title: Re: httpBL
Post by: Wizzlefits on February 12, 2011, 12:20:03 PM
@EL34
You can whitelist by going to permissions>>regular members>> and checking "Never be checked by mod httpBL".
This will prevent him from being checked and booted. It will also prevent anyone in the "regular member group" from being checked.
Wireless IPs seem to be notorious for being the bottom of the barrel.
Title: Re: httpBL
Post by: EL34 on February 12, 2011, 04:40:45 PM
Ok, but I don't think I want to clear all 3000+ members

I can't WL just one member?

I had to do that for one of my mods because he connects through a large university but I only have 4 mods and I know them all. Half the IP's he used were blacklisted

Title: Re: httpBL
Post by: Wizzlefits on February 12, 2011, 05:51:36 PM
True!
You could make another member group, for those that use wireless IPs and set httpBL not to check, then manually add them to the special member group.
Title: Re: httpBL
Post by: butchs on February 12, 2011, 07:53:28 PM
Why?  Wireless connects are the most vulnerable on the net.  They need to be cleaned up.  ???
Title: Re: httpBL
Post by: Omniverse on February 12, 2011, 09:05:04 PM
I installed this mod today because of a recent jump in bots doing brute force password attacks at my site.

Excellent mod, love it so far.


I have noticed only 2 entries in the error log for incorrect entries now, the rest have been caught by this mod. When I checked the IP's at honeypot, they were listed, one has a threat of around 40.

httpBL did not catch this IP however. It isn't listed in its log, just in my forum error log.
Any idea why that would be?
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 08:20:37 PM
I would like to install this mod but I'm confused on all the steps necessary in order to do it.
I did register at HoneySpot and told them to generate a script using php 4+. I hope that was right but now I don't know where I'm suppose to put it.
Does this work like a mod?
Then once I add this to my site, the instructions say to ask for my own http: BL AP1 Key and I don't know what that is or what to do with one.
Title: Re: httpBL
Post by: EL34 on February 13, 2011, 08:39:14 PM
I created a new folder called HoneyPot under my php folder and put the honey pot stuff is in that new folder.

www.mywebsite/php/Honeypot/yourhoneypotfile.php

now you have a path to the honeypot.php file they gave you.

you ask for a key and enter that in the httpbl setup screen and you are good to go
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 08:48:15 PM
I have a folder called phpBB. Is that where I'd make a new folder called Honeypot?
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:16:32 PM
You can name your folder anything you want, and put it anywhere you choose within your hosting space. I don't suggest naming it Honeypot either.  The idea for the honeypot is to snare the bots. The spammers already know about Project Honeypot, so they probably avoid anything that has that name in it.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 09:32:32 PM
Once I extracted the files, I realized there were instructions that helped me figure out what to do however they forgot to mention that I shouldn't use honeypot for my folder's name and I already did.
Can I just change the name or do I need to start all over?
I think I read that I can't change the name of the file but I don't remember if they said I couldn't change the name of the folder.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:37:38 PM
You can change the folder name either by ftp or by using your file manager in your host's control panel. Or simply just create another folder with a different name, copy all the contents from the previous folder to the new folder, and then delete the old one.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 09:48:00 PM
Ok thanks.
One more question. I don't understand where I'm suppose to put links for the bots to find. That's all very confusing to me.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:55:20 PM
I hid them in index.template.php and placed a few hidden links in portal blocks on my home page. They will be seen if the page source is read by the bots, but they are not displayed on the page to be seen by a normal user with a browser.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 10:00:04 PM
Ok, thanks. I'll look into doing that.
I see there's a button in my folder for these files but I don't see it on my site. Is it suppose to show up some place?
I don't think I quite understand how all this works. I'm just hoping I can stop all the incorrect password errors I keep getting.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 10:08:25 PM
If you want tit to stop the incorrect password errors issue, it is probably not going to help much. Most of the IPs that have been reported are clean. Most are not listed in the Honeypot database.  Those are probably innocent users' computers that are infected by the botnet that is carrying out this attack.

The Honeypot project is a very worthwhile cause though, so I do recommend being involved in it.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 08:24:24 AM
Quote from: busterone on February 13, 2011, 10:08:25 PM
If you want tit to stop the incorrect password errors issue, it is probably not going to help much. Most of the IPs that have been reported are clean. Most are not listed in the Honeypot database.  Those are probably innocent users' computers that are infected by the botnet that is carrying out this attack.

The Honeypot project is a very worthwhile cause though, so I do recommend being involved in it.

Is that like a virus? Can it be detected if my members run a virus scan?
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 02:53:41 PM
I was going to try and copy some of the suggestions honeypot gave me for various links into my index.template.php file only I don't understand how they work. If I put something there that starts off <a href="   then a web address and end by closing the "a tag", won't the link show up on my site?
Is that what I want? A link to my honeypot page?
Title: Re: httpBL
Post by: busterone on February 14, 2011, 04:36:34 PM
If you place it right after the <body> tag as one example, it will not display. It would need an echo '  preceding it to display in php
I also placed a couple right after the smf and theme copyright in the footer.
Here is an example from my index.template.php
echo '</div>
</div>
</div>
<div id="footerframe">
', theme_copyright(), FFCopyright(),'
<div class="smalltext"><b>BlueLight</b> design by <a href="http://www.blocweb.net">Bloc</a><br>
<a href="http://www.SMF4ME.COM/">SMF Forums Directory</a></div>
<div style="display: none;"><a href="http://www.thedemonsden.com/xxx/xxxxxx.php">cheap-selfsealing</a></div>

I xxx'd out the full link to prevent it from being indexed here.

Yes, the idea is to lead them to the honeypot.
Quote from: sheryltoo on February 14, 2011, 08:24:24 AM
Is that like a virus? Can it be detected if my members run a virus scan?
I could be in some instances, but probably not any of your members.  These bots are part of a directed attack at forums, possibly SMF only. Quite a few of those IPs are coming from the TOR proxy range from what I have seen so far. Whether they are from one person, or a small few using TOR, or from a bunch of infected systems that are unknowing being used and the bots automatically attack through TOR is unknown. 
Who ever they are, it is a new tactic.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 04:44:46 PM
Thank you for showing me how to do that. I'm not sure what echo ' does but I'll add it.
Title: Re: httpBL
Post by: busterone on February 14, 2011, 04:50:04 PM
No, don't add the echo' .  :)  What I meant is that for the link to dispaly to normal users, it needs to be echo'd in php. In your case, you do not want it to display. That is why I added it right after the <body> tag.
Title: Re: httpBL
Post by: Omniverse on February 14, 2011, 05:14:39 PM
Quote from: busterone on February 14, 2011, 04:36:34 PM

   echo '</div>
      </div>
   </div>   
   <div id="footerframe">
      ', theme_copyright(), FFCopyright(),'
      <div class="smalltext"><b>BlueLight</b> design by <a href="http://www.blocweb.net">Bloc</a><br>
      <a href="http://www.SMF4ME.COM/">SMF Forums Directory</a></div>
<div style="display: none;"><a href="http://www.thedemonsden.com/xxx/xxxxxx.php">cheap-selfsealing</a></div>


Actually, from what I can tell from that code snippet, is it being echoed. Echo is closed with a ;

HTML in PHP has to be echoed or you will get an error.

The reason is doesn't show, is the style of the div that link is in. The part that says style="display: none"


Title: Re: httpBL
Post by: busterone on February 14, 2011, 05:26:34 PM
True, that part is. The one I was referring to is adding the link immediately after the <body> tag. It isn't echoed there.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 07:22:34 PM
What happens if I don't put any of those links on my site cause this is sounding way too confusing and over my head?
Title: Re: httpBL
Post by: mariusfv on February 15, 2011, 12:36:16 PM
Hi,

Update please for 1.1.13 , don't parse the modification.
I use stopspamforum mod and I want to use this too, I have to many spammers with recaptcha (http://www.google.com/recaptcha), activation e-mail and stopspamforum, I don't understand have they defeat recaptcha by google ? to many robots it seems bypass recaptcha.
Russia spammers bypass recaptcha so easy....90% of my spammers are from  Russia Federation and 8% from Ukraine...2% others.

Have a nice day !
Title: Re: httpBL
Post by: busterone on February 15, 2011, 05:26:49 PM
Quote from: sheryltoo on February 14, 2011, 07:22:34 PM
What happens if I don't put any of those links on my site cause this is sounding way too confusing and over my head?
The mod will still work as long as you have the honeypot installed, with the correct link entered on the admin page for this mod, and you have your API key input as well. The links help catch harvesters that are not yet in the database. They read the links, go there, then harvest the emails, and then they fall for the trap.
PM me if you would like some help getting your links installed on your forum.
Title: Re: httpBL
Post by: bedges on February 15, 2011, 05:44:57 PM
Just installed this today on 1.1.13, seems to be working fine (even though it's for 1.1.12).

2 things:

Typo in warning.php

$txt['httpBL_warn_infected_1'] = 'The most likely cause is that your computer, or another computer operating on your local network, has been <strong>infected with a virus, trojan, or worm</strong>. Infected computers are used by criminals, without their owners knowledge, to send spam and attack websites like this one you are trying yo visit.';

Typo in warning_css.css

h1
{
   font: bold 2em Arial, Helvetica, sans-serif;
   margin:0;
   padding:0}
}


Attached is a reformatted CSS file for your convenience.

Thanks for the mod :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 08:47:02 AM
Is there a way for me to report spammers to you? The mod works great but some still get through, I'd like to help build the pot :)
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 08:48:41 AM
Quote from: Doug Varrieur on February 16, 2011, 08:47:02 AM
Is there a way for me to report spammers to you? The mod works great but some still get through, I'd like to help build the pot :)
If you have a working honeypot, then you are already contributing towards the httpBL database run by Project Honeypot, and used in this mod. :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 08:58:06 AM
I don't, I use a quick link...my host doesn't have one set up :(
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 09:00:48 AM
Quote from: Doug Varrieur on February 16, 2011, 08:58:06 AM
I don't, I use a quick link...my host doesn't have one set up :(
That helps as well - It is through honeypots and quicklinks that the project gets all the info it uses :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 09:10:55 AM
So Lex, is there a reporting function in the control panel that I'm missing? This morning I banned 12 new "users" who were obvious future spammers when I checked there IP's. I'd like to shoot my ban list up to the database??
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 09:12:51 AM
No, The project doesn't accept direct reports - but you can go the the project website, and comment on any IP address if you know something about them, or their activity.
Title: Re: httpBL
Post by: valentino86 on February 18, 2011, 12:30:58 PM
Hi everybody. I'm using this mod on my forum but I'd like to allow one IP, how can I get it? In my joomla site I take some feed from the forum but now with this mod I can't because httpBL thinks that my joomla site is a spammer.
Title: Re: httpBL
Post by: busterone on February 18, 2011, 05:35:29 PM
Quote from: valentino86 on February 18, 2011, 12:30:58 PM
Hi everybody. I'm using this mod on my forum but I'd like to allow one IP, how can I get it? In my joomla site I take some feed from the forum but now with this mod I can't because httpBL thinks that my joomla site is a spammer.
Odd, because the httpBL only reacts to IPs that are in the Project Honeypot database, and its reaction is based on the threat level it is assigned AND your threat level settings threshold.  see below
Number of days to consider good an IP

If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don't consider it dangerous now and we leave the visitor pass.
Threat level considered bad

Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.
Threat level considered VERY bad

Every IP with a threat level greater than the number you put here won't be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.
Minutes to keep the data in the cache
Every time the mod checks an IP saves the data in the cache (if it's enabled) and in the visitor's session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won't check it again, but it will use the data stored in the cache and/or session.

Hours until an IP needs to prove again it's human
As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.

Is your Joomla site on the same server/host as your forum?
Title: Re: httpBL
Post by: Wizzlefits on February 18, 2011, 07:46:08 PM
Very interestink.
If you could post the joomla URL we might be able to sort the problem a bit.
Title: Re: httpBL
Post by: Joshua Dickerson on February 18, 2011, 08:21:14 PM
Taking a quick look through the mod and I noticed a couple of things:
Title: Re: httpBL
Post by: valentino86 on February 19, 2011, 06:43:50 AM
Quote from: Wizzlefits on February 18, 2011, 07:46:08 PM
Very interestink.
If you could post the joomla URL we might be able to sort the problem a bit.

Of course www.meccanicaweb.it and yes the forum is on the same server www.meccanicaweb.it/forum

Now I've disabled the mod
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 10:24:59 AM
Looks like your server IP is just triggering httpBL. So, just to make sure that there is not a code problem, change "Number of days to consider good an IP" to 50 and "Threat level considered bad to" 15.
This should allow your server IP pass through.

If everything works okay, you can try to get your server white listed.
Quote
To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!
But, you can make a special member group and in permissions, check the box to have httpBL never check that group.
Then, register a new member and add it to this group.
You will then have to manually edit the IP of the new member to that of your server. Do this by logging into phpMyAdmin and finding the new member in the "Members" table. member_ip and member_ip2 should be the same as your server IP.

If this works (finger crossed) you can then change the httpBL settings back to 90 and 10 and see if Joomla is allowed to pass.
Title: Re: httpBL
Post by: valentino86 on February 19, 2011, 03:51:33 PM
Quote from: Wizzlefits on February 19, 2011, 10:24:59 AM
Looks like your server IP is just triggering httpBL. So, just to make sure that there is not a code problem, change "Number of days to consider good an IP" to 50 and "Threat level considered bad to" 15.
This should allow your server IP pass through.

If everything works okay, you can try to get your server white listed.
Quote
To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!
But, you can make a special member group and in permissions, check the box to have httpBL never check that group.
Then, register a new member and add it to this group.
You will then have to manually edit the IP of the new member to that of your server. Do this by logging into phpMyAdmin and finding the new member in the "Members" table. member_ip and member_ip2 should be the same as your server IP.

If this works (finger crossed) you can then change the httpBL settings back to 90 and 10 and see if Joomla is allowed to pass.

Thank you very much for this answer. Well, I've changed the settings to 50 and 15 and that works, but the member with special permissions ( never check by httpBL) doesn't work with the settings to 90 and 10 and of course I've already changed the IP in the database. Why? I think that the member has to login almost one time.
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 04:45:34 PM
Think you may be right. Should have had you login as the new user, log out, then change the IP. That would have updated all the other tables and only left the IP to be changed.

Hopefully, Honey Pot will allow you to white list the IP. But since it belongs to a shared host...who knows.

Also, if you haven't installed it yet, you should also use Stop Spammer http://custom.simplemachines.org/mods/index.php?mod=1547
They compliment each other very well. Oh, make sure to un-check "Check their username" in Stop Spammer, as it has a tendency to cause to many false positives.
Title: Re: httpBL
Post by: butchs on February 19, 2011, 08:39:13 PM
Quote from: Wizzlefits on February 19, 2011, 10:24:59 AM
I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!

I will lay low when he comes back if I were you.  :)
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 09:06:03 PM
Quote
I will lay low when he comes back if I were you.  :)
That's the plan! ;)
Title: Re: httpBL
Post by: welshdog on February 20, 2011, 05:04:15 PM
Project Honeypot seems to be having 'issues'.

When I tried to register on the site I was met with a message saying "Unable to save captcha-image." and no way of submitting the request... or even telling them there was an issue!!

I opened the site on three different browsers (IE 8, Firefox 4 and Chrome) and got the same result.

Anyone have any idea what's up over there?
Title: Re: httpBL
Post by: Joshua Dickerson on February 20, 2011, 05:06:07 PM
I've been having issues there all day as well.
Title: Re: httpBL
Post by: Wizzlefits on February 20, 2011, 05:12:26 PM
Yep. same here. I get a time out error every now and then.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 21, 2011, 01:06:42 AM
It now says on their page, "Project Honey Pot is currently undergoing maintenance. We expect to be back online in a couple of hours. Check Back Soon!" so hopefully they'll have things running perfectly again soon. :)
Title: Re: httpBL
Post by: Blade_Runner on February 21, 2011, 02:26:09 PM
How can I add an ip address to the whitelist?
Title: Re: httpBL
Post by: valentino86 on February 21, 2011, 03:05:40 PM
Quote from: Blade_Runner on February 21, 2011, 02:26:09 PM
How can I add an ip address to the whitelist?

The my same problem. I suggest you to read some posts before
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 22, 2011, 12:48:06 AM
The Project Honeypot seems to be up and running again :)

Quote from: valentino86 on February 21, 2011, 03:05:40 PM
Quote from: Blade_Runner on February 21, 2011, 02:26:09 PM
How can I add an ip address to the whitelist?

The my same problem. I suggest you to read some posts before

If you access the Project Honeypot website with the IP you wish to whitelist, you should be able to make a query on your own IP, and request it to be immediately whitelisted. You can not directly whitelist IP addresses other than the one you are using, but you can make a request for other IP addresses as well.
Title: Re: httpBL
Post by: nightmarepatrol on February 22, 2011, 08:03:28 AM
The httpbl mod states that it only supports RC2 and above. is that just a because it was tested starting at RC2? I have an RC1 board that is getting overrun with events that httpbl should be able to address, however I don't was to blindly install this mod either.

So, can I install this on an RC1 installation?

Thanks.
Title: Re: httpBL
Post by: Arantor on February 22, 2011, 08:06:50 AM
Not recommended, there were a very large number of changes introduced with RC2, not least the new default theme.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 22, 2011, 08:41:31 AM
Quote from: nightmarepatrol on February 22, 2011, 08:03:28 AM
So, can I install this on an RC1 installation?
You should not be running RC1 installation to be honest, and I'd be more worried about that than mod compatility if I were you...
Title: Re: httpBL
Post by: mark32 on February 22, 2011, 08:31:29 PM
When I tried to register on the site I was met with a message saying "Unable to save captcha-image." and no way of submitting the request... or even telling them there was an issue!!

How can I continue? I have the problem above...
Title: Re: httpBL
Post by: busterone on February 22, 2011, 08:59:38 PM
I answered your question in the other topic, but will repeat it here. In the future don't post the same question in multiple topics.
The contact page link is in the footer of HoneyPot's site
http://www.projecthoneypot.org/contact_us.php (http://www.projecthoneypot.org/contact_us.php)

edit- I just realized from the other topic that you are having the issue with the contact page. They were having issues with the site yesterday, so maybe they are still sorting some things out. Give it a bit of time and try again.
Title: Re: httpBL
Post by: busterone on February 22, 2011, 09:15:40 PM
I am logged in at P Honeypot and cannot send a message through the contact either.  Capcha is not used if you are logged in, so there are still some other issues with the site. When I attempted to send a message, I received a gateway timeout error.  I suggest waiting it out until they repair the site issues.
Title: Re: httpBL
Post by: Roman on February 23, 2011, 06:53:10 AM
Hi i do get the follwing error now. (after answering the two questions right)


Worked fine some days ago
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 07:48:56 AM
Looks like your Settings.php file has something in it before the <?php at the start, that it shouldn't have. (Please DON'T post the file here)
Title: Re: httpBL
Post by: Roman on February 23, 2011, 01:02:23 PM
Quote from: Arantor on February 23, 2011, 07:48:56 AM
Looks like your Settings.php file has something in it before the <?php at the start, that it shouldn't have. (Please DON'T post the file here)

Hmm No   :(


Thanks for your help
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 01:58:28 PM
Do a search on this forum for 'file_check.php', put it on your server and run it - see if that agrees.
Title: Re: httpBL
Post by: Roman on February 23, 2011, 02:24:52 PM
it says

"UTF-8 BOM found" at settings.php and httpBL_2_Config.php


warning.php does end with
</body>
</html>';
?>

file check:
"File does not end with ?>"
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 02:31:27 PM
So it agrees with me that there's something in your Settings.php that shouldn't be there - the BOM at the start of the file. Have you ever edited it manually (like via cPanel or Notepad)?

As for warning.php, is there a blank line or something after ?> ?
Title: Re: httpBL
Post by: Roman on February 23, 2011, 03:24:00 PM
there is nothing after ?>

I installed a new 2.0 rc5, wrote all the data from my forum into the new settings.php and uploaded it to the old board

and everything is fine now



did edit the old settings.php because of database pw change (filezilla and notepad)


thank you for your patience and help *thumbs up
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2011, 04:47:27 PM
Hi

I am just back after a couple of weeks without internet so I am now updating my forums to 1.1.13 and RC5 and checking if my 2 mods are compatible with them. (It seems they are, but better to double check).

I have been reading through the posts made while I was away and I have already added to my TODO list a couple of nice suggestions from Joshua Dickerson, bedges and Kike_GL. Thank you.

I am not going to answer here all the posts, as it would be too long and it seems all the problems reported have already been sorted (BTW, thanks also to all the people sorting those problems while I wasn't here).

If any problem has not been sorted yet, please let me know.
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 12:51:12 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\
Title: Re: httpBL
Post by: Wizzlefits on February 26, 2011, 01:17:34 PM
Are you using the Stop Spammer mod? (http://custom.simplemachines.org/mods/index.php?mod=1547) As the two work really well together. (wish they could be combined into one)

I have had spammers get through httpBL by brute force, hitting the registration page 15 to 20 times a second. But that was several updates ago. HP has been doing some updates, but don't know if that has anything to do with this.
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2011, 01:29:23 PM
Quote from: aoife on February 26, 2011, 12:51:12 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\

That's really weird. It's not happening in any of my forums.

Have you checked if in mod httpBL config page still says everything is OK? (connection with the spammers database included).

Have you change the mod default Internal Settings?
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:32:45 PM
Quote from: Wizzlefits on February 26, 2011, 01:17:34 PM
Are you using the Stop Spammer mod? (http://custom.simplemachines.org/mods/index.php?mod=1547) As the two work really well together. (wish they could be combined into one)

I have had spammers get through httpBL by brute force, hitting the registration page 15 to 20 times a second. But that was several updates ago. HP has been doing some updates, but don't know if that has anything to do with this.

no, just httpBL and logindetector. httpBL has been catching things up until last nite so not sure what's up, if anything. one of the IPs that got through is currently active and has a threat lvl of 32 so there's no reason why it should get through (although it's an IP we'd previously banned from the forums, before we installed httpBL).  Another IP address was trying to modify karma but hadn't been banned.

And yes, Project HP has been going up and down all week it seems so that may have something to do with it.

thanks for the reply!   :)

Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:34:30 PM
Quote from: snoopy_virtual on February 26, 2011, 01:29:23 PM
Quote from: aoife on February 26, 2011, 12:51:12 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\

That's really weird. It's not happening in any of my forums.

Have you checked if in mod httpBL config page still says everything is OK? (connection with the spammers database included).

Have you change the mod default Internal Settings?

no haven't touched anything in the mod. and the connection is still showing as 'perfect'

Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2011, 01:49:36 PM
I suppose then it should be just a bad connection every now and then. As you said Project HP's server has been going up and down all week.

Anyway if the problem persist let's us know and we will see if we can think of any more possible solutions.

But as Wizzlefits said, I will advise you to add also mod Stop Spammer. If one of them fails the another one will stop them.
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:55:51 PM
Quote from: snoopy_virtual on February 26, 2011, 01:49:36 PM
I suppose then it should be just a bad connection every now and then. As you said Project HP's server has been going up and down all week.

Anyway if the problem persist let's us know and we will see if we can think of any more possible solutions.

But as Wizzlefits said, I will advise you to add also mod Stop Spammer. If one of them fails the another one will stop them.

okie dokie, i'll take a look at that mod. we'll be watching our logs for problems and i'll let you all know if this persists.

thanks again!

:)
Title: Re: httpBL
Post by: DJ-X on March 01, 2011, 06:51:59 AM
(http://img716.imageshack.us/img716/2916/sssrr.png)
Protect your login from smart robots that pick up passwords :)
This code is inserted in index.php to the top.

if (strstr($_POST['user'], 'SSSR'))                  // Tried to pick up the password
   {
   header("location: /yourhoneypot.php");
   exit();
   }
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 08:06:05 AM
Is there any other place else I can download this mod?

Been trying for 3 days now at SMF and keep getting "unavailable".
Title: Re: httpBL
Post by: Aoife on March 01, 2011, 08:33:31 AM
Quote from: wickedgood on March 01, 2011, 08:06:05 AM
Is there any other place else I can download this mod?

Been trying for 3 days now at SMF and keep getting "unavailable".

I just tried from http://custom.simplemachines.org/mods/index.php?mod=2155 and was able to access just fine.
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 08:52:56 AM
Just tried again....... :P

"Temporarily Unavailable
Due to high stress on the server the forum is temporarily unavailable. Please try again later. "
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 08:59:48 AM
Works fine for me, try this http://custom.simplemachines.org/mods/index.php?action=download;mod=2155;id=164985
Title: Re: httpBL
Post by: Aoife on March 01, 2011, 09:02:21 AM
Quote from: wickedgood on March 01, 2011, 08:52:56 AM
Just tried again....... :P

"Temporarily Unavailable
Due to high stress on the server the forum is temporarily unavailable. Please try again later. "


And I just tried again and was able to get thru again - maybe look in the Support boards and see if anyone else is having the same issue?
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 09:56:41 AM
Quote from: LexArma on March 01, 2011, 08:59:48 AM
Works fine for me, try this http://custom.simplemachines.org/mods/index.php?action=download;mod=2155;id=164985

Nope. Same error code.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 10:24:10 AM
OK, please make a new topic about this, detailing the problem and how long you have had this problem, on the Site Comments -board so our admins can have a stab at it ;)
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 02:32:23 PM
Finally got it downloaded and installed.

Server issue?

Seems to be working fine.

Thanks! :)
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 02:38:34 PM
The servers have been having load issues lately, so it was most probably related, but it usually only affects people for some minutes at a time - not straight days. So that's why I suggested posting to the Site comments.
Title: Re: httpBL
Post by: MCK on March 04, 2011, 02:53:18 AM
I have a Global Moderator who accesses my site on his iPhone. He got trapped yesterday for no apparent reason. 2 questions.

Is the attached screen generated by httpBL mod or StopSpammer mod? I have both but can't tell which mod trapped this connection but I'm guessing it's httpBL.

If this is httpBL what can I do to make it go away? I'm guessing this is because the AT&T iPhone IP range is blacklisted due to some malicious activity. Is there a way for me to whitelist my user? Thanks for your help.

Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 06:10:09 AM
That's not mod httpBL nor mod StopSpammer.

I would never put Google adverts on any of my mods.

My guess is you are using CloudFlare, that is a piece of software from a company done to make money, so they are more interested in putting adverts everywhere than actually stopping spammers.
Title: Re: httpBL
Post by: MCK on March 04, 2011, 06:41:39 AM
Thanks for your clarification. I need to go read up on whitelisting on CloudFlare then. In the meanwhile I don't know why there is so much ill feelings about CloudFlare. I'm a new user and generally enjoy what they offer. What am I missing? Its interesting to note that they too use ProjectHoneyPot data to run their service. See http://www.cloudflare.com/wiki/DataSources

Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 07:24:22 AM
I know what CloudFlare does and how.

That's why I wouldn't recommend you to use it together with this mod. Either use one or the other.

Of course it's up to you which one to use. Personally I prefer to use always programs where I have the control and that's why I prefer this mod instead of CloudFlare, I prefer Linux instead of Windows, etc.
Title: Re: httpBL
Post by: Wizzlefits on March 04, 2011, 02:23:15 PM
Snoopy, you're just jaded! hehehe! Just kidding!
CloudFlare pretty much done themselves in when it was brought to their attention, privately and then publicly, that a very nasty website, that violated about 4 parts of their TOS, was using their service. Not once did they respond or take action.

They do have a nice service, but I think greed has clouded things quite a bit.
Title: Re: httpBL
Post by: Blade_Runner on March 04, 2011, 03:18:13 PM
Thanks for the great mod. Can anyone let me know what is the default figure for the following?

Number of days to consider good an IP
Threat level considered bad
Threat level considered VERY bad
Minutes to keep the data in the cache
Hours until an IP needs to prove again it's human

I suggest that a default figure should be stated next to the box.
Title: Re: httpBL
Post by: Wizzlefits on March 04, 2011, 05:22:35 PM
90
10
30
5
24
------------
Good idea!  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 09:40:15 PM
It's already in the TODO list for the next version.  ;)
Title: Re: httpBL
Post by: Blade_Runner on March 05, 2011, 02:22:00 PM
Quote from: Wizzlefits on March 04, 2011, 05:22:35 PM
90
10
30
5
24
------------
Good idea!  ;)

Thank you for the post. :)
Title: Re: httpBL
Post by: Lotti on March 18, 2011, 10:14:23 PM
ITALIAN TRANSLATION (Italiano) httpBL_v2_5_1

<file name="$languagedir/Modifications.italian.php" error="skip">
<operation>
<search position="end" />
<add><![CDATA[
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Link honeyPot sbagliato. Controlla la tua configurazione MOD httpBL.';
$txt['httpBL_honeyPot_key_error'] = 'http:BL API key sbagliata. Controlla la tua configurazione httpBL.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connessione fallita. Ciò significa che la tua http:BL API key è sbagliata oppure che c\'è un problema con il tuo sistema DNS.';
$txt['httpBL_caught'] = 'Spammers bloccati da MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'Il MOD httpBL controlla ogni IP di ogni visitatore per vedere se è già all\'interno del DB di projecthoneypot. Se questo è vero il mod lo rispedisce alla pagina warning.php negandogli l\'accesso al forum.<br />Qui puoi accendere il mod o spegnerlo, e cambiare alcuni suoi parametri.';
$txt['httpBL_enable'] = 'Abilita/Disabilita MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'La API key che hai scritto è sbagliata. Controllala accuratamente e riprova ancora.';
$txt['httpBL_honeyPot_link'] = 'Collegamento al tuo Honey Pot';
$txt['httpBL_honeyPot_key'] = 'La tua Honey Pot http:BL API key';
$txt['httpBL_honeyPot_word'] = 'Keyword del tuo Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'Questa è l\'unica parola nel tuo Honey Pot link che gli spammers vedranno. Scrivi qualcosa per attrarli e farglielo cliccare e nulla che li spaventi. Se non trovi una buona parola lascialo bianco. Il mod ne sceglierà una per te.';
$txt['httpBL_info_email_1'] = 'Prima parola della tua email';
$txt['httpBL_info_email_2'] = 'Seconda parola della tua email';
$txt['httpBL_info_email_3'] = 'Terza parola della tua email';
$txt['httpBL_enable_bad_email'] = 'Verifica l\'indirizzo email che hai scritto. Non puoi lasciarlo bianco in nessuna delle tre parole.';
$txt['httpBL_bad_last_activity'] = 'Numero di giorni in cui considerare buono un IP';
$txt['httpBL_bad_last_activity_sub'] = 'Se un IP è stato usato tempo fa da uno spammer, ma nessuno vi fa niente di male per un certo numero di giorni, non lo considereremo pericoloso e lasceremo passare il visitatore.';
$txt['httpBL_bad_threat'] = 'Livello di minaccia considerato cattivo';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot da ad ogni IP un livello di minaccia che cambia ogni giorno a seconda di cosa fa questo IP e quello che ha fatto in passato. Ogni IP con un livello di minaccia più basso del numero che inserisci passerà senza controlli.';
$txt['httpBL_very_bad_threat'] = 'Livello di minaccia considerato MOLTO cattivo';
$txt['httpBL_very_bad_threat_sub'] = 'Ogni IP con un livello di minaccia maggiore del numero che messo qui ha vinto non sarà in grado di passare del tutto. Gli IP con un livello di minaccia fra i due numeri vedranno un captcha e, se dimostreranno che sono degli esseri umani, gli sarà concesso un pass per qualche ora';
$txt['httpBL_cookie_length'] = 'Ore fino a che un IP necessita di provare ancora di essere umano';
$txt['httpBL_no_negative_here'] = 'Il numero di giorni e il livello di minaccia non può essere un numero negativo o 0.';
$txt['httpBL_no_higher_than'] = 'Il livello di pericolo considerato cattivo non può essere maggiore del livello di pericolo considerato <strong>MOLTO</strong> cattivo.';
$txt['httpBL_viewlog_extra'] = 'Visualizza informazioni supplementari dal registro';
$txt['httpBL_viewlog_extra_sub'] = 'Se selezioni questa opzione andrai a vedere tutte le informazioni nel registro, ma forse saranno troppe e perderai la prospettiva. A volte è meglio vedere solo le cose importanti.';

// View log page
$txt['httpBL_viewlog_description'] = 'Ogni volta che MOD httpBL ferma uno spammer o rileva un errore interno aggiunge una voce al registro che puoi vedere qui. Questa è la lista degli spammers fermati dal mod o perché il loro livello di minaccia era superiore al livello di minaccia considerato <strong>MOLTO</ strong> cattivo o perché hanno visto il captcha e non hanno potuto dimostrare di essere umani.';
$txt['httpBL_viewlogerror_description'] = 'Questa è la lista degli errori interni rilevati dal mod quando si cerca di verificare un indirizzo IP. A seconda dell\'errore, alcuni di loro potrebbero essere stati fermati e altri possono avere avuto il permesso di entrare. Per vedere tutte le informazioni qui è necessario premere il pulsante <strong>"Mostra informazioni extra"</strong>.';
$txt['httpBL_log_no_entries'] = 'Non ci sono voci nel registro MOD httpBL Spammers. O non hai catturato qualsiasi spammer oppure hai cancellato tutte le voci.';
$txt['httpBL_logpass_no_entries'] = 'Non ci sono voci nel registro MOD httpBL Humans. O nessuno ha provato di essere umano oppure hai cancellato tutte le voci.';
$txt['httpBL_logerror_no_entries'] = 'Non ci sono voci nel registro errori MOD httpBL. O non hai avuto nessun errore oppure hai cancellato tutte le voci.';
$txt['httpBL_viewlog_extra'] = 'Mostra informazioni extra';
$txt['httpBL_viewlog_normal'] = 'Nascondi informazioni extra';
$txt['httpBL_log_show_legend'] = 'Mostra leggenda';
$txt['httpBL_log_hide_legend'] = 'Nascondi leggenda';
$txt['httpBL_pages'] = 'Pagine';
$txt['httpBL_log_date'] = 'Data';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'L. Pe.';
$txt['httpBL_log_threat_long'] = 'Livello Pericolo - Il livello di pericolosità di questo IP nel database Project Honey Pot.';
$txt['httpBL_log_activity'] = 'U. A. C.';
$txt['httpBL_log_activity_long'] = 'Ultima Attività Cattiva - Il numero di giorni passati da quando l\'IP ha fatto qualcosa di sbagliato.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Sospetto - Solo sospetto di essere uno spammer.';
$txt['httpBL_log_harvester'] = 'M.';
$txt['httpBL_log_harvester_long'] = 'Mietitore - Un robot che naviga internet alla ricerca di indirizzi email da usare dopo per inviare spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Spammer Commenti- Un robot che posta su blogs e forums. Questi posts sono tipicamente pieni di links a siti promossi dagli spammers.';
$txt['httpBL_log_url'] = 'Pagina';
$txt['httpBL_log_url_long'] = 'La pagina che questo IP ha visitato quando è stato rilevato ed espulso dal mod.';
$txt['httpBL_log_error_message'] = 'Messaggio';
$txt['httpBL_yes'] = 'Si';
$txt['httpBL_threat_colors'] = 'Significato dei colori:';
$txt['httpBL_threat_low'] = 'Basso pericolo';
$txt['httpBL_threat_medium'] = 'Medio pericolo';
$txt['httpBL_threat_high'] = 'Alto pericolo';
$txt['httpBL_threat_very_high'] = 'Altissimo pericolo';
$txt['httpBL_log_remove_all_confirm'] = 'Sei sicuro di voler cancellare tutte le voci dal registro MOD httpBL? - Questa azione non cancellerà soltanto le voci in questa sezione, ma TUTTE LE VOCI DEL REGISTRO.';
$txt['httpBL_log_remove_selected_confirm'] = 'Sei sicuro di voler cancellare le voci del registro MOD httpBL log selezionate?';

// Errors
$txt['httpBL_log_no_error'] = 'Nessun errore';
$txt['httpBL_no_errorNumber'] = 'Non c\'è un numero errore';
$txt['httpBL_no_defined'] = 'Non ancora definito';
$txt['httpBL_answers_captcha'] = 'Risposte al captcha';
$txt['httpBL_answer_captcha'] = 'Risposta al captcha';
$txt['httpBL_good'] = 'Buona';
$txt['httpBL_bad'] = 'Cattiva';
$txt['httpBL_empty_ip'] = 'IP vuoto';
$txt['httpBL_wrote_hiding'] = 'Scritto in un posto nascosto';
$txt['httpBL_no_show_captcha'] = 'L. Pe. troppo alto. Non è stato mostrato il captcha';
$txt['httpBL_no_reverse_ip'] = 'Non controllato. IP non normale. Consentito il passaggio';
$txt['httpBL_log_key_error'] = 'Non controllato per via di errore alla API key. Abilitato a passare';
$txt['httpBL_no_127'] = 'Non controllato. response[raw] non partito per via 127. Abilitato a passare';
$txt['httpBL_unknown'] = 'sconosciuto';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Mai controllato da mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Se questo permesso è abilitato, tutti i membri di questo gruppo saranno abilitato ad entrare nel forum sempre senza essere controllati dal mod httpBL, anche se il loro computer è controllato da un trojan spammer robot.<br />---<br />Abilitalo solo se sai esattamente cosa stai facendo.';
$txt['httpBL_last_act_too_high'] = 'Ultima attività troppo tempo fa. Consentito il passaggio.';
$txt['httpBL_threat_too_low'] = 'Livello Pericolo troppo basso. Consentito il passaggio';
$txt['httpBL_enable_sub'] = 'Con questa check-box selezionata il mod è ON. Con questa check-box non selezionata il mod è OFF.';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL è ON ma non c\'è connessione adesso con HoneyPot. Prova più tardi.';
$txt['httpBL_mod_no_connect_2'] = 'Se il problema persiste chiedi aiuto nel <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum di supporto ufficiale</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL è ON ma non è aggiornato.';
$txt['httpBL_mod_new_version_2'] = 'C\'è una nuova versione di questo mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Per favore aggiornalo appena puoi</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL è ON, è aggiornato e la connessione con HoneyPot è ok.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL è OFF.';
$txt['OS_Browser_Compatible'] = 'compatibile';
$txt['OS_Browser_OS'] = 'Operating System';
$txt['OS_Browser_Unknown'] = 'sconosciuto';
$txt['OS_Browser_Browser'] = 'Browser';
$txt['httpBL_cache_length'] = 'Minuti in cui mantenere i dati nella cache';
$txt['httpBL_cache_length_sub'] = 'Ogni volta che il mod controlla un IP salva i dati nella cache (se abilitata) e nella sessione del visitatore per il numero di minuti in cui scrivi qui. Se lo stesso IP visita la tua pagina ancora prima che questo numero di minuti siano passati, il mod non lo verifica di nuovo, ma userà i dati memorizzati nella cache e/o nella sessione.';
$txt['httpBL_view_os_whosonline'] = 'Vedi dati OS & Browser nella pagina "Chi è Online"';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Configurazioni';
$txt['httpBL_honeyPot_link_sub'] = 'Dopo aver istallato un Honey Pot nel tuo server, scrivi qui il link ad esso. Deve essere qualcosa come:<br /><strong>http://www.yourwebsite.com/yourhoneypot.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Prego ricordati che Project Honey Pot non te ne darà una se non hai già istallato un Honey Pot, quindi è meglio farlo prima.';
$txt['httpBL_viewlog'] = 'Registro Spammers';
$txt['httpBL_viewlogpass'] = 'Registro Umani';
$txt['httpBL_viewlogerror'] = 'Registro Errori';
$txt['httpBL_viewlogpass_description'] = 'Questa è la lista degli umani fermati dal mod, ma consentiti dopo che hanno provato di non essere robot. In più hai tutte le persone individuate come spammer nel database, ma con un livello di rischio inferiore al "livello di pericolo considerato cattivo" nelle tue configurazioni, in modo che non vengano fermati del tutto.';
$txt['httpBL_info_email_desc'] = 'Il mod ha bisogno del tuo indirizzo email per dirti se ci sono problemi e per mostrare agli esseri umani sfortunati con un IP considerato spammer come uscire dalla pagina <strong>warning.php</strong >, in modo che si possano chiedere aiuto. Poi, deve essere un indirizzo email valido. Lo abbiamo suddiviso in 3 parole in modo che il robot non lo possa vedere. Ad esempio, se l\'indirizzo è <strong>[email protected] </strong> la prima parola è <strong>info</strong>, la seconda <strong>yourwebsite</strong>, e la terza <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'Alcuni IP cambiano molto spesso, quando i visitatori vedono il captcha e dimostrano che sono umani essi sono autorizzati all\'interno della pagina solo per questa quantità di ore. Dopo di che, l\'IP può essere proveniente da un altro computer.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL usa le funzioni all\'interno di "Mod OS & Rilevamento Browser" per mostrare nei registri il sistema operativo e il browser usato da tutti i visitatori scritti in questi registri. Se vuoi vedere nella tua pagina "Chi è Online" il sistema operativo e il browser usato da tutti i tuoi visitatori, seleziona questo check-box. Ovviamente, per essere abilitato a vederli, nei registri della tua pagina "Chi è Online", devi avere istallato o <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> oppure il piccolo <a href="http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0" target="_blank">addon per vedere OS & Browser in httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
$httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
$httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'Configurazioni Generali';
$txt['httpBL_general_settings_desc'] = 'Se vuoi usare il MOD httpBL devi avere Honey Pot installato nel tuo server e una http:BL API key da Project Honey Pot. Se non la hai devi prima andare su <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> per chiedere un Honey Pot, installarlo nel tuo server e quindi chiedere la tua http:BL API key.';
$txt['httpBL_info_email'] = 'Il tuo indirizzo email';
$txt['httpBL_internal_settings'] = 'Configurazioni Interne';
$txt['httpBL_internal_settings_desc'] = 'Ci sono configurazioni interne per controllare il modo in cui mod httpBL lavora. Non ti raccomandiamo di cambiarle prima di sapere il modo in cui ogni cambiamento influirà sul mod.';
$txt['httpBL_extra_settings'] = 'Configurazioni Extra';
$txt['httpBL_extra_settings_desc'] = 'Altre configurazioni che potresti voler cambiare.';
$txt['httpBL_warning_settings'] = 'Configurazioni Warning Page';
$txt['httpBL_warning_settings_desc'] = 'Se vuoi vedere l\'aspetto della tua pagina "warning.php" con queste configurazioni (la pagina a cui ogni visitatore considerato pericoloso sarà rimandato) premi questo link: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br/>Questo è il modo in cui apparirà ai visitatori non troppo pericolosi. Con un captcha, in modo che potranno provare d\'essere umani. Se vuoi vedere il modo in cui apparirù a chi è MOLTO pericoloso (senza captcha) usa questo link: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br/>Se vuoi cambiare il suo design o tradurre questa pagina in altri linguaggi e non sai come, oppure se hai altre questioni riguardo il mod, troverai informazioni utili nella sezione <a href="'. $httpBL_help_link. '">httpBL HELP</a>.';
$txt['httpBL_use_two_languages'] = 'Usa 2 linguaggi nella pagina warning';
$txt['httpBL_use_two_languages_sub'] = 'Di default la pagina warning è in 2 differenti linguaggi: Inglese e Spagnolo (o la lingua da te tradotta), così tutti i tuoi visitatori possono capire quello che dice in queste due lingue. Se lasci questa check-box vuota useremo soltanto l\'Inglese.';
$txt['httpBL_horizontal_separator'] = 'Separatore orizzontale per la pagina warning';
$txt['httpBL_horizontal_separator_sub'] = 'Il separatore orizzontale di default per ogni blocco all\'interno della pagina warning è &lt;hr /&gt; (linea orizzontale grigia) ma puoi cambiarlo con qualsiasi altro usando il linguaggio HTML.<br />
Per esempio &lt;br /&gt; ti darà uno spazio-linea bianca.<br />
Oppure per esempio puoi inserire una immagine orizzontale che ti piace semplicemente scrivendo:<br />
&lt;img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" /&gt;<br />
(Sostituisci il link all\'interno di src="" con la cartella della tua immagine).';
$txt['httpBL_log_clear_this_log'] = 'Pulisci questo log';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Spammers?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Umani?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Errori?';

// Help
$txt['httpBL_helping'] = 'Aiuto';
$txt['httpBL_helping_description'] = 'Ti raccomando di leggere questa pagina attentamente anche se non hai bisogno di aiuto col mod httpBL.';
$txt['httpBL_online_title'] = 'Aiuto online';
$txt['httpBL_online_body'] = '<p>Ci sono un sacco di modi in cui puoi chiedere aiuto, ma il migliore è chiedere a me direttamente di ogni eventuale dubbio che si possa avere, in modo che possiamo parlarne e risolvere il problema senza perdere tempo. I non ho testa per rispondere alle domande attraverso i forum, e-mail, PM, ecc, ma per me è molto più facile vedere che cosa è il problema e trovare la soluzione quando posso parlare con un microfono. E penso anche che questo sia molto più veloce e più efficace per risolvere i problemi.<p>
<p>Io sono connesso circa 10 ore ogni giorno usando il programma <strong>"Skype"</strong>, <strong>"YIM"</strong> (Yahoo Messenger) e <strong>"MSN"</strong> (Live Messenger). Ho anche creato un sistema nei miei server per scrivere quello che sto facendo in ogni momento e ho aggiunto un pezzo di codice al mod per leggere queste informazioni dal mio server (il pezzo si può vedere accanto a queste linee) in modo da poter vedere se sono disponibili o meno.</p>
<p>Se hai installato anche il programma Skype, il processo non può essere più semplice. Tutto quello che dovete fare è aspettare fino a quando io sono a disposizione e fare clic sul pulsante "Online". Questo aprirà automaticamente il programma Skype sul vostro computer e inizierà una conversazione tra di noi.</p>
<p>Se si preferisce utilizzare YIM o MSN invece di Skype o se non hai gia preso un microfono, il pulsante non funzionerà automaticamente. In tal caso, il pulsante sarà utile per voi solo per sapere se sono disponibile o meno, ma per contattarmi avrete bisogno di aggiungere il mio nome prima all\'interno del programma che utilizzate, come qualsiasi altro contatto. Il mio ID dentro questii 3 programmi è questo:</p>
<ul>
<li>Skype e YIM : <strong>snoopy_virtual_studio</strong></li>
<li>MSN : <strong>[email protected]</strong></li>
</ul>
<p><strong>AVVISO:</strong> Non usare il mio indirizzo hotmail per inviarmi email, non le leggo mai. Se vuoi inviarmi un email usa quest\'altro indirizzo: <a href="mailto:[email protected]">[email protected]</a></p>
<p><strong>ATTENZIONE:</strong> Ci sono un sacco di lingue del mondo che posso capire, anche se solo un pò, ma gli unici 2 in cui sono davvero fluente sono inglese e spagnolo. Se non è possibile parlare una di queste due lingue potete chiamarmi, ma non posso promettere che saremo in grado di capirci.</p>
<p><strong>ANOTHER WARNING:</strong> Prima di iniziare a fare domande sarebbe una buona idea fare una rapida ricerca utilizzando i link che puoi vedere più in basso, per vedere se qualcun altro ha già avuto lo stesso problema ed è già stato risolto. Il motivo principale per cui ho creato questa "Guida in linea" è quello di risparmiare tempo e non avrebbe alcun senso se io alla fine dovessi rispondere centinaia di volte alle stesse domande ogni giorno.</p>';
$txt['httpBL_help_1_title'] = 'Altri modi per chiedere aiuto';
$txt['httpBL_help_1_body'] = '<p>Naturalmente, anche se io personalmente preferisco la "Guida in linea", ci saranno momenti in cui sarà impossibile utilizzarla. O perché si vive troppo lontano da me e non siamo mai online nello stesso tempo, o perché si non ti piacciono i programmi di messaggistica istantanea, o perché hai bisogno di aiuto quando sarò troppo impegnato con altri progetti e non posso essere collegato, o qualunque altro motivo. In tutti questi casi si possono trovare e / o chiedere aiuto con un sacco di modi diversi:</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english" target="_blank">Tutoral che spiega come funziona il mod, come installarlo e come configurarlo esattamente</a></strong></li>
</ul>
<p>Ogni volta che ho aggiornato la mod cerco di aggiornare anche il tutorial, ma, naturalmente, ciò dipende dalla quantità di tempo libero che ho in un dato momento, così a volte si vedrà il tutorial un pò fuori data rispetto alle performance effettive del mod. Ma spero che un giorno troverò il tempo di aggiornare il tutorial in modo corretto. Inoltre sto pianificando di aggiungere anche una sezione tutorial <strong>"FAQ"</strong> con tutte le domande che le persone mi hanno chiesto nel corso del tempo e di aggiungere anche alcune altre sezioni utili. Non sarbbe una cattiva idea verificare di volta in volta se c\'è qualcosa di nuovo lì.</p>
<ul>
<li><strong><a href="http://www.simplemachines.org/community/index.php?topic=366399.0" target="_blank">Thread Ufficiale di supporto del mod</a></strong></li>
</ul>
<p>Pieno di domande molto interessanti e risposte sulla mod e altri argomenti legati alla protezione contro gli spammer. È anche il posto giusto per segnalare eventuali bug che si possono trovare nel mod o richiedere nuove funzionalità che vorreste vedere nelle prossime versioni.</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0;language=english" target="_blank">La sezione dedicata a questo mod nel mio forum personale</a></strong></li>
</ul>
<p>Il mio forum personale è dedicato a qualsiasi tipo di sorta di problemi che chiunque può avere all\'interno di un sacco di diversi settori dell\'IT. Al suo interno vi è una sezione dedicata ai mod httpBL, dove si può vedere (tra le altre cose) come è possibile installare anche questa mod su altri siti web realizzati con PHP, ma senza SMF.</p>';
$txt['httpBL_help_2_title'] = 'Come puoi aiutarci';
$txt['httpBL_help_2_body'] = '<p>Questa mod è <strong>"Free Source"</strong> e questo significa che è un lavoro di squadra dove tutti si aiutano a vicenda. Quindi non solo gli altri ti aiutano a risolvere i tuoi problemi, ma ti dovresti anche chiedersi in che modo puoi aiutare tutte le persone che lo utilizzano. A seconda della capacità e del tempo libero, i diversi modi in cui puoi aiutare sono questi:</p>
<ul>
<li><strong>Donazioni</strong></li>
</ul>
<p>Se questo mod vi ha aiutato, le donazioni sono un ottimo modo per dire "Grazie!". Inoltre, i mesi in cui le donazioni raggiungono un livello accettabile, I non ho bisogno di spendere tante ore alla ricerca di clienti per fare altri tipi di lavoro e posso dedicare più tempo a ciò che conta davvero: I vari progetti di software libero con cui collaboro.</p>
<ul>
<li><strong>Segnala bugs</strong></li>
</ul>
<p>Ogni volta che vedi che il mod si sta comportando in un modo che non è previsto, è necessario segnalare il bug nel forum appropriato. Se anche tu hai abbastanza conoscenze di programmazione per trovare dove sia l\'errore e proporre una soluzione, la migliore, ma anche se non si ha idea di dove sia la causa, il solo fatto di segnalarlo è utile, perché consentirà a qualcuno con più esperienza di sapere che il bug esiste e di dedicare del tempo per risolverlo, lavoro che renderà il la mod ancora migliore.</p>
<ul>
<li><strong>Rispondi a domande nel forum</strong></li>
</ul>
<p>Se hai usato questa mod per qualche tempo e hai una certa pratica con essa, puoi vedere a volte che qualcuno pone una domanda nel forum di cui conosci la risposta. Se rispondi a questa domanda mi risparmierai un pò tempo e mi permettai di concentrarmi sui problemi più importanti.</p>
<ul>
<li><strong>Aiutare con lo sviluppo di questo mod</strong></li>
</ul>
<p>Se disponi di sufficienti conoscenze PHP e di tempo libero puoi contribuire a risolvere i bug del mod e/o sviluppare le future versioni. Per fare questo ho aperto un <strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=36.0;language=english" target="_blank">sub-forum all\'interno del mio forum personale </a></strong>, dove sei il benvenuto se sei interessato all\'argomento.</p>
<ul>
<li><strong>Altro</strong></li>
</ul>
<p>Ogni altra idea che pensi possa aiutare è benvenuta.</p>';
$txt['httpBL_about_title'] = 'Riguardo MOD httpBL';
$txt['httpBL_about_body'] = '<p>Mod httpBL è stata avviata nel 2009 da me, J. C. Redondo "Snoopy", da <strong><a href="http://www.snoopyvirtualstudio.com/index.php?language=english" target="_blank">Snoopy Virtual Studio</a></strong>, basata su una idea dal forum di Project Honey Pot, principalmente <strong><a href="http://www.projecthoneypot.org/board/read.php?f=10&i=1&t=1" target="_blank">da questo thread</a></strong> e anche dal <strong><a href="http://drupal.org/project/httpBL" target="_blank">Drupal http:BL MOD fattpo da praseodym</a></strong>.</p>
<p>Naturalmente, il codice Drupal è molto differente dal codice SMF, così fin dall\'inizio ho dovuto cambiarlo molto. Inoltre, da quando ho iniziato, io ho modificato molto di più e ho aggiunto nuove funzionalità, come ho avuto nuove idee o altre mi sono state suggerite da altre persone nel forum SMF, per cui nella versione attuale non vi è rimasto che molto poco del lavoro originale, ma tutto questo non sarebbe stato possibile senza questo lavoro iniziale.</p>
<p>Dalla versione 2.4 dell\'ottobre 2010, questo mod utilizza anche le funzioni create da <strong>Marcin Krol</strong> e modificate da <strong><strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">X3mE</a></strong> nel suo mod <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">OS & Browser Detection</a></strong> per rilevare il sistema operativo e il browser dei potenziali spammers.</p>
<p>Questo programma, come la maggior parte del mio lavoro, è un software gratuito (almeno per le parti che ho fatto). Può essere redistribuito e/o modificato per i propri progetti in ogni caso lo si desidera. Basta ricordare da dove lo hai avuto, per darmi il credito che merito per i miei sforzi. Comunque se avete intenzione di fare soldi con esso, sarò molto grato se considerete di donare una piccola percentuale del vostro profitto.</p>';
// MOD httpBL END
]]></add>
</operation>
</file>




Warning.php
/*******************
*  Set 2 - Italian *
*******************/
$txt['httpBL_warn_title_2'] = 'Attenzione';
$txt['httpBL_warn_denied_2'] = 'Accesso Negato';
$txt['httpBL_warn_head_2'] = 'Il nostro programma anti-spam ha determinato che sei un robot che sta provando a inviare spam nel nostro forum.';
$txt['httpBL_warn_infected_2'] = 'La causa più probabile è che il tuo computer, o un computer che opera nella tua rete locale, è stato <strong>infettato da un virus, trojan o worm</strong>. I computer infettati possono essere usati dai criminali, senza il tuo consenso, per inviare spam e attaccare siti come questo che stai provando a visitare.';
$txt['httpBL_warn_dynamic_IP_2'] = 'Se usi un ip dinamico, il tuo IP dovrebbe cambiare ogni volta che riavvii il router, quindi il problema potrebbe essere che oggi usi un IP che è stato usato da un computer infetto un pò di tempo fa, quindi puoi provare, se vuoi, a riavviare il tuo router e il tuo computer e ad aprire di nuovo la pagina web e vedere se tutto andrà bene.';
$txt['httpBL_warn_technician_1_2'] = 'In ogni caso, per testare se il tuo computer è infetto, e rimuovere possibili infezioni, ti raccomandiamo di contattare al più presto un tecnico e visitare <strong>www.projecthoneypot.org</strong> per controllare i dettagli del tuo IP:';
$txt['httpBL_warn_technician_2_2'] = 'per vedere esattamente cosa è andato storto.';
$txt['httpBL_warn_info_2'] = 'Per ulteriori informazioni, prego contatta:';
$txt['httpBL_warn_at_2'] = 'at';
$txt['httpBL_warn_dot_2'] = 'dot';
$txt['httpBL_warn_hurry_2'] = 'Avrai una spiegazione più dettagliata sotto queste righe, ma, in caso si ha fretta di vedere le pagine e non hai tempo di scansionare il tuo computer alla ricerca di possibili virus, possiamo farti entrare temporaneamente. Si prega di rispondere a una di queste 2 facili domande scrivendole in modo che il robot non possa vederle. Si prega di rispondere alla prima domanda (solo il numero) per dimostrare che non sei un robot e premere il bottone <strong>"Invia"</strong>:';
$txt['httpBL_warn_send_2'] = 'Invia';
$txt['httpBL_warn_blank_2'] = 'Lascia questo campo bianco.<br />Scrivi la risposta nel campo sopra.';
$txt['httpBL_warn_wrong_2'] = 'Sbagliato';
$txt['httpBL_warn_wrong_head_2'] = 'Risposta sbagliata.';
$txt['httpBL_warn_wrong_answer_2'] = 'Forse non ci siamo spiegati correttamente oppure non hai premuto il tasto giusto. Quello che hai qui sono 2 differenti righe. Nella prima riga si può vedere una somma semplice, un campo vuoto e un bottone "Invia". In questo primo campo vuoto devi scrivere la risposta (solo il numero) e premere il bottone. Devi lasciare il secondo campo vuoto, proprio come è adesso.';
$txt['httpBL_warn_good_2'] = 'Buono';
$txt['httpBL_warn_good_head_2'] = 'Risposta corretta.';
$txt['httpBL_warn_good_answer_2'] = 'La tua risposta è corretta, ma ricordati che un robot, anche se non può vedere o capire la domanda, può digitare la risposta corretta semplicemente provando dei numeri a caso. Sarà più difficile otterene la risposta corretta due volte di fila, quindi, per favore, rispondi a questa ultima domanda e premi di nuovo il bottone <strong>"Invia"</strong>:';
Title: Re: httpBL
Post by: Lotti on March 18, 2011, 10:38:44 PM
Oh, I have also a question. I try to install this on this site-test
http://social.spaceof.info/forum/index.php

I find in html source of the page the link to the honey pot
<script language="javascript" type="text/javascript"><!-- // --><![CDATA[

Shoutbox_GetFeatures();

if (!Shoutbox.hide) Shoutbox.msgs = setTimeout("Shoutbox_GetMsgs();", 1000);

// ]]></script><a href="http://letterefilosofiasapienza.spaceof.info/forum/comfort.php" style="display: none;">Register</a>

<br><div class="tborder" ><table cellpadding="0" cellspacing="0" border="2">



<tr>

       <td class="windowbg2"><span class="smalltext" style="display: inline; visibility: visible; font-family: Verdana, Arial, sans-serif;">Benvenuti nel sito degli studenti della Facotà di Lettere e Filosofia dell'Università "La Sapienza" di Roma. Questo sito, luogo di incontro e informazione per gli studenti, non è il sito ufficiale della facoltà, che è invece raggiungibile all'indirizzo: <a href="http://lettere.uniroma1.it/" target="_blank">http://lettere.uniroma1.it/</a>. Intende però dare nuovi strumenti per gli studenti, in una logica di vero e rapido aggiornamento. Cercate informazioni su un modulo, od un professore? Usate la <a href="http://letterefilosofiasapienza.spaceof.info/forum/index.php?action=search">ricerca</a>. Per le domande, è presente l'help. E' molto importante infine <a href="http://letterefilosofiasapienza.spaceof.info/forum/index.php?action=register">registrarsi</a> per usufuire di tutti i servizi.</span></td>

</tr>


But I don't see that in this place, when I try to search this with the browser (at the end of Shoutbox, I think). It's normal?

Also, I don't see the link in html source if I visit the page like a guest.

Thanks
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2011, 11:54:32 PM
It's showing fine for me. Just look just before..

</body>
  </html>
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 01:43:22 AM
Quote from: Lotti on March 18, 2011, 10:38:44 PM
Oh, I have also a question. I try to install this on ...

I find in html source of the page the link to the honey pot

....

But I don't see that in this place, when I try to search this with the browser (at the end of Shoutbox, I think). It's normal?

All the links to your honey pot are hiding from humans. Only robots can see them.

The robots don't see a web site the same way you see it. They can only see the html source of the page.

That's why the only way to see those links is looking into the html source code.

But whatever you do, don't follow those links, or the program will think you are a spammer bot (because they are the only ones who can see the links) and will add all your data to the spammer's DB

That's why those links are hiding from humans. We don't want any human falling inside the honey pots.


QuoteAlso, I don't see the link in html source if I visit the page like a guest.

That's not normal.

The links need to be in the html source always. It doesn't matter if you are visiting the site as a member or a guess.

Anyway, that code you wrote there has nothing to do with the link to the honey pot.

The real link to your honey pot (as Wizzlefits said in the previous post) it's showing OK.

I have just visited your forum to check it (as a guess, of course) and I can see it as well.
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 02:01:56 AM
And by the way (I forgot):

Grazie mille for the translation   ;)
Title: Re: httpBL
Post by: Lotti on March 19, 2011, 06:21:19 AM
Thanks a lot. Another (and last) problem. I think it's not a problem only for, and only by, your mod. If you visit the warning page that include SSI.php (I think, no?) and Subs-adkfunction.php by ADK Portal.
I have this problem:

Notice: Undefined index: character_set in /home1/spaceofi/public_html/social/forum/Sources/Subs-adkfunction.php on line 1647

This is the line
//Some errors with russian languages (for example)
function parse_if_utf8($title)
{
if(empty($title))
return;

global $context, $language;

if($context['character_set'] == 'UTF-8')
$title = htmlentities($title,ENT_QUOTES,'cp1251');

return $title;

}


and this is the file.

I can // the lines, but it's not a real solution. Anybody here can help me?
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 04:51:16 PM
I think the problem is ADK Portal is not handling properly SSI.

Anyway, there is an easy way to sort this problem, but not modifying the file Subs-adkfunction.php but your warning.php file.

Look inside your warning.php for these lines:


global $httpBL_warning;
$httpBL_warning = true;


They are at the beginning of the file, before the call to SSI.

Replace them with:


global $httpBL_warning, $context;
$httpBL_warning = true;
$context['character_set'] = 'UTF-8';


or


global $httpBL_warning, $context;
$httpBL_warning = true;
$context['character_set'] = 'ISO-8859-1';


I am not sure which one of them you should use, because I can see that in your forum you are using ISO-8859-1 but inside the warning page you are using UTF-8

You should use the same one in both of them, so if you are going to use ISO-8859-1 for the warning page as well, you should also change this other line:


$txt['httpBL_warn_charset'] = 'UTF-8';


to:


$txt['httpBL_warn_charset'] = 'ISO-8859-1';


It is inside the warning.php file around line 73. Just before the language lines.

==========

Another thing I have noticed is that you are using only Italian in your warning page (in the left side) but you have left the right side blank.

It doesn't looks very nice.

You have also an easy solution here:

Go to the mod httpBL settings page and un-check the option "Use 2 languages on the warning page".

That will leave your warning page with only one language.

Check it and see if you like it more this way.
Title: Re: httpBL
Post by: Lotti on March 19, 2011, 08:17:44 PM
Thanks a lot for your support, it's why I'm happy to post the translation of your mod.
I'm going to try your suggestion; but I have a question before. Why my warning.php show only italian language? I have simple translate the Set2 to Italian, but I want to show both italian and english. Where is the problem?


Ah, ok, stupid error about the name of variables; 1 instead of 2. Sorry.

Now all it's perfect. :) Me and the student of my University thanks you  ;D
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 08:45:00 PM
I thought that was the problem, but I wasn't sure if you wanted 1 language or 2 languages there.

In fact, when you have 2 languages the one with the number "1" is the one showing on the left and the one with number "2" is the one on the right.

And when you chose to show only one language the one shown is the language with the number "1".
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 09:53:09 PM
@Lotti

I have checked again your warning page to see if everything was OK now and I have seen another error:


Notice: Undefined index: actual_theme_dir in /home1/*****/public_html/***/forum/Sources/Load.php on line 2127


You can avoid that one as well using the same method we used before, but maybe some more errors will appear later and maybe we will need to be doing it again and again, so I think to avoid this we should use a more general method:

The warning page is going to be seen only by bad robots and humans unlucky enough to have a bad IP (or a trojan) so they don't need to see those errors at all.

So the best thing to do is to turn off the error reporting completely in the warning page.

Go again to the warning page and replace these lines:


global $httpBL_warning;
$httpBL_warning = true;


with:


global $httpBL_warning;
$httpBL_warning = true;
error_reporting(0);


Or leave them as I said in my previous post and add the line turning off the error reporting.

I have added a note in my TODO list to add that to the warning page by default in future versions. Still I will need to find a more permanent solution for that, but it's not good at all to display those kind of errors in the warning page to all the visitors.

I have a question though for the SMF gurus:

Turning error_reporting off will stop those errors from showing in the forum error log?

I hope no (if there are errors I will like to be able to see them so I can sort them) but I am not 100% sure about the answer there.
Title: Re: httpBL
Post by: Lotti on March 20, 2011, 03:54:03 PM
I try to fix this adding to the Load.php
if(empty($settings['actual_theme_dir']))
$settings['actual_theme_dir'] = $settings['theme_dir'];

before of $language_directories = array(
$settings['default_theme_dir'] . '/languages',
$settings['actual_theme_dir'] . '/languages',

I hope it's ok.
Title: Re: httpBL
Post by: snoopy_virtual on March 20, 2011, 05:05:27 PM
That is not a general error.

Only the people using the mod ENotify would have those lines inside the file Load.php so, as I already told you in one of my PMs, you should ask about that problem inside the support topic for that mod.

The people reading this topic about mod httpBL won't know what to do with that, and maybe it could be useful for anybody else using mod ENotify if you talk about it there.

Also maybe there is a better way to sort that problem and you will have a lot more chances of getting it sorted if you talk about it there. As I told you I don't use mod ENotify so, to understand the problem better and find a solution, I will need to read all the code inside that mod.
Title: Re: httpBL
Post by: snoopy_virtual on March 20, 2011, 05:11:04 PM
Anyway you need to remember that the errors saying: "Undefined index ... whatever" are not always critical errors.

The script continue working even with those errors, so in most cases you can safely ignore them.

In this case you have here I don't think you should need to worry too much about them. They are not urgent errors.

I think the only really urgent thing is to add the line to stop error reporting inside the warning page, so your visitors don't see those errors and only you see them inside your log until you find a solution for them.
Title: Re: httpBL
Post by: damouse on March 29, 2011, 07:05:10 AM
thank you so much for an awesome mod, and for the effort you're putting in to maintain and improve it.

I'm a bit of a newb and have managed to install and activate it without any hassle, I just have a query about adding the code to custom theme pages, in your tutorial you talk about adding it.
"If you have also any other web page connected to your forum through the SSI.php, you will have to insert as well "
I don't understand the php well enough to work out which pages I might need to add it to from this. I think it might be better to expand this explanation a bit further or remove it to save the confusion.

just my 2cents

keep up the awesome work




Title: Re: httpBL
Post by: snoopy_virtual on March 29, 2011, 02:05:22 PM
QuoteI think it might be better to expand this explanation a bit further or remove it to save the confusion.

You are right. I just wrote there a quick explanation planning to do it better some day but I never find the time to finish that tutorial.

Some of these days (I hope ...)

Anyway you won't have to worry about that if in your site you only have SMF.

Do you have (apart from SMF) any other program in your site connect with a bridge? (Mambo, Joomla, Coppermine, Drupal, etc)
Title: Re: httpBL
Post by: Niklas_ on March 29, 2011, 08:00:58 PM
Hi guys

That really sounds like a great mod to me, but I'm kind of worried about legal issues.
IP addresses are considered personal data in Germany (at least by some people, e.g. the judges in Hamburg), so I'm not really allowed to send them to any other organisation. That is especially critical if that other organisation is situated outside of the EU.
So I have two questions:
- Where is the httpBL Project hosted?
- Are there any other people from Germany using this mod, and have they considered the legal issues?
(for reference you might want to take a look at one of the recent Articles in c't 5/11 (in german) http://www.heise.de/artikel-archiv/ct/2011/5/154_kiosk)

Thanks
Niklas
Title: Re: httpBL
Post by: snoopy_virtual on March 30, 2011, 05:30:45 AM
Hi Niklas

Quote- Where is the httpBL Project hosted?

It is an international organization but based on USA.

If you visit their main site http://www.projecthoneypot.org and read their "about" page you will see that it's actually an organization made by a group of lawyers and a group of program coders working together to fight international spam, so they are also very much concern about legal issues.

Also (for that reason) when you open an account with them to join the project they always ask you for your nationality, because the laws are not the same in every country.

I think the best thing you could do is to open an account in their site, so you can post in their forum (you will need it anyway if you want to use this mod) and ask them directly about your legal concerns.

As I say a lot of them are lawyers and would be able to help you out with all that.

Or (if you don't want to open an account yet) send them an email asking your question.

Quote- Are there any other people from Germany using this mod, and have they considered the legal issues?

I am not sure about it, but I think I have seen some people from Germany using it.

You will need to wait until any of them answer you this question, but (just in case they don't see it) I will try to do a search and I will send you a PM if I find any of them.
Title: Re: httpBL
Post by: mrselnombre on March 30, 2011, 09:57:19 AM
Is there anyway to test this mod to make sure it is working?
Title: Re: httpBL
Post by: snoopy_virtual on March 30, 2011, 02:32:01 PM
After the mod is installed and activated, if you visit the config page (Admin => mod httpBL => config) you should see a green sign saying the mod is working properly.

Also, after the mod has been running for a few hours, you should see in the httpBL log page some bots stopped by the mod.

In all my forums the mod stops an average of 5 - 10 bots a day.
Title: Re: httpBL
Post by: mrselnombre on March 30, 2011, 03:35:47 PM
it took a few hours, but my log is filling up now...
fab mod!
Title: Re: httpBL
Post by: DJ-X on April 02, 2011, 11:04:15 AM
100-150 robots in the day, almost all go through Tor !
Title: Re: httpBL
Post by: busterone on April 02, 2011, 11:23:56 AM
You can be very surprised at the amount of bots scraping and attempting to post in a forum in just one day.   ;)
Title: Re: httpBL
Post by: DJ-X on April 04, 2011, 04:31:18 PM
Ipv6 - IIS7 - Mod httpBL is ON

Ipv4 _http://localhost/
Ipv6 _http://[::1]/

Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Mod httpBL is OFF = operating normally.

Who's Online: Guest (0.0.0.0)  ;)

Open _http://yoursite.com/yourhoneypot.php

A validation error occurred. If this problem persists, you will need to generate a new script.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 03:37:09 AM
Hi,

I have recently installed the httpBL mod and in a first few days it managed to stop about 1000 attempts to enter my forum.
Many thanks for that!  :) :)
But I have found out that my error log is flooded with errors from httpBL:

8: Undefined index: httpBL_unknown
File: /home/agilityh/public_html/forum/Sources/httpBL_Subs.php
Line: 674


and I have about 20 successfull registrations from spammers per day.

My SMF version is 1.1.13, httpBL: 2.2.3

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 04:23:48 AM
@DJ-X

I don't understand if you are trying to explain here a few different problems or just one problem. Could you explain that a little more?

Anyway let's see if I can see what you are trying to say:

Quote from: DJ-X on April 04, 2011, 04:31:18 PM
Ipv6 - IIS7 - Mod httpBL is ON

Ipv4 _http://localhost/
Ipv6 _http://[::1]/

Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Mod httpBL is OFF = operating normally.

This mod only works for IPv4, as the database of spammers in Project Honey Pot doesn't support yet IPv6.

Anyway I don't understand what you were trying to say there. Could you explain it?

Quote from: DJ-X on April 04, 2011, 04:31:18 PM
Who's Online: Guest (0.0.0.0)  ;)

Are you having a guest with the IP 0.0.0.0?

We were trying to investigate that possibility some weeks ago but couldn't get any good explanation really. It can be a robot (or a human) hiding their real IP or somebody visiting your site with a bad browser that doesn't identify the IP properly.

Quote from: DJ-X on April 04, 2011, 04:31:18 PM
Open _http://yoursite.com/yourhoneypot.php

A validation error occurred. If this problem persists, you will need to generate a new script.

What are you doing?

NEVER VISIT YOUR HONEY POT AFTER INSTALLATION

You only visit your honey pot once, when you activate it.

You should have done that ages ago, because the mod httpBL doesn't work without a honey pot already activated and working.

So why are you trying to visit your honey pot again?

===================

@iigor

Quote from: iigor on April 05, 2011, 03:37:09 AM
Hi,

I have recently installed the httpBL mod and in a first few days it managed to stop about 1000 attempts to enter my forum.
Many thanks for that!  :) :)
But I have found out that my error log is flooded with errors from httpBL:

8: Undefined index: httpBL_unknown
File: /home/agilityh/public_html/forum/Sources/httpBL_Subs.php
Line: 674


and I have about 20 successfull registrations from spammers per day.

My SMF version is 1.1.13, httpBL: 2.2.3

Thanks

I have never done a version 2.2.3 for mod httpBL.

The current version is 2.5.1

Please check that and if you are not using the latest version, un-install whatever version you have and install the latest one.

If after that you are still having that error check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

If you are not using the default Theme and/or you are not using English let me know and I will tell you where to look for the proper language lines.

Anyway, if you are having 20 spammers registrations per day you have something wrong.

Apart from this mod what other anti-spam mods are you using?
Title: Re: httpBL
Post by: Arantor on April 05, 2011, 04:50:59 AM
Visitors using IPv6 will show up as 'unknown' aka 0.0.0.0.
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 05:10:37 AM
Oh yes, of course. You are right.

Still I don't understand the error DJ-X was trying to explain. What is that about "Database Error"?

When the IP is 'unknown' the mod just add an entry to the log saying that and let the visitor pass.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 05:45:29 AM
Quote from: snoopy_virtual on April 05, 2011, 04:23:48 AM

I have never done a version 2.2.3 for mod httpBL.

The current version is 2.5.1

Please check that and if you are not using the latest version, un-install whatever version you have and install the latest one.

If after that you are still having that error check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

If you are not using the default Theme and/or you are not using English let me know and I will tell you where to look for the proper language lines.

Anyway, if you are having 20 spammers registrations per day you have something wrong.

Apart from this mod what other anti-spam mods are you using?

I have the latest version installed 2.5.1, have picked the wrong version from another mod, sorry.
My theme is babylon and language is croatian.
Except for reCaptcha and httpBL I don't have any other anti-spam mod installed.
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 06:27:25 AM
Hi iigor

With version 2.5.1 you shouldn't have that error, so definitely there is something wrong with your language string lines.

As this mod has not been translated to Croatian yet it should be using the English instead, so (as I said before) check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

They start with a line saying:

// MOD httpBL START

and finish with a line saying:

// MOD httpBL END

You can find the proper ones in the mod main page: http://custom.simplemachines.org/mods/index.php?mod=2155 or inside the files languages.xml and languages_utf8.xml (inside the mod's package).

The theme babylon shouldn't have any language files, apart from the Settings.whatever.php but (just in case) check if you have any other files inside the folder /Themes/babylon/languages/

If you have any other file there, compare them with the files in the default folder (to add the missing lines to all of them until they are exactly the same files) and then delete the files inside the /babylon/languages/ folder and leave only the files inside the default folder.

If you don't understand all that let me know and I will explain it again more slowly or contact me through Skype and we will do it together in a minute.

=========

QuoteExcept for reCaptcha and httpBL I don't have any other anti-spam mod installed.

reCaptcha is not good at all. All modern bots can jump that captcha very easy. You can leave it there or un-install it, it's no difference, but it's not stopping none of them.

Mod httpBL on its own is not good enough to stop them. I would suggest you to add these 2 mods as well:

- Anti-Spam Verification Questions (http://custom.simplemachines.org/mods/index.php?mod=1516)

- Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547)

With the 3 mods working together you will see a big difference.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 08:22:29 AM
Hi Snoopy,

Thanks for pointing me in the right direction.
The magic sentence was
Quote
The theme babylon shouldn't have any language files, apart from the Settings.whatever.php but (just in case) check if you have any other files inside the folder /Themes/babylon/languages/

I had Modifications.croatian-utf8.php there, and after removing the file, it seems that everything is working OK now. No entries in the log file.

I have installed Stop spammer but the Anti-spam verification question gives me an error on install on Register.php??
But that's another problem...

Thanks for Your help!
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 09:16:55 AM
Quote
I had Modifications.croatian-utf8.php there, and after removing the file, it seems that everything is working OK now. No entries in the log file.

Before deleting it you should have checked if the file Modifications.croatian-utf8.php inside the default folder was exactly the same. If not you should have copied the missing lines from the "babylon" one to the "default" one or you may have problems with other mods.

Quotethe Anti-spam verification question gives me an error on install on Register.php??

I think somebody already sorted that in the support topic:

http://www.simplemachines.org/community/index.php?topic=276309.0

But I am not 100% sure about it.

If you cannot find a solution yourself ask in that topic or try to parse the mod for a manual installation, as it only have a few lines in Register.php

But that mod is definitely a "must have", as it stops on its own a lot more spammers than all the rest put together.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 09:50:45 AM
Thanks for the info.

I found the error myself, an extra line in the search text of Register.template.php (not Register.php), I'm getting old... :-[

Now all the Three musketeers stand in defense.  :) :) :)

Thank You for Your time!
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 10:03:11 AM
No problem.  ;)

Just for curiosity: Could you report back in a few days time to tell us what's the number of spammer registrations you have now?

I suppose it will be a lot less than the 20 a day you are having now, but I would like to know exactly how many.
Title: Re: httpBL
Post by: DJ-X on April 07, 2011, 05:48:00 PM
Make  Mod httpBL stopped working when the website  user Ipv6, but continued to work when users go to Ipv4.
Server IIS 7.5 with Ipv4 and Ipv6 - SMF 1.1.13

Mod httpBL is On - user Ipv6
Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Forum Error Log

Guest     Today at 00:45:07

http://mysite.com/index.php

8: Undefined variable: ip
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 519

       Guest     Today at 00:45:07
   
http://mysite.com/index.php

2: Missing argument 1 for httpBL_look_for_empty_ip(), called in C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php on line 680 and defined
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 517
Title: Re: httpBL
Post by: snoopy_virtual on April 07, 2011, 06:56:26 PM
@DJ-X

OK, I understand now were is the problem.

It is a bug in the mod that we discovered some weeks ago and will be sorted in the next version. In the mean time here is the solution:

http://www.simplemachines.org/community/index.php?topic=366399.msg2920367#msg2920367
Title: Re: httpBL
Post by: DJ-X on April 11, 2011, 11:13:05 AM
Another error :)

$ip = httpBL_look_for_empty_ip($ip);

Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Database Error: Field 'error' doesn't have a default value
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 263


phpinfo()

_SERVER["REMOTE_ADDR"]   2604:6600:13:0:225:90ff:fe10:634
_SERVER["REMOTE_HOST"]   2604:6600:13:0:225:90ff:fe10:634
Title: Re: httpBL
Post by: snoopy_virtual on April 11, 2011, 11:53:09 AM
Inside the database, in the table "log_httpBL", the field "error" is a text field.

In all the versions of MySQL I have always used, text fields cannot have default values, so I don't understand that error you are getting.

Do you know what version of MySQL you have in your server or if you are using any other kind of database?
Title: Re: httpBL
Post by: BoxingChaos on April 11, 2011, 02:45:44 PM
Just wanted to thank snoopy_virtual for keeping httpBL and Stop Spammer up to date and all. Installed both and my spammers bots are getting trapped left and right and the problem has been solved. Added these two mods httpBL and Stop Spammer to two forums and problem cured. Gracias hermano snoopy_virtual. Muy buen aporte :)
Title: Re: httpBL
Post by: snoopy_virtual on April 11, 2011, 02:59:53 PM
A mandar, que pa eso estamos  ;)
Title: Re: httpBL
Post by: BritManNJ on April 12, 2011, 07:56:11 AM
## Okay ... I fixed it ... your tutorial is good ... thank you ##

I am trying to install httpBL, but I'm getting stuck here:

2.     ...
3.   Execute Modification   ./index.php   Test successful
4.   Execute Modification   ./SSI.php   Test successful
5.   Execute Modification   ./Themes/default/index.template.php   Test failed
6.   Execute Modification   ./Themes/default/Who.template.php   Test successful
7.   Execute Modification   ./Themes/default/languages/Modifications.english.php   Test successful
8.     ....

Current packages:

Mod Name   Version   
1.   Google Analytics Code   1.4
2.   Stop Spammer   2.3.9
3.   Social Bookmarks   1.1
4.   IP-Address Tracer   1.0

What am I doing wrong?

Thankyou,

aeh
Title: Re: httpBL
Post by: snoopy_virtual on April 13, 2011, 12:22:44 PM
@BritManNJ

Apparently you found the answer before I saw the question.

Anyway if the mod is not working properly or if you have any other question just let me know.  ;)
Title: Re: httpBL
Post by: DJ-X on April 13, 2011, 03:24:52 PM
Quote from: snoopy_virtual on April 11, 2011, 11:53:09 AM
Inside the database, in the table "log_httpBL", the field "error" is a text field.

In all the versions of MySQL I have always used, text fields cannot have default values, so I don't understand that error you are getting.

Do you know what version of MySQL you have in your server or if you are using any other kind of database?

Hi !
MySQL Server 5.1

I set up so that the code does not work when IPv6 is used!
Changed in the index.php

Example

// IPv4
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {
    // It works only on server with IPv4
    echo "<b>IPv4</b><br />";
   }

// IPv6
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {

   }
   else
   {
    // It works only on server with  IPv6
    echo "<b>IPv6</b><br />";
   }

Title: Re: httpBL
Post by: snoopy_virtual on April 14, 2011, 11:26:49 AM
Hi DJ-X

I am not really sure if what you are doing there will sort your problem. Maybe it does.

Let me know if it works for you, because we could use a similar solution if anybody else has the same problem.
Title: Re: httpBL
Post by: butchs on April 14, 2011, 06:52:12 PM
As far as I know SMF is not designed to work with IPv6 either.  Why should httpBL have to be compatible when SMF has no current method to store and track IPv6 addresses?
Title: Re: httpBL
Post by: snoopy_virtual on April 14, 2011, 07:09:23 PM
Every piece of software should be able to deal properly with IPv6 now that there are no more IPv4 available.

IPv6 is not the future any more. It's the present.
Title: Re: httpBL
Post by: Arantor on April 14, 2011, 07:43:29 PM
No, SMF will silently treat IPv6 as 'not supplied' IP addresses.
Title: Re: httpBL
Post by: snoopy_virtual on April 15, 2011, 02:51:58 PM
I know.

But every "GOOD" piece of software should be able to deal properly with IPv6
Title: Re: httpBL
Post by: DJ-X on April 16, 2011, 07:59:55 AM
Quote from: snoopy_virtual on April 14, 2011, 11:26:49 AM
Hi DJ-X

I am not really sure if what you are doing there will sort your problem. Maybe it does.

Let me know if it works for you, because we could use a similar solution if anybody else has the same problem.
This works on IPv4 IPv6 Microsoft-IIS/7.5 PHP 5.3 and IPv4 Apache/2.2 (CentOS) PHP 5.2
Please correct MOD correctly

index.php


// Mod httpBL is Off when IPv6
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {
// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response)
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}

   }
Title: Re: httpBL
Post by: butchs on April 16, 2011, 09:33:06 AM
Quote from: snoopy_virtual on April 15, 2011, 02:51:58 PM
I know.

But every "GOOD" piece of software should be able to deal properly with IPv6

Bad Behavior (http://bad%20behavior%20mod) mod handles ipv6 and Project Honey Pot nicely.

Forum Firewall (http://custom.simplemachines.org/mods/index.php?mod=2815) actually supports and tests ipv6 addresses.

I agree that you should fix httpBL.
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2011, 11:02:42 AM
Project Honey Pot doesn't handles IPv6 yet. They are working on it, but they need to built a full new database for that and a full new API system.

Mod httpBL works with the database that Project Honey Pot has just now, so it cannot handle properly IPv6 until they finish all that job.

QuoteI agree that you should fix httpBL.

Why do you care if you don't use it?
Title: Re: httpBL
Post by: Arantor on April 16, 2011, 02:14:00 PM
I'd guess it's probably the same reason I hang around here and throw out the odd support answer: because even though I might not use something, I figure my knowledge might be able to help someone else.
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2011, 02:51:57 PM
It's completely different Arantor.

You are one of the best coders I know and normally all your suggestions are accurate and all of them had help me out a lot all these years.

What I don't like is ...

I better shut my mouth before I say something too hard.

I may answer it anyway when I calm down a little.
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 09:50:40 AM
Installed and all is well. Seems to be working fine but unsure how to test it other than just wait.

One question, my email ends in 'co.uk', not 'com' so I presume I simply enter 'co.uk' into the third field for the Admin email address and it will work the same?

Many thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2011, 10:31:42 AM
Quote from: cyberdyne on April 18, 2011, 09:50:40 AM
Installed and all is well. Seems to be working fine but unsure how to test it other than just wait.

Just now there is no easy way to check if the mod is working OK apart from going to Admin => mod httpBL => Settings and see if there is a green sign saying every thing is OK. But that only tests if the mod is ON or OFF, if it's up-to-date or not and if the connection between your server and Project Honey Pot is OK.

There is actually a complicated way to test it, but I wouldn't recommend you to try it unless you know a lot about computers:

- Log off from your forum (so it doesn't recognize you as admin and the mod treats you as any other visitor).

- Go to Project Honey Pot and look for a very bad IP (one from a spammer with a high Threat Level).

- Change the IP of your modem/router or tweak your browser so it shows that IP as yours.

- Visit now your forum and check if the mod stops you.

I have used that method a few times when I need to do changes in the mod and need to see if they work as expected, but as I said before I wouldn't recommend anybody to use it unless they know very well what they are doing.  ;D

Quote from: cyberdyne on April 18, 2011, 09:50:40 AM
One question, my email ends in 'co.uk', not 'com' so I presume I simply enter 'co.uk' into the third field for the Admin email address and it will work the same?

Yes.

You can check if the result is OK using the links in Admin => mod httpBL => Settings => Warning Page Settings to see how your "warning" page looks like.
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 10:36:12 AM
Great, warning page looks fine.

Many thanks for the Mod and your reply :)
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2011, 10:44:54 AM
You're welcome.  ;)
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 12:08:37 PM
Quote from: snoopy_virtual on April 18, 2011, 10:44:54 AM
You're welcome.  ;)

Just to confirm, it is working:

(http://img852.imageshack.us/img852/2382/unled1jr.jpg)

Thanks again
Title: Re: httpBL
Post by: sharingsunshine on April 20, 2011, 03:34:25 PM
Hello,

I had httpBL working on a 1.1.12 install and after using the package manager to upgrade to 1.1.13 it has gone away.  Before I did the upgrade all files showed no problems.  I have checked the error log and nothing is showing up.

The link to the package on the navigation bar under the Members section has disappeared.

Please advise,

Thanks

Randal

Title: Re: httpBL
Post by: cyberdyne on April 20, 2011, 03:56:36 PM
Quote from: sharingsunshine on April 20, 2011, 03:34:25 PM
Hello,

I had httpBL working on a 1.1.12 install and after using the package manager to upgrade to 1.1.13 it has gone away.  Before I did the upgrade all files showed no problems.  I have checked the error log and nothing is showing up.

The link to the package on the navigation bar under the Members section has disappeared.

Please advise,

Thanks

Randal

I'm pretty sure the upgrade process would have replaced all the files with their un-modded versions, therefore, you need to reinstall the mod.
Title: Re: httpBL
Post by: Wizzlefits on April 20, 2011, 04:52:21 PM
You always want to un-install any mods before upgrading. As you've seen, it will kill a lot of stuff. lol
Download the latest version & install, should be good to go then.
Title: Re: httpBL
Post by: sharingsunshine on April 20, 2011, 05:16:14 PM
Thanks for the help.  That did the trick!
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 10:40:26 AM
Hi again.
I'd like to edit the log pages so that I can use an API I have which will look up the listed IP addresses externally upon clicking them - as opposed to simply using the internal 'trackip' function.

Could you please tell me which files to edit in order to insert my custom URL so that this will work?

If this is a lot of editing, just pointers on what change in the spammers log would be helpful.

Many thanks in advance.

Edit:
I found the following in httpBL.template.php

// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a>';
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:04:51 PM
That's exactly the point you need to edit if you want that link to go to another place.

As you can see the link just now takes you to:


href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"


Where $scripturl is the URL of your index.php in your forum and $log['ip'] is the IP of that particular spammer.

If you tell me where you want the link to go I can tell you how to modify it, but if you know a little of PHP I suppose you can figure it out yourself.
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:08:24 PM
Great, although I wasn't sure whether to create a new entry in my language file and use perhaps, eg: $scripturl2 due to the problems using // causes or to try and simply enter the url into the script directly. Which would be best?

The url is:
http://api.ip-adress.com/?u=abcd=<ip address>

Many thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:14:57 PM
If that's the URL you want, just change those 2 lines in httpBL.template.php to:


// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="http://api.ip-adress.com/?u=abcd='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a>';



Are you sure that URL is written properly?
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:18:43 PM
Works perfectly.

Many thanks for your help.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:25:09 PM
You are welcome.

I have been thinking you can even leave both links if you want like this:


// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a> - <a href="http://api.ip-adress.com/?u=abcd='. $log['ip']. '"><strong>Ext-API</strong></a>';


This way you would have the chance to check every IP in 2 places.  ;)
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:31:46 PM
Even better. Much obliged :)
Title: Re: httpBL
Post by: gizmo71 on May 04, 2011, 04:12:40 AM
Got an error I've never seen before in my error log this morning - looks like there's a teeny weeny buglette in the way httpBL_look_for_empty_ip() is called in one specific and very rare case. The error is:
Quote2: Missing argument 1 for httpBL_look_for_empty_ip(), called in .../smf/Sources/httpBL_Subs.php on line 680 and defined
File: .../smf/Sources/httpBL_Subs.php
Line: 517

There are two obvious and simple solutions; firstly, make the function have a default value for its parameter, e.g. change line 517 to
Quotefunction httpBL_look_for_empty_ip($ip = '')
or pass an empty string when calling it from line 680, e.g.
Quote$ip = httpBL_look_for_empty_ip('');

I think I've seen one instance of this in the last 3 months so it's obviously a very unusual set of circumstances. ;D
Title: Re: httpBL
Post by: snoopy_virtual on May 06, 2011, 06:35:30 AM
Sorry, I should have sorted that mistake ages ago.

Any of the solutions you suggest will work, or the solution I suggested some time ago (don't remember exactly where) when somebody else reported that bug before:

In /Sources/httpBL_Subs.php change line 680:


$ip = httpBL_look_for_empty_ip();


for this another one:


$ip = httpBL_look_for_empty_ip($ip);
Title: Re: httpBL
Post by: gizmo71 on May 08, 2011, 04:27:10 AM
Quote from: snoopy_virtual on May 06, 2011, 06:35:30 AM
Any of the solutions you suggest will work, or the solution I suggested some time ago (don't remember exactly where) when somebody else reported that bug before:

Ah, yes, that's much better, thanks Snoopy, I've rolled that into my forum for now. :)
Title: Re: httpBL
Post by: HaCCaBi on May 10, 2011, 04:31:17 PM
For Turkish...

Modifications.turkish.php
$txt['httpBL_honeyPot_link_error'] = 'Hatalı honeyPot bağlantısı. MOD\'unuzun httpBL ayarlarını kontrol edin.';
$txt['httpBL_honeyPot_key_error'] = 'Hatalı http:BL API key\'i. OD\'unuzun httpBL ayarlarını kontrol edin.';
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_description'] = 'MOD httpBL foruma giren her ziyaretçinin IP\'sini projectshoneypot\'un veritabanında kayıtlı mı diye kontrol eder. Eğer IP kaydına veritabanındarastlarsa MOD bu kullanıcıyı direk warning.php dosyasına yönlendirerek foruma girişine engel olur. <br />Burada Mod\'u açıp kapatabilir bazı özelliklerini düzenleyebilirsiniz.';
$txt['httpBL_config'] = 'MOD httpBL ayarları';
$txt['httpBL_enable'] = 'Aç/Kapat MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Yazdığınız API key hatalıdır. Lütfen dikkatlice kontrol edip tekrar deneyiniz.';
$txt['httpBL_honeyPot_link'] = 'Honey Pot\'unuza link verin';
$txt['httpBL_honeyPot_link_sub'] = 'Eğer MOD httpBL\'yi kullanabilmek için Honey Pot\'un sunucunuzda kurulu olması gerekmektedir. Eğer henüz edinmediyseniz project honey pot sayfasına gidip <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>
gerekli kurulum dosyalarını edinmelisiniz. Daha sonra buraya edindiğiniz Honey Pot dosyasının bağlantısını yazınız.
Şöyle birşey olmalı:<br /><b>http://www.siteniz.com/honeypotunuz.php</b>';
$txt['httpBL_honeyPot_key'] = 'Honey Put\'unuzun http:BL API key\'i';
$txt['httpBL_honeyPot_key_sub'] = 'Eğer MOD httpBL\'yi kullanmak istiyorsanız bir tane de
http:BL API key\'i Project Honey Pot websitesinden edinmiş olmanız gerekmektedir. Eğer henüz edinmediyseniz Project Honey Pot\'un websitesine gidip
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>
bir tane edinmek için kayıt olmalı ve buraya yazmalısınız. Not olarak: öncelikle Honey Pot kurulumunu gerçekleştirmediyseniz size http:BL API key\'i verilmeyecektir. Dolayısıyla öncelikle Honey Pot kurulumunu gerçekleştirmeniz gerekmektedir.';
$txt['httpBL_honeyPot_word'] = 'Honey Pot dosyasına vermek istediğiniz bağlantı';
$txt['httpBL_honeyPot_word_sub'] = 'Bu sadece spamcılara gözükecek olan bir kelimedir. Spamcıların üzerine tıklayabileceği ilgi çekici herhangi birşeyler yazabilirsiniz. Eğer yazacak birşeyler bulamıyorsanız boş bırakabilirsiniz. Mod sizin için bu işi yapacaktır.';
$txt['httpBL_info_email_1'] = 'Email\'inizin ilk kelimesi';
$txt['httpBL_info_email_2'] = 'Email\'inizin ikinci kelimesi';
$txt['httpBL_info_email_3'] = 'Email\'inizin üçüncü kelimesi';
$txt['httpBL_info_email_sub'] = 'Mod\'un herhangi şüpheli bir durumla karşılaştığında bir robotmu insanmı olduğunu algılayabilmesi için warning.php sayfasında email adresi soracaktır. Email adreslerini robotların algılayamayacağı 3 kelimeye ayırdık. Örneğin Eğer email adresiniz <b>[email protected]</b> ise, ilk kelime <b>info</b>, ikincisi <b>benimsitem</b> ve üçüncüsü de  <b>com</b> olacaktır.';
$txt['httpBL_enable_bad_email'] = 'Yazdığınız Email adresini kontrol edin.
3 kelimeden herhangi birtanesini boş bırakamazsınız.';
$txt['httpBL_bad_last_activity'] = 'Bir Ip için şüpheci yaklaşılmayacak gün sayısı';
$txt['httpBL_bad_last_activity_sub'] = 'IP çok önceleri bir spamcı tarafından kullanılmış fakat hiçkimse bu IP\'yi
bu zaman süresince  yanlış birşey yaparken görmemişse bu IP adresini tehlikeli olarak görmüyoruz ve ziyaretçi geçişine izin veriyoruz.';
$txt['httpBL_bad_threat'] = 'Kötü denebilmesi için tehdit seviyesi';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot her IP adresine yaptıkları ve ne kadar süre önce yaptığı durumlarına bağlı kalarak hergün değişebilecek bir tehdit seviyesi belirler. Burada belirleyeceğiniz seviyeyi aşan IP adresleri güvenlik duvarını aşıp foruma giremeyecektir.
Modun nasıl çalıştığını tam kavrayamadan bu son 2 değeri değiştirmenizi tavsiye etmiyoruz.';
$txt['httpBL_viewlog_extra'] = 'Log dosyasından ekstra bilgi görüntüle';
$txt['httpBL_viewlog_extra_sub'] = 'Eğer bunu seçerseniz log dosyasındaki tüm bilgileri göreceksiniz, log dosyası çok büyük olabilir ve size ulaşmanız gereken önemli veriyi görmenize engel olabilir. Bazen sadece bizim için önemli olan bilgileri görmemiz daha iyidir.';
$txt['httpBL_config_sub_1'] = 'Eğer "warning.php" sayfanızın bu ayarlarla görünümüze bakmak istiyorsanız (Bu sayfa IP Adresi seviyesi tehlikeli olarak belirlenenler\'in yönlendirileceği sayfadır)
bu bağlantıya tıklayın:';
$txt['httpBL_config_sub_2'] = '
Eğer tasarımını ve çeviri dilini değiştirmek istiyorsanız ve nasıl olacağını bilmiyorsanız destek forumlarından yardım isteyebilirsiniz:';
$txt['httpBL_viewlog'] = 'MOD httpBL log';
$txt['httpBL_viewlog_description'] = 'MOD httpBL herzaman tesbit ettiği bir spamcıyı engelleyecektir. Buradan log dosyası aracılığıyla tüm bunları görebilirsiniz.';
$txt['httpBL_log_no_entries'] = 'MOD httpBL log dosyasına kayıtlı herhangi bir veri bulunmamaktadır';
$txt['httpBL_log_date'] = 'Tarih';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. Sv.';
$txt['httpBL_log_threat_long'] = 'Tehdit Seviyesi - Bu IP adresinin Project Honey Pot veritabanındaki belirlenmiş olan tehdit seviyesi.';
$txt['httpBL_log_activity'] = 'S. K. G.';
$txt['httpBL_log_activity_long'] = 'Son Kötü Girişim - Bu IP adresinin yanlış şeyler yaparken görüldüğü gün sayısı.';
$txt['httpBL_log_suspicious'] = 'Ş.';
$txt['httpBL_log_suspicious_long'] = 'Şüpheliler - Spamcı olabileceğinden şüphelenilenler.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - Internette dolaşıp email adreslerini tarayan bulduğu adresleri daha sonra spam göndermek için kaydeden bir robot.';
$txt['httpBL_log_comment'] = 'Y.';
$txt['httpBL_log_comment_long'] = 'Yorum Spamcısı - FOrumlara ve bloglara habire sayfalar dolusu lin gönderen robot spamcı.';
$txt['httpBL_log_url'] = 'Sayfa';
$txt['httpBL_log_url_long'] = 'Bu IP adresinin giriş yapmak isterken tespit edilip engellendiği sayfa.';
$txt['httpBL_log_user_agent'] = 'Bu IP adresi tarafından kullanılan tarayıcı';
$txt['httpBL_log_error_message'] = 'Hata Mesajı';
$txt['httpBL_log_no_error'] = 'Hata yok';
$txt['httpBL_log_remove_all_confirm'] = 'Tüm MOD httpBL log kayıtlarını silmek istediğinizden emin misiniz?';
$txt['httpBL_log_remove_selected_confirm'] = 'Seçili Tüm MOD httpBL log kayıtlarını silmek istediğinizden emin misiniz?';
$txt['httpBL_yes'] = 'Evet';
$txt['httpBL_pages'] = 'Sayfalar';
$txt['httpBL_threat_low'] = 'Düşük tehdit';
$txt['httpBL_threat_medium'] = 'Orta seviyeli tehdit';
$txt['httpBL_threat_high'] = 'Yüksek seviyede tehdit';
$txt['httpBL_threat_very_high'] = 'Çok yüksek seviyede tehdit';
$txt['httpBL_threat_colors'] = 'Renklerin anlamı:';



warning.php turkish and english
/*******************
*  Set 1 - Turkish *
*******************/
$txt['httpBL_warn_title_1'] = 'UYARI';
$txt['httpBL_warn_denied_1'] = 'Erişim Engellendi';
$txt['httpBL_warn_head_1'] = 'Anti-spam programımız sizin forumumuza spam göndermeye çalışan bir robot olduğunuzu belirledi.';
$txt['httpBL_warn_infected_1'] = 'Bunun sebebi sizin bilgisayarınız\'a ya da aynı ağı paylaştığınız başka bir bilgisayar\'a <strong>virüs, truva atı ya da solucan</strong> bulaşmış olabilir.  Virüslü bilgisayarlar sahibinin bilgisi dışında suçlular tarafından spam gönderme ve sitelere saldırma amacıyla kullanılabilir.';
$txt['httpBL_warn_dynamic_IP_1'] = '
Eğer Dinamik IP kullanıyorsanız, IP adresiniz internete her girdiğinizde değişiyor demektir. Belkide problem yalnızca şuan kullandığınız IP adresinin daha önce virüs ve türevlerinin bulaşmış olduğu bir bilgisayar tarafından kullanılmış olabilir. Eğer isterseniz yeni bir IP adresi almak için modeminize reset atıp yeni bir IP adresi alarak forumumuza problemsiz bir şekilde erişim sağlayabilirsiniz.';
$txt['httpBL_warn_technician_1_1'] = 'Bilgisayarınıza virüs bulaşıp bulaşmadığını tesbit etmek ve virüsü temizlemek için teknik servis\'inize danışmanızı ve onlardan IP adresinizin durumunu örenebilmeniz için <strong>www.projecthoneypot.org</strong> sitesini ziyaret etmesini sağlayabilirsiniz:';
$txt['httpBL_warn_technician_2_1'] = 'tam olarak nelerin yanlış gittiğini görmek için.';
$txt['httpBL_warn_info_1'] = 'Daha fazla bilgi için lütfen iletişim\'e geçin:';
$txt['httpBL_warn_at_1'] = 'at';
$txt['httpBL_warn_dot_1'] = 'dot';
$txt['httpBL_warn_hurry_1'] = '
Aşağı\'da detaylı açıklama yaptık yine de sayfamızı görmek istiyorsanız robot mu insan mı olduğunuzu tesbit edebilmemiz için size yanıtlayabileceğiniz 2 kolay soru soracağız. Robot olmadığınızı kanıtlamak için lütfen bu ilk soruyu cevaplayın. (sadece rakam) daha sonra <strong>"Gönder"</strong> butonuna tıklayın:';
$txt['httpBL_warn_send_1'] = 'Gönder';
$txt['httpBL_warn_blank_1'] = 'Lütfen bu kutuyu boş bırakın.<br />Cevabı yukarıdaki kutuya yazın.';
$txt['httpBL_warn_wrong_1'] = 'Yanlış';
$txt['httpBL_warn_wrong_head_1'] = 'Hatalı cevap.';
$txt['httpBL_warn_wrong_answer_1'] = 'Belki biz iyi izah edemedik belki de cevabı yanlış girdiniz. Burada 2 satır var İlk satırda gördüğünüz gibi kolay bir hesap işlemi ve boş bir kutu ve Gönder butonu var. İlk kutu cevabı yazacağınız kutudur. (sadece rakam olarak) ardından butona basmanız gerekmektedir. İkinci satırdaki boş kutuya birşey yapmadan olduğu gibi bırakacaksınız.';
$txt['httpBL_warn_good_1'] = 'İyi';
$txt['httpBL_warn_good_head_1'] = 'Doğru cevap.';
$txt['httpBL_warn_good_answer_1'] = '
Cevabınız doğruydu ancak robotlar rastgele rakamlar girerek cevabı bulup bu aşamayı geçebilirler. Tabiki bunu üst üste iki kez doğru olarak yapmaları olanaksız. Buyüzden size bir soru daha soruyoruz. Lütfen ikinci soruya da cevap verdikten sonra <strong>"Gönder"</strong> botonuna tıklayın:';

/*******************
*  Set 2 - English *
*******************/

$txt['httpBL_warn_title_2'] = 'Warning';
$txt['httpBL_warn_denied_2'] = 'Access Denied';
$txt['httpBL_warn_head_2'] = 'Our anti-spam program has detected that you are a robot trying to send spam via our forum.';
$txt['httpBL_warn_infected_2'] = 'The most likely cause is that your computer, or another computer operating on your local network, has been <strong>infected with a virus, trojan, or worm</strong>. Infected computers are used by criminals, without their owners knowledge, to send spam and attack websites like this one you are trying yo visit.';
$txt['httpBL_warn_dynamic_IP_2'] = 'If you are using a dynamic IP, the kind of IP that changes every time you re-start your router, maybe the only problem is that today you are using an IP that used to belong to an infected computer some time ago, so you can try, if you want, to re-start your router and your computer and open again one of our web pages to see if you can access them normally now.';
$txt['httpBL_warn_technician_1_2'] = 'Anyway, to test whether your computer is infected, and to remove any possible infection, we would recomend you to contact as soon as possible a computer technician and ask them to visit <strong>www.projecthoneypot.org</strong> and check the details for your IP:';
$txt['httpBL_warn_technician_2_2'] = 'to see exactly what it has been doing wrong.';
$txt['httpBL_warn_info_2'] = 'For more information, please contact:';
$txt['httpBL_warn_at_2'] = 'at';
$txt['httpBL_warn_dot_2'] = 'dot';
$txt['httpBL_warn_hurry_2'] = 'You have a more detailed explanation about it below these lines but, in case you are in a hurry to see our pages and you haven\'t got time just now to scan your computer looking for a possible virus, we can let you in temporarily. We are going to ask you 2 easy questions writing them in a way a robot wouldn\'t be able to see. Please answer this first question (just the number) to prove you are not a robot and press the <strong>"Send"</strong> button:';
$txt['httpBL_warn_send_2'] = 'Send';
$txt['httpBL_warn_blank_2'] = 'Please leave this field blank.<br />Write the answer in the above field.';
$txt['httpBL_warn_wrong_2'] = 'Wrong';
$txt['httpBL_warn_wrong_head_2'] = 'Incorrect answer.';
$txt['httpBL_warn_wrong_answer_2'] = 'Maybe we didn\'t explain it properly or maybe you pressed the wrong key. What you have here are 2 different rows. In the first row you can see an easy sum, an empty field and a "Send" button. In that first empty field you need to write the answer (just the number) and press the button. You should leave the field in the second row empty, as it is just now.';
$txt['httpBL_warn_good_2'] = 'Good';
$txt['httpBL_warn_good_head_2'] = 'Correct answer.';
$txt['httpBL_warn_good_answer_2'] = 'Your answer was right, but please notice that a robot, even not been able to see or understand the question, could have got the right answer just trying random numbers. Of course it will be impossible to get the answer right twice in a row just by chance so, if you don\'t mind, please answer this last question and press again the <strong>"Send"</strong> button:';

/**********************************************************************************
* END - INFORMATION FOR TRANSLATORS                                               *
**********************************************************************************/
Title: Re: httpBL
Post by: snoopy_virtual on May 11, 2011, 05:18:50 AM
Thanks HaCCaBi

I will add your translation to the language pack as soon as I have some time.  ;)
Title: Re: httpBL
Post by: SumolX on May 12, 2011, 11:26:59 AM
Great Mod!  But I'm not sure why I keep getting this warning:
QuoteMod httpBL is ON but there is no connection just now with HoneyPot. Please try later.

Is this normal for new activations?
Title: Re: httpBL
Post by: snoopy_virtual on May 13, 2011, 08:47:02 AM
Quote from: SumolX on May 12, 2011, 11:26:59 AM
Great Mod!  But I'm not sure why I keep getting this warning:
QuoteMod httpBL is ON but there is no connection just now with HoneyPot. Please try later.

Is this normal for new activations?

No, that's not normal at all.

The servers in Project Honey Pot were off for maintenance a few times last week, so maybe that's why you were getting that error, but as far as I know they have finished the work and the servers are back on again as normal. I have just checked again and all my forums have perfect connection.

Please try again and, if your server still cannot connect now to Project Honey Pot's servers that means there is something wrong somewhere.

If you keep getting that error we will need to investigate it, so try to get me through Skype to do it together or give us here more info about your version of SMF, the version of mod httpBL you are using, other mods installed, the kind of server you have, etc, etc.
Title: Re: httpBL
Post by: SumolX on May 13, 2011, 12:01:46 PM
I've sent you a PM with my Skype handle.  Again Thank You very much for you help.  As for the details you requested:

Current Installed Mods:

2.5.1 - httpBL (First mod I installed and the issue was there already)
1.3.8 - Downloads System
1.2   - Enhancements to purge inactive members
2.3.9 - Stop Spammer
2.09  - Treasury
2.3.3 - SimplePortal                           
1.2.1 - AvatarSelect                           
2.0   - KeyCAPTCHA for SMF                     
1.0.1 - Simple Spoiler                         
3.2   - Custom Action Mod     


Site:

    Powered by SMF 2.0 RC5 | SMF © 2006–2011, Simple Machines LLC
    SimplePortal 2.3.3 © 2008-2010, SimplePortal


Server:

Ubuntu 11.04
Linux ubuntu 2.6.38-8-server #42-Ubuntu SMP Mon Apr 11 03:49:04 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
Title: Re: httpBL
Post by: SumolX on May 13, 2011, 07:55:43 PM
Not sure what caused this problem but reseting my router back to the default configuration fixed the dns lookup issue.  Strange that it was only with that specific host. 

snoopy_virtual, I would have never have guessed it was a dns lookup error since all my other machines were running fine.

Thank You very much snoopy_virtual for all your help.
Title: Re: httpBL
Post by: snoopy_virtual on May 14, 2011, 06:36:30 AM
You're welcome.

As I told you yesterday in Skype, it can be a bug in Ubuntu 11.04 (the server you are running). That particular version of Ubuntu is not really stable yet and we are still finding and sorting a lot of bugs in it (in Linux forums).

Personally I am only using that version of Ubuntu in one test computer, but in my main machines I use Ubuntu 10.10 or even 10.04 (the more stable and recommended).

Anyway, if you get any more problems you know where to get me.  ;)
Title: Re: httpBL
Post by: Jorge D. Fuentes on May 18, 2011, 01:47:08 PM
I'm happy to report that since installed, a few months back, we've only had one spammer, and this person (I believe) was an actual person (not a bot) that registered and then used the registration to spam (in Chinese in an English-speaking forum, no less).

Although it was a huge spam attack (took a few minutes to clean up the spam), it had nothing to do with this awesome mod, which, as someone else has stated, when combined with stopforumspam, pretty much annihilates most spambot attack.

Kudos to the developer, yet again.
Title: Re: httpBL
Post by: snoopy_virtual on May 18, 2011, 07:43:05 PM
My pleasure. (Love to give the spammers a headache)  ;D
Title: Re: httpBL
Post by: JRSofty on May 26, 2011, 03:44:30 AM
First off Great Mod. I've found it quite useful, and since I didn't know of the Honeypot Project before that is double kudos for you.

What I would like to see however, in the Spammer log instead of getting the IP Track page from SMF when clicking on a logged IP, it would really be good if it opened the information from the Honeypot Project about the IP.

Thanks again.
Title: Re: httpBL
Post by: snoopy_virtual on May 26, 2011, 09:15:16 AM
You can get that very easy adding also this another mod:

http://custom.simplemachines.org/mods/index.php?mod=1849

Clicking on the IP link will take you to the page with all the info about the activity of that particular IP inside your forum and, inside that "Track IP" page, you will have a link to Project Honey Pot's database so you can check out the data they have for the IP you are tracking.

That's how I do it in my forums, because I use a very complicated "Track IP" page that give me also a lot more info about every IP.

==========

Another possibility will be to add next to that IP link another link to Project Honey Pot's database. I explained a few weeks ago somebody else how to add a link there, so you can see the question here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3027355#msg3027355

And the explanation is just a few post after that.

You will need to change the link he was doing to this one instead:


<a href="http://www.projecthoneypot.org/ip_'. $log['ip']. '" target="_blank">


And to do the link nicely you could use for example the Project Honey Pot icon.  ;)
Title: Re: httpBL
Post by: outdoors-stuff on June 04, 2011, 01:28:22 PM
Hi, new member here, please be gentle  ;D

Just tried to install httpBL, but needed to wait for the owner of the webserver to agree to putting the honeypot on it (they're our webdeveloper so it only seemed fair to ask them first!). Having got an API key, it looked like I could install the mod, then add our own honeypot later on.  And when I discovered that the mod remains "switched off" until our own honeypot is running, I left the forum (still apparently working fine) part-modded and awaiting the honeypot in a few days time.

But within an hour, our forum users were complaining - access to the forum wasn't possible - it was broken :( Have managed to fix it (thanks for leaving backup copies of the main root dir files that were changed - very handy when things go wrong!  ;D) but it looks like the mods version of "settings.php" is an empty file. And the stuff that was in the original settings.php file is clearly much needed!

Did something go wrong in my particular download/install (seems most likely - just can't see this not being picked up earlier if the file's normally empty in the modded version) or is this something that's gone wrong very recently?
Title: Re: httpBL
Post by: busterone on June 04, 2011, 02:24:44 PM
This mod doesn't edit anything in settings.php. That file is crucial to your forum's operation. It contains the database connection info, absolute forum path and url info. Something else has gone wrong if your settings.php file got emptied.  There is an old bug relating to saving the latest error to the file -  ($db_last_error) Under certain circumstances, if a rewrite is attempted before the last attempt was complete, settings.php gets wiped clean.
See these topics to get an idea of what happens. There are more links and info in the topics. 
http://www.simplemachines.org/community/index.php?topic=354582.msg2410248#msg2410248
http://www.simplemachines.org/community/index.php?topic=213201.0
Title: Re: httpBL
Post by: snoopy_virtual on June 04, 2011, 02:40:13 PM
@busterone

I was writing an answer myself when suddenly I saw you had already done it, and your answer has a lot more info than mine.

Yep, I think that's the problem, because this mod doesn't touch Settings.php at all, and the mod hasn't been changed at all since the 3rd of March.

@outdoors-stuff

Let us know if you get your problem sorted with the links busterone gave you. If you don't, tell us what happen and we will try to sort it.
Title: Re: httpBL
Post by: outdoors-stuff on June 04, 2011, 03:05:17 PM
Many thanks to both of you for a really quick reply on that - I thought it was far too big and glaringly obvious an issue to be in the mod unless something unexpected had gone wrong while it installed.

But that rather sounds like it was coincidence it happened then and could well happen randomly again :(

Very surprised its still around in v1.1.13 if it was first reported back in v1.1.5 :( but will get the chmod 444 fix applied and hope that resolves it.

Many thanks :)
Title: Re: httpBL
Post by: busterone on June 04, 2011, 03:34:02 PM
Best of luck with your forum.  :)
Title: Re: httpBL
Post by: virtual_al on June 12, 2011, 02:10:52 PM
Hi everybody, and especially snoopy.

I'm really new here, so excuse any noob mistakes I might make. Been a 3-year SMF "user", up to and including 1.1.13 and I am now considering to making the jump to 2.0 which has just been released, and have httpBL installed too  8)

Before I go that way, I have two Qs:

1. Do I need to install httpBL before I upgrade to 2.0? if yes, which version?
2. One for snoopy: when do you plan to release a httpBL which is fully compatible with SMF 2.0?

Many thanks for your help.

virtual_al
Title: Re: httpBL
Post by: snoopy_virtual on June 12, 2011, 04:30:22 PM
Quote from: virtual_al on June 12, 2011, 02:10:52 PM
Hi everybody, and especially snoopy.

I'm really new here, so excuse any noob mistakes I might make. Been a 3-year SMF "user", up to and including 1.1.13 and I am now considering to making the jump to 2.0 which has just been released, and have httpBL installed too  8)

Hi. You don't need to excuse yourself. All of us started here as noobs and the only way of learning (apart from reading a lot) is asking questions. We all did it  ;)

Quote from: virtual_al on June 12, 2011, 02:10:52 PM
Before I go that way, I have two Qs:

1. Do I need to install httpBL before I upgrade to 2.0? if yes, which version?

I think somebody has done a tutorial explaining how to do that particular upgrade (don't know exactly where but I don't think is difficult to find) but when a forum has mods, the best way to do any kind of upgrade is this one:

1.- Un-install all the mods you have.

2.- Follow the guidelines to do the upgrade you want.

3.- Install again all the mods (checking first that they are compatible with the new SMF version you are using).

Mod httpBL is not fully compatible just now with SMF 2.0 (final version). The last version I did (2.5.1) was compatible with 2.0 RC5 so if you want to install this mod in a forum with 2.0 final you will need to wait until I have time to do a new version or do a manual install editing whatever files had been changed from RC5 to final.

And this take us to your next question:

Quote from: virtual_al on June 12, 2011, 02:10:52 PM
2. One for snoopy: when do you plan to release a httpBL which is fully compatible with SMF 2.0?

I have really no idea at all. Maybe soon, maybe later or even maybe never.

Let me try to explain it a little more:

The problem (as I have already said somewhere else) is that I normally only have time to develop the programs/plug-ins/mods that I actually use myself in my own (or my customers) forums/web-sites. And even with those, I never manage to find enough time to do everything I would like to.

Just now I have 8 forums with SMF 1.1.13 and one forum with SMF 2.0 RC5 and I am not planning to upgrade any of them to 2.0 final just now.

The forum with RC5 is just a test forum, so it's not really important and it's the last one I always care about.

In the 8 forums I have 1.1.13 I suppose I will do (whenever I have some spare time) the small upgrade to 1.1.14 (it's a very small one so I don't think I will need to un-install and re-install any mods) and will wait until Wedge is ready to upgrade them from SMF to Wedge.

I don't see any point in upgrading a forum from SMF 1.1.x to 2.0 and then again upgrade it to Wedge later.

The only chance that maybe I release a new version of httpBL fully compatible with 2.0 final is if Wedge takes too long to be ready.

I will need first time to upgrade all my forums to 1.1.14 and check that both my 2 mods are fully compatible with it. (I suspect they are just now, but would need to fully check it myself).

I will need also to check that all the rest of the mods and Themes I use in those 8 forums are fully compatible with 1.1.14 and do all the manual edits required to make them compatible if they aren't.

When I finish all that, if there is already even an alpha version of Wedge available I will start upgrading some of my forums to Wedge and will be very busy translating Wedge into Spanish. If not (and if I have some time) I will upgrade my test RC5 forum to 2.0 final and I will check then what changes need to be done to my mods to make them compatible with that.

So, as you can see, everything depends on too many things so, as I was saying before, the best answer I can give you is "I have no idea at all."
Title: Re: httpBL
Post by: snoopy_virtual on June 12, 2011, 06:47:16 PM
I was planning on doing it myself.

I need to upgrade 8 forums from SMF 1.1.x to Wedge, so I will need to find the way to do it as easy as possible.

Maybe it will be easier to upgrade them first from SMF 1.1.x to SMF 2.0 and after that from SMF 2.0 to Wedge (as far as I know there is already people working on that one) or maybe it will be easier to do the importer myself. I don't know.

I suppose I will use my own personal forum as a test forum as soon as I get a version of Wedge and see what happen.

Anyway I suppose it would be better if we continue talking about this topic in the another forum.
Title: Re: httpBL
Post by: virtual_al on June 13, 2011, 01:02:36 AM
Thanks for the very fast reply snoopy! Much appreciated!

So what I could make it between the lines is "stay with 1.1.13" for now since there is no real need/advantage to moving on to 2.0. Correct?

The rest of my post is a rant so you can safely ignore :)

Kind regards,
virtual_al

/rant on/
Since you mentioned Wedge quite a few times in your reply, and me never having heard of it before, I had a look at the Wedge.org site and was taken aback a bit by the comment "... and if you don't know anything about it, you may want to leave this site and go discuss on another forum the aphrodisiac properties, or lack thereof, of garlic sausage. Or you could simply read the FAQ topics. It's up to you."

Hmm, interesting logic: if you are interested enough to be looking for us - despite not knowing anything about us, then turn around and leave. I hope their code is better and less arrogant, logic-wise  ;) Unless I missed the whole point and this remark was a kind of weird geek humor that I can't understand. Anyway, I kept reading the Wedge FAQ and to be honest, I didn't quite understand what new features/benefits it offers (or will offer). Then I found another remark: "you can already find many of the Wedge features listed in the forum. You just need to go through all of the topics and thoroughly read all of Arantor's and Nao's posts, where they're often mentioned casually. Have fun". Well it's not "fun" at all... Maybe they forget that the purpose is not the forum engine itself, but the service it offers and if people cannot understand why their ware is better than other ware, few if any will use it, and a forum engine without real-life forums using it, is useless. A simple "live" or "growing" list will do. After being discouraged from further trying to understand what Wedge does or plans to do, sifting through their forum only to potentially find more discouraging remarks, is not my kind of "having fun". After all, I assume that understanding what Wedge is supposed to be offering is not the Quest for the Holy Grail where knights must prove themselves worthy of even taking it.

I don't even like the way they say they plan to release and manage updates. It very much sounds like "if you're not a geek who enjoys playing with your forum setup every month or so, Wedge is not for you". I prefer investing my time in making the forum an enjoyable and useful place to be, not tinkering with its many options, or making full uninstalls and installs of the forum every month. To be clear - I don't have the knowledge, talent and time to tinker with PHP etc. I just want to offer an enjoyable service - period.

I am not an SMF fanboy by far, but for now Wedge is not a consideration for me - unless something changes in the rarefied heights at Wedge.org  8)
/rant off/
Title: Re: httpBL
Post by: bugstomper on June 13, 2011, 06:49:04 AM
Quote from: snoopy_virtual on June 12, 2011, 04:30:22 PMMod httpBL is not fully compatible just now with SMF 2.0 (final version). The last version I did (2.5.1) was compatible with 2.0 RC5 so if you want to install this mod in a forum with 2.0 final you will need to wait until I have time to do a new version or do a manual install editing whatever files had been changed from RC5 to final.

Snoopy, do you know for sure that httBL is not compatible with 2.0, or is it just that you have not had the time to try it? I looked at the file changes in install_2.xml, and for each changed file looked at the diff between that file in 2.0c5 and 2.0 Gold. I didn't see any place where the change specified in install_2.xml had any overlap or had anything to do with the change going from 2.0RC5 to 2.0 Gold.

Did I miss something, or is it possible that httBL will actually just work as is with 2.0 Gold?
Title: Re: httpBL
Post by: riou on June 13, 2011, 07:06:02 AM
It seems to be working fine for me on smf 2.0 Gold

The only problem I seem to be having is with an RSS feed auto poster using a cronjob this mod doesn't seem to be able to identify its IP (shows up as unknown and blocks it from performing the cronjob), this didnt seem to be a problem on 1.1.x line (it showed its IP fine and didnt block it at all)


Since I get an email on every cronjob this is what the email says:

Missing argument 1 for httpBL_look_for_empty_ip(), called in Sources/httpBL_Subs.php on line 680 and defined in Sources/httpBL_Subs.php on line 517

Notice:  Undefined variable: ip in Sources/httpBL_Subs.php on line 519
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 08:28:51 AM
@virtual_al

I would like to answer a lot of the points on your "rant on" but, as I have been asked a few times already to stop talking so much about Wedge here (and I understand and respect their point of view) I would prefer to answer you in Wedge itself.

Would you mind to create an account there (it's free  ;D ) and copy and paste all that so we can talk about it properly?

QuoteSo what I could make it between the lines is "stay with 1.1.13" for now since there is no real need/advantage to moving on to 2.0. Correct?

Not really.

What I was saying is, as I am planing to upgrade to Wedge later, I will only upgrade now to 1.1.14 and wait.

If you are not planning to upgrade to Wedge at all I think you should upgrade to 2.0 as soon as you can.

I will try to explain it with an example:

Imagine I have a computer with Windows 98 and somebody give me a copy of Windows XP but I know I will be able to get Windows 8 very soon.

Instead of upgrading just now from 98 to XP and then in a few weeks upgrade again from XP to W8 I would prefer to wait and upgrade directly from 98 to W8 in just one go.

But if you don't like (or cannot get) W8 I would tell you to upgrade from W98 to XP as soon as you can.

==============

@bugstomper & riou

I haven't tried it, so I cannot be 100% sure. Anyway busterone told me yesterday he had already upgraded one forum to 2.0 final and to be able to install mod httpBL properly he had to manually edit a few things. That's why I assumed it's not fully compatible and will need some work done.

I didn't ask him for the details though.
Title: Re: httpBL
Post by: busterone on June 13, 2011, 08:39:25 AM
One person has reported that it installed perfectly.
For me, I had a one line edit in just one file,  but I am presuming that it was due to another mod install previous to installing httpBL.
Either way, this mod is working well on 2.0.  :)
Title: Re: httpBL
Post by: virtual_al on June 13, 2011, 08:48:36 AM
Snoopy,

Thanks again for the fast reply. Hmm, didn't know Wedge discussions were no appreciated here, but I can understand and accept that. Admins make the local rules and as I expect members to respect my forum rules,  have no issues at all with respecting other forums rules. I'll open an account at Wedge.org and see if it's worth my effort ;)

Fully understood on the SMF version recommendation. I'm currently waiting for Keycaptcha to confirm compatibility with 1.1.14 and if it's confirmed, I'll upgrade to 1.1.14 immediately as recommended. With the latest registration spam activity I can't afford to be w/o at least Keycaptcha  8)

Meanwhile I read your httpBL install tutorial and basically I'm ready to install it as soon as you have the time to test and officially confirm the compatibility. My forum uses a custom theme and I'm not comfortable with editing various files manually, which I understand it's necessary with the current version. I always prefer the "auto mode".

Thank you!
virtual_al
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 09:20:24 AM
Well, there are 2 people already reporting they have installed the mod in 2.0 final without any problem, and the only one who told me yesterday that he had to do some manual editing (busterone) has just said a few minutes ago that he thinks it was due to another mod he has.

So I think it's safe enough to say that the mod is compatible with 2.0

If you need to wait until I can test that myself you may need to wait a few weeks, as I have to do a lot of things first before I can do that (as I explained yesterday).

QuoteI'm currently waiting for Keycaptcha to confirm compatibility with 1.1.14

Spammers can pass captchas very easy. I don't use any.

QuoteMy forum uses a custom theme and I'm not comfortable with editing various files manually, which I understand it's necessary with the current version. I always prefer the "auto mode".

For SMF 1.1.x you always need to edit at least one file if you are not using the default Theme

For SMF 2.0 everything is automatic.
Title: Re: httpBL
Post by: virtual_al on June 13, 2011, 09:40:16 AM
Yes, I noticed the two successful installs, and the one need-to-edit. This got me thinking a bit more about the jump to 2.0.

Keycaptcha is a bit more difficult to pass. My issue is registration attempts, not messages spam, so I need any captcha that is more effective than the puny one SMF 1.1.x has to offer. Keycaptcha seems to be doing a great job so far.

You have a PM waiting somewhere ;)

Thank you for the feedback.
virtual_al
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 10:03:18 AM
Quote from: virtual_al on June 13, 2011, 09:40:16 AM
My issue is registration attempts, not messages spam, so I need any captcha that is more effective than the puny one SMF 1.1.x has to offer. Keycaptcha seems to be doing a great job so far.

Have you tried mod Stop Spammer and Anti-Spam Verification Questions?:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2#compatibilidad
Title: Re: httpBL
Post by: virtual_al on June 13, 2011, 10:23:54 AM
Quote from: snoopy_virtual on June 13, 2011, 10:03:18 AM
...SNIP...
Have you tried mod Stop Spammer and Anti-Spam Verification Questions?:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2#compatibilidad

Yeah - I was "attracted" by "Anti-Spam Verification Questions" but they appear as being compatible with SMF 1.1.7 only so I didn't go any further.

Anyway, Keycaptcha seems more "enjoyable" and robust (for now). Their statistics already show penetration attempts that didn't go farther than a captcha request (most likely bots). I am sure that registration farms will get past that point, but then that's why I need something similar to httpBL  :D

I don't care for the other two.

virtual_al
Title: Re: httpBL
Post by: gggggggg on June 13, 2011, 07:20:35 PM
Hello, I have just done a manual install of this for 2.0 RC4, and it all seems to have worked nice and happy.

Except for two things:
1) All my settings in this section:
Internal Settings These are the internal settings to control the way mod httpBL works. We wouldn't recommend you to change them until you know the way every change will affect the mod.

If I leave them as 0, it tells me:
An Error Has Occurred! The number of days and the threat level cannot be negative numbers or 0.

So I have to set a positive number, and I am not sure what values to select?

2) If I click on any of the Logs, it tells me:
Database Error Table 'user.smf_log_httpBL' doesn't exist
File: /home/user/public_html/forum/Sources/httpBL_2_Config.php
Line: 350


Have I dont something wrong?

thanks
Greg
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 07:48:42 PM
You haven't done the manual install properly.

I don't understand why you had to do a manual install anyway, as this mod install perfectly in RC4 using the Package Manager as any other mod.

Anyway, once you have done it let's try to find out the easiest way for you to finish the installation.

I suppose if you have done a manual install you may have "parse" the instructions for RC4 and do a lot of changes to a lot of different files.

I hope you haven't missed any of those changes and have done them all. Anyway I am sure you have missed at least one instruction.

Almost at the end of the parse it tells you you need to run the code in "install_2.php" and obviously you haven't done that, as that's the code that create the needed tables (that you haven't got) and gives the configuration the default values (that you haven't got either).

To run this code, download the file "httpBL_v2_5_1.zip"

Open it and find inside it the file "install_2.php"

Upload that file to the root of your forum and then visit it with your browser so it will run.

That's it, visit the page:

hxxp://www.your_site.com/your_forum/install_2.php

You should see a sign telling you it is creating the needed tables and then a sign saying it has been done and remembering you to delete that file from your server once it has been used.

If you haven't missed any more instructions (like for example the last one telling you you need to copy a lot of files and folders inside your forum) the mod should now be working properly.

If not, come back here and tell us.
Title: Re: httpBL
Post by: gggggggg on June 13, 2011, 08:08:25 PM
Love it, thanks, that fixed the databse error.

Though when I change values to 0, i still get this:
"The number of days and the threat level cannot be negative numbers or 0."
Title: Re: httpBL
Post by: gggggggg on June 13, 2011, 08:17:14 PM
Quote from: gggggggg on June 13, 2011, 08:08:25 PM
Love it, thanks, that fixed the databse error.

Though when I change values to 0, i still get this:
"The number of days and the threat level cannot be negative numbers or 0."

Its weird, it got the WArning default values ok.  So I went to install_2.php and got the default values, and put them in manually.

Also, I had to do a manual insall becuase I dont have FTP access, SSH only.

thanks for your help
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 08:26:05 PM
The default values are these ones:

Number of days to consider good an IP: 90
   
Threat level considered bad: 10
   
Threat level considered VERY bad: 30
   
Minutes to keep the data in the cache: 5
   
Hours until an IP needs to prove again it's human: 24

That numbers is the ones I use in most if my forums and almost never change them.

The number of days to consider good an IP cannot be 0. Won't make any sense.
Title: Re: httpBL
Post by: snoopy_virtual on June 13, 2011, 08:31:03 PM
QuoteAlso, I had to do a manual insall becuase I dont have FTP access, SSH only.

You don't need FTP access to use the Package Manager. Just go to your forum and navigate to Admin => Packages
Title: Re: httpBL
Post by: cyberdyne on June 15, 2011, 10:19:11 AM
Ho snoopy,
Just updated 1.1.13 to 1.1.14 (http://www.simplemachines.org/community/index.php?topic=407301.0) and MOD httpBL has stopped working. The links are still present in Admin of course, but the page fails to load when clicked.

Any idea how to fix this please?
Thanks
Title: Re: httpBL
Post by: MrMorph on June 15, 2011, 12:43:44 PM
Just to let you know it seems to be working for me on Gold.

Quick question though, you know the 'special word' ? Is it an idea to change that some times - I mean will the bots start to recognise it after a while ?

Cheers :)
Title: Re: httpBL
Post by: dougiefresh on June 15, 2011, 12:50:33 PM
Thank you for the wonderful mod!  I thought I'd let everybody know that when I updated my forum from 2.0 RC5 to 2.0 Gold, I had to reinstall all my mods.  This mod installed without issues and without emulation.  Hope this info helps someone!
Title: Re: httpBL
Post by: bugstomper on June 15, 2011, 05:41:32 PM
Quote from: riou on June 13, 2011, 07:06:02 AM
Missing argument 1 for httpBL_look_for_empty_ip(), called in Sources/httpBL_Subs.php on line 680 and defined in Sources/httpBL_Subs.php on line 517

Notice:  Undefined variable: ip in Sources/httpBL_Subs.php on line 519

The error message looks like a bug in the code that is called when it doesn't get the ip address at first. If you were using version 2.4.1 with SMF 1.1.4 that could explain it -- The comments say that the code was changed since then, and that's when the bug would have been introduced.

There are two equivalent ways to fix it. Only do one of them.

Either change the code at line 517 in Sources/httpBL_Subs.php from


function httpBL_look_for_empty_ip($ip)
{
        if ($ip == '')
                $ip = httpBl_get_env('REMOTE_ADDR');


to


function httpBL_look_for_empty_ip()
{
        $ip = httpBl_get_env('REMOTE_ADDR');


Or alternatively change line 680 in the same file from


                $ip = httpBL_look_for_empty_ip();


to


                $ip = httpBL_look_for_empty_ip($ip);


I'll leave it up to Snoopy to say which change he thinks is the more aesthetic. The first change would require Snoopy to also change two comments that refer to httpBL_look_for_empty_ip($ip) but you don't have to do that just to make it work.

Title: Re: httpBL
Post by: snoopy_virtual on June 15, 2011, 06:43:34 PM
Quote from: cyberdyne on June 15, 2011, 10:19:11 AM
Just updated 1.1.13 to 1.1.14 (http://www.simplemachines.org/community/index.php?topic=407301.0) and MOD httpBL has stopped working. The links are still present in Admin of course, but the page fails to load when clicked.

Any idea how to fix this please?

I still have all my forums in 1.1.13. Didn't had time yet to update them, so I have no idea what can be the problem.

Anybody else have this problem?

Quote from: MrMorph on June 15, 2011, 12:43:44 PM
Quick question though, you know the 'special word' ? Is it an idea to change that some times - I mean will the bots start to recognise it after a while ?

I have never changed mine and I don't think you need to, but if you change it every now and then wouldn't do any harm.

Quote from: bugstomper on June 15, 2011, 05:41:32 PM
Or alternatively change line 680 in the same file from


                $ip = httpBL_look_for_empty_ip();


to


                $ip = httpBL_look_for_empty_ip($ip);


We have already talked about that error a couple of times in this thread and we decided that solution was better.

I thought it was already sorted in the latest version.
Title: Re: httpBL
Post by: riou on June 15, 2011, 08:32:46 PM
Quote from: bugstomper on June 15, 2011, 05:41:32 PM
The error message looks like a bug in the code that is called when it doesn't get the ip address at first. If you were using version 2.4.1 with SMF 1.1.4 that could explain it -- The comments say that the code was changed since then, and that's when the bug would have been introduced.

There are two equivalent ways to fix it. Only do one of them.

Either change the code at line 517 in Sources/httpBL_Subs.php from

Or alternatively change line 680 in the same file from


                $ip = httpBL_look_for_empty_ip();


to


                $ip = httpBL_look_for_empty_ip($ip);


I'll leave it up to Snoopy to say which change he thinks is the more aesthetic. The first change would require Snoopy to also change two comments that refer to httpBL_look_for_empty_ip($ip) but you don't have to do that just to make it work.


This worked to fix the php error thanks,

Snoopy, the version is 2.5.1 for httpBL and 2.0 Gold for SMF, I got it fresh off the smf mod site and that error was on it
Title: Re: httpBL
Post by: snoopy_virtual on June 16, 2011, 03:38:32 AM
Yes, I checked it last night after you said that and it's corrected in the next version I am doing, but that one hasn't been published yet because it's not finished.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on June 16, 2011, 03:52:10 AM
Quote from: snoopy_virtual on June 15, 2011, 06:43:34 PM
Quote from: cyberdyne on June 15, 2011, 10:19:11 AM
Just updated 1.1.13 to 1.1.14 (http://www.simplemachines.org/community/index.php?topic=407301.0) and MOD httpBL has stopped working. The links are still present in Admin of course, but the page fails to load when clicked.

Any idea how to fix this please?

I still have all my forums in 1.1.13. Didn't had time yet to update them, so I have no idea what can be the problem.

Anybody else have this problem?
I have HttpBL working just fine on 1.1.14 - But I only installed it AFTER I updated, so there might  be something in the update that could cause a conflict, I do not know as I haven't tested.
Title: Re: httpBL
Post by: Ilkharnos on June 16, 2011, 03:16:43 PM
Hello there.

I started to use this awesome mod. Thank you for all you have done so far. I have a question.

I have recently upgraded my SMF version to 2.0, reinstalled all modifications (and also added this mod) and did some coding which aren't related to spam protection business. After I have done, I started to use my forum. While browsing through pages, a blank, horizontal block appeared at the top of my page, with a weird symbol inside of it, aligned left. When I refreshed, that block disappeared. But I started to see that block frequently. When I clicked on that weird symbol, I found myself in my own honeypot page.

I wonder. Did I do something wrong while coding? or is it a trick of this modification?

Thank you for your help.
Title: Re: httpBL
Post by: EL34 on June 16, 2011, 03:31:21 PM
Just throwing out info:
No problems here with httpbl mod after updating two 1.1.13 forums to 1.1.14.
httpbl was already installed at the time and was still working properly after the update.



Snoop, I have a feature request please.
I never need to look at all the spammers log data.
It's always 15 to 20 pages long ever time I go to reset it.
All I ever do is go in and delete the whole spammers log.

Can I request a setting that does not add spammers log data to the database but still keeps a tally on the totals?

I always do look at the humans log, because I want to see which forum members show up on the log
I don't care about guest in that log, just forum members.
So maybe a setting that logs only forum members to the human log
Title: Re: httpBL
Post by: cyberdyne on June 16, 2011, 04:39:00 PM
Quote from: snoopy_virtual on June 15, 2011, 06:43:34 PM
Quote from: cyberdyne on June 15, 2011, 10:19:11 AM
Just updated 1.1.13 to 1.1.14 (http://www.simplemachines.org/community/index.php?topic=407301.0) and MOD httpBL has stopped working. The links are still present in Admin of course, but the page fails to load when clicked.

Any idea how to fix this please?

I still have all my forums in 1.1.13. Didn't had time yet to update them, so I have no idea what can be the problem.

Anybody else have this problem?

Fixed.  Seems I had an old version of the index file stored locally and messed up the transfer. Installed the update auto and all seems well.
Thanks
Title: Re: httpBL
Post by: snoopy_virtual on June 16, 2011, 05:46:11 PM
Quote from: Ilkharnos on June 16, 2011, 03:16:43 PM
I have recently upgraded my SMF version to 2.0, reinstalled all modifications (and also added this mod) and did some coding which aren't related to spam protection business. After I have done, I started to use my forum. While browsing through pages, a blank, horizontal block appeared at the top of my page, with a weird symbol inside of it, aligned left. When I refreshed, that block disappeared. But I started to see that block frequently. When I clicked on that weird symbol, I found myself in my own honeypot page.

I wonder. Did I do something wrong while coding? or is it a trick of this modification?

Yes, you must have done something very wrong.

If you ever end up in your own honeypot page they may think you are a spammer and add your IP to the spammer's database.

Send me a link to your forum so I can see where is the problem.

@EL34

As I have said a few times already, I don't think I am going to have time to add new features to this mod.

I may add a few new things when I do the Wedge version and after that (if I find some more time) I may port some of them here,

@cyberdyne

Glad to hear your problem is sorted.
Title: Re: httpBL
Post by: snoopy_virtual on June 16, 2011, 06:11:51 PM
@Ilkharnos

I have seen your PM with the link so I have seen your site and found the problem:

You have mod Bad Behavior installed as well.

Mods Bad Behavior and httpBL are not compatibles and you cannot have both of them at the same time. You will need to un-install one of them.
Title: Re: httpBL
Post by: Ilkharnos on June 16, 2011, 06:15:55 PM
Thank you very much for your assistance and quick solution. I will uninstall Bad Behavior mod immediately. httpBL is awesome enough.
Regards.
Title: Re: httpBL
Post by: EL34 on June 17, 2011, 07:59:48 AM
Quote@EL34
As I have said a few times already, I don't think I am going to have time to add new features to this mod.
I may add a few new things when I do the Wedge version and after that (if I find some more time) I may port some of them here,

Sorry, I have not been here in quite a while, did not know that.

I am eager to implement a Wedge test forum as soon as they release a beta for testing.
Oooops, I said Wedge  :-X
Thanks Snoop
Title: Re: httpBL
Post by: MrMorph on June 17, 2011, 10:59:32 AM
Quote from: snoopy_virtual on June 15, 2011, 06:43:34 PM
Quote from: MrMorph on June 15, 2011, 12:43:44 PM
Quick question though, you know the 'special word' ? Is it an idea to change that some times - I mean will the bots start to recognise it after a while ?
I have never changed mine and I don't think you need to, but if you change it every now and then wouldn't do any harm.

Okay many thanks. :)
Title: Re: httpBL
Post by: Zuća on June 17, 2011, 11:58:40 AM
update to 2.0 ?
Title: Re: httpBL
Post by: Wizzlefits on June 17, 2011, 12:27:13 PM
Quote from: Present. on June 17, 2011, 11:58:40 AM
update to 2.0 ?
Installs and works fine. ;)
Title: Re: httpBL
Post by: nugene on June 18, 2011, 11:25:30 AM
Hello,

I just installed the httpBL mod on my forum and am now on the setting but unable to check the box to turn it on, PLZ help. I am not clear on how to CONFIGURE my current theme's setting in order to enable the mod.

I read the memo that says if you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven't got them you need to go first to projecthoneypot(dot)org to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key. I have done those and have them ready to go, BUT my option to check or un-check the enable/disable box for the mod is the problem... what do I do??
Title: Re: httpBL
Post by: snoopy_virtual on June 18, 2011, 11:55:31 AM
You need to write first the link to your honey pot and your API key.

As soon as the mod checks them to see if they are correct that box will turn on so you can activate the mod.
Title: Re: httpBL
Post by: nugene on June 18, 2011, 12:03:14 PM
okay, going to do that now. thank you so much. will come back for a result.
Title: Re: httpBL
Post by: nugene on June 18, 2011, 12:15:43 PM
okay, everything went SMOOTHLY thank you again. now how do i view the warning page... can i just visit my projecthoneypot address to view it there or is that not recommended?
Title: Re: httpBL
Post by: snoopy_virtual on June 18, 2011, 12:31:13 PM
I suppose you haven't read the tutorial properly.

The honey pots are done in a way that normal humans will never be able to visit them because they don't know where they are.

You are the only one who knows where you have put it.

Only spammers will ever visit honey pots, so every visit to the honey pots will be added to the database in Project Honey Pot as prove of what they are.

So if you ever visit your honey pot your data will be added to the DB as a spammer.

The only time you are supposed to visit  your honey pot is when you are installing it (to activate it) and that first time is OK because it's not activated yet.

==========

To see your warning page go to the config page for the mod, scroll down and you will find a couple of links to see it and a few notes on how to change it.
Title: Re: httpBL
Post by: nugene on June 18, 2011, 12:54:11 PM
got it, thank u very much for your help.
Title: Re: httpBL
Post by: DrBermant on June 18, 2011, 11:28:44 PM
Thank you for the 2.0 gold OK and all of your help.

Michael Bermant, M.D.
Title: Just installed Honeypot and httpBL, but see same # of spammer new members
Post by: etbrown4 on June 18, 2011, 11:31:39 PM
First, many thanks to the author of the httbl mod. I have high hopes it will work for me. Possibly I am doing something wrong.

So far, I see no difference in the bogus member signups either before the honey pot was added or after!   

In looking at the spammer log,it says it is catching a lot of them, however the number of bogus spammers requesting membership approval is about the same at around 30 per day.

That is what I was trying to get rid of !        httpBL log is saying it is catching spammers mostly for capthua, but my spammer member requests from China, Russia, et. al. are unchanged.

Is this mod intended to reduce the number of spammer attempted signups?

Any ideas?

I have enabled the mod
I have the API key and the Honeypot keyword in there
Internal Settings are at default values
Title: httpBL Bug Report about successful Bot attacks bypassing httpBL Captcha
Post by: Sea Mac on June 19, 2011, 03:28:56 AM
Hi snoopy_virtual!

Long time Fan of your Security MODS for SMF (and now Wedge). I have used httpBL and Stop Spammer successfully for the last YEAR (plus) and httpBL stopped over 20,000 bots in that first year.

But since June 15th a new generation of Bot has easily bypassed your Captcha and run rampant through my forums ... harvesting what they can  ...  I'm saddened by it....

httpBL is Still the VERY BEST Line of defense SMF (and Wedge) forums have against the plague (of Biblical proportions!) of Billions of BAD BOTs that have recently hatched! My forum (Alexa Rank is roughly # 5,000,000 on the internet) still rejects between 80 to 120 attacks a day - I shudder to think what they'd do if your MODs weren't there standing Guard!

I'm lowering the Captcha "No Show" value to under 10  but this is pretty much throwing the baby out with the bath water .....

Just a heads up .....
Title: Re: Just installed Honeypot and httpBL, but see same # of spammer new members
Post by: Sea Mac on June 19, 2011, 03:33:27 AM
Quote from: etbrown4 on June 18, 2011, 11:31:39 PM
First, many thanks to the author of the httbl mod. I have high hopes it will work for me. Possibly I am doing something wrong.

So far, I see no difference in the bogus member signups either before the honey pot was added or after!   

In looking at the spammer log,it says it is catching a lot of them, however the number of bogus spammers requesting membership approval is about the same at around 30 per day.

That is what I was trying to get rid of !        httpBL log is saying it is catching spammers mostly for capthua, but my spammer member requests from China, Russia, et. al. are unchanged.

Is this mod intended to reduce the number of spammer attempted signups?

Any ideas?

I have enabled the mod
I have the API key and the Honeypot keyword in there
Internal Settings are at default values
You need to install the Stop  Spammer MOD also .... http://custom.simplemachines.org/mods/index.php?mod=1547 (http://custom.simplemachines.org/mods/index.php?mod=1547)

Before you do I highly suggest you read this first:  http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english)


Hope that helps!
  (http://softwaresanta.com/shsmf/Smileys/classic/bowing.gif)
Title: Re: httpBL
Post by: snoopy_virtual on June 19, 2011, 11:15:25 AM
@etbrown4

Mod httpBL on its own it's not enough to stop the spammers. Also (as Sea Mac was saying and we have confirmed in other forums) it looks like some bots have found already a way to pass the warning page, so the mod is not stopping these ones at all.

So you need to have something else to specifically stop them at registration time.

Apart from the mod Sea Mac was suggesting (Stop Spammer) I will suggest as well to activate the Anti-Spam Questions I also recommend in the tutorial Sea Mac was talking about. For me these Anti-Spam Questions are even more important than any other anti-spam mod.

@Sea Mac

We have already been talking about these new bots in other forums and we can confirm that those bots have already learned to pass the warning page.

I knew ages ago this time will come. In fact I thought they will need a lot less than the 2 years it took them to crack it. It doesn't matter how complicated any captcha system is: the people who create these bots always find a way to crack them, so I already said when I created that warning page that we will be using it until the bots find a way to crack it. We just need to change the warning page and use another system until they crack it again.

I already started a few days ago to create a brand new warning page that will stop them again for a while. (Hopefully a little more than 2 years).  ;)

Anyway we have a big problem here. The guys who create these bots can also read everything I say here and in all the tutorials I write, because they are all in public forums where everyone in the world have read access. And, with so many people asking always the same questions and asking me to explain again how this mod works, they have a lot of chances to see exactly how to crack the system.

In fact we are sure that one of the most dangerous guys there (the creator of the worst and more active spam-bots in the world) is following this thread every day with a lot of interest.

(Hi botmaster, how-ya-doin? Nice to see you here again  ;D )

So I suppose you won't mind if this time I don't explain here what I am doing and how I plan to stop them. I know eventually they will find a way to crack it again, but I hope this time they will need to work a little harder.

In the mean time, while I finish that new warning page, there is a small trick you can do that will make their life a little harder.

Look into your warning page and find this line:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] : 0 ;


Replace it with:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 1 : 0 ;


Now look for this line:

$captcha = httpBL_captcha($last_answer);


Replace it with:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 1;


Of course, as I said, they are reading this, so you need to do something different (or it will be too easy for them).

What I have done just now is to take away 1 in one line and add also 1 in another line. You need to choose a different number.

For example imagine you choose number 156. Then the first line will be:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 156 : 0 ;


And the second one:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 156;


Now you need to choose a number that is not 1 and is not 156  ;D but I hope you get the idea.

Try it and let me know if this stop them or not.
Title: Re: httpBL
Post by: butchs on June 19, 2011, 12:31:50 PM
Quote from: snoopy_virtual on June 19, 2011, 11:15:25 AM
(Hi botmaster, how-ya-doin? Nice to see you here again  ;D )

He was arrested by the FBI in 2005.  Once he was caught there is nothing he can do on the internet that the FBI does not know about.  I am sure you mean someone else...
Title: Re: httpBL
Post by: Sea Mac on June 19, 2011, 04:25:49 PM
Yes, I agree it should not be discussed at any length ...I'll let you know how the Captcha offset works when I try it.
Title: Re: httpBL
Post by: Nosy on June 21, 2011, 08:29:31 AM
First of all: Thanks to Snoopy for the modification and the tutorial. Thought it was easy  O:)

But sorry, I need help to get the httpBl running.

I followed all steps of Snoopy's Tutorial

Registerd at the projecthoneypot.org
Get the script and the API
Load the module httpBL_v2_5_1.zip and follwed the instructions

and receive this:
(http://www.guzzi-forum.de/Erklaerbilder/testforum01.gif)
Thought I can adjust here the rest, insert the API and so on.

Can't find a hint in this Thread or anywhere else.

Infos:
myhoneypot.php is in the root directory
honeypotlink is integrated in index.htm
SMF is 1.1.14
on the web-server is next the
directory /forum -> running forum
directory /.../Test_Forum_SMF/ -> installed to check out modifikations or settings before taken over in the real Forum
using the default-Theme
index.template.php looks fine

I have no further idea, hope, I can get here new ideas/hints

Greetings
Claudia
Title: Re: httpBL
Post by: snoopy_virtual on June 21, 2011, 09:59:58 AM
Hi Claudia.

That's a language issue.

When you install the mod it only makes the necessary languages changes to the files Modifications.english.php and Modifications.spanish.php inside the folder /Themes/default/languages/ because that's the 2 languages I use in my forums.

(In fact it tries to modify a few more files, considering that English has also a english.british version, Spanish has 2 different versions spanish_es and spanish_latin and all those languages have 2 versions, normal and UTF-8, but I was trying to simplify it so you can understand it better).

I don't know enough German to be sure, but it looks to me that's the language you are using in your forum, so I will explain what you need to do for that language. If it's another language let me know.

This mod hasn't been translated to German yet, so every time the mod needs to use a language string, it looks into the file Modifications.german.php (inside the /default/languages/ folder) and, as it doesn't find it there, it uses the string inside Modifications.english.php (as English is the default language for SMF).

So I suppose, if you had tried the mod in your test forum using the default Theme it would have work properly.

But that picture you are showing there is not  using the default Theme. I don't know the name of that Theme, but let's call it "yourtheme" so I can explain it.

That Theme you are using has a mistake that is very common to a lot of Themes. Look inside the folder /Themes/yourtheme/language/ and check if you have inside it the files Modifications.german.php and Modifications.english.php (I bet you have). That's a mistake. All the files like Modifications.whatever.php should be only inside the folder /Themes/default/languages/ and shouldn't be copied to any other folder, because all the mods do the language changes inside that folder only.

When you have a file Modifications.whatever.php inside the folder /Themes/yourtheme/language/ the mods look for the language strings inside that file. When they don't find it, they look inside the file Modifications.english.php but inside yourtheme folder (not the default one) and if those strings are not there either, they come back empty, and that's why all the language strings look blank.

The best solution (a little more complicated but more proper) is to compare the files Modifications.english.php inside both folders (/default/language/ and /yourtheme/language/) copying all the strings missing from the default one into yourtheme one and copying all the missing lines from yourtheme one into the default one until both files are exactly the same.

Do the same process with all the rest of the files Modifications.whatever.php you may have inside both folders until all of them are exactly the same.

Once you are sure there are no missing lines inside any of them and that all the files Modifications.whatever.php inside the folders /default/language/ and /yourtheme/language/ are exactly the same, delete all the files Modifications.whatever.php inside the folder /Themes/yourtheme/language/

This way, all the mods will look for the language files only inside the default folder and you won't have any more problems if you ever install, uninstall or upgrade any mod.

======

If you think all that process is too complicated for you, let me know and I will tell you an easier and quicker way to sort it, but that easy way will not be definitive, so if you do it you may have problems again in the future (either with this mod or with other mods) when you install, uninstall or upgrade any of them.
Title: Re: httpBL
Post by: Nosy on June 21, 2011, 10:12:27 AM
I should have thought about this. Thank you for this hint.

Problem is: I'm not the one, who installed the SMF, and they have told me ... year ago, they have change/copy/paste /manipualte the language files ... I have to declutter it

Maybe they have renamed the Themes/yourtheme/language in Themes/default/language  :o
Title: Re: httpBL
Post by: snoopy_virtual on June 21, 2011, 10:52:51 AM
Let me know if you get it sorted or if you find any problems trying to sort it, but definitely the problem is inside those files.
Title: Re: httpBL
Post by: Nosy on June 22, 2011, 03:19:23 AM
 :)
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.

It was /Themes/default/languages/
but in Test-Forum the default language wasn't english - that have been all

Activated httpBL just a few minutes ago.

Next step will be the Mod Stop Spammer, a few more Honeypots ....

Thanks for the immediately help

Greetings
Claudia
Title: Re: httpBL
Post by: capitalw on June 22, 2011, 08:06:31 PM
Quote from: snoopy_virtual on June 19, 2011, 11:15:25 AM
@etbrown4

Mod httpBL on its own it's not enough to stop the spammers. Also (as Sea Mac was saying and we have confirmed in other forums) it looks like some bots have found already a way to pass the warning page, so the mod is not stopping these ones at all.

So you need to have something else to specifically stop them at registration time.

Apart from the mod Sea Mac was suggesting (Stop Spammer) I will suggest as well to activate the Anti-Spam Questions I also recommend in the tutorial Sea Mac was talking about. For me these Anti-Spam Questions are even more important than any other anti-spam mod.

@Sea Mac

We have already been talking about these new bots in other forums and we can confirm that those bots have already learned to pass the warning page.

I knew ages ago this time will come. In fact I thought they will need a lot less than the 2 years it took them to crack it. It doesn't matter how complicated any captcha system is: the people who create these bots always find a way to crack them, so I already said when I created that warning page that we will be using it until the bots find a way to crack it. We just need to change the warning page and use another system until they crack it again.

I already started a few days ago to create a brand new warning page that will stop them again for a while. (Hopefully a little more than 2 years).  ;)

Anyway we have a big problem here. The guys who create these bots can also read everything I say here and in all the tutorials I write, because they are all in public forums where everyone in the world have read access. And, with so many people asking always the same questions and asking me to explain again how this mod works, they have a lot of chances to see exactly how to crack the system.

In fact we are sure that one of the most dangerous guys there (the creator of the worst and more active spam-bots in the world) is following this thread every day with a lot of interest.

(Hi botmaster, how-ya-doin? Nice to see you here again  ;D )

So I suppose you won't mind if this time I don't explain here what I am doing and how I plan to stop them. I know eventually they will find a way to crack it again, but I hope this time they will need to work a little harder.

In the mean time, while I finish that new warning page, there is a small trick you can do that will make their life a little harder.

Look into your warning page and find this line:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] : 0 ;


Replace it with:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 1 : 0 ;


Now look for this line:

$captcha = httpBL_captcha($last_answer);


Replace it with:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 1;


Of course, as I said, they are reading this, so you need to do something different (or it will be too easy for them).

What I have done just now is to take away 1 in one line and add also 1 in another line. You need to choose a different number.

For example imagine you choose number 156. Then the first line will be:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 156 : 0 ;


And the second one:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 156;


Now you need to choose a number that is not 1 and is not 156  ;D but I hope you get the idea.

Try it and let me know if this stop them or not.

How about making the numbers random? I haven't been able to make my random idea work yet so I can't provide code...I know it is a simple error on my part and laziness for not looking it up.
Title: Re: httpBL
Post by: snoopy_virtual on June 22, 2011, 10:46:16 PM
As I said I am working in a lot more permanent solution.

That's only a small tweak to stop them in the mean time.

BTW we have confirmed already in a lot of forums that this tweak works. They cannot pass it.
Title: Re: httpBL
Post by: Dramber on June 23, 2011, 10:24:25 AM
I can confirm that. The tweak has stopped them cold on my forums.
Thanks for continuing to work on this mod Snoopy.
Title: Re: httpBL
Post by: snoopy_virtual on June 23, 2011, 12:49:40 PM
No problem.

I hate spammers more than anything else in this world  ;D
Title: Re: httpBL
Post by: capitalw on June 23, 2011, 07:01:30 PM
Quote from: snoopy_virtual on June 19, 2011, 11:15:25 AM
@etbrown4

Mod httpBL on its own it's not enough to stop the spammers. Also (as Sea Mac was saying and we have confirmed in other forums) it looks like some bots have found already a way to pass the warning page, so the mod is not stopping these ones at all.

So you need to have something else to specifically stop them at registration time.

Apart from the mod Sea Mac was suggesting (Stop Spammer) I will suggest as well to activate the Anti-Spam Questions I also recommend in the tutorial Sea Mac was talking about. For me these Anti-Spam Questions are even more important than any other anti-spam mod.

@Sea Mac

We have already been talking about these new bots in other forums and we can confirm that those bots have already learned to pass the warning page.

I knew ages ago this time will come. In fact I thought they will need a lot less than the 2 years it took them to crack it. It doesn't matter how complicated any captcha system is: the people who create these bots always find a way to crack them, so I already said when I created that warning page that we will be using it until the bots find a way to crack it. We just need to change the warning page and use another system until they crack it again.

I already started a few days ago to create a brand new warning page that will stop them again for a while. (Hopefully a little more than 2 years).  ;)

Anyway we have a big problem here. The guys who create these bots can also read everything I say here and in all the tutorials I write, because they are all in public forums where everyone in the world have read access. And, with so many people asking always the same questions and asking me to explain again how this mod works, they have a lot of chances to see exactly how to crack the system.

In fact we are sure that one of the most dangerous guys there (the creator of the worst and more active spam-bots in the world) is following this thread every day with a lot of interest.

(Hi botmaster, how-ya-doin? Nice to see you here again  ;D )

So I suppose you won't mind if this time I don't explain here what I am doing and how I plan to stop them. I know eventually they will find a way to crack it again, but I hope this time they will need to work a little harder.

In the mean time, while I finish that new warning page, there is a small trick you can do that will make their life a little harder.

Look into your warning page and find this line:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] : 0 ;


Replace it with:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 1 : 0 ;


Now look for this line:

$captcha = httpBL_captcha($last_answer);


Replace it with:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 1;


Of course, as I said, they are reading this, so you need to do something different (or it will be too easy for them).

What I have done just now is to take away 1 in one line and add also 1 in another line. You need to choose a different number.

For example imagine you choose number 156. Then the first line will be:

$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 156 : 0 ;


And the second one:

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + 156;


Now you need to choose a number that is not 1 and is not 156  ;D but I hope you get the idea.

Try it and let me know if this stop them or not.

I just noticed after trying this that httpBL will return this error: "errorNumber = 105 - No defined yet"  on some, but not all entries for attempts lower than the do-not-show-captcha setting.

It seems to work fine when I test it and no errors show up in the error log. I have noticed that the IP addresses which cause that error are ones of known spammers that httpBL nails on a daily basis. I have tested both with good answers and bad ones.

I did a copy and paste of your code on the lines and changed the number to one of my choosing (the same one in both places). I did not leave the original lines (I do enough PHP and other languages to know better...I hope...), and see only that change from the original to the modification.

Thanks!
Title: Re: httpBL
Post by: snoopy_virtual on June 23, 2011, 07:21:23 PM
Yes, I forgot to add the definition of the error number 105 inside the file.

It means:

"5 answers in the captcha. 0 Good, 5 Bad"
Title: Re: httpBL
Post by: EL34 on June 24, 2011, 10:40:20 AM
QuoteFor example imagine you choose number 156. Then the first line will be:

Code: [Select]
   $answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - 156 : 0 ;

And the second one:

Code: [Select]
   $captcha = httpBL_captcha($last_answer);
   $captcha['answer'] = $captcha['answer'] + 156;

I suppose you could define a variable at the at top of the page and use it in the two lines shown below?
That way you can go to the warning page and change the number easily and in just one place?
How's the code below look?

// top of page in common variables section
$MyNumber = '137';

// codes lines to be changed
$answer = isset($_POST['httpBL_answer']) ? (int)$_POST['httpBL_answer'] - $MyNumber : 0 ;

$captcha = httpBL_captcha($last_answer);
$captcha['answer'] = $captcha['answer'] + $MyNumber;



Title: Re: httpBL
Post by: snoopy_virtual on June 24, 2011, 04:50:22 PM
It looks OK. It's a good idea if you want to change the number every now and then.
Title: Re: httpBL
Post by: Storman™ on June 25, 2011, 02:24:36 PM
Re: 2.5.1

Hi there's a dinky css error in warning_css.css on line 30

Should be a semi-colon and it's a swigly bracket

;)
Title: Re: httpBL
Post by: busterone on June 25, 2011, 03:24:57 PM
Ahh, indeed. My copy is repaired.  Never noticed it before.  :)
Title: Re: httpBL
Post by: capitalw on June 25, 2011, 03:54:54 PM
Quote from: snoopy_virtual on June 23, 2011, 07:21:23 PM
Yes, I forgot to add the definition of the error number 105 inside the file.

It means:

"5 answers in the captcha. 0 Good, 5 Bad"

Thanks for the answer to this...it only showed up after I made the changes you mentioned above, so I didn't know if it was related or not. I do not have any entries in the httpBL error log so I was doubly curious.

Could EL34's idea be used with random number generation?
Title: Re: httpBL
Post by: snoopy_virtual on June 25, 2011, 04:12:56 PM
Quote from: Storman on June 25, 2011, 02:24:36 PM
Re: 2.5.1

Hi there's a dinky css error in warning_css.css on line 30

Should be a semi-colon and it's a swigly bracket

;)

Yes, indeed. That's an stupid error. The kind of errors I do every now and then. (Did I told you about the time I was so concentrated trying to save a pawn that forgot to defend the Queen? I lost that game obviously.  ;D )

Actually, when I went to add that to my TODO list to correct it in the next version I saw that it was already there. It was already reported by our friend Skhilled some time ago, together with a few more errors.

You can see the full list of those errors reported by Skhilled here:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=410.0

Read also my answers to that, because one of the errors reported by him is not an error.

I really would like one day to have time to finish the new version and correct all those errors. (And all the rest I have in my TODO list).

Quote from: capitalw on June 25, 2011, 03:54:54 PM
Could EL34's idea be used with random number generation?

Not really.

The problem doing that randomly is you need to reload the page a few times, sending the form every time with those values and the page need to check every time if the answers are correct or not.

If you use a random number (different every time the page reload) you have no way of checking if the answer is correct or not.

There are a few ways to do this using random numbers, but all of them complicated and (as I said before) I am working in a more permanent solution using something completely different, so I don't see the point on losing any time with random numbers there when that small tweak works just now and hopefully it will be good enough untill I have time to finish the new version.
Title: Re: httpBL
Post by: capitalw on June 25, 2011, 04:25:32 PM
Quote from: snoopy_virtual on June 25, 2011, 04:12:56 PM
Quote from: capitalw on June 25, 2011, 03:54:54 PM
Could EL34's idea be used with random number generation?

Not really.

The problem doing that randomly is you need to reload the page a few times, sending the form every time with those values and the page need to check every time if the answers are correct or not.

If you use a random number (different every time the page reload) you have no way of checking if the answer is correct or not.

There are a few ways to do this using random numbers, but all of them complicated and (as I said before) I am working in a more permanent solution using something completely different, so I don't see the point on losing any time with random numbers there when that small tweak works just now and hopefully it will be good enough untill I have time to finish the new version.

Thanks, I was wondering about page rebuilding and figured it would make randomness messy.
Title: Re: httpBL
Post by: EL34 on June 25, 2011, 05:23:20 PM
Going back to post #721 where I asked for a new feature to only log forum members

I always end up just reseting the spammers log.
Sometimes it's 40 pages or so in the database that needs to be deleted.
I don't need to look at all that data.

And in the humans log, I only want to see forum members, not guest.
I only want to see the forum members that are getting caught.

Since Snoop said he is not interested in adding any new features at this time, I went ahead and modded the code myself.

EDIT: I removed the code mod section that was here
Title: Re: httpBL
Post by: snoopy_virtual on June 25, 2011, 06:41:07 PM
Hi EL34

So you are doing a fork of my mod wedging some lines inside it? I kind of like that.  ;D

First of all, don't get me wrong. Is not that I am not interested in adding more features here. The problem is I haven't got time to do it.

Anyway that small tweak you have done there will stop the mod from working properly.

The function where you added them httpBL_logme() has 2 parameters: $response and $return.

$response is an array that has all the data about this possible spammer (IP, username, Threat Level in Honey Pot, etc etc)

$return is a BOOL parameter that can be true or false. The default value is false, but it can be true sometimes.

Every time we use that function we add a new row inside the log with all that data. Everyone of these rows has a different ID and the program needs to know that ID to sort them out.

When $return is false we just put the data in the log, but when $return is true we also return that ID to the program.

Imaging that at a certain moment there are 50 visitors in your forum and mod httpBL is studying all of them at the same time to see what to do with them.

Now let's say 30 of them have no data (Threat Level 0) in Honey Pot, the mod will leave them alone and concentrate in the other 20.

The first thing the mod will do is to put those 20 in the logs and give them a different ID. Then (depending on a lot of things) some of them will see the warning page, others will pass undisturbed, etc, but to differentiate what to do with those 20 visitors, the mod need to have a different ID for each one.

I suppose you already see where I'm going. The way you have done that tweak, if they are not members of your forum (username = Guest) the function httpBL_logme() will always return 0, so all of them will have the same ID = 0.

So the mod will treat properly only your forum members. With the guests (unless they are visiting the site one at a time) it can have unpredicted consequences. It may stop pacific visitors or let pass dangerous ones.

I have been thinking about it for a while and cannot see an easy way to do that without changing completely the way the mod works. Adding and modifying a lot of lines.

==============

Anyway, thinking about the problem you have, maybe there is an easy solution: Have you seen the 2 buttons on the logs page?

There is one to "Show/Hide the Legend" done with javascript. Forget that one.

The other button to "Show/Hide the extra information" does a query inside the database and changes the value of one thing inside it.

What about adding a 3rd button there to delete from the logs (with just a click) all the entries with username = Guest? Still not just a quick tweak but I suppose it wouldn't take me too long to do it, copying the same technique I used for the second button but changing the query.

You just need to tell me if you are using SMF 1.1.x or 2.0 (the queries are different for both).

Of course if you want to try it as an exercise and put it here I will check it out to see if you have done it properly.  ;)
Title: Re: httpBL
Post by: EL34 on June 26, 2011, 07:25:24 AM
Thanks Snoop.
That's why I asked to make sure I did not break anything.
I was not sure if that section only wrote to the log, but it looks like there is more involved.

I'll go edit my post above so no one tries this.

Yes, I am using 1.1.14 and would like to test your idea.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 01:02:24 PM
Ok, I am a techie dummy, but we have a small site and are getting hit like crazy with Spammers, can you help direct me how to get this installed correctly?
Am I going to have to wait for a project honey pot account? I can go over there and look at creating an account now, but for now, let me ask a couple more questions....
Can I install more than one mod for spammers and robots?
I have read about this one by you (the one we are talking about)
http://custom.simplemachines.org/mods/index.php?mod=2155
and then this one
http://custom.simplemachines.org/mods/index.php?mod=1519
and then this one by you also...
http://custom.simplemachines.org/mods/index.php?mod=1547
Should I use all three? only 1 or two?
Am I going to have to make changes to the .php or just install the mod?
thanks for helping me out!
Title: Re: httpBL
Post by: busterone on June 26, 2011, 02:35:08 PM
My personal suggestion is get an account and API key from Project Honeypot, then install httpBL. You need the honeypot API for the mod to work.
Install Stop Spammer by snoopy.  http://custom.simplemachines.org/mods/index.php?mod=1547
The other one you posted is pretty much the same as snoopy's, so you do not need it. I suggest snoopy's version because it works well with httpBL with no conflicts.
It is also advisable to use at least one or more verification questions at registration. That stops many bots in their tracks. If you are using 2.0, it is built in. If you are using 1.1.x, there is a mod available to add that feature to your site.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 03:00:22 PM
Ok, I did install the mod 1547 for the stop forum spam, and we have an API key with SFS. I didn't install the other, started to, but had issues so didn't.
I did find the mod for the verification questions and have that installed.
I love the look of these two (already blocked one!) and would love to get the honey pot one installed.
How do I get an API key for it? I have an account with them now, do I just request it?
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 03:11:10 PM
Ok, I installed the mod, it said to use it I need:
If you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven't got them you need to go first to www.projecthoneypot.org to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key

Now I asked for and Got the API key; but how do I get it installed on my server?
When I tried to get one, it asks:
Please choose a language for your Honey Pot Script. If you don't know what language your website can support, please consult your web administrator.

How do I know the language?
Title: Re: httpBL
Post by: busterone on June 26, 2011, 03:17:50 PM
have you installed the Honeypot?  It must be installed first, then add the honeypot URL and your API key into the settings page for mod httpBL in your forums administrative area. It will check and verify if the honeypot is installed correctly and if it is active.
Use whatever language your forum is using. I presume it is in English.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 03:53:25 PM
It is asking for the type of website language when I ask for a honeypot and I tried to get a honeypot where it chose the language, but it wouldn't do it. How do I know the scripting language?
It's a choice of like ASP
ASP.2/Net
mod_perl...

how do I know what to select?
Title: Re: httpBL
Post by: busterone on June 26, 2011, 05:02:39 PM
Ahh. I forgot about that part. It has been some time since I set it up. Use php.
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 05:41:08 PM
Sorry, I was not here today and didn't see this until now. I think both of you have forgotten about the tutorial I wrote ages ago:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english

All the installation steps are explained there.

After installation you need to configure it and activate it, and that part is not in the tutorial yet, but it is almost self-explanatory.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 06:39:48 PM
Ok, thanks tons, it's a sunday and I imagine you do have a life some! the fact that you do this to help out us "little" guys is awesome....Thanks again....

Anyway, I think I got some of it while reading that.

At the moment, I have the mod on the site awaiting the honeypot info,
I did ask for the php..thanks! I have it extracted from the zip file
I found the folder, as I do use FTP to load stuff, it's the public_html folder;
now, it says after I upload, make sure the file permissions are set correctly,
, check that the file permissions have been set correctly (chmod 644) how do I do this?
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 06:42:08 PM
Oh, and before I send this up using FTP, do I need to uninstall the mod? I have it installed at the moment....will it cause any issues?
(oh, and I did install the other mods that you suggested, the question one and the stop spammer)

Also, in reading your tutorial, I know enough to get us in trouble, but I am not a techie guru by any means! :)
So, in our site, we are not using the default core theme, the one we are using is called "Amber" I have it set as the forum default, will I need to modify it manually?
We also have a couple of other themes that our members can choose, if it is not the default forum theme - do I need to add a honeypot link to those?
I also change the theme sometimes for holidays, will I need to install a honeypot link every time in the new theme? i only usually do this a couple times a year...

also, our website (and I am revising some of it) is goatbeat.net - we have some informational pages, do I need to install the/a honeypot link in the breeder pages or the health information pages?
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 07:38:54 PM
Don't worry. I have been all day practising with my new rock band and just arrived home. (I suppose you have already deduced it's call Tebas  ;D ). It's been a good day. We composed 2 new songs. Funny enough we still haven't got a bass player but we already have 9 songs composed.  ;D

OK, Let's see if I can sort your problems:

Quotecheck that the file permissions have been set correctly (chmod 644) how do I do this?

There are a lot of methods. The easiest one is using your FTP program. I don't know what FTP program you use, but all of them are very similar.

Once the file is already uploaded, you select the file in the server and look for a button that says "File permissions" or "properties" or something like that.

For example with FileZilla (the FTP program I use) I need to right click the file, choose "File permissions" and I get something like this:

(http://www.snoopyvirtualstudio.com/images/foro/httpBL/file_permissions.png)

As you can see that file has already 644

QuoteOh, and before I send this up using FTP, do I need to uninstall the mod? I have it installed at the moment....will it cause any issues?

It's no problem to have the mod already installed. You won't be able to activated it until you have your honey pot ready.

Quote(oh, and I did install the other mods that you suggested, the question one and the stop spammer)

You need to activate both of them though.

For the anti-spam questions, just write a question and an answer (at least) and that's it. If you have any problem with that mod you can ask here:

http://www.simplemachines.org/community/index.php?topic=276309.0

For mod Stop Spammer just go to Admin => Members => Registration => Settings and scroll down to the bottom. You will find all the Settings for that mod (with a check box to activate it). After it's activated you will see a green sign telling you it's working properly or a red sign telling you why it's not working.

If you have any problems with that mod tell us here:

http://www.simplemachines.org/community/index.php?topic=283309.0

QuoteSo, in our site, we are not using the default core theme, the one we are using is called "Amber? I have it set as the forum default, will I need to modify it manually?
We also have a couple of other themes that our members can choose, if it is not the default forum theme - do I need to add a honeypot link to those?
I also change the theme sometimes for holidays, will I need to install a honeypot link every time in the new theme? i only usually do this a couple times a year...

The answer is yes to all. You need to add those links manually in all those Themes.

If you were using SMF 2.0 it has an option (when you are installing a mod) that asks you if you want to add it also to all your Themes and it does it for you automatically, but I see you are using SMF 1.1.14 and that version doesn't have that option. That's why you need to do it manually to all the Themes.

Don't get scared, it's not as difficult as it may looks like.

Follow the instructions in the tutorial carefully and you will see the only difficult one is the first one (maybe even the second one too). After you have modified a couple of them you will see how easy it is and you will do the rest just in a few seconds.

Quotealso, our website (and I am revising some of it) is goatbeat.net - we have some informational pages, do I need to install the/a honeypot link in the breeder pages or the health information pages?

That depends. Are those informational pages link to the forum via the file SSI.php?

If the answer is yes, you will need to add the links to your honey pot to those pages too. If the answer is no you won't need to do it.

I have been looking at those informational pages and cannot say for sure, but they look to me just like normal HTML pages with no PHP coding in them at all.

If that's true the answer will be "no you don't"
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 07:55:45 PM
Sounds like fun...I've been dealing with this all day! lol...but it's over 100 outside, so no complaints! :)
We just all of the sudden started getting bombarded, and I lost my tower due to the storms, so the other gals have been just listing them in the ban section, I told them I thought it would overwhelm it, but didn't have time to look into WHAT to do. One of the gals asked a question on SFS and was told about mods, then all of the sudden I realized I'd looked at them b4, so started perusing the SMF mod site....and stumbled on these you had....just installing those two mods and activating them dropped the spammers dramatically (they are both currently active)....but I want to get this honeypot one installed...

On the main page I have a link into the forum, maybe a couple of the other, but I didn't put any php stuff in them, wouldn't know how, didn't know they weren't looking ok in other screens until I got a wide screen, they don't auto set, so I need to work on 'em more....but back to the issue at hand....I don't think I have any SSI.php in them....oh, and so I don't forget and thanks again for the help...  ;)

Ok, the FTP program I am using is WS_FTP LE - I will go ahead and load it using FTP and see if I can see what you are talking about....I will come back once done and let you know if I found that permissions or properties....
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 07:59:10 PM
QuoteOn the main page I have a link into the forum, maybe a couple of the other, but I didn't put any php stuff in them, wouldn't know how, didn't know they weren't looking ok in other screens until I got a wide screen, they don't auto set, so I need to work on 'em more....but back to the issue at hand....I don't think I have any SSI.php in them...

OK. If you are the one doing those pages and you don't know what is SSI.php (or any PHP for that matter) the answer is no then. Forget about that part.

=================

When you finish with all that I will suggest you to add also a Firewall to your forum, to stop the hackers too.

The best one I know is Crawltrack (the one I use in all my sites), a free program you can download from: http://www.crawltrack.net/

You will see there are a few mods here in SMF claiming to be also good Forum Firewalls. Even in some of them you will see my name on them saying that I have tested them or that I recommend them, but that's not true. (I have told them to take my name off, but they don't listen). I have tested some of them (that part is true) but I saw too many errors in all of them and I don't like any so I wouldn't recommend them at all. The only one I use is Crawltrack.

=================

Keep us informed of your progress.  ;)
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 08:04:33 PM
Ok, when Looking at it through my FTP, I can't find a properties, it gives me the option to delete, move, change, transfer, append, delete, but no properties, there is a chmod (UNIX) but when I select that, it only gives me options of read/write/execute in Owner/Group/other
Should I download your FTP program you use? the one I have I am comfortable with... lol So never changed..I know there's probably better....
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 08:07:12 PM
If you look at the screenshot I took from my program yo will see it has also read/write/execute in Owner/Group/other

Compare the settings you get in yours with mine.  ;)

In mine they call it "Public" instead of "Other" but it means the same.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 08:11:40 PM
Ok, it's set the same, on those, but no "numeric value" to be seen...Are we ok to go ahead and activate?
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 08:22:46 PM
Quote from: Candace69 on June 26, 2011, 08:11:40 PM
Ok, it's set the same, on those, but no "numeric value" to be seen...Are we ok to go ahead and activate?

Yes
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 08:26:57 PM
CONGRATULATIONS! IT APPEARS YOU'VE CORRECTLY INSTALLED THE HONEY POT SCRIPT! WHOO HOO!
;D

Now to the next step!
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 08:36:31 PM
CONGRATULATIONS!

I'm going yo have e beer to celebrate it.

Cheers. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 08:40:21 PM
Enjoy! With this weather here, a cold beer sounds good! :)

Ok, I input the link, API key and keyword, then I saved, then it allowed me to turn on the mod, and I did, then it said:
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.

So, now I need to do the step 8 with the links to the honeypot? This is the part that makes me nervous, the link, that would be the link that I input on the link in request in the mod right? like this: http://www.goatbeat.net/****.php

I am going to read a little more on your step 8. Can I do this right from the forum?
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 08:51:30 PM
Quote from: snoopy_virtual on June 26, 2011, 07:38:54 PM
The answer is yes to all. You need to add those links manually in all those Themes.

If you were using SMF 2.0 it has an option (when you are installing a mod) that asks you if you want to add it also to all your Themes and it does it for you automatically, but I see you are using SMF 1.1.14 and that version doesn't have that option. That's why you need to do it manually to all the Themes.

Don't get scared, it's not as difficult as it may looks like.

Follow the instructions in the tutorial carefully and you will see the only difficult one is the first one (maybe even the second one too). After you have modified a couple of them you will see how easy it is and you will do the rest just in a few seconds.

Ok, my questions, I use FTP. pull down the index.template.php in whatever template, and modify it and send it back up....

where it said this before
</div>
</body></html>';
it would have all that stuff you had inserted between
</div>


all the stuff to end with

echo '
</body></html>';

then send the page back up?

Can I use Frontpage to do it? Or do you recommend just notepad?

I am not going to intially do it on our main themes, but on one of our alternates, then test it myself....

Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 08:54:46 PM
The best way is to download (via FTP) the index.template.php file from one of the Themes, edit it with Notepad++ and upload it again.

In the tutorial I was talking about other text editing programs, but I wrote that 2 years ago. Just now I would only recommend Notepad++ if you are using Windows or gedit if you are using Linux.

If you haven't got Notepad++ you can get it here: http://notepad-plus-plus.org/ (It's Free Source).

If you do first the "Amber" Theme (I think it's the only one I can see in your forum just now) and tell me when it's done, I can check if you have done it properly.
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 08:59:21 PM
I said in the tutorial the links to honey pots are hiding from humans and only visible to robots, but that's not exactly true.

They are hiding to normal humans and visible only to robots and hackers. And of course I am a hacker.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 09:05:06 PM
Or if you don't want to start with "Amber", I can register in your forum and change the Theme to the one you choose to start with.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:10:49 PM
he he he sorry, had a phone call I am trying to do this as I talk on the phone, trying to get off! The gal I am talking to was from Spain, she said where are you from?   :laugh:

now, with the notepad I went to download current version

it gives me the options

    Notepad++ v5.9.2 Installer
    Notepad++ v5.9.2 zip package
    Notepad++ v5.9.2 7z package
    Notepad++ v5.9.2 minimalist package
    SHA-1 digests for binary packages
    Notepad++ v5.9.2 code source (source code)


which do I try?
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 09:15:26 PM
I am from Madrid, but live just now at the coast, near Torrevieja.

And download Notepad++ v5.9.2 Installer  ;)
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:23:50 PM
just hung up, she said kewl! she adopted one of my pyr's...

I am downloading it now, we have the site set to have to be approved, you can make sure the stuff is working right; if you want to join....hmmm...hacker aye?

I am going to look at adding the mod to the "outline" theme....
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:29:28 PM
dang this page is huge, so the body isn't just at the top? it's just somewhere in it?
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:33:21 PM
ok, is there only one place you see "body"..on about line 216 I see this:

         }
      // ]]></script>
</head>
<body>
  <div id="wrapper">
   <div id="shad-l">
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:35:24 PM
on about lines 376/377 I found this...is this where I need to put it?
'</div>';

echo '
</div></div></div>
</body></html>';
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 09:37:38 PM
That's the end of the body.

Now, replace


echo '
</div></div></div>
</body></html>';


With this:


echo '
</div></div></div>';

/*****************
** httpBL START **
*****************/
global $sourcedir, $modSettings;
if ($modSettings['httpBL_enable'])
{
require_once($sourcedir . '/httpBL_Subs.php');
$honeyLink = httpBL_honeylink($modSettings['httpBL_honeyPot_link'], $modSettings['httpBL_honeyPot_word']);
echo $honeyLink;
}
/*****************
**  httpBL END  **
*****************/
   
    echo '
</body></html>';
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:43:13 PM
Ok, did that and uploaded, how do I know if it's working? I am going to change to the outline to see, but will I SEE anything?
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:44:24 PM
nothing looks weird, I am going to try the Amber, which is the main board default
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 09:45:03 PM
I already registered there. Waiting for approval.
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:50:20 PM
I just approved you, I was trying to do the Amber one, so looking thorugh all that code made my eyes cross!  :o  the main one, I uploaded it with it added in too...hope I got it right!
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 09:54:09 PM
So, how does it look? Hope I did it right! I am going onto the other themes
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 10:02:54 PM
So far so good. I answered you there though.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 10:10:43 PM
Somehow it looks like I cannot post there properly.

You must have been very badly beaten with spam to have so tight security measures  ;D

It doesn't matter. I will post here:

Checked so far the default Theme, Amber, Outline and Sweet Dream.

All of them have the links done properly.
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 10:12:58 PM
Checked CS Classic as well and it's also OK.

You are getting use to it. See? it was not so difficult.  ;D
Title: Re: httpBL
Post by: Candace69 on June 26, 2011, 10:16:31 PM
Your post went through, one of the mods moved it to the techie and admin section, where you can't see, but I can't move it back... lol That's why I said you freaked her, she moved it without thinking about it....   
Yes, we got hit really hard, then had a member steal profiles and start spamming, so we are trying to clamp down at the moment, we had over 1000 spam attempts to become members in the last week to 10 days, your mods are a lifesaver!


Thanks SOOOO much for all your help today.....

With the firewall one, I'll look into that in the next day or so, today I need to step away for a while! lol Have another beer on us!
Title: Re: httpBL
Post by: snoopy_virtual on June 26, 2011, 10:24:49 PM
Good idea. I will (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)

As I was saying there you can delete that account now. I won't need it. (If you ever have another problem I can create it again).

And yes, the Crawltrack program is not so urgent. With so many spammers you had to do this first.

Let us know in a few days time how is it going. (Or before that if you have any other question, of course).  ;)
Title: Re: httpBL
Post by: Candace69 on June 27, 2011, 08:47:07 AM
Ok, quick question, the gals are looking in Who's online and seeing some they are concerned about, but I tell them they aren't getting in, but is there a place a can look at the ones that have been blocked, or is that even tracked?
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 08:52:22 AM
Admin => Mod httpBL => Logs (there are 3 of them)

We have talked a lot about it in this thread. Do a quick search and you will find more.  ;)
Title: Re: httpBL
Post by: Candace69 on June 27, 2011, 08:58:22 AM
*lol.... thanks.  I will look back through the thread some, today we have storms coming in... but are there ones that don't log there?

Title: Re: httpBL
Post by: Candace69 on June 27, 2011, 09:04:37 AM
oh, and one they were questioning came from this range
119.63.196.6
119.63.196.68
the range 119.63.196.**
which Honeypot calls a spider, it's been in our site quite a bit....SFS had one of them Ban it a while back, but we removed all our ban triggers (they had so many input it was bogging down) except for the personal ones...need we be concerned, I saw no, but just to get the experts opinion  :D what do you say?
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 11:00:14 AM
That one looks to me like Baidu Spider. If it is, it's harmless.

A spider is what everybody calls also a "searcher". There are thousands of them and the more popular ones are Google, Yahoo, Bing, etc. 99.9% of them are harmless.

I never ban nobody from my sites. If these mods are setup correctly they ban themselves every time they fall on any of my traps (honey pots).

Anyway, to find out exactly if an IP is dangerous or not, there is a brilliant program called FSLC (Forum Spam List Checker) from our friend Gunner: http://www.gunnerinc.com/downloads.htm

=============

By the way, I forgot to tell you you need to do a small change to your warning.php file. It's something we discovered last week and I haven't updated it yet in the main page of the mod.

That conversation started here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

Read from there onwards.
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 11:44:23 AM
Quote from: EL34 on June 25, 2011, 05:23:20 PM
Going back to post #721 where I asked for a new feature to only log forum members

I always end up just reseting the spammers log.
Sometimes it's 40 pages or so in the database that needs to be deleted.
I don't need to look at all that data.

And in the humans log, I only want to see forum members, not guest.
I only want to see the forum members that are getting caught.

Quote from: EL34 on June 26, 2011, 07:25:24 AM
Yes, I am using 1.1.14 and would like to test your idea.

OK. I have done the code for the button you wanted. Instead of placing it at the top of the logs I have put it at the bottom. Next to the "Clear this log", "Remove all", etc, buttons. It's easier there.

Go to /Themes/default/httpBL.template.php and find:


<td colspan="9" align="right">
<input type="submit" name="removeAll" value="', $txt['ban_log_remove_all'], '" onclick="return confirm(\'', $txt['httpBL_log_remove_all_confirm'], '\');" />


Replace with:


<td colspan="9" align="right">
<!-- Button EL34 START -->
<input type="submit" name="removeGuests" value="Remove Guests" onclick="return confirm(\'Are you sure you want to delete from the 3 MOD httpBL logs (Spammers, Humans and Errors) all the entries with username = Guest?\');" />
<!-- Button EL34 END -->
<input type="submit" name="removeAll" value="', $txt['ban_log_remove_all'], '" onclick="return confirm(\'', $txt['httpBL_log_remove_all_confirm'], '\');" />


(Or just wedge in the lines from <!-- Button EL34 START --> and <!-- Button EL34 END --> It's exactly the same).  ;)

Now go to /Sources/httpBL_Config.php and find:


// Delete one or more entries.
if (!empty($_POST['removeAll']) || !empty($_POST['clearThisLog']) || (!empty($_POST['removeSelected']) && !empty($_POST['remove'])))
{
checkSession();

// 'Delete all entries' button was pressed.
if (!empty($_POST['removeAll']))
db_query("
TRUNCATE {$db_prefix}log_httpBL", __FILE__, __LINE__);


Replace with:


// Delete one or more entries.
if (!empty($_POST['removeAll']) || !empty($_POST['removeGuests']) || !empty($_POST['clearThisLog']) || (!empty($_POST['removeSelected']) && !empty($_POST['remove'])))
{
checkSession();

// 'Delete all entries' button was pressed.
if (!empty($_POST['removeAll']))
db_query("
TRUNCATE {$db_prefix}log_httpBL", __FILE__, __LINE__);

// 'Remove Guests' (EL34) button was pressed.
else if (!empty($_POST['removeGuests']))
db_query("
DELETE FROM {$db_prefix}log_httpBL
WHERE username = 'Guest'", __FILE__, __LINE__);


As I don't know if this button is going to be used by too many people, I haven't put any language strings in it. Every thing is just in English. If at the end of the day I decide to add it to the next version I will change that so it can be also translated inside the language files. If you want to change any of the text do it inside the new lines in the file httpBL.template.php

WARNING: I haven't tested it. In all the forums I have (even the test ones) I keep in the logs all the data since I started working on this mod, as I use it to study the way the spammers work, so I have never delete any data there.

To test that button I will need to create a new forum and put some data in the logs to be able to see if the button will delete it properly.

Anyway, I think I haven't done any mistake, but use it carefully and let me know after you test it if it works properly.
Title: Re: httpBL
Post by: EL34 on June 27, 2011, 11:50:42 AM
Cool, thanks
I am going to test it now.

I'm back!
I had to Wedge in the new code.  ;D
The new button seems to work fine.
It deleted all the guest in the spammers log and the humans log.

There were no forum members in the human log, so I could not test to see if it left forum members in the log ot not.
But, I am sure that function is ok.

Thanks Snoop
I'll report back when I get some forum members in the human log and do another DB reset for guest only.

See ya
Title: Re: httpBL
Post by: avenga on June 27, 2011, 05:55:21 PM
Hi Snoopy. First off, I'm a big fan of your mods. My forum has been hit hard lately with spammers and your mods have made a real difference.

I installed httpBL and Stop Spammer on my forum and they work great, although httpBL does let through some spammers that are listed on honeypot and are over my threshold of Very Bad, But it has cut the registrations down from 30+ a day down to around 6 per day.

The real problem I am having is on a friends forum. He is also being hit badly by spam so I offered to install httpBL and Stop Spammer for him. On his forum the Package Manager doesn't work (Long story but I think it is host related FTP permission problem) so I had to manually install both Mods.

Stop Spammer works fine and is catching spammers but httpBL doesn't seem to be working. I checked all the code and it looks fine and when I go in to the MOD httpBL page under the admin section it says "Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect." but the spammer log says no spammers have been caught and the spamming problem hasn't got any better.

I have honeypots installed on the server and linked on all pages exactly like I do on my own server.

I suspect the problem is something I have done wrong in the manual install process but I can't figure out what I have done wrong. I compare it to the code which is working on my site and it looks the same.

Thanks heaps in advance for any help you can give me fixing this problem.
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 06:04:22 PM
Hi avenga.

You need to do a small change to your warning.php file. It's something we discovered last week and I haven't updated it yet in the main page of the mod.

That conversation started here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

Read from there onwards.
Title: Re: httpBL
Post by: avenga on June 27, 2011, 06:11:29 PM
Thanks for your quick responce.

I will modify the warning page on both of the forum and let you know the results.

Thanks heaps
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 06:19:43 PM
Let me know if that doesn't sort the problem to look if there is anything else.
Title: Re: httpBL
Post by: avenga on June 27, 2011, 06:58:25 PM
Awesome work Snoopy.

I have made the change on both forums and it looks to have made a big difference. I now see spammers being caught on my friends forum. Both forums haven't had any spammers get past httpBL since I made the change.

Since it has only been about 30 minutes since I made the change I can't see if it has totally fixed the spam problem but it is looking a lot better.

I will post an update in a couple of days to let you know if it has fixed it for good but signs are looking very promising.

Thanks heaps for your help Snoopy and thanks for making a great Mod.
Title: Re: httpBL
Post by: snoopy_virtual on June 27, 2011, 07:09:11 PM
You're welcome  ;)
Title: Re: httpBL
Post by: Candace69 on June 28, 2011, 08:34:54 AM
Good Morning!!!! :)

Well, I have a questing, I need to make those adjustments you suggested, haven't yet,  ::) yesterday was a bear...anyway...
Now, I don't understand the  "captcha" and/or what I need to address when you referrer it to....

Now, on our human log page, the ones it let through,  it looks like this:
Today at 03:14:36 AM    95.215.36.118            22    22    Yes       Yes    Guest    
June 27, 2011, 11:12:58 PM    188.92.77.196    18    4    Yes       Yes    Guest    
June 27, 2011, 09:47:55 PM    78.47.131.107    22    4    Yes       Yes    Guest    
June 27, 2011, 04:53:57 PM    78.47.131.108    26    4    Yes       Yes    Guest    
June 27, 2011, 03:01:27 PM    68.168.211.143    22    1    Yes       Yes    Guest    
June 27, 2011, 02:45:52 PM    69.80.108.2            9    41    Yes       Yes    Guest    
June 27, 2011, 12:49:37 PM    74.62.161.106    6    1    Yes       Yes    Guest    
June 26, 2011, 09:18:57 PM    72.135.229.207    19    20    Yes       Yes    Guest    

If I am reading this right, They show a threat level of like  22 and the LBA was 4 days ago. These weren't stopped. Should they have been? Should I change the settings, or is it the adjustment I need to put in and it will take care of it?
The settings are the standard ones you have set.

Thanks again! Hope you're having an awesome day!

Title: Re: httpBL
Post by: capitalw on June 28, 2011, 02:58:30 PM
Quote from: Candace69 on June 28, 2011, 08:34:54 AM
Good Morning!!!! :)

Well, I have a questing, I need to make those adjustments you suggested, haven't yet,  ::) yesterday was a bear...anyway...
Now, I don't understand the  "captcha" and/or what I need to address when you referrer it to....

Now, on our human log page, the ones it let through,  it looks like this:
Today at 03:14:36 AM    95.215.36.118            22    22    Yes       Yes    Guest    
June 27, 2011, 11:12:58 PM    188.92.77.196    18    4    Yes       Yes    Guest    
June 27, 2011, 09:47:55 PM    78.47.131.107    22    4    Yes       Yes    Guest    
June 27, 2011, 04:53:57 PM    78.47.131.108    26    4    Yes       Yes    Guest    
June 27, 2011, 03:01:27 PM    68.168.211.143    22    1    Yes       Yes    Guest    
June 27, 2011, 02:45:52 PM    69.80.108.2            9    41    Yes       Yes    Guest    
June 27, 2011, 12:49:37 PM    74.62.161.106    6    1    Yes       Yes    Guest    
June 26, 2011, 09:18:57 PM    72.135.229.207    19    20    Yes       Yes    Guest    

If I am reading this right, They show a threat level of like  22 and the LBA was 4 days ago. These weren't stopped. Should they have been? Should I change the settings, or is it the adjustment I need to put in and it will take care of it?
The settings are the standard ones you have set.

Thanks again! Hope you're having an awesome day!

What is your "really bad" setting? Also, captshas have largely been neutralized by the criminals having humans at the keyboard solving them.

I am experiencing something similar, I have mine set where the "really bad" level is 15 and am getting threat levels in the 50s and even higher making it to captchas, but thankfully not able to prove they are human.

In every case, the information on the users is this:

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; FREE; .NET CLR 1.1.4322)

The log shows hundreds of entries starting with yesterday with the above information and the lowest threat level is in the 40s (again, my "really bad" limit is 15).

I have performed the mod listed earlier in this thread and set it so I can change the number in a few seconds if the mood hits. So I am wondering if there is a new breed of junk on the streets now.

EDIT: Keep in mind that the information (Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; FREE; .NET CLR 1.1.4322) ) can be forged, but this is the common theme on all normally too-high threats that are not being stopped nonetheless.
Title: Re: httpBL
Post by: Candace69 on June 28, 2011, 03:41:53 PM
They are set to the defaults, what would be best to ahve them set at, this is thier current settings:
Number of days to consider good an IP: 90
   
Threat level considered bad: 10

Threat level considered VERY bad: 30
   
Minutes to keep the data in the cache:  5
   
Hours until an IP needs to prove again it's human: 24

   
Title: Re: httpBL
Post by: snoopy_virtual on June 28, 2011, 04:01:42 PM
@Candace69

That's the best settings you can have. The problem is you haven't done the tweak I told you yesterday.

QuoteIf I am reading this right, They show a threat level of like  22 and the LBA was 4 days ago. These weren't stopped. Should they have been?

They should have been stopped because obviously they are dangerous robots.

If they are inside the "Humans log" is because they have proved they are humans (answering the captcha) but they are not humans. They are robots trained to answer that captcha.

If you press the button to "Show extra information" I bet all of them will have a notice saying they have answered the captcha properly.

I told you yesterday to read what we were talking about it last week. From here onwards:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

As you can see (if you read that conversation) that captcha we have in the warning page has been OK for 2 years, but one week ago somebody created a new kind of robots that can answer the questions in the captcha.

To sort it (as I said last week) you need to take your warning.php file and edit 2 lines inside it.

==============

@capitalw

QuoteI am experiencing something similar, I have mine set where the "really bad" level is 15 and am getting threat levels in the 50s and even higher making it to captchas, but thankfully not able to prove they are human.

That's not possible. If your "really bad" level is 15 (I think that's too low by the way, I would leave it at 30) anyway, if it's 15 anybody with more than 15 will never see the captcha.

If anybody with 50 can reach the captcha you have something wrong in your installation.

What other mods you have in your forum?
Title: Re: httpBL
Post by: Candace69 on June 28, 2011, 04:30:38 PM
I did make that adjustment to the page today, I used a weird 3 digit number....So that should clear it up? Thanks!!! I'll watch it from here and see if anything else weird happens....

PS. Had one of our members get "stopped" by one of the honeypots? Don't know exactly, but he  got by it proving he was human, then came in and said thanks for the security!
Title: Re: httpBL
Post by: snoopy_virtual on June 28, 2011, 04:47:55 PM
I see you don't like to read and/or you don't like to search a thread in a forum (or don't know how).

I have already answered hundreds of times half of the questions you ask.  ;D

OK, I will do the search for you. Let me see ...

For example this one may help you:

http://www.simplemachines.org/community/index.php?topic=366399.msg2899348#msg2899348
Title: Re: httpBL
Post by: Candace69 on June 28, 2011, 05:04:33 PM
I'm sorry, I admit I haven't read it all, I try to read as I can, that's how I got through what you told me to do the last time! :)
Oh, and sorry about the question mark, it wasn't really a question, except about whether I said it right,  making sure I called it by the right name  ;D and thanking you for all your help...
Sorry, I know having to explain over and over can be a little frustrating.... I'll try to be better!  ;)

Title: Re: httpBL
Post by: Candace69 on June 28, 2011, 05:10:07 PM
Now I see what you were telling me, I didn't realize it checked us too. I'll make that adjustment, thanks for the link, I didn't know that function was there and now I will use it! I am glad there are guys out there smarter than the ones that try to make our life miserable.
Our forum is totally free to everyone, none of us charge for what we do, we just want to help people and give them a safe place to share and seek help. Thanks so much for all your help!

"PS" - once I made the adjustment today, I don't see anyone else getting through!
Title: Re: httpBL
Post by: capitalw on June 28, 2011, 06:57:36 PM
Quote from: snoopy_virtual on June 28, 2011, 04:01:42 PM

...

That's not possible. If your "really bad" level is 15 (I think that's too low by the way, I would leave it at 30) anyway, if it's 15 anybody with more than 15 will never see the captcha.

If anybody with 50 can reach the captcha you have something wrong in your installation.

What other mods you have in your forum?

I have httpBL, Stop Forum Spam, ReCAPTCHA, and Akismet mods on the forum. All these have been on for over a year.

What happens if the httpBL lookup can't happen? All the ones that did make it to captcha were within the same time periods which I wonder about a fail-soft feature you implemented in case the server can't be reached. SFS, you know, will use yellow flags on new signups if its database can't be reached.

There were several periods yesterday and today where this happened. There were several dozen within a few seconds (I'm talking less than five seconds) time from maybe half a dozen IP addresses when they were able to make it to captcha/warning.

Looking back, it seems that the times they have seemed to have breeched the mod, there were several dozen hitting within a couple seconds all at once.

I admit that the installer may have gone wrong, but I have used this mod for over a year without this happening. Well, until a couple weeks ago, and I really didn't think much about it until today.

At the moment, it is stopping all threat levels over the one I set (10) as it should. Even the ones returning the data I mentioned earlier are being blocked.
Title: Re: httpBL
Post by: snoopy_virtual on June 29, 2011, 05:36:02 AM
That's not normal.

When the servers at Project Honey Pot are down this mod is not supposed to do anything. The mod should let everybody pass when there is no connection with the server, because there is no way of knowing the threat level of each visitor if there is no connection, and I cannot close completely all the forums to all the visitors until their servers are back on line.

But when the servers are working and we know the threat level of each visitor, nobody with a threat level too high should be able to see the captcha.

I will check the logs of all the forums I control to see if I find any other robots doing it. Maybe (as you said) is a new generation of robots we didn't know before.

Anybody else has seen anything like that?

============

With those mods you have you shouldn't have any problems because they are compatible (as far as I know), any way I will check the latest versions of them just to be sure.

Just one question. When you said you have the mod Stop Forum Spam I suppose you mean this one: http://custom.simplemachines.org/mods/index.php?mod=1519

Or did you mean my mod Stop Spammer? http://custom.simplemachines.org/mods/index.php?mod=1547

Both of them do more or less the same job but in a different way, and if you were talking about my mod I won't need to check it (I already know exactly all the code in it).  ;D
Title: Re: httpBL
Post by: Candace69 on June 29, 2011, 03:42:04 PM
HI again, I have one quick question I did try to search and didn't see anything in regards to this...In the settings, does the email have to be the one I used when I opened a honeypot account on their site? I used my email when I opened the account, so it automatically prefilled, but I'd like to change it to one for the site that we use to deal with issues and not my personal site one...Thanks!~

Oh, and since I did that adjustment to my warning page you said, we haven't had any like those get by. Thanks for your help!
Title: Re: httpBL
Post by: capitalw on June 30, 2011, 11:39:18 AM
Quote from: snoopy_virtual on June 29, 2011, 05:36:02 AM
That's not normal.

When the servers at Project Honey Pot are down this mod is not supposed to do anything. The mod should let everybody pass when there is no connection with the server, because there is no way of knowing the threat level of each visitor if there is no connection, and I cannot close completely all the forums to all the visitors until their servers are back on line.

But when the servers are working and we know the threat level of each visitor, nobody with a threat level too high should be able to see the captcha.

I will check the logs of all the forums I control to see if I find any other robots doing it. Maybe (as you said) is a new generation of robots we didn't know before.

Anybody else has seen anything like that?

============

With those mods you have you shouldn't have any problems because they are compatible (as far as I know), any way I will check the latest versions of them just to be sure.

Just one question. When you said you have the mod Stop Forum Spam I suppose you mean this one: http://custom.simplemachines.org/mods/index.php?mod=1519

Or did you mean my mod Stop Spammer? http://custom.simplemachines.org/mods/index.php?mod=1547

Both of them do more or less the same job but in a different way, and if you were talking about my mod I won't need to check it (I already know exactly all the code in it).  ;D

Thanks for the answer. I did mean your MOD Stop Spammer, BTW

duh!.....of the servers were down, it wouldn't return a threat level....<slinks off to hit own head in corner after thinking about it>.....

The ones that pass only seem to come in bunches, and rarely alone.  Several weeks can pass between that happening, so I don't have any real common themes to go on.

After my last post, I put ZBBlock on and that seems to not be clashing with any of the other mods as it is invoked as the very first code run on each page.

If things get strange, I'll report back, thanks again for httpBL!!!
Title: Re: httpBL
Post by: capitalw on June 30, 2011, 11:48:27 AM
Quote from: Candace69 on June 29, 2011, 03:42:04 PM
HI again, I have one quick question I did try to search and didn't see anything in regards to this...In the settings, does the email have to be the one I used when I opened a honeypot account on their site? I used my email when I opened the account, so it automatically prefilled, but I'd like to change it to one for the site that we use to deal with issues and not my personal site one...Thanks!~

Oh, and since I did that adjustment to my warning page you said, we haven't had any like those get by. Thanks for your help!

If you are talking about the httpBL settings, it is the email address humans can get off the warning page to contact you. Snoopy's code turns your email address into a format that bots can't read. It can be whatever address you want.

My site stats show the warning page to be the third most rendered page on the entire site! It is rendered over a thousand times a day. (funny thing; site server stats and httpBL's log disagree on the number of deliveries a day) I have never received one email as a result if that page yet.
Title: Re: httpBL
Post by: snoopy_virtual on June 30, 2011, 01:34:31 PM
@Candace69

I don't know if you have looked at your warning page. There are a couple of links to it at the bottom of the Config page for mod httpBL so you can see how it looks like in both versions (with and without captcha).

As capitalw was saying, the email address you write there is the one everybody is going to see in your warning page, so it's up to you which one you want your visitors to see there.

To decide what email address you are going to use, you need to understand how all this work. Let me see if I can explain it again:

When a guy want to spam internet sites to add everywhere links to their sites, they never do it manually, entering those sites and writing themselves does links.

They used to do that decades ago, when they didn't have all the automated spam programs they have now, but they soon found out that manual process was useless. Too slow. Even somebody clicking and writing very fast cannot spam more than a hundred forums a day (and that would take a lot of clicking and writing). The profit they get is just cents for every post they make so a guy working in a full time basis on that kind of spam process will only make a couple of bucks a day, and of course that's not good at all for them.

What they do now-a-days is to start creating a botnet. Thousands of zombie computers controlled (without the owners knowing it) from one master computer. (For more info on that use google or the wikipedia or similar).

Then they don't need to send the spam themselves. They order from their master computer all the computers inside their botnet to send those spams. And every one of those thousands of computers don't do it manually. They use robots (spambots) that can send thousands of these spam links per second. (Now we are talking business).

To do this botnet they start infecting thousands of computers with a special kind of malware known as "trojans" (technically there are also a lot more of malware programs they can use, but I am trying to simplify it so you can get the picture). These trojans are controlled from the master computer and do everything their master commands them to do.

There are thousand of kinds of these trojans. Some of them can only send spam. Others can only steal VISA card numbers (with pin and/or password). Others can only steal usernames and passwords (from forums and/or from hotmail and/or from facebook, etc). Others can be used only to enter bank sites and steal money. Others can be used to do all of the above plus hundreds of more things. Etc. Etc. As I said there are thousand of kinds of them. (For more info on that use google or the wikipedia or similar).

The problem with these trojans is that they are very difficult to detect. I have seen computers where the owner took it first to a couple of specialists and it had been scanned with a lot of anti-virus and anti-malware programs and all of them said the computer was clean but after I did all the good check-ups I normally do, I found a few trojans doing a lot of bad things. But then again I am a better specialist on this subject than most of them. These trojans can hide from most of the computer technicians, but they cannot hide from me.  ;D

In fact sometimes the only way of knowing you have a trojan sending spam from your computer without your knowledge is when you find out your IP is in the list inside Project Honey Pot.

Imaging one of your friends (or anybody else who visit your site often) has a trojan in their computer (the kind of trojans sending spam to forums). If this trojan has already fell in one honey pot, your friend's IP will already be inside Honey Pot's database. If the Threat Level this IP has is high enough, your friend won't be able to see your forum. They will see your warning page instead.

So they will read there a small explanation telling them to try to get a new IP to see if that sort the problem.

Sometimes that will be enough, but if they have a trojan, even if they get a new IP won't sort the problem, because the trojan will continue sending spam and this new IP will end up inside Honey Pot's database again in a matter of hours.

Of course you can add your friend to one of the "trusted" groups you have in your forum, so mod httpBL will never check their IP, but that won't sort the problem either. They will be able to visit your forum undisturbed, but the trojan will still be there.

That's why I never do that in my forum with my friends. When they send me an email saying they always see the warning page when they try to visit my forum (even after resetting the IP a couple of times) and ask me if I can do something about it, I always tell them they are (100% sure) infected and ask them first to check their computers with everything they can to kill the trojans in it. And (if they find nothing) ask them to let me clean their computers for them.

Of course if they are very good friends (or family) I do that for free, but for the rest of them I need to charge them something, because usually that's a tedious job.

Now then, coming back to your question about what email address you should put there, I will say the best option will be to put there the email address of the best computer technician you have in your group (if you have anyone there with enough knowledge about viruses, trojans, spammers, etc). If you haven't got anyone, just write any of your email addresses and every time somebody ask you for help, re-direct them to the best computer technician you know.

===============

@capitalw

Quote from: capitalw on June 30, 2011, 11:48:27 AM
I have never received one email as a result if that page yet.

That will depend on the amount of humans that see the warning page. If only robots see normally that page, I don't think they are going to bother asking you for help.  ;D

If you have already added all your normal forum users to "trusted" groups they will never see the warning page even if their computer is infected, so they will never send you an email. So if that's the case, the only humans that maybe can see your warning page every now and then will be strangers that don't know you very well and they may be too scared to send you an email.

QuoteI put ZBBlock on and that seems to not be clashing with any of the other mods

I don't know ZBBlock. I will check it out to see what it does and will let you know.
Title: Re: httpBL
Post by: Candace69 on June 30, 2011, 02:45:18 PM
I am learning a ton from you, thank you for sharing information!
After reading your last post, I have a question. I set members to "trusted", as you said I could, not realizing the implications.
I have a member the one that was having issues and Honeypot has his IP listed as this:
http://www.projecthoneypot.org/ip_91.210.176.253
From reading what you said, am I understanding correctly that his computer might have a trojan on it?

Title: Re: httpBL
Post by: capitalw on June 30, 2011, 10:05:08 PM
Quote from: Candace69 on June 30, 2011, 02:45:18 PM
I am learning a ton from you, thank you for sharing information!
After reading your last post, I have a question. I set members to "trusted", as you said I could, not realizing the implications.
I have a member the one that was having issues and Honeypot has his IP listed as this:
http://www.projecthoneypot.org/ip_91.210.176.253
From reading what you said, am I understanding correctly that his computer might have a trojan on it?

Candace, try plugging his IP address into Stop Forum Spam (http://www.stopforumspam.com/), you may find that interesting as well. Currently there are only two entries for his IP address. I certainly would not rule out his computer being infected....

Snoopy, ZBBlock has really made a difference when used with httpBL and SFS. I have found that all three together have made a tremendous difference in lightening my workload rejecting spammers! ZBBlock is designed to intercept the bad guys before they get access to the database or even onto the site, but IP addresses not on the SFS database are caught by Project Honeypot and httpBL's use of the honeypot. I have now gone 48 hours with very little hassle thanks to all three working together.

I think ZBBlock does report newly detected bad IP addresses to some honeypot, but I haven't dug int the code enough to see which one; it may be the same honeypot you have httpBL pull data from.
Title: Re: httpBL
Post by: snoopy_virtual on June 30, 2011, 10:46:37 PM
@Candace69 Yes, it looks like your friend got a trojan.

The best way to be sure is to take him out of the trusted group, ask him to get a new IP and visit again your forum. If he's got a trojan, after a few hours (or a couple of days at most) he will be seeing again the warning page.

To be really sure he can even do that a couple of times more (resetting the IP and visiting again the forum). If every time he changes the IP he end up after a few hours (or days) in the warning page, then it's 100% sure he's got a trojan.

He can also try with this program: http://www.bothunter.net/

That program won't clean his computer, but will tell him for sure if his computer is part of a botnet or not and will help a good technician to find and sort the problem (if there is any).

===========

@capitalw OK, I see what ZBBlock does. The problem is I never use any of those kind of programs before reading all the code to see exactly what it does (and changing small parts of it if I think I need to) and that's a really long one, so I don't know when I will have time to check it fully.

I have seen some of those programs going too far stopping visitors (even innocent ones) and I prefer to be really sure before using them.

Anyway, as far as I can see it's very similar to the one I already use for that (Crawltrack).
Title: Re: httpBL
Post by: capitalw on July 02, 2011, 01:25:10 PM
I agree about stopping innocent visitors who are unlucky enough to have been assigned a dynamic IP address just reported as hostile being blocked by ZBBlock. However my logs show that most of ZBBlock's catches are legit with SQL injection attempts being logged with the visit. Most of the others show signs of alphabet style password attempts (now they get stopped at 3) from known bad sources.

I finally had 1 rogue signup this morning from an IP address not already on SFS's database. The email address was listed, but not the IP (naturally I reported the user). The httpBL log is still showing that several an hour are catching its wrath and not making it past your captcha!!
Title: Re: httpBL
Post by: butchs on July 02, 2011, 08:58:10 PM
ZBBlock banned me when I tried to access the site.  While supporting one of my mods a user asked me to what this one file was.  It was his spam trap, so now I have a Project Honey Pot threat level of 1.  Because of my enormous threat level, I can not access the ZBBlock home site via normal means.
Title: Re: httpBL
Post by: Wizzlefits on July 03, 2011, 12:06:16 AM
LMAO!
You spammer! hehehehe!
Title: Re: httpBL
Post by: Angie on Dialysis on July 03, 2011, 02:38:33 AM
I had an issue once on some site (not that site though .. only thing I got there was "You have exceeded the maximum number of registration attempts for this session. Please try again later." haha) where I was blocked for testing but I got whitelisted.
Title: Re: httpBL
Post by: butchs on July 03, 2011, 11:22:32 AM
Quote from: Wizzlefits on July 03, 2011, 12:06:16 AM
LMAO!
You spammer! hehehehe!

It takes one to know one.  :)
Title: Re: httpBL
Post by: SD-X on July 03, 2011, 11:27:46 PM
Hey guys, just wanted to throw this out there that there's a specific human-ran bot IP address that's attacking multiple of my forums across the internet of different softwares, completely unrelated, and it's getting past this mod. Apparently it's human-ran because it attempts to make multiple accounts a day and it always gets good answers on httpBL's questions, so I figured I'd throw it out there since it's worth a routeban. This annoying bot tries to register multiple accounts all day, every day, and even after being banned it still tries to evade, so I had to eventually routeban it altogether. It's in Stop Spammer's database, but I'm not sure about httpBL's, although it doesn't seem to matter since it's bypassing everything regardless. Other people I know with and without these mods are dealing with attacks from it too. Spread the word and keep yourselves spam-free. These bots are getting smarter ;)

The IP route in question is: 109.230.*.*
Title: Re: httpBL
Post by: busterone on July 03, 2011, 11:35:52 PM
That issue has been addressed earlier with the fix that snoopy posted for a temporary workaround. That IP range is one of several that learned how to get around it. Look here for the manual edit to fix that issue. Snoopy is working on an update that will fix it, but it is not ready yet.   :)
http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023
Title: Re: httpBL
Post by: SD-X on July 03, 2011, 11:43:30 PM
Wow, I don't know how I missed that, thanks man!

As for that specific IP, I have him banned so I'll hold off on the workaround since I have tons of mods already blocking him, but that Super Anti-Spam mod Snoopy mentioned in the Stop Spammer topic may be worth looking into now ;)
Title: Re: httpBL
Post by: busterone on July 03, 2011, 11:51:13 PM
an .htaccess block of 109.230 will stop several from that range that I also had getting past the warning page, but there are several other ranges that have demonstrated that they can get by it as well.  It may be better to go ahead and make the fix just in case. Snoopy is rather busy, so the updated mod may not be extremely soon.  They are getting the word out on the spammer networks, so there will be more as time passes.
Title: Re: httpBL
Post by: SD-X on July 03, 2011, 11:54:06 PM
Quote from: busterone on July 03, 2011, 11:51:13 PM
an .htaccess block of 109.230 will stop several from that range that I also had getting past the warning page, but there are several other ranges that have demonstrated that they can get by it as well.  It may be better to go ahead and make the fix just in case. Snoopy is rather busy, so the updated mod may not be extremely soon.  They are getting the word out on the spammer networks, so there will be more as time passes.

I'll keep an eye on it and may do that soon if it gets worse. So far I have 5 different spam-prevention mods installed and they seem to be working very well together, but if things pick up further, I'm totally willing to upgrade this farther. I'm not a fan of spammers and I'm totally willing to do whatever it takes to stop AND prevent them ;)
Title: Re: httpBL
Post by: busterone on July 04, 2011, 12:00:55 AM
Five mods huh?  I hope it doesn't slow your forum down too much. 
I have cut it to only 2 mods and verification questions. No spammers for months.
Even though several got past the warning page for httpBL, they still could not register. They couldn't answer the verification questions. Occasionally, some did answerthe verification questions, but Stop Spammer then nailed them.   :D

Happy hunting.   :)
Title: Re: httpBL
Post by: SD-X on July 04, 2011, 12:05:59 AM
Quote from: busterone on July 04, 2011, 12:00:55 AM
Five mods huh?  I hope it doesn't slow your forum down too much. 
I have cut it to only 2 mods and verification questions. No spammers for months.
Even though several got past the warning page for httpBL, they still could not register. They couldn't answer the verification questions. Occasionally, some did answerthe verification questions, but Stop Spammer then nailed them.   :D

Happy hunting.   :)

Ya, no slow downs here. Apologies though, thought it was five, but I guess it was actually four! :)

I'm using:
Mod httpBL
Stop Spammer
ReCaptcha For SMF
Bot Buster

Considering adding more just for the hell of it if there are no issues since the extra protection can't hurt, but I'd rather hold off if/until that Super Anti-Spam mod is being developed, assuming they are ever able to make it. I'd love to push that to it's limits!
Title: Re: httpBL
Post by: justjim on July 04, 2011, 08:17:47 AM
When installing I get this error

./index.php   test failed

I'm using 1.1.14 with a custom theme (black Phoenix3)

I've seen this error on some of the other packages. Suggestions please?

Did I overlook something in the tutorial, or is there a manual entry to be made?

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on July 04, 2011, 08:29:54 AM
Quote from: SugarD-x on July 04, 2011, 12:05:59 AM
I'd rather hold off if/until that Super Anti-Spam mod is being developed, assuming they are ever able to make it. I'd love to push that to it's limits!

I think you read my post wrongly or I didn't explained right when I talked about that idea.

What I said was:

Quote from: snoopy_virtual on July 02, 2011, 11:36:41 AM
... I still have (hidden somewhere in my long TODO list) a plan to contact all the anti-spam modders to work together in a big "Super Anti-Spam mod" ...

I have remarked the part "hidden somewhere in my long TODO list" because that idea is in fact underneath a lot of more urgent things to do, so I don't even know if I will ever do it or not.

And it's even worst when there are mods (as for example "bad-behavior" or "Forum Firewall") that have been done on purpose in a way that is not compatible with "httpBL" or "Stop Spammer".

And it's very difficult to collaborate with other modders when, every time you tell them they have made a mistake somewhere, they get angry with you and accuse you "to be a troll" or "to be there just trying to steal ideas" or "to be a Spam Bot Operator" or something like that.

Luckily not all the modders are like that and I have a good relation with almost all the rest of them.

Anyway the possibility of ever doing this "Super Anti-Spam mod" will depend mostly if it's needed for Wedge or not. I think I have already explained this a few times already, but let me try to clarify it a little more:

Once Wedge is finished we will see if the spammers can attack a Wedge forum or not with all the security measures Arantor is writing in the core of the program. My personal opinion is that we won't need anti-spam mods for Wedge, but we won't be sure about this until Wedge is finished.

If after some tests we decide we need some anti-spam mods for Wedge I will contact all the anti-spam modders working with me there and we will try to do that "Super Anti-Spam mod".

Once that is finished (if we ever do it) we may port that mod to SMF or give permission to somebody to do it (if all the co-authors agree on that).

So (as you can see) this "Super mod" may not be done ever or (if it's ever done) it can take a lot of months.

Quote from: justjim on July 04, 2011, 08:17:47 AM
When installing I get this error

./index.php   test failed

I'm using 1.1.14 with a custom theme (black Phoenix3)

I've seen this error on some of the other packages. Suggestions please?

Did I overlook something in the tutorial, or is there a manual entry to be made?

Thanks

That means you have other mod that has changed the part of index.php that this mod is trying to change, so you will need to edit that file manually.

If you don't know how to do that, give me a list of the mods you have installed in your forum and send me a copy of your file index.php (the way you have it just now) and I will modify it for you.

Is that the only error you are getting when trying to install the mod?
Title: Re: httpBL
Post by: justjim on July 04, 2011, 08:57:17 AM
Thank you for your help.

The list of mod's is :
EmailValidator
Add Favicon.ico Support
Group Moderators
reCAPTCHA for SMF
Stop Spammer
Login Detector
PM On Registration
Show Local Url Titles
PaypalDonations

Plus the updates
Title: Re: httpBL
Post by: snoopy_virtual on July 04, 2011, 09:44:40 AM
As far as I know there are no issues at all between those mods there and mod httpBL.

The problem is you haven't done the upgrades of your forum properly. That file you have sent me there is from SMF 1.1.7, no SMF 1.1.14, so it's totally obsolete. That's why you are also having problems with other packages.

To stop having problems you need to do a full upgrade properly done, following these steps:

1.- Go to the proper place (http://download.simplemachines.org/index.php?archive;version=62) and download the SMF 1.1.14 - upgrade original package.

2.- Put your forum in "maintenance mode" so nothing get changed in the database while you are working on this upgrade.

3.- Un-install all the mods you have.

4.- Upload all the files and folders inside the SMF 1.1.14 - upgrade package to your forum overwriting all the files there (to be sure there are no more obsolete files left).

5.- Visit with your browser the file upgrade.php (it's one of the files inside the package you have just uploaded to your forum) and execute it to be sure everything inside your database is up-to-date as well.

6.- When you finish with that file upgrade.php delete it from the server together with all the files related to it (all the files like "upgrade.whatever.sql").

7.- Install again all the mods you have.

8.- Take your forum out of the "maintenance mode".

9.- Relax, have a beer and be happy.  ;D

After you have upgraded your forum properly try to install again mod httpBL and you will see that now you have no problems at all. Let me know if you have any problem or if you didn't understand any of those steps.
Title: Re: httpBL
Post by: SD-X on July 04, 2011, 09:51:48 AM
Apologies, I knew you had a long list of other stuff, which is why I added the "assuming they are ever able to make it" part in there. It's just a hope more than anything. :)
Title: Re: httpBL
Post by: justjim on July 04, 2011, 10:17:59 AM
Quote from: snoopy_virtual on July 04, 2011, 09:44:40 AM
As far as I know there are no issues at all between those mods there and mod httpBL.

The problem is you haven't done the upgrades of your forum properly. That file you have sent me there is from SMF 1.1.7, no SMF 1.1.14, so it's totally obsolete. That's why you are also having problems with other packages.

To stop having problems you need to do a full upgrade properly done, following these steps:

1.- Go to the proper place (http://download.simplemachines.org/index.php?archive;version=62) and download the SMF 1.1.14 - upgrade original package.

2.- Put your forum in "maintenance mode" so nothing get changed in the database while you are working on this upgrade.

3.- Un-install all the mods you have.

4.- Upload all the files and folders inside the SMF 1.1.14 - upgrade package to your forum overwriting all the files there (to be sure there are no more obsolete files left).

5.- Visit with your browser the file upgrade.php (it's one of the files inside the package you have just uploaded to your forum) and execute it to be sure everything inside your database is up-to-date as well.

6.- When you finish with that file upgrade.php delete it from the server together with all the files related to it (all the files like "upgrade.whatever.sql").

7.- Install again all the mods you have.

8.- Take your forum out of the "maintenance mode".

9.- Relax, have a beer and be happy.  ;D

After you have upgraded your forum properly try to install again mod httpBL and you will see that now you have no problems at all. Let me know if you have any problem or if you didn't understand any of those steps.
Thanks
I bothered never looked in that file, because on my Admin page it shows this

Version Information:
Forum version: SMF 1.1.14
Current SMF version: SMF 1.1.14
(more detailed)

I will do as instructed and get back to you.

Thanks again
Title: Re: httpBL
Post by: snoopy_virtual on July 04, 2011, 11:29:24 AM
Quote from: SugarD-x on July 04, 2011, 09:51:48 AM
Apologies, I knew you had a long list of other stuff, which is why I added the "assuming they are ever able to make it" part in there. It's just a hope more than anything. :)

Don't need to apology. Everybody has the right to have a wish list.

The musicians in Spain we always tell the audience "You can ask us to play any song you want and then of course we will play any song we want".  ;D

Quote from: justjim on July 04, 2011, 10:17:59 AM
I bothered never looked in that file, because on my Admin page it shows this

Version Information:
Forum version: SMF 1.1.14
Current SMF version: SMF 1.1.14
(more detailed)

If you had pressed the link saying "more detailed" (and then expand all the links inside it) you would have seen exactly which ones of your files were obsolete.
Title: Re: httpBL
Post by: SD-X on July 04, 2011, 11:47:36 AM
Quote from: snoopy_virtual on July 04, 2011, 11:29:24 AM
Quote from: SugarD-x on July 04, 2011, 09:51:48 AM
Apologies, I knew you had a long list of other stuff, which is why I added the "assuming they are ever able to make it" part in there. It's just a hope more than anything. :)

Don't need to apology. Everybody has the right to have a wish list.

The musicians in Spain we always tell the audience "You can ask us to play any song you want and then of course we will play any song we want".  ;D
Love that quote. Very well put! :D
Title: Re: httpBL
Post by: justjim on July 04, 2011, 09:19:29 PM
Quote from: snoopy_virtual on July 04, 2011, 11:29:24 AM

Quote from: justjim on July 04, 2011, 10:17:59 AM
I bothered never looked in that file, because on my Admin page it shows this

Version Information:
Forum version: SMF 1.1.14
Current SMF version: SMF 1.1.14
(more detailed)

If you had pressed the link saying "more detailed" (and then expand all the links inside it) you would have seen exactly which ones of your files were obsolete.

I manually installed the upgrade
I ran file check utility and came up with the following errors

/var/www/vhosts/***.com/httpdocs/simplemachinesforum/Themes/default/httpBL.template.php
File does not end with ?>
/var/www/vhosts/***.com/httpdocs/simplemachinesforum/warning.php
File does not end with ?>
/var/www/vhosts/***.com/httpdocs/simplemachinesforum/Sources/httpBL_Subs.php
File does not end with ?>
/var/www/vhosts/***.com/httpdocs/simplemachinesforum/Sources/httpBL_Config.php
File does not end with ?>

The mod does work, but there are two errors on the warning page.
There are no errors in the mod log or the forum error log.

It would appear that spaces were added to some of the files, But they cannot be modified by me. I uploaded the zip to the package manager from my desktop.

Suggestions?

Outstanding Mod, great job!
Title: Re: httpBL
Post by: snoopy_virtual on July 05, 2011, 09:44:35 PM
Sorry I didn't answered you earlier. I have been out all day and just arrived home.

QuoteFile does not end with ?>

The PHP manual doesn't say nowhere (or at least it didn't say it the last time I checked) that a PHP file needs to be ended up with a ?> sign. In fact there are lots of sites in internet that recommend not to add that sign at the end, but also there are a lot of sites that claim is better to do it, so I am still not sure if it's better to have it or not.

In fact (because of this indecision I have) in my personal site, half of the PHP files end up with the ?> sign and half of them no. One of this days I will need to make my mind and either add that sign to all the files or delete it from all of them.

Anyway the last time I checked the manual to write mods for SMF I didn't see anything supporting one opinion or the other, so I didn't know they had already decided to consider a mistake to have a file without that sign.

Anyway that is not a big deal, as it is like that in all the forums using this mod and nobody have ever reported an error because of that.

QuoteThe mod does work, but there are two errors on the warning page.

That's a lot more problematic and need to be sorted ASAP. Could you send me a PM with a link to your warning page to see if I can see those 2 errors?

And anyway, when you go to Admin => httpBL => Config do you see a green sign stating the mod is working properly?
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 12:18:44 AM
Hey Snoopy, is there any sort of local whitelisting available? I have one user that sometimes gets flagged by the warning page, which is annoying for him, and recently got a user who has the same IP as a spammer from 2 years ago, so it won't even let him access the forum :P
Title: Re: httpBL
Post by: busterone on July 07, 2011, 12:23:19 AM
Look in Admin-permissions. Click edit for the membergroup that you want to whitelist- (mine is the regular members group)
Look for the permission- Never be checked by mod httpBL
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 12:29:53 AM
Quote from: busterone on July 07, 2011, 12:23:19 AM
Look in Admin-permissions. Click edit for the membergroup that you want to whitelist- (mine is the regular members group)
Look for the permission- Never be checked by mod httpBL
Well the issue is that I only want to whitelist a user rather than a member group because if he changes membergroups, it will cause him to be checked again, and having my regular members one whitelisted would whitelist any spammer that gets through the initial check.
Title: Re: httpBL
Post by: busterone on July 07, 2011, 12:34:42 AM
True. I never get any in, so I haven't thought about it that way.
What you can do is create a new non post count group and add that group to this member as his secondary member group through his profile- account settings.  Only you will know he is in that group. You can add a member to multiple secondary groups and it doesn't display to them.
Give only that new group whitelist permission. If he is the only one in the group, then only he will get whitelisted.  :)
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 12:38:17 AM
I guess that will work. A bit unfortunate method, but not bad for a temporary workaround.
Title: Re: httpBL
Post by: busterone on July 07, 2011, 12:44:52 AM
That would be the best way. You could even name the group httpBl whitelist or something similar. Any people that come along in the future with the same issue could also be added to that group. That is the beauty of having a secondary group. I have 7 extra non post count groups. Some members are in several of them.  Each group has different access and extra permissions that I don't allow the normal members.
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 01:18:46 AM
Well my personal issue is that I have a lot of membergroups already, so I'm trying to avoid adding more. It's a great workaround, but honestly it would be nice if it was set to check some kind of exceptions list, even as text, for IP's that are exceptions, or usernames. It's a bit of a disappointment that I have to create a whole membergroup to avoid 2 people being flagged :P
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2011, 06:08:05 AM
Project Honey Pot already has a way of whitelisting individual computers. That's why I didn't add that to the program.

They just need to know first their IP and visit Project Honey Pot from the computer they want to whitelist.

Let's say that their IP is 90.162.44.206. They will need to visit http://www.projecthoneypot.org/ip_90.162.44.206 and they will get a list of all the bad things that IP has been doing.

At the same time, on the left bar of the page, they will see a sign saying: "You are connecting from 90.162.44.206 which qualifies you to submit this IP for automatic whitelisting." They will need to press that link and write the reasons why they think that IP need to be whitelisted (normally something like: "That's a dynamic IP. Used to belong to a spammer ages ago, but it's mine now" or anything similar).

Of course, if they have a trojan that is sending spam all day long from that computer, they will be again considered spammers. In that case they will need to clean the computer properly before whitelisting it.
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 06:10:18 AM
Quote from: snoopy_virtual on July 07, 2011, 06:08:05 AM
Project Honey Pot already has a way of whitelisting individual computers. That's why I didn't add that to the program.

They just need to know first their IP and visit Project Honey Pot from the computer they want to whitelist.

Let's say that their IP is 90.162.44.206. They will need to visit http://www.projecthoneypot.org/ip_90.162.44.206 and they will get a list of all the bad things that IP has been doing.

At the same time, on the left bar of the page, they will see a sign saying: "You are connecting from 90.162.44.206 which qualifies you to submit this IP for automatic whitelisting." They will need to press that link and write the reasons why they think that IP need to be whitelisted (normally something like: "That's a dynamic IP. Used to belong to a spammer ages ago, but it's mine now" or anything similar).

Of course, if they have a trojan that is sending spam all day long from that computer, they will be again considered spammers. In that case they will need to clean the computer properly before whitelisting it.
Damn, that's unfortunate in my case then because the user is "computer retarded", so to speak. Would be nice if they added a way for website/forum administrators to submit it too :P
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2011, 06:22:23 AM
If they add something like that then anybody would be able to whitelist anybody and spambots creators will be able to whitelist all their spambots.

The system they have is robots proof. Only humans connecting from the computer they want to whitelist can do it and I think is the best possible system.

If that user is "computer retarded" I suppose his computer must be full of viruses and trojans. I clean around 50 computers a month and normally, when the user is a normal one, they have only one or 2 viruses, but when the user is "computer retarded" they normally have a minimum of 30 viruses or more. I even saw one with more than 800 viruses. I recommended that guy to leave the computer the way it was (without cleaning it), buy a new one and send the old one to the Guiness Book.  ;D
Title: Re: httpBL
Post by: SD-X on July 07, 2011, 06:33:07 AM
Quote from: snoopy_virtual on July 07, 2011, 06:22:23 AM
If they add something like that then anybody would be able to whitelist anybody and spambots creators will be able to whitelist all their spambots.

The system they have is robots proof. Only humans connecting from the computer they want to whitelist can do it and I think is the best possible system.

If that user is "computer retarded" I suppose his computer must be full of viruses and trojans. I clean around 50 computers a month and normally, when the user is a normal one, they have only one or 2 viruses, but when the user is "computer retarded" they normally have a minimum of 30 viruses or more. I even saw one with more than 800 viruses. I recommended that guy to leave the computer the way it was (without cleaning it), buy a new one and send the old one to the Guiness Book.  ;D
Hahaha...ya, makes sense, and I do see what you mean. What I was referring to though would include posting an explanation just as that specific user does, just have more scrutiny on the explanation. :)
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2011, 06:48:29 AM
Quote from: justjim on July 04, 2011, 09:19:29 PM
The mod does work, but there are two errors on the warning page.

I was watching your warning page yesterday all day long and today again a couple of times and cannot see any error nowhere. I refreshed the page a lot of times, I answered the questions also a few times (even some of them answering wrong to see what happened) and all the times everything worked as expected. Where do you see the errors?

I would change a small detail in the design though. I see at the top of your warning page you have put your logo, but it has a few grey lines at the right and the left that are not very nice. If you want to make those grey lines disappear, just look inside your warning page for the tag saying:


<div id="warn_logo" class="catbg">


and take away the class="catbg" part (that's the one responsible for your grey lines) leaving it just like:


<div id="warn_logo">


============

I have been checking your forum anyway and I have seen that it's only in English, so I don't understand why you have your warning page in English and Spanish. If all your members only speak English I would change that as well (you have a button to do it in the httpBL config page).

============

Another mistake I have seen (and this is an important one) is that you haven't added the links to the Honey Pot in the Theme you are using.

Go to the tutorial I wrote:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english

Read the part: "Step 8 - Adding links to the honey pot".

Now go inside your forum to the folder /Themes/themea/, look for the file index.template.php and add those links there.
Title: Re: httpBL
Post by: justjim on July 07, 2011, 09:26:33 AM
Quote from: snoopy_virtual on July 07, 2011, 06:48:29 AM
Quote from: justjim on July 04, 2011, 09:19:29 PM
The mod does work, but there are two errors on the warning page.

I was watching your warning page yesterday all day long and today again a couple of times and cannot see any error nowhere. I refreshed the page a lot of times, I answered the questions also a few times (even some of them answering wrong to see what happened) and all the times everything worked as expected. Where do you see the errors?

I would change a small detail in the design though. I see at the top of your warning page you have put your logo, but it has a few grey lines at the right and the left that are not very nice. If you want to make those grey lines disappear, just look inside your warning page for the tag saying:


<div id="warn_logo" class="catbg">


and take away the class="catbg" part (that's the one responsible for your grey lines) leaving it just like:


<div id="warn_logo">


============

I have been checking your forum anyway and I have seen that it's only in English, so I don't understand why you have your warning page in English and Spanish. If all your members only speak English I would change that as well (you have a button to do it in the httpBL config page).

============

Another mistake I have seen (and this is an important one) is that you haven't added the links to the Honey Pot in the Theme you are using.

Go to the tutorial I wrote:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english

Read the part: "Step 8 - Adding links to the honey pot".

Now go inside your forum to the folder /Themes/themea/, look for the file index.template.php and add those links there.
Thanks for you input, and will follow your instructions.
It is odd however that the error on the warning page did not show up in your browser (unless it is supposed to apprea that way -  this is what I see

For more information, please contact:
info [at] spywarehammer [dot] com


Thanks once again for your help and a great mod.
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2011, 09:57:40 AM
Quote from: justjim on July 07, 2011, 09:26:33 AM
It is odd however that the error on the warning page did not show up in your browser (unless it is supposed to appear that way -  this is what I see

For more information, please contact:
info [at] spywarehammer [dot] com


That's not a mistake. That's the way I want it to be. Please remember that very few humans will ever see your warning page. Most of them will be spam-bots and if they see in any page something like [email protected] they will collect that address for their database and start sending spam to it in a few seconds.

So I wrote it in a way that robots cannot understand but humans can (I hope).
Title: Re: httpBL
Post by: Gandolforf on July 08, 2011, 06:44:36 AM
I installed httpBL yesterday, and I already love it!
Thank you very much for your work.
Title: Re: httpBL
Post by: snoopy_virtual on July 08, 2011, 09:56:35 AM
You're welcome  ;)
Title: Re: httpBL
Post by: SD-X on July 08, 2011, 10:00:59 AM
Quote from: snoopy_virtual on July 08, 2011, 09:56:35 AM
You're welcome  ;)
Actually you know what, now that it's been mentioned, I would like to thank you as well for this and your StopSpammer mod.

Thank you. :)
Title: Re: httpBL
Post by: snoopy_virtual on July 08, 2011, 10:10:49 AM
You're welcome too  ;)
Title: Re: httpBL
Post by: Kolya on July 08, 2011, 02:53:32 PM
This mod is really well written and worth it. Thank you a lot for the work you put in it.

One area for improvement I see is the math question. It's long clear that bots are often let into sites by human operators. Those won't be foiled by a simple math task.

SMF actually provides a better solution: Custom verification questions. These can be set up to apply to the audience of a specific forum, eg a game forum will ask questions about the game's content.

This is much safer, since the trouble of finding the correct answer is usually too much even for human bot operators and they just go on to an easier target.

Since this function already exists in SMF it would be a really great mod if httpBL would make use of the verification questions or allow to set up custom questions of its own.
Title: Re: httpBL
Post by: snoopy_virtual on July 08, 2011, 10:19:35 PM
Hi Kolya

OK, let me see. You're a mind reader or something?

I have already told a lot of people I was working in a new idea to change the maths questions in the warning page for something a lot more secure, but I don't remember telling anybody exactly what I was working on.

That's exactly what I'm doing.  ;D
Title: Re: httpBL
Post by: Sea Mac on July 09, 2011, 12:07:25 AM
Will that work with both the 1.1.14 and 2.0 branches?
Title: Re: httpBL
Post by: snoopy_virtual on July 09, 2011, 12:12:11 AM
Well, I am doing it first for Wedge, but after that it will be of course for the latest versions of SMF.

No point on doing any work for obsolete versions.
Title: Re: httpBL
Post by: Kolya on July 09, 2011, 06:27:31 AM
@snoopy_virtual: I'm looking forward to a good mod becoming even better. :)
Title: Re: httpBL
Post by: Inti31 on July 12, 2011, 04:28:49 PM
i installed it to my testforum and opened the registration again - works fine - 2 IPs are directly listed... :)
Title: Re: httpBL
Post by: cyberdyne on July 13, 2011, 11:56:11 AM
I installed the v1.1.14 upgrade a few days ago and thought everything was fine with httpBl because I was still seeing the httpBl 'warning.php' page being called in my server logs. However I've just attempted to view the httpBl settings via my forum menu and received this error:
QuoteUnable to load the 'httpBL' template.

I've check my ProjectHoneyPot settings and all is well there, I just cannot get into the config/logs pages of my forum httpBl.

Any help appreciated.
Thanks
Title: Re: httpBL
Post by: snoopy_virtual on July 13, 2011, 12:53:58 PM
I don't really understand it.

I have already updated some of my forums to 1.1.14 and mod httpBL works OK in all of them.

I have also checked the differences between 1.1.13 and 1.1.14 and there is nothing there that could interfere with mod httpBL, so it cannot be that.

Do you remember exactly when was the last time you got into the config/logs pages of your forum httpBL without problems?

Do you remember anything else you may have done (a new mod, some changes somewhere in your forum) since that time?

Anyway, the quickest solution I can think is to uninstall mod httpBL and install it again. If you get any kind of error message during any of those processes take a note of the message and don't continue with the process. Let me know exactly what it says, because then we will know what file is interfering with the mod and how.

If there are no errors during uninstall and reinstall it should work properly after you finish that.

Let me know if it doesn't.
Title: Re: httpBL
Post by: cyberdyne on July 13, 2011, 01:02:45 PM
Thanks for your quick reply.
It may be related to a theme change I made. I had some theme issues so restored an old copy. I'm just checking through all the files now.

Quote1.   Execute Modification   ./Sources/ManagePermissions.php   Test failed
2.   Execute Modification   ./Sources/Subs.php   Test failed
3.   Execute Modification   ./index.php   Test failed
4.   Execute Modification   ./SSI.php   Test failed
5.   Execute Modification   ./Themes/default/index.template.php   Test failed
6.   Execute Modification   ./Themes/default/Who.template.php   Test failed
11.   Execute Modification   ./Themes/default/languages/Modifications.english-utf8.php   Test failed
12.   Execute Modification   ./Themes/default/languages/Modifications.english_british-utf8.php   Test failed

I'm checking the above manually right now
Title: Re: httpBL
Post by: snoopy_virtual on July 13, 2011, 01:28:20 PM
Yep. The best thing will be to uninstall it manually (using the parser) and install if afresh.

Or check manually the changes that the installation should do (with the parser) to correct the lines broken.

Both of them should work.
Title: Re: httpBL
Post by: cyberdyne on July 13, 2011, 02:00:43 PM
OK all fine, restored a backup and all is well. Seems some changes I made to my theme resulted in old, non-edited, files being present.

Many thanks
Title: Re: httpBL
Post by: snoopy_virtual on July 13, 2011, 05:43:22 PM
No problem.  ;)
Title: Re: httpBL
Post by: Inti31 on July 14, 2011, 04:49:47 PM
maybe a stupid question...
I sucessfully installed httpbl and it works...

Now I logged of and opened the warning page directly...

I entered then the result first time - fine...
I entered the other result and clicked on send:

What should happen next? Which page is next? I got these 2 error lines:
Warning: Cannot modify header information - headers already sent by (output started at /home/syscp/webs/<testforumID>/smf/Sources/Subs-WikiBBC.php:48) in /home/syscp/webs/<testforumID>/smf/Sources/httpBL_Subs.php on line 128

Warning: Cannot modify header information - headers already sent by (output started at /home/syscp/webs/<testforumID>/smf/Sources/Subs-WikiBBC.php:48) in /home/syscp/webs/<testforumID>/smf/warning.php on line 218

Any suggestion? I don't think that the wikibbc-mod is the cause...

I've already installed 66 mods and all work well - this is the only error message I received...

cheers Inti31
Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2011, 06:33:08 PM
Hi Inti31

Obviously wikibbc-mod is not compatible with mod httpBL.

Before we check possible solutions let me try to explain a little how the warning page works.

Nobody it's supposed to go straight into your warning page, because you are the only one who knows where it is, so you are the only one who may visit it (going straight into it) just to check the design or something like that.

The rest of the humans who may visit that page will be humans coming from somewhere inside your forum.

For example. Imagine that I have a suspicious IP and I try to enter any page in your forum. For example I go to www.yourforum.com/index.php?topic=345

As I have a suspicious IP, mod httpBL (instead of letting me see topic 345) will redirect me to the warning page, but will keep a note of the page I wanted to see in the first place.

If I answer the questions properly (proving I am a human) the mod will redirect me back to the page I wanted to see.

But when you go straight into your warning page (instead of going there redirected by the mod) there is no page to go back to. You are supposed to go there just to see the design (in case you want to change something in the way that page looks like) but if you answer the questions and ask the mod to redirect you to the page you were coming from, the mod would get mad, as there is no page to redirect you to.

To sort this problem I added an exception inside the warning page. If there is no page to redirect you to, the mod will redirect you to the home page of your forum. Something like just www.yourforum.com/ with nothing else.

So I suppose this answer your first question:

QuoteWhat should happen next? Which page is next?

In your case the next page should be the home page of your forum because you have gone straight into your warning page without being redirected from somewhere else in your forum.

But instead of going to the home page of your forum you see a couple of errors.

The errors say that when the mod was trying to redirect you to the home page (that's what's happening in httpBL_Subs.php on line 128 and warning.php on line 218) it was impossible to do it because Subs-WikiBBC.php on line 48 had already sent the headers.

And the problem is if this is happening to you, it means it's happening as well to every other human going into your warning page, so the mod is not working properly for you.

The problem is I don't know that wikibbc-mod, so I have no idea why it needs to send the headers before anybody else does it. To try to sort this problem I will need to look at that mod.

So the first thing I need is to ask you exactly what mod is that. I have done a quick search through the mods area and I have found 4 of them

http://custom.simplemachines.org/mods/index.php?action=search;basic_search=Wiki

Could you tell me if it is any of these 4 or if it's another one?

In the mean time (while I find a solution) you should uninstall one of those mods (either mod httpBL or wikibbc-mod) because the way they are interacting just now, mod httpBL is doing your site more harm than benefit.
Title: Re: httpBL
Post by: Inti31 on July 15, 2011, 01:03:03 AM
Hi, thx for the explanation. Now I habe a better understanding about your mod and how it works.

I installed that wiki mod: http://custom.simplemachines.org/mods/index.php?mod=2969
i am going to uninstall this mod

cheers Inti31

Addition: i deinstalled the wiki mod. when i do now call the warning page and i answer the question 2-times, then it works!
but: it directs to the main homepage instead using the forum url means:
it directs to http://aida32-inventory.netboom.de/ - but the correct page is http://aida32-inventory.netboom.de/smf/

This is not really a problem because when I transport everything to the main forum - this will work then.
I only installed my testforum in a subdirectory "/smf" instead of "/" because there is an old text-based forum in another dir.
Title: Re: httpBL
Post by: goodtimes247 on July 15, 2011, 02:52:14 AM
Hi, I'm new to this mod and smf in general. Any advice would be great.

I installed this mod, signed up with Honeypot and generated my script. Question is, how do I install that script to smf? Sorry for the newb question.

Thanks
Title: Re: httpBL
Post by: Inti31 on July 15, 2011, 06:33:57 AM
Hi!

just upload the <yourscript>.php to your webspace - then call it once like http://<yourdomain>/<yourscript>.php. Done.
not for sure - that is in normal the 1st thing you've to do before you install this mod.

cheers Inti31
Title: Re: httpBL
Post by: snoopy_virtual on July 15, 2011, 06:59:27 AM
Quote from: Inti31 on July 15, 2011, 01:03:03 AM
I installed that wiki mod: http://custom.simplemachines.org/mods/index.php?mod=2969
i am going to uninstall this mod

That mod was made by Masterd and he is a very good coder so may be the problem is not in his mod but in mine.

Also (as it says in the mod's introduction) that mod uses only hooks (no file edits) so it shouldn't interfere with any other mod. It makes no sense really.

I will check the code in that mod to be sure about it. Maybe I made a mistake somewhere and need to change something in my code.

Quote from: goodtimes247 on July 15, 2011, 02:52:14 AM
I installed this mod, signed up with Honeypot and generated my script. Question is, how do I install that script to smf? Sorry for the newb question.

Well, Inti31 just gave you the answer, but I would like to add just a question:

Did you read the tutorial I wrote about it?

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english
Title: Re: httpBL
Post by: Inti31 on July 15, 2011, 11:49:04 AM
Hey snoopy_virtual, did you read my addition in my last post?

cheers Inti31
Title: Re: httpBL
Post by: snoopy_virtual on July 15, 2011, 12:58:08 PM
The one saying that now it works but is sending you to your home page?

Yes, that's how it's supposed to work. I didn't explain it properly.

My first idea when I did that small fix was to send you to the root of the forum and I thought that's what I had done, but checking it again I've just remembered there were a few complications doing it that way, so I redirect it to the root of the server instead. It's a lot easier.

Anyway that case is only happening when an admin is visiting their own warning page to check it, not when a human is redirected by the mod, so it's not a big deal.
Title: Re: httpBL
Post by: Nosy on July 16, 2011, 03:10:56 PM
I'm not sure, if it is a problem I should post here ore start a new Post.

Facts:
Since mid of June I've installed the ModhttpBL - works fine on SMF 1.1.14. Since then we only have a few attemps to register which are Spammers. They are denied after proof in StopForumSpam.

BUT - and I will get grey hairs, have sleepless nights, the meal is burning ...
* most/all of the members, who have to pass the warning.php, are using mobile internet acess (UMTS Sticks, Smartphone, iPhone, Blackberry...) from different providers. That is ok for the members
* at the time three members using an UMTS Stick/identical provider don't even reach the warning.php. They get an error message inside the header (there is a countdown 'only xy Days until next Meeting').

Notice: Use of undefined constant countdown1 - assumed 'countdown1' in
/usr/www/users/guzzir/Forum/Sources/Load.php(1753) : eval()'d code on
line 397
Noch 306
Notice: Use of undefined constant Tage - assumed 'Tage' in
/usr/www/users/guzzir/Forum/Sources/Load.php(1753) : eval()'d code on
line 397
Tage
Notice: Use of undefined constant countdown - assumed 'countdown' in
/usr/www/users/guzzir/Forum/Sources/Load.php(1753) : eval()'d code on
line 397


and their only chance is to close the browser, restart Laptop and retray. And after 10 to 20 attemps they reach the warning.php, calculate a little and can logg in.

- ok, they get dynamic IPs. But why do some IPs generate the error message?
- I proofed the source code of the Countdown and the mod. Can't find any variables, who are battling.
- Thought it is a hardware problem of the stick - but why then it sometimes work?

I'm realy perplexed.

Thanks for any further ideas
Claudia
Title: Re: httpBL
Post by: snoopy_virtual on July 16, 2011, 08:22:40 PM
Any idea where that countdown is coming from?

I mean, I'm not a mind reader. Could you give us a list of the mods you have installed in your forum?

Any of them have anything to do with a countdown?
Title: Re: httpBL
Post by: snoopy_virtual on July 16, 2011, 09:51:04 PM
And, before I forget, all those errors messages you are talking about are not very useful, because all of them are talking about "eval()'d code on ..." so they don't give us the correct file and line where the error was.

To check those error messages correctly you need to disable template eval()

In SMF 2.0 that's something you do inside the admin area, but for SMF 1.1.14 you need to install a mod to be able to do it.
Title: Re: httpBL
Post by: Sn3ak on July 16, 2011, 10:21:26 PM
Can someone educate me how to debug installing this mod?!?! I'm about to go get the server I am working on, and drop it off a high rise.

Old smf 1.something upgraded to 1.1.13, I just applied 1.1.14 today. I've followed all the directions. I have no other mods installed, I have no personal modifcations, I've even went as far to backup /wipeout my forum folder, and download fresh 1.1.14, copy over Settings.php,
chown -R www:www forum, chmod -R 777 forum, so I could avoid permission errors (which i was continuously getting, until I figured out that it was simple as Packages/temp didn't exist, and the forums not smart enough to create it (apparently)).

So, supposedly the mod is installed. There are no UI differences, I never get redirected to the configuration screen for the mod, it just takes me to the index.php (index.php?action=httpBL is in address bar, but clearly its the default forum list), I see a few files are copied to Sources:

-rwxrwxrwx  1 www   www     53890 Feb  7 08:45 ManagePermissions.php
-rw-rw-rw-  1 www   www     53890 Jul 16 19:01 ManagePermissions.php~

-rwxrwxrwx  1 www   www    137766 Feb  7 08:45 Subs.php
-rw-rw-rw-  1 www   www    137766 Jul 16 19:01 Subs.php~

-rw-r--r--  1 www   www     20399 Jul 16 19:01 httpBL_Config.php
-rw-r--r--  1 www   www     36502 Jul 16 19:01 httpBL_Subs.php

Themes/default (which is what I am using)
-rwxrwxrwx  1 www  www   28853 Apr 30  2008 index.template.php
-rw-rw-rw-  1 www  www   28853 Jul 16 19:01 index.template.php~


....
I don't know what else I can provide to help. I am pretty much a SMF n00b. I see obviously that the template wasn't modified like it should have been...  So where do I go from here?!?!

(Thanks, and now i walk away from this for a bit, maybe kill some people in tf2, until rage goes away)
Title: Re: httpBL
Post by: Nosy on July 17, 2011, 05:30:56 AM
Sorry, the Countdown isn't a installed mode. I've copied only PHP Code Snippet
    //Funktion Countdown
    function DaysUntilX($day,$month,$year){
    $dayX = mktime(0,0,0,$month,$day,$year); // Timestamp of day X
    $now = time(); // current timestamp
    $diff = $dayX - $now; // seconds until day X
    $days= ceil($diff/(60*60*24));
     return $days;
  }

in index.template.php and edited the header row.
echo '
                                <td width="40%" class="titlebg2">
                                        <span class="smalltext">', $txt[countdown1] ,' <b>', DaysUntilX(11,5,2012) , '</b> ', Tage , ' ', $txt[countdown] ,' </span>
                                </td>';

The area in Load.php is this one
   // Only load this stuff if the user isn't a guest.
   if ($ID_MEMBER != 0)
   {
      // Is the member data cached?
      if (empty($modSettings['cache_enable']) || $modSettings['cache_enable'] < 2 || ($user_settings = cache_get_data('user_settings-' . $ID_MEMBER, 60)) == null)
      {
         $request = db_query("
            SELECT mem.*, IFNULL(a.ID_ATTACH, 0) AS ID_ATTACH, a.filename, a.attachmentType
            FROM {$db_prefix}members AS mem
               LEFT JOIN {$db_prefix}attachments AS a ON (a.ID_MEMBER = $ID_MEMBER)
            WHERE mem.ID_MEMBER = $ID_MEMBER
            LIMIT 1", __FILE__, __LINE__);
         $user_settings = mysql_fetch_assoc($request);
         mysql_free_result($request);
(397 was an empty row, I deleted it, but doesn't change the behaviour for the involved members)   
         if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2)
            cache_put_data('user_settings-' . $ID_MEMBER, $user_settings, 60);
      }

To complete the informations. Installed Mods are:
AjaxChat Integration    3.2.1    
Tapatalk SMF Plugin    1.2.0    
Aeva Media add German    1.1b    
Skype Integration   2.1.2    
Simple Image Upload    1.1.0    
SMF 1.1.14 Update    1.0
Aeva Media    1.3    
httpBL    2.5.1    

Next Step: I will install the Mod Disable Template Eval as you recommended.
Title: Re: httpBL
Post by: Nosy on July 17, 2011, 05:57:30 AM
"Disable template evaluation? " is activated
Title: Re: httpBL
Post by: Nosy on July 17, 2011, 06:29:47 AM
I'ver parsed the Mod and compared it step by step

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';

wasn't added in index.template.php. I added it manually.

I think now, I've to wait for feedback from the (concerned) members

Or anything else I can do or proof?
Title: Re: httpBL
Post by: snoopy_virtual on July 17, 2011, 07:16:31 AM
@Sn3ak

Sorry I didn't answer you earlier but I went last night to a hard rock concert that finished at 5 in the morning and woke up today with a big hangover.

I tried to read your question already a couple of times, but cannot really think properly. I will try again in a few hours after I have a few coffees.

@Nosy

Modifying anything inside the code is exactly the same as installing a mod (modification). The only difference is that using the package manager to do a modification is easier to install and uninstall it, because it does all the modifications automatically instead of manually.

For example, when you want to upgrade your forum to a new version it's always better to uninstall all your mods, upgrade the forum and then install all the mods again. So every time you want to upgrade your forum you will need to undo all those manual modifications and redo them again after the upgrade.

The template evaluation is really a pain in the *...* Every time there is an error it tells you what part of the template it was evaluating when the error occurred, but not the line with the error.

With template evaluation disabled you will know from now on where exactly are the errors.

Anyway in your case I think have enough information with all the data you already gave me to find out the error and sort it. The problem is I cannot think properly just now (see what I was telling Sn3ak about it).

I will try to read it all again later on after I have a few coffees.
Title: Re: httpBL
Post by: Nosy on July 17, 2011, 08:48:04 AM
 :laugh: Wish you a good regeneration. Knew this "Days after".
Title: Re: httpBL
Post by: butchs on July 17, 2011, 03:16:03 PM
Quote from: snoopy_virtual on July 17, 2011, 07:16:31 AM
Sorry I didn't answer you earlier but I went last night to a hard rock concert that finished at 5 in the morning and woke up today with a big hangover.

Cool, sounds like the bots are gonna get some more trouble!   :o

I listen to the Boneyard (http://www.siriusxm.com/boneyard) for my inspiration!   8)
Title: Re: httpBL
Post by: Nosy on July 20, 2011, 02:45:22 AM
Quote from: Nosy on July 17, 2011, 06:29:47 AM
I'ver parsed the Mod and compared it step by step

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';

wasn't added in index.template.php. I added it manually.

I think now, I've to wait for feedback from the (concerned) members

Or anything else I can do or proof?

Interim conclusion: seems to work now for the most members, who had the problem with the error message and had to restart pc until they get a (dynamic) IPnumber, that works. Still they have to resolve the question before they can login - but that is the sense of httpBL.  ;)

There is only one, who still gets errors. Hope, I get more infos, if it is the same error message - or even an other. Because of "Disable template evaluation? " is activated

Update: He get's still the SAME error.  >:( Has to change several times the IP-Number until he can reach the warning.php
Title: Re: httpBL
Post by: studiowi33 on July 20, 2011, 07:07:20 PM
Hi all-

I've just installed this and the custom who.template, but now I have 2 linktrees @ the top of my who's online list. There is one in the who.template, but where is the other one? Which one should i comment out?
Shucks, I'll try commenting out the who.template one and see what happens.

-s.w

Title: Re: httpBL
Post by: busterone on July 20, 2011, 07:17:21 PM
Quote from: studiowi33 on July 20, 2011, 07:07:20 PM
Hi all-

I've just installed this and the custom who.template, but now I have 2 linktrees @ the top of my who's online list. There is one in the who.template, but where is the other one? Which one should i comment out?
Shucks, I'll try commenting out the who.template one and see what happens.

-s.w
That should work. The other is in /Themes/yourtheme/index.template.php
Title: Re: httpBL
Post by: studiowi33 on July 20, 2011, 10:54:37 PM
Thanks busterone--that cleared it up! I however have stumbled upon another problem. It appears as tho I botched my custom who.template.php file and I erroneously inserted a 1.1.1x version of that file. I'm aware that Mr. snoopy wrote a custom who.template and somewhere along the line, believing I was using that file, I must have overwritten the 2.0 'who' file. Right now, my copy of 'who's online' is "eye candy" to look at, but it keeps throwing offset errors into my log.

I'll look for another version of the custom who file, one that replicates the OS/Browser detection as well as the segregated Member, Guest, and Spider lists. (I'll just empty out my log more often until I find the right 2.0 who file.)

But thanks for taking time out to respond. I DO appreciate it.

-s.w
Title: Re: httpBL
Post by: studiowi33 on July 24, 2011, 06:32:54 PM
After searching & uploading files that obviously aren't compatible, I'm left here: Does anyone have a who template that works for 2.0 final, detects OS/Browser, and segregates Members, Guests, and Spiders?

I can't seem to find one that doesn't throw the previously mentioned offset errors.

As always, thanks all.
Title: Re: httpBL
Post by: busterone on July 24, 2011, 06:59:18 PM
I am not familiar with that file myself, but perhaps snoopy will be along here today sometime and does know the file you are referring to. 
Here is a screenie of mine. It is just a standard 2.0 file, biut there is a drop down selection to the right. Is that what your are looking for?
Title: Re: httpBL
Post by: studiowi33 on July 24, 2011, 08:06:12 PM
Quote from: busterone on July 24, 2011, 06:59:18 PM
I am not familiar with that file myself, but perhaps snoopy will be along here today sometime and does know the file you are referring to. 
Here is a screenie of mine. It is just a standard 2.0 file, biut there is a drop down selection to the right. Is that what your are looking for?
Thanks busterone...to be honest, I'm not sure if that's the template I need or not! Here's the one I'm using now and it's a Mr. Snoopy version, but an old one I guess.

I hope Mr. Snoopy sees this and can aid & abet me in my quest for the correct template file. It may turn out that the file you're offering up is indeed the file I need, but I'm hoping Mr. Snoopy can enlighten as well as entertain. :)

Thanks busterone. I DO appreciate the time you've taken/spent in helping me.

Title: Re: httpBL
Post by: snoopy_virtual on July 25, 2011, 04:34:51 AM
Sorry, I have never done a version for 2.0 of that file because I don't use SMF 2.0

That file you have there is for SMF 1.1.x
Title: Re: httpBL
Post by: studiowi33 on July 25, 2011, 01:46:46 PM
Hi snoopy_virtual-

Thanks for the clarification, which was far more enlightening than it was entertaining. Any ideas of how to eliminate the offset errors? I don't even know what an offset error is, let alone how to correct it.

Thanks!

-s.w
Title: Re: httpBL
Post by: Kolya on July 29, 2011, 01:51:40 AM
A way to auto-prune the logs would be nice.
Title: Re: httpBL
Post by: snoopy_virtual on July 29, 2011, 08:00:21 AM
Quote from: Kolya on July 29, 2011, 01:51:40 AM
A way to auto-prune the logs would be nice.

All my forums use SMF 1.1.14 and there is no auto-prune utility there (it's only in 2.0) so that's why I never implemented it here.

If I were going to use 2.0 I would do it, but I am not planning to use that version (as I said many times before).
Title: Re: httpBL
Post by: Kolya on July 30, 2011, 04:46:49 AM
Oh well, it's not a biggie. Just something I thought I'd throw out there.
Any special reason, why you're not planning to upgrade to 2.0? Sorry if you explained that before as well.
Title: Re: httpBL
Post by: snoopy_virtual on July 30, 2011, 06:15:50 AM
You can see in this search some of the reasons I have already explained and also why I wouldn't like to talk too much about it here:

http://www.simplemachines.org/community/index.php?action=search2;search=wedge;topic=366399
Title: Re: httpBL
Post by: Kolya on July 31, 2011, 06:56:15 PM
Huh, interesting.
Title: Re: httpBL
Post by: Kolya on August 08, 2011, 03:27:57 AM
So today an email reached me from a member who cannot get into our forums. I checked and his IP is fully blocked by http:BL, because it was used by a spambot with threat level 42 just 11 days ago.

Now how do I let this member in, without lowering the settings to 10 days for everyone? Is there a way to except an IP from the check?
Title: Re: httpBL
Post by: snoopy_virtual on August 08, 2011, 05:28:09 AM
@Kolya

The easiest way will be if the members with this problem can change their IP.

I use a lot every day servers like megaupload, fileserve, mediafire, etc, etc.

Most of these download servers have a limit on the amount of things you can download for free every day, so every time I reach one of these limits I just change my IP so the server thinks I am a different person and I can continue downloading.

So sometimes I change my IP up to 10 times a day and I can assure you it's something very easy to do.

A quick search through the web can teach you a lot of methods to change your IP very easy. For example, the method I use (with one built-in function inside the program JDownloader) only takes me a few seconds to change my IP, but even if this guy you are talking about is not too computer techie there is a very easy method that anyone can do:

Every body uses a router, modem or similar thing to conect to the internet. If you have a dynamic IP, your ISP gives you always the first IP available when you connect to the internet, and it is always the same one while this connexion is on, but if you close the connexion, that IP will be available again and your ISP will use it for someone else.

So the easy method to change your IP is to cut completely your internet connexion for a while (turning the electricity off in the router, modem or any other similar machine you use to connect to the outside world), leave it off for a while (normally 10 or 15 minutes are enough) and then plug it on again.

The best way to check if this has done the trick is entering something like http://www.whatsmyip.org/ or similar before you turn off your connexion, take a note of the IP you have and then check it again afterwards to see if it is a different one.

============

As I have explained many times, now-a-days 99.9% of the users have dynamic IPs (changing every few days) so white-listing a particular IP in your forum will be no use at all.

This friend of yours has just now an IP that belonged to a spammer just a few weeks ago and this IP will have a different owner again in a few days so you cannot be sure who is going to be using it in a few days time.

The only white-list method I have implemented inside the mod is the permission "Never be checked by mod httpBL" but implemented per usergroups, not per IP (as these permissions are not based on the IP but on the usernames of the members inside those groups, so they never change).
Title: Re: httpBL
Post by: Kolya on August 08, 2011, 03:24:26 PM
Thanks for your answer snoopy. I figured that an IP change would solve the problem and that's the first thing I suggested to this member. However not everyone is competent enough or willing to go through this procedure. So it's good to know that there's also a permission to be set. Didn't know that. :)
I've created a special membergroup now with only that permission into which I can temporarily drop members who were blocked and cannot help themselves.
Title: Re: httpBL
Post by: Exsharaen on August 09, 2011, 11:26:55 PM
Hi snoopy, long time no see :)

I just upgraded my forum to 2.0 gold and reinstalled all mods. The first thing I installed is this mod, because recently I have more spam attacks (which thankfully all were stopped by this mod combined with Stop Spammer mod). I checked the warning.php, and something is missing...

...apparently because of a typo:

$txt['httpBL_warn_[b]dinamic[/b]_IP_2'] = ...
dynamic, isn't it?

Thanks :)
Title: Re: httpBL
Post by: snoopy_virtual on August 11, 2011, 12:57:46 PM
Hi Exsharaen

That typo was corrected ages ago. Are you using the latest version?
Title: Re: httpBL
Post by: Exsharaen on August 14, 2011, 05:51:11 AM
Hmmm... that's strange, I redownloaded everything when upgrading to SMF 2. Not a big issue though :)
Title: Re: httpBL
Post by: snoopy_virtual on August 14, 2011, 07:10:48 AM
@Exsharaen

Found it.

I corrected the typo in the warning.php file in the main package, but forgot to correct it inside the warning.php file you did with the Indonesian translation.

I have just checked it and that typo is also in the French and Dutch translation. (http://www.snoopyvirtualstudio.com/foro/Smileys/default/BangHead.gif)

I should correct that asap. Sorry.
Title: Re: httpBL
Post by: Kolya on August 17, 2011, 01:38:52 AM
Regarding my problem with a member not being able to access my forum (see post above (http://www.simplemachines.org/community/index.php?topic=366399.msg3130054#msg3130054)):
I placed that member in an Additional Membergroup with permission to be excluded from http:BL check. However according to another email he still cannot access the forum. He changed his IP several times and tried to access from several locations (in Singapore).

Hence my question: If a member's IP has changed since the last time he was logged in and http:BL's check presumably runs before he gets to the login, I fear that the member-permission to be excluded from the check will never come into effect?

I asked him now to send me his current IP. But even then, I cannot add it to his profile, to make http:BL realise he's excluded from the check.

So is there any way to exclude an IP address from http:BL?
Title: Re: httpBL
Post by: snoopy_virtual on August 17, 2011, 03:29:25 PM
The permission to be excluded from the httpBL check has nothing to do with the IP. It is done using the username and the member groups that user belongs to.

Of course for that permission to work he needs to be already logged in, so he will have problems only the first time, when he tries to log in.

What he need to do is to answer the questions to prove he's human that first time, so his IP gets 24 hours to reach the forum, and then log in with the option "always remember my username and password". That way the next time he arrives to the forum, the mod will recognize him as a member of the group excluded and won't even check his IP at all.

Anyway, if he has change his IP a few times and every time the mod sees he's got a big threat level, it looks like the problem is he has a very big trojan in the computer.

He should try to find a really good computer technician specialized in viruses and trojans and clean his computer properly.
Title: Re: httpBL
Post by: Kolya on August 18, 2011, 03:41:54 AM
Well he send me some screenies now and a proper description of what happens:
He does get to he login, but once he tries to log in he gets a full access denied (without the chance to answer questions).
As far as I can tell this shouldn't happen, because the moment he logs in, the exclusion from http:BL should come into effect.

I'm not really sure if he managed to change his IP address, so it could still be a "false positive", ie he got the former IP of a spammer.
Title: Re: httpBL
Post by: snoopy_virtual on August 18, 2011, 10:36:36 AM
That doesn't makes any sense.

If he gets a "full access denied" in one page because of the mod, he should get exactly the same "full access denied" in every other page he tries to visit, so he shouldn't be able to see the login page in the first place.

The mod treats every visit from an IP exactly the same. It doesn't matter what page it's trying to see. So maybe the problem is somewhere else. Do you have any other anti-spam mod? Are you sure you haven't got that IP banned in your forum for some reason? There are anti-spam mods that add also bans automatically, so that's why I ask these questions.

The only way to know for sure would be to connect directly with the guy via Skype, MSN, Yahoo or similar and watch what he's doing with a program like TeamViewer (or similar) checking at the same time what's happening in your logs.

Anyway I have been thinking in another possible solution to be sure if the problem is because this mod or because something else.

Ask the guy what time is good for him to try to log in again, and make an appointment with him to turn the mod off for a couple of hours a certain day. Wait until he manage to log in and then turn the mod on again. (Be careful to take into account the difference of hours if he's living in Singapore and you are not  ;) )

This process would be also better to do it while connected via Skype, MSN, Yahoo or similar, but even without any of them I suppose you can coordinate something.

If you are going to do something like that via Skype, check inside your httpBL page if I am connected as well and add me to the conversation. I am curious now and I would like to know why this guy has this problem, and anyway I could help a lot better if I see it directly.
Title: Re: httpBL
Post by: Kolya on August 24, 2011, 09:03:10 AM
Not easy for me at the moment as I'm on vacation and you know hotel firewalls etc.
However there is indeed a chance that he was actually blocked out by the "login security" mod and not by http:BL. That would explain why he can get to the login but not any further. Of course "login security" gives instructions on how to override a block, but he may not have read them. I'm currently waiting to hear anything new from him and will post again if this can be verified either way. Thank you for your help and patience. It's appreciated.
Title: Re: httpBL
Post by: snoopy_virtual on August 24, 2011, 05:36:01 PM
It makes a lot more sense if he has been stopped by the "login security" mod instead.

Keep us informed of what happen. I an very curious now.  ;D
Title: Re: httpBL
Post by: SD-X on September 14, 2011, 03:06:00 AM
Sorry to bug ya Snoopy, but I noticed this in my humans log, and it actually surprised me. I did what you said about making a secondary rank to prevent known users from being checked by httpBL, but oddly enough one of my whitelisted users was still checked and had to go through the captcha page. I'm using the latest version, and this is the first time I've seen it happen since whitelisting, but I figured I might as well drop by and give you a heads up in case there was a bug in the permissions system for it. :)

Forum version is SMF 2.0 Gold, by the way.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2011, 02:17:33 PM
Hi SugarD-x

I heard there are a few bugs in SMF 2.0 but cannot be sure myself because I don't use it. I suppose you could ask any of the SMF supporters (if there is any one left) to see if there is a problem with the permission system, but remember that the SMF permission system only works with members already logged in. It would make no sense at all to give this permission to "guests".

Just to be sure you understand properly how it works, the list inside the "human log" is all the IPs the mod has seen as "bad ones" (because they are in the Project Honey Pot's database) but have been allowed in for one reason or another.

To check exactly why anyone of them has been allowed in you need to press the button to "show extra information" and you will see with every IP a "message" telling you exactly why that particular IP has been allowed in, so if anybody has seen the captcha and has answered it properly it will be written there, telling you exactly how many good answers and how many bad ones they gave in the captcha page.

At the same time (above that message) you will see also the username they were using when they were at the captcha page, so you can confirm if what they are saying is true or not.

If you find in your logs any of them, with an username that is inside one of your "trusted" membergroups and with a message saying "2 Answers on the captcha 2 Good - 0 Bad", make an screenshot and show it to me.
Title: Re: httpBL
Post by: SD-X on September 14, 2011, 02:28:33 PM
Quote from: snoopy_virtual on September 14, 2011, 02:17:33 PM
Hi SugarD-x

I heard there are a few bugs in SMF 2.0 but cannot be sure myself because I don't use it. I suppose you could ask any of the SMF supporters (if there is any one left) to see if there is a problem with the permission system, but remember that the SMF permission system only works with members already logged in. It would make no sense at all to give this permission to "guests".

Just to be sure you understand properly how it works, the list inside the "human log" is all the IPs the mod has seen as "bad ones" (because they are in the Project Honey Pot's database) but have been allowed in for one reason or another.

To check exactly why anyone of them has been allowed in you need to press the button to "show extra information" and you will see with every IP a "message" telling you exactly why that particular IP has been allowed in, so if anybody has seen the captcha and has answered it properly it will be written there, telling you exactly how many good answers and how many bad ones they gave in the captcha page.

At the same time (above that message) you will see also the username they were using when they were at the captcha page, so you can confirm if what they are saying is true or not.

If you find in your logs any of them, with an username that is inside one of your "trusted" membergroups and with a message saying "2 Answers on the captcha 2 Good - 0 Bad", make an screenshot and show it to me.
Unfortunately I had already deleted it from my log before I mentioned it to you, but your last statement was pretty much the scenario here. Does httpBL also catch people as suspicious by username? His account name could trigger it if that is so, but even then I've added him as an exception because I know he's a real person. This is the only time I've seen it catch him with the captcha since whitelisting, so I'll let you know if it happens again. It could just be a small hiccup in the system, but I figured it was worth mentioning in case someone else reports it too. :)
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2011, 03:48:46 PM
QuoteDoes httpBL also catch people as suspicious by username?

No.

Only IPs.
Title: Re: httpBL
Post by: SD-X on September 14, 2011, 03:59:44 PM
Quote from: snoopy_virtual on September 14, 2011, 03:48:46 PM
QuoteDoes httpBL also catch people as suspicious by username?

No.

Only IPs.
Hmm...odd. I'll have to look into his account then if it pops up again. I noticed a couple oddly-named users I have tend to get picked up by it, or did before I whitelisted them anyway, hence my assumption. There's nothing they should be doing on the forums that would generally trigger it to flag them, and as far as I know they shouldn't be in the database unless it's a re-used IP, but I've seen this happen a couple times already prior to whitelisting, so it seems to be a mystery. Either way, I'll keep an eye on things and see if I can reproduce it. I wouldn't be surprised if a typo in either the mod or the forum software, or both, caused this. I've seen some strange things happen in programs before when just one little symbol or letter is out of place :)
Title: Re: httpBL
Post by: busterone on September 14, 2011, 06:56:09 PM
I have one user that was caught and had to pass the capcha after his IP was changed by the ISP. He is whitelisted as well. After he logged in with that IP, he was never flagged again by httpBL. 
Title: Re: httpBL
Post by: SD-X on September 14, 2011, 06:58:57 PM
Quote from: busterone on September 14, 2011, 06:56:09 PM
I have one user that was caught and had to pass the capcha after his IP was changed by the ISP. He is whitelisted as well. After he logged in with that IP, he was never flagged again by httpBL.
That might explain it then. Sounds like the whitelisting permission only applies to their IP listed for that user instead of the user themselves. Odd, but I can see how that'd work.
Title: Re: httpBL
Post by: busterone on September 14, 2011, 07:08:00 PM
I am not 100 percent sure, but that is my understanding of how it works.
Title: Re: httpBL
Post by: SD-X on September 14, 2011, 07:35:06 PM
Quote from: busterone on September 14, 2011, 07:08:00 PM
I am not 100 percent sure, but that is my understanding of how it works.
If that's true then it would make sense for my situation to arise, which I can understand why it was coded this way to begin with then.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2011, 10:56:19 PM
The answer is very easy.

I coded it like that because I only had 2 options. Either use the permission system already build in SMF or code myself a whole brand new permission system.

I haven't got the coding skills the really big coders have (like for example, Arantor, Nao, [Unknown], Aaron, Bloc, Dragooon, live627, Thorsten "TE" Eurich, etc, to name only a few of the best ones), so I couldn't even dream to create a brand new permission system as they have done for Wedge.

When you see the new version of this mod I am planning for Wedge you will see a big difference.
Title: Re: httpBL
Post by: SD-X on September 19, 2011, 05:17:36 PM
Quote from: snoopy_virtual on June 23, 2011, 07:21:23 PM
Yes, I forgot to add the definition of the error number 105 inside the file.

It means:

"5 answers in the captcha. 0 Good, 5 Bad"

What about error number 10? ;)

Just got it today lol. First time I've ever seen it. I haven't modified the mod at all, so I'm assuming this is something in it's default settings. Got it on a user who is listed as an exception in the permissions. Not sure if it let him through or not, but figured it was worth bringing up. He was just trying to access the SMF 2 forum's index.php file when it happened. :)
Title: Re: httpBL
Post by: snoopy_virtual on September 20, 2011, 02:48:10 AM
Could you make a screenshot of that error to see the rest of the values?

I have been thinking about it for a while and cannot see any situation that would give you an error 10

Anyway, if that guy was in the "human log" the mod let him pass. If he was in the "spammers log" he was stopped.
Title: Re: httpBL
Post by: Missileman on September 28, 2011, 10:42:20 AM
Sorry to bother everyone, but I am not a programmer by any means. I am running this mod and the stop spammer mod on my fresh install of SMF. All are current release versions. I keep getting this error in the log: xxxx://xxx.xxxxx.com/index.php?forum=index.php
                                                                                        Field 'error' doesn't have a default value
                                                                                        File: C:/inetpub/wwwroot/Sources/httpBL_Subs.php
                                                                                        Line: 299

This only seems to happen when a spam bot of some sort is trying to log in. Nothing in any of the other logs anywhere. The IPs are mostly Ukraine listed, but last night I started getting a lot of errors from TrendMicro at 2 addresses which I assume is a spider of some sort. Users can log in and register and post fine. Just seems to be the spammers leaving the errors and nothing in the spammer log either. here's line 299:

287: 'logTime' => 'int', 'ip' => 'string', 'threat' => 'int', 'last_activity' => 'int',
288: 'suspicious' => 'int', 'harvester' => 'int', 'comment' => 'int', 'url' => 'string',
289:    'user_agent' => 'string', 'errorNumber' => 'int', 'username' => 'string',
290:    'raw' => 'string', 'stopped' => 'int'
291:    ),
292:    array(
293:    $time, $ip, $threat, $last_activity,
294: $suspicious, $harvester, $comment, $url,
295: $user_agent, $errorNumber, $username,
296: $raw, $stopped
297:    ),
298: array()
==>299: );
300:    301: if ($return)
302:    {
303:    $request = $smcFunc['db_query']('', '

Everything is reporting it is installed perfectly. Mostly an error free setup except for this error when it pops up.

Any ideas?
Title: Re: httpBL
Post by: snoopy_virtual on September 28, 2011, 01:29:05 PM
The field "error" inside the table log_httpBL is a text field.

As far as I know in all the versions of MySql, text fields cannot have default values, that's why the "error" field doesn't have one.

What version of MySql do you have in your server?
Title: Re: httpBL
Post by: Missileman on September 28, 2011, 01:38:36 PM
I had loaded 5.2.17 because of all the nasty things everyone was saying about 5.3.  I guess I could try updating it.

Dang - looked up wrong one. MySQL is 5.5
Title: Re: httpBL
Post by: snoopy_virtual on September 28, 2011, 02:16:43 PM
I still use mySql 5.0 in my server, but as far as I know that hasn't changed in 5.5

Maybe I'm wrong. I will need to check the mySql manual to see it.

In the mean time, if you have phpMyAdmin try to access your database. Look for the table log_httpBL (with the same prefix you are using for the rest of the tables in your forum) and inside it look for the column "error".

Try to modify the settings of that column, adding a default value (for example just a blank space) and see if your phpMyAdmin allows you to change that settings.

If I try to do it in my server I get the error saying "text fields cannot have a default value", but if that has been changed in mySql 5.5 you will be able to do it and that will sort your problem.
Title: Re: httpBL
Post by: snoopy_virtual on September 28, 2011, 02:23:38 PM
By the way. Inside the table log_httpBL there are 3 text fields: "error", "url" and "user_agent".

It's strange that you have problems with one of them but not with the other 2
Title: 2.0.1?
Post by: unblinkable on September 28, 2011, 03:51:10 PM
thank you for a wonderful seeming mod.

the listing page
http://custom.simplemachines.org/mods/index.php?mod=2155

does not specifically mention compatibility with SMF 2.0.1.  Is that an oversight?

Title: Re: httpBL
Post by: snoopy_virtual on September 28, 2011, 04:08:12 PM
I didn't have time yet to check compatibility of my mods with the latests versions 2.0.1 and 1.1.15 and, to be honest, I don't even know when I will have time to check it. Sorry.
Title: Re: httpBL
Post by: SD-X on September 28, 2011, 05:12:14 PM
StopSpammer and Mod httpBL both work fine in 2.0.1. I'd check 1.1.15, but I don't have a SMF 1 forum to use ;)
Title: Re: httpBL
Post by: Missileman on October 06, 2011, 03:20:10 PM
I am sorry to bother everyone again, but I ran into another issue. I did a bare metal reinstall of everything so the production server would be absolutely clean. I have stepped through installing everything one step at a time. Windows server 2008 R2, PHP 5.3.8, MySQL 5.5, SMF 2.0.1, PortaMX 1.4.1, and Stop Spammer 2.3.9.

Iget the following error when trying to install httpBL:

Table 'smf_log_httpbl' already exists
File: C:\inetpub\wwwroot\Packages\temp\install_2.php
Line: 228

Here's the SMF error log:

http://www.surplusguncollector.com/index.php?action=admin;area=packages;sa=install2;package=httpBL_v2_5_1.zip;pid=0
Database Error: Table 'smf_log_httpbl' already exists
File: C:/inetpub/wwwroot/Packages/temp/install_2.php
Line: 228

I believe that this is related to the fact the restored database already has the tables in it, but I am not a PHP guy. Any ideas? If it is database issues, which parts do I need to remove?

I have everything else installed and all is error free for the first time. I really want this to be in there because I hate spammers and having to delete their junk. This mod worked great before the reinstall.

Thanks for taking the time to look at it :)
Title: Re: httpBL
Post by: Missileman on October 06, 2011, 05:37:35 PM
Okay. Some more info. I went into the database and removed the table and the error went to line 68 and said doesn't exist. I'm stumped.
Title: Re: httpBL
Post by: frytec on October 17, 2011, 03:03:21 PM
nice mod..
testing on SMF 2.0.1... seens ok..
Title: Re: httpBL
Post by: snoopy_virtual on October 19, 2011, 05:46:32 AM
Hi everybody

Sorry I haven't been answering anybody lately, but I had a big accident and was in hospital for a while. Still I'm not fully recovered, but I have started doing things again slowly, so I'm trying to sort problems again.

@Missileman

Your problem was reported so long ago that I don't know if you have already sort it yourself. Let's see if I can explain it in an easy way:

This mod needs the table smf_log_httpbl to work properly, so when you install the mod, one of the first things it does is to check if that table already exists.

If that table already exists the mod is supposed to go to the next step and don't show any error (and if it doesn't exists is supposed to create it). You shouldn't get any error there.

I suppose they must have changed the way the Packages Manager works in SMF 2.0.1 when creating new tables and it was trying to create the table again anyway (even if the mod was telling it to ignore it) so that's why you were getting the error saying "Table 'smf_log_httpbl' already exists".

You should have ignored that error and continue with the installation anyway.

The big problem now is when you removed that table from the database. The mod now cannot work at all.

I think the easiest solution now (if you haven't sort it already using another solution) would be this:


This way the mod will do a clean install and create the table properly.

Let me know if this sort the problem.
Title: Re: httpBL
Post by: SD-X on October 19, 2011, 10:46:56 AM
Hope you're alright Snoopy! Get yourself completely healed up soon!!!
Title: Re: httpBL
Post by: snoopy_virtual on October 19, 2011, 10:57:57 AM
Thanks. I will try to rest as much as possible.  ;)
Title: Re: httpBL
Post by: busterone on October 19, 2011, 05:58:45 PM
Wow, I haven't been to your site lately or I may have heard that before today.  Get well soon.  :)
Title: Re: httpBL
Post by: snoopy_virtual on October 19, 2011, 06:08:05 PM
Thanks buste.

I haven't been writing in any of my pages. Just started writing today and still is not easy to use my right hand with the keyboard.

No problem with my left hand, and no problem either with the right hand when I only use the mouse, so at least I can kill as many zombies I want. lol
Title: Re: httpBL
Post by: busterone on October 19, 2011, 06:13:12 PM
All is well as long as zombies die indeed.  ;D
Title: Re: httpBL
Post by: Wizzlefits on October 19, 2011, 07:28:10 PM
Does this mean we can call you "sore head" for real? hehehe!
Doc says, kill 1200 zombies, take a nap, repeat..
Title: Re: httpBL
Post by: snoopy_virtual on October 19, 2011, 07:34:57 PM
Anyway I finished Dead Island already so now I'm killing bandits and mutants in Rage. lol
Title: Re: httpBL
Post by: DJ-X on November 22, 2011, 02:48:52 PM
/yourhoneypot.php already running on the server with IPv6 :)
Title: Re: httpBL
Post by: SD-X on November 22, 2011, 03:34:52 PM
Quote from: DJ-X on November 22, 2011, 02:48:52 PM
/yourhoneypot.php already running on the server with IPv6 :)
Very nice! :D
Title: Re: httpBL
Post by: DJ-X on November 22, 2011, 04:00:14 PM
Here the newest zombie robots _http://goo.gl/BdAxy
IP, Date, Email, User, Password.
Title: Re: httpBL
Post by: GlitchPC on November 24, 2011, 06:01:43 AM
I absolutely love this mod!

Spammers stopped by MOD httpBL: 1023
Title: Re: httpBL
Post by: snadge on December 01, 2011, 09:50:09 AM
download link does not work ...
Title: Re: httpBL
Post by: busterone on December 01, 2011, 05:34:44 PM
It works for me.  Try a different browser to see if you can get it.
Title: Re: httpBL
Post by: snadge on December 01, 2011, 05:37:38 PM
thats odd, works in chrome

i get this on firefox

"due to high stress on this server the page is temporarily unavailable"
Title: Re: httpBL
Post by: busterone on December 01, 2011, 05:43:54 PM
There have been some ongoing server issues it seems. I have been getting that intermittently for teh last few weeks on everything from login to show unread replies, and even reading PMs. I am sure they are working on it though.   :)
Title: Re: httpBL
Post by: snadge on December 01, 2011, 06:10:38 PM
Quote from: busterone on December 01, 2011, 05:43:54 PM
There have been some ongoing server issues it seems. I have been getting that intermittently for teh last few weeks on everything from login to show unread replies, and even reading PMs. I am sure they are working on it though.   :)

thanks busterone :)

Ive got it installed and working... I just need a mod that makes links inactive and adds 'nofollow' tags that works with 2.0.1
Title: Re: httpBL
Post by: haiduk on December 13, 2011, 09:50:55 PM
Great MOD!  Actual spam posts have dropped to almost zero.   Thanks!

I am having some issues with it though.  Might be my settings.  Http:bl seems to be catching about 90% of the spammers, the other 10% are mostly being caught by Stop Forum Spam.  The problem I'm having is some of those that are being caught by SFS have a Project Honey Pot threat level higher than what I have set in Http:bl.  It apparently is letting some through for some reason.

My settings: 
SMF 1.1.15
Number of days to consider good an IP: 90
Threat level considered bad: 2
Threat level considered VERY bad: 5
Minutes to keep the data in the cache: 5
Hours until an IP needs to prove again it's human: 24

For example:
This particular login attempt was flagged by SFS with hits in username, EMAIL address, and, IP address.  Project Honey Pot shows a threat rating of that IP at 25 (more than VERY bad as I have set). How were they able to create an account? Granted it's awaiting approval.  Even with HTTP:BL and Stop Forum Spam I still have a ton of  unapproved spammers to reject weekly.  Actual spam posts have dropped dramatically, but I still have the headache of sifting through unapproved accounts where 90% are flagged by SFS.

My questions are:
How did they get past HTTP:BL to begin with? 
Is there a way to redirect to the warning page if SFS flags the IP and/or Email address prior to account creation?  An automated rejection if they're flagged by SFS or Project Honey Pot?
Title: Re: httpBL
Post by: busterone on December 13, 2011, 10:11:59 PM
There are times that the connection to the project Honeypot database may be down or intermittent at the moment that IP attempts to register, therefore, it gets past, but then SFS catches them.

If I may make an observation, your threat rating settings are way too tight.  :)  The scale that P. HP uses to asses threat rating is excellent, but if you have a user at TR of 7 for example, it is a good possibility that user is an innocent that got assigned a dynamic IP by his/her ISP., and was previously used for spam, but many months ago.  Your setting of bad-2 and very bad-5 is probably overkill.  I have used this mod for almost 2 years with a bad setting of 10, very bad -25, and in conjunction with Stop Spammer and registration questions, I get no spammers.

Keep in mind that there is no absolutely 100 percent anti-spam method out there.  That is why a layered approach of a couple of mods and registration questions give better protection. 
Title: Re: httpBL
Post by: haiduk on December 13, 2011, 10:28:33 PM
The spam posts have dropped significantly since adding HTTP:BL to SFS.  The number of unapproved accounts that I have to sift through and reject has dropped from 300-500 weekly down to a 100 or so.  I was able to drop that number still further by lowering the threat levels to their current state.  My major concern is the number of unapproved accounts I have to deal with on a daily basis.

I would be a happy camper if there was a way to automatically reject any new accounts that are flagged with bad IP and/or EMAIL by SFS and/or Project Honey Pot.

Something along these lines:

fetchNewUserData();
$IPflagged by SFS or PHP
$EmailFlagged by SFS
if ($IPflagged==true OR $EmailFlagged==true) 
{
     redirectTo("Warning.php");     
}
else
{
     createAccount();
}


EDIT:  I bumped my HTTP:BL thresholds back to bad-10, very bad-25.
Title: Re: httpBL
Post by: busterone on December 13, 2011, 11:45:23 PM
There is a way to simply reject them without having to go through the admin approval, although it is not officially approved by the mod author.  It depends on which SFS mod you are using.  Stop Forum Spam by ITA003 or Stop Spammer by snoopy_virtual.  They both work similarly and both query the same database at SFS.  In the support topic for Stop Spammer, there is a user contributed code edit just for that purpose.  It isn't recommended, but for those that want it, it is there.  :)  It is within the last 2 or 3 pages of the topic, but I don't remember exactly where.

Maybe you should look into the registration verification questions mod for 1.1.x.  A couple of specialized questions will stop most bot registrations in their tracks, eliminating a larger percentage of them from ever reaching the admin approval queue.
Title: Re: httpBL
Post by: pidhunter on December 14, 2011, 01:51:11 AM
Hi,

i have updated to 2.01-german and i want to install this mod as admin with the package manager "in normal way" as described.

Result:
---------
QuotePaket erfolgreich hochgeladen

Das Paket wurde erfolgreich hochgeladen

    httpBL [ Dateien auflisten ] [ Install Mod ]

[ Zurück ]

If i click on [Install Mod] Result is...

QuoteForbidden

You don't have permission to access /smf/index.php on this server.

Ähm  :o i have permissions at the /smf/index.php I try

The package-manager contains a functions to set permissions - i'm use it, but same result  :(

The Browserline is :
<server>/smf/index.php?action=admin;area=packages;sa=install;package=httpBL_v2_5_1.zip

Is there a "unormal way" to install it ?

Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2011, 03:05:09 AM
@haiduk

I agree with busterone, you should try to add as well the mod Anti-Spam Verification Questions (http://custom.simplemachines.org/mods/index.php?mod=1516). Just one of those questions and you will see the number of spammers registered going to zero (or almost zero).

You should do also a small change in your warning.php page to stop a few more spammers. We discovered a few months ago a new generation of spammers a little more clever than the old ones. These new spammers have found a way to pass mod httpBL and this change I am talking about stop them.

That problem was first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

And I suggested him the small change in the warning page to sort the problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023

=================

@pidhunter

That problem with the permissions you are talking about is a very well known problem in SMF. It happens hundreds of times.

There are a lot of ways to install a mod when you have this problem, but I think the easiest one (if you have no problem editing manually a few PHP files) is to parse the mod. If you haven't done this before, what you need to do is:

- Go to the mod's page http://custom.simplemachines.org/mods/index.php?mod=2155

- Look at the top - right side, where it says "Download this mod"

- Underneath that choose the actual mod (not the addon or the language packages but the actual "httpBL_v2_5_1.zip").

- Under that you will see a line that says "Manual Install Instructions for SMF". Choose there your SMF version (in your case 2.0.1) and press the button that says "Parse".

- You will see a page with all the manual edits you need to do to install the mod, so just follow the instructions.

Anyway all that process is a lot easier to explain if we can talk live (for example through Skype). I got an email yesterday from somebody from Germany asking me if I would mind a few questions through Skype. Was it you?

If it was you I answered you I was going to be yesterday almost all day long connected to Skype, but I was waiting there and didn't see you. I am connected to Skype almost every day for a lot of hours. I only close it when I need to go out to do something, so if you see me there try to give me a ring and I will give you a hand with that.
Title: Re: httpBL
Post by: haiduk on December 14, 2011, 04:41:25 AM
Quote from: snoopy_virtual on December 14, 2011, 03:05:09 AM
I agree with busterone, you should try to add as well the mod Anti-Spam Verification Questions (http://custom.simplemachines.org/mods/index.php?mod=1516). Just one of those questions and you will see the number of spammers registered going to zero (or almost zero).
Thanks!  The combination of the three mods, Stop Spamer, HTTP:BL, and Anti-Spam Verification Questions seems to have done the trick.

Quote from: snoopy_virtual on December 14, 2011, 03:05:09 AM
You should do also a small change in your warning.php page to stop a few more spammers. We discovered a few months ago a new generation of spammers a little more clever than the old ones. These new spammers have found a way to pass mod httpBL and this change I am talking about stop them.
I made that change too.  Should be fine as long as the spammer doesn't guess the number. 
Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2011, 04:52:16 AM
Quote from: haiduk on December 14, 2011, 04:41:25 AM
I made that change too.  Should be fine as long as the spammer doesn't guess the number.

They have no way of guessing it and anyway, just in case, you can change the number every now and then if suddenly you see too many suspicious activity in your forum.  ;)
Title: Re: httpBL
Post by: haiduk on December 14, 2011, 04:29:30 PM
To quote Columbo, "Just one more thing...."

I'm using an "Admin Only" tinyPortal block that has links to some of the more common housekeeping functions.  I'd like to display the number of entries in the spammer lists or even just BOLD the link to HTTP:BL if there are any entries.

Is there a php function that returns the number of entries in the spammer/human lists?  or even a simple SQL query I could use to return that value?
Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2011, 05:06:01 PM
Read the question Gargoyle asked here:

http://www.simplemachines.org/community/index.php?topic=283309.msg3135256#msg3135256

And then read my answer after that.

I think that could help you with that.
Title: Re: httpBL
Post by: haiduk on December 14, 2011, 05:46:13 PM
$modSettings['httpBL_count'] returns total caught to date.

I'm looking for the number of entries that are currently in the log.   For example, if the logs have been cleared it would be zero.  I want to bold my link to HTTP:BL and show the current number of entries in the logs.
Title: Re: httpBL
Post by: haiduk on December 14, 2011, 06:56:10 PM
Is there a more efficient way of doing this? (running this code in a php TinyPortal block)

global $db_prefix;
$request = db_query("SELECT COUNT(*) FROM {$db_prefix}log_httpBL", __FILE__, __LINE__);
$row = mysql_fetch_row($request);
$spamCount = $row[0];
mysql_free_result($request);
echo $spamCount;

$spamCount contains the number of entries in the table.  It contains a total of both spammer records and the human records.  How can I single out and count the spammer records versus the human records?
Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2011, 07:29:07 PM
That code is ok to get the total in all the 3 logs (spammers, humans and errors)

You could write it like this if you want (not a big difference, but a little better though):


global $db_prefix;
$request = db_query("SELECT COUNT(*) FROM {$db_prefix}log_httpBL", __FILE__, __LINE__);
list ($totalSpamCount) = mysql_fetch_row($request);
mysql_free_result($request);
echo $totalSpamCount;


To get the entries in the spammers log change the query to:


$request = db_query("SELECT COUNT(*) FROM {$db_prefix}log_httpBL WHERE stopped = 1", __FILE__, __LINE__);


To get the ones in the humans log use stopped = 0 and for the errors log use stopped = 2
Title: Re: httpBL
Post by: haiduk on December 14, 2011, 08:00:48 PM
Quote from: snoopy_virtual on December 14, 2011, 07:29:07 PM
...

$request = db_query("SELECT COUNT(*) FROM {$db_prefix}log_httpBL WHERE stopped = 1", __FILE__, __LINE__);


To get the ones in the humans log use stopped = 0 and for the errors log use stopped = 2
Perfect!  I really appreciate your time and effort on this project.  Thanks Snoopy.
Title: Re: httpBL
Post by: snoopy_virtual on December 15, 2011, 02:21:46 AM
You're welcome  ;)
Title: Re: httpBL
Post by: SD-X on January 09, 2012, 07:35:58 PM
All good on SMF 2.0.1 and 2.0.2! Nice work man!
Title: Re: httpBL
Post by: Kreator on January 11, 2012, 07:37:43 AM
Many thanks for this great mod!


I have been using it for a couple of days now and the Spammer log tells me its caught over 70 potential spammers ( no Harvesters yet)


However, it may be me, or perhaps I hav`nt set this up correctly but,  if I go to the HoneyPot Project and my personal Page it tells me I have not caught any body yet just that I have one functioning honeypot. have I placed any links in my pages etc


I have been adding hidden links in all my posts etc  pointing to the honeypot on the root dir is this right.


Your tutorial on setting this up falls on this subject .


I hope you can help me with this small query, many thanks.
Title: Re: httpBL
Post by: snoopy_virtual on January 11, 2012, 08:34:03 AM
If you put hidden links to your honeypot in all your posts you will end up with too many links per page. Normally only one link per page is enough.

In the tutorial I explained how to add one link to the honeypot in every page in your forum. You only need to be sure you have that link in the index.template.php file of your theme.

Anyway in the tutorial I only explained how to do it if you are using the old SMF 1.1.x, because I wrote that tutorial almost 3 years ago and that was what every body were using.

If you are using the new SMF 2.0.x (as I suppose) you don't need to do that. You just need to be sure (while installing the mod) to click the option to install the mod for all the themes you have in your forum and the installer will do every thing for you.

QuoteI have been using it for a couple of days now and the Spammer log tells me its caught over 70 potential spammers ( no Harvesters yet)

However, it may be me, or perhaps I hav`nt set this up correctly but,  if I go to the HoneyPot Project and my personal Page it tells me I have not caught any body yet just that I have one functioning honeypot.

The number of spammers stopped by the mod you can see in your logs are spammers that were already known. They were caught initially by somebody else in another honeypot and now they are "known spammers".

The number you can see in your personal Page at HoneyPot Project is the number of new spammers (not known before) you have helped to recognise. And obviously it will take some time before you get something there.

For example, after using this mod for 3 years in 10 different forums, I can see in the logs inside my forums the mod has stopped around 27.000 spammers but in my personal Page at HoneyPot Project it says I have helped to recognise 162 harvesters.
Title: Re: httpBL
Post by: Kreator on January 11, 2012, 01:52:42 PM
Thanks for the advice, now I know, yes it is in my index template so I need worry no further!
Title: Re: httpBL
Post by: DarkAngel612 on January 16, 2012, 12:27:07 AM
I have been getting this error in the error log
8: Undefined index:  httpBL_unknown
File: /home/xxx/public_html/xxx/Sources/httpBL_Subs.php
Line: 674

how do I fix this please.

smf 1.1.16
httpBL v 2.5.1

Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2012, 01:20:14 PM
That looks like a mistake in the language files.

Look for the folder Themes/default/languages

Inside it look for the file Modifications.english.php

An inside it check that you have a line saying:


$txt['httpBL_unknown'] = 'unknown';


If you are using other languages in your forum or if you cannot find that line, let me know and I will tell you what to do.

Apart from that, check also inside the particular Theme you are using in your forum and look for the folder Themes/yourTheme/languages

Inside it check that there is NO file called Modifications.english.php or Modifications.any.other.language.php. If there are any, let me know and I will tell you what to do.

The files Modifications.whatever.php should be only inside the default Theme folder and shouldn't be any other copies anywhere else.
Title: Re: httpBL
Post by: DarkAngel612 on January 16, 2012, 04:57:20 PM
I thought it might have been the modifications file missing something but it is not...the line is showing in the file

I went thru all the themes just in case and found some with an modifications file and removed them so hope now the error is gone...we use only english, now just have to get rid of a tpshout.php error that has cropped up  with its update...lol

thanks
Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2012, 05:13:43 PM
If you find any Modifications.english.php file inside any Theme you are not supposed to delete it just like that, because maybe there are lines inside it that are needed for other mods.

You are supposed to compare any file you find with the one inside the default Theme and merge them. Look for missing lines from one file and copy them into the other one.

When there are no missing lines left you can delete those files and leave only the one in the default folder.
Title: Re: httpBL
Post by: DarkAngel612 on January 16, 2012, 08:05:09 PM
you know normally I do just that but can we say totally stupid now...I will go in and find their originals and see what -- if any-- were needed.

thanks for your patience.
Title: Re: httpBL
Post by: rickmatt on January 22, 2012, 10:49:43 AM
I loaded httpBL a few days ago and when it works, it works very well.  But it seems to work for awhile then it stops.  It worked all day on day 1, then stopped about midnight EST, then started working again on day 2 at about 11:30AM EST, then stopped at about midnight on day 2.  Today is day 3 and I haven't caught a spammer in almost 11 hours.

Does anyone know what the problem might be?

Thanks.
Title: Re: httpBL
Post by: busterone on January 22, 2012, 10:52:54 AM
I ask this for clarification-  How do you know it isn't working? It is possible that no spammers actually visited your site during that time.
Do you have anything else that indicates that it isn't working?
Title: Re: httpBL
Post by: rickmatt on January 22, 2012, 01:11:45 PM
Great question Busterone.  I should have been more clear.

I admin this forum for a client, but I don't moderate it.  We've had a problem with spam for awhile, but just recently decided to go with a black list for spammers.

I implemented on Friday, and the moderators were amazed.  Spam registrants dropped to zero.  Then at midnight on Saturday morning, spammers started trying to register again, and they were getting through, while the httpBL logs showed no activity at all.  The moderators were thrilled, then disappointed when spammers returned.

During the two periods while httpBL was working, we caught 190 spammers.  I haven't done the calculations, but it was something like one new spammer blocked every 5 minutes or so.  Then a 12 hour gap with no spammers caught at all.

So that's why I'm wondering if there is something wrong -- we see no spammers when we are showing traps in the logs, and we see spammers attempting to register when there are no attempts recorded in the httpBL logs.

Thanks for your response, I hope that I was more complete this time.

Thanks.
Title: Re: httpBL
Post by: snoopy_virtual on January 22, 2012, 01:16:41 PM
You may have a problem first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023

Try it to see if it helps you out.
Title: Re: httpBL
Post by: DarkAngel612 on January 22, 2012, 05:58:58 PM
Quote from: snoopy_virtual on January 22, 2012, 01:16:41 PM
You may have a problem first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909 (http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909)

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023 (http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023)

Try it to see if it helps you out.

I use this with stop spammer mod along with others...lol my question is this, after updating to 1.1.16 (all our forums still at that stage) I found that I had to reinstall all mods several times to get them to work (meaning fresh upload of all forum files then reinstalling after removing from packages folder too).

This mod had to be done 4 times before I started seeing in the forum error log area anything about spammers not being allowed.

Is that where I should be looking? Also the stop spammer little icons no longer change color, even with some of the ones that do register that when checked manually are indeed spammers...according to project honeypot and SFS

Do you think that change will help me too...I have daily about 60+ pages to delete of nothing but sorry ...you are not allowed...then the type of spammer they be.
Title: Re: httpBL
Post by: snoopy_virtual on January 22, 2012, 06:07:48 PM
Yes, everybody should do that change.

I should add it to the tutorial.
Title: Re: httpBL
Post by: DarkAngel612 on January 22, 2012, 06:25:37 PM
thanks sugar you are a gem.
Title: Re: httpBL
Post by: SD-X on January 22, 2012, 07:45:16 PM
Quote from: DarkAngel612 on January 22, 2012, 06:25:37 PM
thanks sugar you are a gem.
D:
Title: Re: httpBL
Post by: rickmatt on January 22, 2012, 10:11:40 PM
Thanks for the advice.   As recommended, I added the additional calculation in my warning page.  I also loaded the StopSpammer mod.  We'll see how this affects spam and the workload on our volunteer moderators.

But back to my original issue, is it possible that the project honeypot database was offline for 11-12 hours on Saturday morning and 11-12 hours on Sunday morning?  It appears that httpBL just started allowing everything to get through for those periods, then started blocking spam again.
Title: Re: httpBL
Post by: busterone on January 22, 2012, 11:19:10 PM
It is possible. I haven't seen any evidence of it in the logs on my sites running httpBL, but it has happened before. There was a time about a year ago that the API was down about a day and Project Honeypot's main site was down for several days longer due to some server issues.  I don't remember if there was anything in the httpBl errors log at that time though.
Title: Re: httpBL
Post by: rickmatt on January 25, 2012, 08:54:52 AM
Still no luck.  Every day since I installed the mod it works from about noon until midnight, then it stops working from midnight until about noon.

One of the developers at project honeypot took a look at the logs for my API key, and the honeypot is querying the api around the clock with no problems.

So I'm going to uninstall the mod then reinstall and see what happens.
Title: Re: httpBL
Post by: snoopy_virtual on January 25, 2012, 01:16:19 PM
Now it makes no sense at all.

I thought it was a problem with honeypot's servers, but you have already talked with one of their developers and apparently there is no problem there.

Anybody else have seen also a similar problem? (the mod going on and off in a 12 hours cycle)
Title: Re: httpBL
Post by: SD-X on January 25, 2012, 01:38:56 PM
I haven't seen any issues yet, but I have multiple forms of protection running, so I'll keep an eye out.
Title: Re: httpBL
Post by: busterone on January 25, 2012, 05:19:40 PM
That is indeed a very strange behavior. I have not seen anything like that on any of the forums that it is installed on for me either.  :o

@rickmatt-
What other mods do you have installed, or also, do you have any custom coding that is not standard to SMF?
Any odd cron jobs, or anything whatsoever that we can look at as possible culprits?
Title: Re: httpBL
Post by: DarkAngel612 on January 25, 2012, 06:45:38 PM
I have httpbl, stop forum spam, honeypot, stop spammer (hope that all these are not overkill) but I did noticed that I had accidently inserted the honeypot api into the sfs spi slot and now that they are different and correct the mod works REALLY well...lol

Prior to this we hardly had any reports anywhere

I go to the report section and there are pages after pages of names...should I be clearing out the log daily? or not clear it at all.

I go to forums own error logging and that is where I see the bots that get stopped and told they can no venture forth and also where some that maybe attempted to reg are told they can not but I also see those that have offending IP's that have been caught elsewhere  and get a statement that they are spammers to notify admin.

This is a great addition to stopping our dust bunnies meal (they get to eat spam(mers) but are a bit hungry at the moment...lol

Thanks for your hard work
Title: Re: httpBL
Post by: busterone on January 25, 2012, 07:01:02 PM
Are you saying that you have both Stop Forum Spam and Stop Spammer installed at the same time? 
This mod- http://custom.simplemachines.org/mods/index.php?mod=1519   and
this mod? - http://custom.simplemachines.org/mods/index.php?mod=1547  ?

If I am reading you correctly, yes, it is overkill. Both mods work extremely similar and both query the same database at the Stop Forum Spam Site.
It is a possibility that the two could cause conflicts where one or the other, or both will not always work correctly.

Using Stop Spammer alongside httpBl along with registration verification questions is sufficient in my personal opinion.  :)
Title: Re: httpBL
Post by: DarkAngel612 on January 25, 2012, 07:29:00 PM
Well I was wondering but the drop in spammers has dropped significantly with all installed so was not sure.
Title: Re: httpBL
Post by: busterone on January 25, 2012, 08:02:00 PM
If you are not getting any errors in your log, and spammers are not getting in, then if it works for you, it works.  :)
The only other negative that I can think of is the extra load on your hosts resources. Both mods doing almost exactly the same thing means double the queries for the same info.
Title: Re: httpBL
Post by: DarkAngel612 on January 25, 2012, 08:57:59 PM
that's true about the "heaviness" but no  we have had a BIG drop in spammers on both our sites and the others I manage are all doing well.

of course need I say that is a miracle since usually our own site is the contrary one with updates or mods...what works for other site immediately usually gives us problems but not this time.
Title: Re: httpBL
Post by: rickmatt on January 26, 2012, 09:52:32 AM
I'm running the following:

SMF 2.0.2
httpBL 2.5.1
Stop Spammer 2.3.9

It's running on HostGator shared hosting.

Since I loaded httpBL, life has been much better for our moderators, but they remarked that there were zero spammers in the PM but tons of spammers in the AM.  That's how I realized that httpBL wasn't doing its thing for half the day.  I then loaded Stop Spammer, and that helped when httpBL let stuff through.

I reinstalled httpBL yesterday morning at about 9:30 EST.  It didn't catch anyone until almost noon, then caught spammers until almost midnight (105 spammers caught) but nothing since then.  Once again, Stop Spammer picked up the slack.

Strange, huh?
Title: Re: httpBL
Post by: busterone on January 26, 2012, 06:41:13 PM
It is indeed.  There is this possibility though. There are always spammers that have been caught by Project Honeypot and are listed there, but have not been reported at Stop Forum Spam, and of course, there are those listed at SFS that are not listed at HoneyPot.  Spammers often find new IP ranges to use as well, so there will always be new ones that neither database knows anything about yet. If they keep on spamming with those ranges they will eventually get noticed by Project Honey Pot and will get reported to SFS.

Spammers also work in waves sometimes too. I have watched them hit my honeypot sites for the last year, and they will come in droves for several hours, then go silent for hours. 

No one else has reported this behavior previous to you, so this is all new.
The only ideas I can think of at this time is that they were on a slow time, and at the same time, the spammers that got past httpBl before you installed Stop Spammer were simply not listed at Project HoneyPot. 

Did you log in to Honeypot and do a search for any of the ip addresses that httpBL did not catch? I am curious about that as well, since the staff at Honeypot confirms that your API was connecting to their database.
Title: Re: httpBL
Post by: nutn2lewz on February 03, 2012, 02:14:55 AM
Quote from: snoopy_virtual on January 25, 2012, 01:16:19 PM
Now it makes no sense at all.

I thought it was a problem with honeypot's servers, but you have already talked with one of their developers and apparently there is no problem there.

Anybody else have seen also a similar problem? (the mod going on and off in a 12 hours cycle)

Same problem with my site. I installed the mod three days ago. The first night it stopped working (no logged hits) from approximately midnight to noon. The second night it worked all night. Tonight it is not working again - no logged hits since shortly after midnight.

Barry
Title: Re: httpBL
Post by: nutn2lewz on February 03, 2012, 05:04:43 PM
I contacted the Honey Pot Project about this problem. Here is their response ...


-----
I've looked into this for someone else and found the exact same thing that I'm seeing with your key. During the time where you are not seeing the logging I am seeing queries from you.

Attached are excerpts from the logs from two of the name servers showing the time and IP of the queries with your key.

What would be interesting is to see what a netstat on your box would show during the times the log isn't showing the queries. Also, what happens if you manually run a query like dig (IPkeygoeshere).edit.edit.edit.edit.dnsbl.httpBL.org
-----


I looked at the logs he attached and I can see thousands of queries to the Honey Pot servers during the time when this mod is supposedly not working (logging anything) on my site. I will try his suggestions the next time my log seems to quit. Maybe it is just the logging in the mod that is not showing up during this time period?

Barry
Title: Re: httpBL
Post by: snoopy_virtual on February 03, 2012, 05:33:23 PM
I just had an idea about it. I would like to check if that problem has anything to do with the cache of your forum.

To test if it's the cache, go to Admin => Configuration => Server Settings => Caching  and set the Caching Level to "No caching".

Leave it like that for a couple of days and check if the mod is working with the cache off or if the problem is still the same..

Title: Re: httpBL
Post by: nutn2lewz on February 04, 2012, 02:55:31 AM
Quote from: snoopy_virtual on February 03, 2012, 05:33:23 PM...
To test if it's the cache, go to Admin => Configuration => Server Settings => Caching  and set the Caching Level to "No caching"....

I've never had caching enabled in my forums so I doubt that is the problem. I will work with the Honey Pot rep by sending him some netstats and digs but I can't do it tonight because ... my logging is working correctly tonight. On night one it stopped working, night two it worked, night three it stopped working, and night four it works. Go figure!

At first I thought the logging might stop working due to my nightly server scans (rkhunter, etc.) but those scans do not start running until 01:00 and my httpBL logs seems to stop working at about 00:20 +/- 15 minutes. And the logs seem to stop every other night but I run my scans every night.

I think the mod might still be working from midnight until noon because my hourly page views do not increase during this time. If spammers were getting through, my page views would increase during that time period. Right now I am guessing that the mod still works during this time, just the logging stops working.

Thank you for this mod. But at the same time, I'm a little upset because the page views in my forum have dropped by about 17,000 page views per day since I installed your mod. The good news is that the spammers are being kept away ... the bad news is that my forums now look less attractive to advertisers because of the lowered page views! I also did multiple searches on the 'Website' field of the 'Search for members' page looking for spam words such as Viagra, cialis, lexapro, pharmacy, sale, bonus offer, casino, etc. and I deleted over 1,000 member accounts out of the 10,000 members in my forum. 10% of my registered members were spammers. So both my page views are down and my membership is down!

Barry
Title: Re: httpBL
Post by: snoopy_virtual on February 04, 2012, 04:17:31 AM
Quotethe bad news is that my forums now look less attractive to advertisers because of the lowered page views!

Do you put in your site the real number of page views?

In all my sites I keep the real statistics secret (I am the only one knowing the real numbers) and I advertise really big numbers instead. All of them false of course!  ;D

QuoteI've never had caching enabled in my forums so I doubt that is the problem.

Try then changing the cache to level 1 (the recommended default option) to see if it makes any change in the mod.

Somehow I suspect the problem has something to do with the cache. Maybe I'm wrong though.

QuoteI also did multiple searches on the 'Website' field of the 'Search for members' page looking for spam words such as Viagra, cialis, lexapro, pharmacy, sale, bonus offer, casino, etc. and I deleted over 1,000 member accounts out of the 10,000 members in my forum.

You haven't got my other mod StopSpammer? It's very good to scan members in your forum and find our the spammers already registered.
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 09:37:32 PM
OK totally confused here. We have httpBL on our SMF site working perfect.  I just setup a Cron job in my cPanel and for some reasom httpBL is blocking me from running the file.  Here is the error the cron job returns.  Is there something I need to do to my httpBL setup to get this to stop blocking my Cron job??

<br />
<b>Warning</b>:  Missing argument 1 for httpBL_look_for_empty_ip(), called in /path-to-site/Sources/httpBL_Subs.php on line 680 and defined in <b>/path-to-site/Sources/httpBL_Subs.php</b> on line <b>517</b><br />
<br />
<b>Notice</b>:  Undefined variable: ip in <b>/path-to-site/Sources/httpBL_Subs.php</b> on line <b>519</b><br />
Title: Re: httpBL
Post by: SD-X on February 26, 2012, 09:39:59 PM
Sounds like there's a conflict in there.
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2012, 09:51:26 PM
@rolltidega

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:


$ip = httpBL_look_for_empty_ip();


Replace it with:


$ip = httpBL_look_for_empty_ip($ip);


Save the modified file and upload it to your forum.

Sorry for the bug. It was my mistake and it will be sorted in the next version.

I should have sorted that bug already, we found it ages ago, but never find time to do a new version.
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 09:55:43 PM
Thanks Snoopy.  I hope that fixes it!  :D
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 10:06:05 PM
OK the error is gone, but httpBL is still blocking my Cron job.  The email my Cron job sent me says:

Status: 302 Moved Temporarily
X-Powered-By: PHP/5.2.17
Set-Cookie: PHPSESSID=6b1f5c36f6ec32761b3123a82022793f; path=/; domain=.my-web-site
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-Control: private
Location: http://my-web-site/warning.php
Content-type: text/html

The Spammers log shows the IP as unknown at the same time the Cron job runs.   Any ideas?
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2012, 10:24:11 PM
To understand why that's happening I should see all the cron job and see exactly what it's doing.

Where did you get that cron job?

Did you wrote it yourself?

Is it in PHP or any other programming language?

Could you send me an email or a PM explaining it a little more if you don't want to put all that info publicly here?
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 10:27:51 PM
PM sent...
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2012, 11:22:56 PM
File modified sent.

Does it work?
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 11:24:55 PM
I am testing it now...
Title: Re: httpBL
Post by: rolltidega on February 26, 2012, 11:30:50 PM
Same problem.   :(
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2012, 12:07:49 AM
Did you try the second file I sent you?

Is it working now?
Title: Re: httpBL
Post by: rolltidega on February 27, 2012, 12:10:24 AM
Yes the 2nd file did the trick!   Thanks so much!!
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2012, 12:17:33 AM
You're welcome.

As I said in my email there were only 2 possibilities. If the first one failed then the second one should work.
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 05:45:19 AM
im trying to install this via package  and i keep getting this error Fatal error: Allowed memory size of 33554432 bytes exhausted (tried to allocate 105568 bytes) in /home/....../public_html/board/Sources/Class-Package.php on line 90

are they any way you can help me get this mod installed on my forum thanks
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 06:32:12 AM
ok i got this installed but i need to know the best settings for the internal settings right now they are all at 0 thanks guys
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2012, 07:28:55 AM
If all the settings are set to 0 it means you didn't install it properly.

How you did it? Using the Package Manager or manually using the parser?

Anyway the recommended settings are:

Number of days to consider good an IP: 90
Threat level considered bad: 10
Threat level considered VERY bad: 30
Minutes to keep the data in the cache: 5
Hours until an IP needs to prove again it's human: 24

Try to put that and save the settings and see if you get an error saying the database was not done properly.
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 07:32:40 AM
used the parser used your settings it went green says connection good etc i hope i didnt do anything wrong
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 07:35:41 AM
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.

thats what it said after i did what u said
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 07:42:02 AM
oh yea also its says everythign is good but the honey pot keyword is still empty it didnt put a word there is that normal? or do u have any suggestions for a word i can put there
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2012, 07:44:49 AM
Quote from: bluedragon2k9 on March 05, 2012, 07:35:41 AM
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.

thats what it said after i did what u said

Quote from: bluedragon2k9 on March 05, 2012, 07:42:02 AM
oh yea also its says everythign is good but the honey pot keyword is still empty it didnt put a word there is that normal? or do u have any suggestions for a word i can put there

Using the parser, the last step is to upload the file install_1.php (if you are using SMF 1.1.x) or the file install_2.php (if you are using SMF 2.0.x) and execute it.

Executing that file is what does all the necessary changes to the database and set the initial settings.

Did you do that last step?
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 07:48:27 AM
nope might be why i just found this error Table '\_smf4.smf_log_httpBL' doesn't exist
File: /home/ohiove/public_html/board/Sources/httpBL_2_Config.php
Line: 350
so where do i uplaod it to exactly?
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 07:55:34 AM
ok i took care of it i can view the logs now and it said it installed the tables etc but the box Keyword of your Honey Pot link:
is still blank is that normal?
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2012, 08:10:04 AM
How did you installed your Honey Pot?

Did you follow my tutorial?

All that is explained there:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 08:19:10 AM
ok yea its working right but my word it is using is weird its "anything" should i change that and if so u fgot any suggestions u can give me
also thanks for all the help its been appreciated
Title: Re: httpBL
Post by: DarkAngel612 on March 05, 2012, 12:49:05 PM
from his outstanding tutorial:

Quote
The name of this file is different and unique for each honey pot but, for this example we are doing, let's say that the name of your file is yourhoneypot.php.
Upload this file via FTP to the root of your server, that is, to the root folder where you usually upload all the files you want to be seen in your site. Depending on the kind of server you are using the name of this folder will be "public_html", "httpdocs", "htdocs", "www" or something like that. After you have uploaded the file, check that the file permissions have been set correctly (chmod 644).
Now you need to activate your honey pot. To do that you just need to visit it once. That is, in this example we are doing, go to the page "http://www.yourwebsite.com/yourhoneypot.php", and press the activation button you will find there.
If everything has been done properly, after pressing this activation button you will be redirected back to Project Honey Pot to a "Congratulations" page confirming that your honey pot is already installed, active and working and also giving you some instructions about the links to your honey pot that you need to place in your web pages.
Don't you worry too much about these instructions, because the mod will place those links for you later, but it won't be a bad idea anyway to write down the keyword they are suggesting you here for your links.
That is: If they tell you that a possible link you can place is:
 
<a href="http;//www.yourwebsite.com/yourhoneypot.php">key_word</a>


if you uploaded the file that honeypot sent you and activated it they should have given you a keyword to use...

that is the one you enter on that line where "anything" is written into
Title: Re: httpBL
Post by: bluedragon2k9 on March 05, 2012, 11:08:40 PM
ok i got this all set up thansk al lfor the help now Snoopy i got a question you have posted previously that u use crawltrack .do use crawl track and crawl protect or just crawl track?
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2012, 08:39:31 AM
Just Crawltrack
Title: Re: httpBL
Post by: bluedragon2k9 on March 06, 2012, 10:02:59 AM
ok thank you for answering and do i just add the code to my index.template.php or settings.php?
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2012, 10:17:11 AM
Add it to index.php and SSI.php

Just at the beginning of the files.

Look for:


<?php

/**
 * Simple Machines Forum (SMF)


Replace with:


<?php
$crawltsite
=1;
require_once(
"/path_to_your_crawltrack/crawltrack.php");
/**
 * Simple Machines Forum (SMF)


Change the path with the one you actually have.
Title: Re: httpBL
Post by: jeffharding on March 15, 2012, 02:59:54 AM
Excellent plugin... been snagging the spammers left and right and I have not noticed one getting through.

Since the first of the year though, the number of spammers has increased to 100 per week, vs. 1 a week last year.  What's up with that?

Question... how can I delete them all at once instead of going page by page of the list of spammers that are awaiting approval?

Thanks!

Jeff
Title: Re: httpBL
Post by: snoopy_virtual on March 15, 2012, 04:57:13 AM
Mod httpBL never left spammers waiting for approval. I think you must be talking about my other mod StopSpammer.

If you have both mods and you are still getting too many spammers going through (as it seems if you have lots waiting for approval) it means you have something wrong there. Mod httpBL is not working properly for you.

Try reading this problem first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023

Try it to see if it helps you out.

After that I would suggest you to add to your forum a good anti-spam question. Any spammer that can pass mod httpBL and gets to the registration page is usually stopped if you have a good anti-spam question, so normally mod StopSpammer shouldn't be working so much.
Title: Re: httpBL
Post by: DarkAngel612 on March 15, 2012, 05:24:35 PM
Quote from: snoopy_virtual on March 15, 2012, 04:57:13 AM
Mod httpBL never left spammers waiting for approval. I think you must be talking about my other mod StopSpammer.

If you have both mods and you are still getting too many spammers going through (as it seems if you have lots waiting for approval) it means you have something wrong there. Mod httpBL is not working properly for you.

not sure which one is the culprit...I am thinking stop spammer

not a biggie either but in 1.1.16 when a spammer (sites are set to admin allow only so no auto accepts) registered, it would show in the listing with the red magnifying glass...but now in2.0.2 there is no change in color of the magnifying glasses at all, for anything -- they all stay their default color. Some spammers await registration, like always, but when I check the IP or Username or email some are shown as listed in SFS  should it not be red in the forum?

Sometimes they are shown as ok but I still run at least the IP or name through google and at times they are found at hp or sfs but still the mods say they are not spammers.

I have hp, httbl, sfs, and stop spammer mods installed.
Title: Re: httpBL
Post by: jeffharding on March 15, 2012, 05:30:56 PM
Thanks Snoopy... that seemed to do the trick... for now, right?

I have two forums... I made the change on one and I have received only 1 so far today... I have been receiving 30 plus every day, so nice reduction!
The other one I did not make changes to is still streaming spammer signups, so I will make that same change and watch the numbers plummet!

Mahalo nui, my good man!!!

Aloha!

Jeff
Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2012, 04:31:32 PM
@DarkAngel612

Sorry, but I don't understand what you are saying. Could you explain your problem a little better?

Could you also tell me what is hp and sfs? I don't know those mods.

======================

@jeffharding

Glad yo hear it worked for you. Anyway I would insist in the ati-spam questions. Adding a good one to a forum normally stop 99% of the spammers so you could reduce a lot more the amount of spammers signups.

For example take a look at this anti-spam question (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&action=register&language=english) I have in one of my forums.

I have similar questions in all my forums and instead of dealing with one spammer a day (as you are just now) I normally have to deal with one spammer a year.
Title: Re: httpBL
Post by: DarkAngel612 on March 16, 2012, 05:10:16 PM
Quote from: snoopy_virtual on March 16, 2012, 04:31:32 PM
@DarkAngel612

Sorry, but I don't understand what you are saying. Could you explain your problem a little better?

Could you also tell me what is hp and sfs? I don't know those mods.

hp= httbl mod
sfs= stop forum spam

I also have simple .htaccess bot blocker mod

I used to have add honey pot to track IP but did not even try to add it back in.


As I said the notification icons would change color when the registered person was a known spammer, but now they all show the magnifying glass icon as blue for not spammer with no yellow for suspect nor red for spammer. I think those icons are from the stop spammer mod

the image shows you what I mean for this person that registered...when you view it is not labeled as spammer but when I click the ip magnifying glass it goes straight to stop forum spam and their naughty page.

Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2012, 05:31:13 PM
Yes, those icons with the magnifying glasses are from my mod Stop Spammer. Obviously it's not working properly for you.

To see exactly why it's not working properly I would need to check your forum more closely. Could you get me through Skype one of these days and we take a look at it?
Title: Re: httpBL
Post by: DarkAngel612 on March 16, 2012, 06:49:58 PM
I can try but I don't use any of the chatters hardly at all anymore...still do yahoo from yahoo site or google chat too...which is probably more accessible to me...lol

but I will soon, will send you a pm when I try to get to you...what time zone are you in -- I am central standard time
Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2012, 06:57:53 PM
I live in Spain, so I suppose I am 7 or 8 hours ahead.

I use normally either Skype, Yahoo or MSN, but anyone where we can use a microphone to talk is ok for me.
Title: Re: httpBL
Post by: DarkAngel612 on March 21, 2012, 05:59:06 PM
Just letting you know I am waiting for a spammer to register...LOL Whatever the reason, not sure what happened but it has suddenly started working on one of the other sites. Did nothing to it at all and the other day a suspected spammer actually showed its icons as yellow.

Maybe it will also behave on our main site, which is the one I am waiting for a spammer to appear on.

Will keep you posted.
Title: Re: httpBL
Post by: Lazybones on March 23, 2012, 05:01:46 PM
I was looking at the human warning page and was wondering if in future versions if you could allow us to configure the challenge and response questions... Thus making it more forum unique and harder to master for spammers? My humans log seems rather long where the questions where answered and the IPs don't belong to any members.



Title: Re: httpBL
Post by: snoopy_virtual on March 24, 2012, 05:42:38 AM
Quote from: Lazybones on March 23, 2012, 05:01:46 PM
I was looking at the human warning page and was wondering if in future versions if you could allow us to configure the challenge and response questions... Thus making it more forum unique and harder to master for spammers?

As I have explained a few times I am not using SMF now, so I am not going to add any improvements for my SMF mods. It's not easy to write code for software you are not using

As soon as I have some spare time I will do a final version for SMF sorting a few bugs we have found lately, but all the improvements I will do them only for the new versions I am doing for Wedge.

Quote from: Lazybones on March 23, 2012, 05:01:46 PM
My humans log seems rather long where the questions where answered and the IPs don't belong to any members.

That's because one of the bugs we have found and I have to sort in the final version I was talking about.

Try reading this problem first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023
Title: Re: httpBL
Post by: Lazybones on March 28, 2012, 11:22:55 AM
Thank-you for pointing the link to the fix... I actually had to search through many of your posts to find a reference to the forum you have switched to... Interesting..

However since you will not be maintaining this mod anymore and spam is a constant battle I have switched to the Bad Behavior mod which includes the same honeypot and is still under active development.

Keep up the good work in the mod community...
Title: Re: httpBL
Post by: snoopy_virtual on March 28, 2012, 12:07:35 PM
Don't understand what you mean. I left SMF more than a year ago but I have been here supporting everybody with problems. So I think I am maintaining this mod.
Title: Re: httpBL
Post by: Lazybones on March 28, 2012, 12:18:10 PM
Quote from: snoopy_virtual on March 28, 2012, 12:07:35 PM
Don't understand what you mean. I left SMF more than a year ago but I have been here supporting everybody with problems. So I think I am maintaining this mod.

I said maintaining, not supporting.

You stated your self that it is hard to write for a forum you are not using, and downloading the mod right now it clearly has a hole in it (although fixed through a manual means if you dig through this 87 page thread).

What happens if the next SMF security update breaks the mod?

The reason I switched to SMF years ago was the point and click security / mod management I no-longer wanted to be constantly editing forum code between releases and exploits so I can focus on content and my users...
Title: Re: httpBL
Post by: gisfreak on April 07, 2012, 11:23:53 PM
hello, my member report this error while he post and active in the forum

Warning: Cannot modify header information - headers already sent by (output started at /forum/Sources/Subs.php:4646) in forum/Sources/httpBL_Subs.php on line 128[/b]

[b]Warning: Cannot modify header information - headers already sent by (output started at /forum/Sources/Subs.php:4646) in forum/warning.php on line 218


any clue ?
Title: Re: httpBL
Post by: snoopy_virtual on April 08, 2012, 04:43:02 AM
With this information you give I can see your member was considered suspicious by the mod (because his data was inside the spammers database) and sent to the file warning.php to prove he is human.

He must has proved it, because you would never pass line 218 inside the file warning.php otherwise.

That line 218 inside the file warning.php was trying to change the headers to redirect your member to the last page he was visiting.

At the same time, line 128 of the file httpBL_Subs.php was trying to change the headers to add a value to the $_SESSION with the data found by the file warning.php (the fact that he is human) so he won't be bother again by the mod for at least 24 hours.

In both cases the mod couldn't modify the headers properly because you have something inside the file Subs.php in line 4646 that had already sent the header information.

I suppose you must have another mod that has modified the file Subs.php and is doing that, but cannot tell for sure unless you tell me what do you have inside that line 4646 of the file Subs.php.

Inside the original file Subs.php (without any mods) there is nothing sending headers when you are not suppose to.
Title: Re: httpBL
Post by: gisfreak on April 09, 2012, 03:58:37 AM
thanx, line 4646 on subs is empty, I attach it for you, please take a look
Title: Re: httpBL
Post by: snoopy_virtual on April 09, 2012, 09:41:04 AM
Somebody had added at the end of your file a new function called function enik_copy() used to hide the Simple Machines LLC copyright and substitute it for hidden links to the sites smfpersonal.net and allmxcars.com

I don't know if it was you who added that function or if it was some mod you have installed, but that function has been written by somebody called Enik. Anyway, whoever added that function there had done it wrong and that was causing your errors.

I have modified your file leaving that function but doing it properly and have attached it here.

You shouldn't have that problem again, but I suggest you don't use functions done by people who doesn't know what they are doing.

And if it was my forum I would delete that function. I don't like functions adding hidden links to sites I don't know.
Title: Re: httpBL
Post by: gisfreak on April 10, 2012, 04:00:29 AM
Enik is one of mods maker here, he make hide tag special mods, oh I see, I saw those links in the bottom of my forum, links when I hover to "2011 by enik" and "hide tag special"

thanx million, snoopy_virtual
Title: Re: httpBL
Post by: sles on April 18, 2012, 04:11:03 AM
My problem after upgraded smf to 1.1.16

Click "Spammers Log" Error
Table 'database.smf_log_httpBL' doesn't exist
File: /home/www/virtual/domain.com/htdocs/forum/Sources/httpBL_Config.php
Line: 295

Line: 298


        // Count the total number of log entries.
        $request = db_query("
                SELECT COUNT(*)
                FROM {$db_prefix}log_httpBL
                WHERE " . $query_where, __FILE__, __LINE__);


how to resolve?  Thank you

NOTE:

SMF Configured: $db_prefix = 'smf_';

MySQL Table:  'smf_log_httpbl'
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2012, 12:19:29 PM
I haven't got just now any test forum using smf 1.1.16 but it looks like the change from 1.1.15 to 1.1.16 must have been a big one, because I am getting reports from other mods that are also not working properly after an upgrade to 1.1.16

So, as soon as I have some spear time I will set up a test forum with 1.1.16 to see exactly what's going on an I will upgrade all the mods.

That may take some time though, because I have very few spear time these days so, in the mean time, try changing the value of $db_prefix from 'smf_' to 'database.smf_' and see if that sort your problem temporarily.
Title: Re: httpBL
Post by: butchs on April 18, 2012, 06:09:23 PM
Make sure it is set as a global before the function...

global $db_prefix;
:)
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2012, 07:34:19 PM
Of course it's global.

Why do you think it's been working for 4 years?
Title: Re: httpBL
Post by: sles on April 19, 2012, 06:02:54 AM
I changed the value of $db_prefix from 'smf_' to 'database.smf_'  still not work.

AND,


global $db_prefix;


Default set already.
Title: Re: httpBL
Post by: sles on April 19, 2012, 07:07:43 AM
UPDATED: I reinstall mod, it work fine.
Title: Re: httpBL
Post by: Ronald_1938 on May 03, 2012, 11:39:49 PM
I am getting some errors as you can see below:


Quotehttp://www.theover50goldengroup.com/smf/index.php? (http://www.theover50goldengroup.com/smf/index.php?) (http://www.theover50goldengroup.com/smf/Themes/ds-natural_20/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=message;value=MjogTWlzc2luZyBhcmd1bWVudCAxIGZvciBodHRwQkxcX2xvb2tcX2ZvclxfZW1wdHlcX2lwKCksIGNhbGxlZCBpbiAvaG9tZS90aGVvdmVyZy9wdWJsaWNcX2h0bWwvc21mL1NvdXJjZXMvaHR0cEJMXF9TdWJzLnBocCBvbiBsaW5lIDY4MCBhbmQgZGVmaW5lZA==) 2: Missing argument 1 for httpBL_look_for_empty_ip(), called in /home/theoverg/public_html/smf/Sources/httpBL_Subs.php on line 680 and defined (http://www.theover50goldengroup.com/smf/Themes/ds-natural_20/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=file;value=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvaHR0cEJMX1N1YnMucGhw)  File: /home/theoverg/public_html/smf/Sources/httpBL_Subs.php (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;file=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvaHR0cEJMX1N1YnMucGhw;line=517)
Line: 517
Quote
http://www.theover50goldengroup.com/smf/index.php?action=login2 (http://www.theover50goldengroup.com/smf/index.php?action=login2) (http://www.theover50goldengroup.com/smf/Themes/ds-natural_20/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=message;value=ODogVW5kZWZpbmVkIHZhcmlhYmxlOiBpcA==) 8: Undefined variable: ip (http://www.theover50goldengroup.com/smf/Themes/ds-natural_20/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=file;value=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvaHR0cEJMX1N1YnMucGhw)  File: /home/theoverg/public_html/smf/Sources/httpBL_Subs.php (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;file=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvaHR0cEJMX1N1YnMucGhw;line=519)
Line: 519

Any ideas as to why I see these.  The mod. sure does work, stops them in there track, well the odd one slips in..

Would appreciate any kind of advice or help on this..

Ron..
Title: Re: httpBL
Post by: snoopy_virtual on May 04, 2012, 08:31:30 AM
It is a bug in the code.

While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:


$ip = httpBL_look_for_empty_ip();


Replace it with:


$ip = httpBL_look_for_empty_ip($ip);


Save the modified file and upload it to your forum.

Sorry  :-[
Title: Re: httpBL
Post by: Ronald_1938 on May 04, 2012, 10:03:33 AM
Thank you Snoopy, I have made the change and will see what happens..


By the way great mod..


Thanks Ron..
Title: Re: httpBL
Post by: daviloco on May 05, 2012, 05:23:00 PM
Hello snoopy_virtual. i have this errors in my forum...and your mod give me this errors..





Notice: Undefined index: bookmark in /home/tuxpelic/public_html/Sources/Subs.php on line 4376

Warning: Cannot modify header information - headers already sent by (output started at /home/tuxpelic/public_html/Sources/Subs-adkblocks.php:1) in /home/tuxpelic/public_html/Sources/httpBL_Subs.php on line 128

Warning: Cannot modify header information - headers already sent by (output started at /home/tuxpelic/public_html/Sources/Subs-adkblocks.php:1) in /home/tuxpelic/public_html/warning.php on line 218




Could you be checked?


Title: Re: httpBL
Post by: snoopy_virtual on May 06, 2012, 11:33:55 AM
Those warnings you get there are saying that mod httpBL cannot work properly because you have 2 errors:

- An error inside the file Subs.php (some index called bookmark in line 4376 not defined properly)

- And another error inside the file Subs-adkblocks.php (the file, at line one is sending the headers before it's supposed to do it)

I don't know the file Subs-adkblocks.php and I know that inside the original file Subs.php there is no index called bookmark so I suppose both must be from some other mods you are using that have not been done properly.

Send me both files so I can check them and correct those errors for you.

====================

By the way, if you prefer talking in Spanish, check this other thread: Ayuda con el MOD httpBL en español (http://www.simplemachines.org/community/index.php?topic=414747)
Title: Re: httpBL
Post by: Ronald_1938 on May 07, 2012, 02:23:17 PM
Snoopy it has been a few day now with no errors, now all of a sudden I started getting these errors, and quite a few of them.


See below..


Quote
http://www.theover50goldengroup.com/smf/index.php?action=login2
8: Undefined variable: ip
File: /home/theoverg/public_html/smf/Sources/httpBL_Subs.php
Line: 519




http://www.theover50goldengroup.com/smf/index.php?action=login2
2: Missing argument 1 for httpBL_look_for_empty_ip(), called in /home/theoverg/public_html/smf/Sources/httpBL_Subs.php on line 680 and defined
File: /home/theoverg/public_html/smf/Sources/httpBL_Subs.php
Line: 517


Any thoughts or ideas on this, corrections...


Ron..
Title: Re: httpBL
Post by: snoopy_virtual on May 07, 2012, 05:58:28 PM
I suppose you didn't correct this bug I told you last week:

http://www.simplemachines.org/community/index.php?topic=366399.msg3327443#msg3327443
Title: Re: httpBL
Post by: Ronald_1938 on May 07, 2012, 07:31:54 PM
Quote from: snoopy_virtual on May 07, 2012, 05:58:28 PM
I suppose you didn't correct this bug I told you last week:

http://www.simplemachines.org/community/index.php?topic=366399.msg3327443#msg3327443 (http://www.simplemachines.org/community/index.php?topic=366399.msg3327443#msg3327443)


Yes I did make the change, I posted the same time I did the change..below is like I did it..



   // If $ip is empty let's try to find it with more methods
   if ($ip == '')
      $ip = httpBL_look_for_empty_ip($ip);
   
   $values['ip'] = $ip;
   if ($values['ip'] == '')
Title: Re: httpBL
Post by: snoopy_virtual on May 08, 2012, 02:16:46 AM
It doesn't make sense.

Are you sure those errors are new ones appearing AFTER you modified the file httpBL_Subs.php?
Title: Re: httpBL
Post by: Ronald_1938 on May 08, 2012, 08:22:56 AM
Quote from: snoopy_virtual on May 08, 2012, 02:16:46 AM
It doesn't make sense.

Are you sure those errors are new ones appearing AFTER you modified the file httpBL_Subs.php?


According to my change log I did this on May 4th. see below.






 
Quote

Re: Changelog - Admin (http://www.theover50goldengroup.com/smf/index.php?topic=576.msg4193#msg4193) 
« Reply #43 on: May 04, 2012, 12:39:55 PM »

 

Made the following change.


It is a bug in the code.While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:

Code: [Select] (http://www.theover50goldengroup.com/smf/index.php?topic=576.30)$ip = httpBL_look_for_empty_ip();
Replace it with: 

Code: [Select] (http://www.theover50goldengroup.com/smf/index.php?topic=576.30)$ip = httpBL_look_for_empty_ip($ip);Save the modified file and upload it to your forum.
Title: Re: httpBL
Post by: Ronald_1938 on May 08, 2012, 08:25:20 AM
Snoopy here is my httBL_subs.php file.
Title: Re: httpBL
Post by: snoopy_virtual on May 08, 2012, 01:54:56 PM
That file is correct.

Are you sure you uploaded it correctly to your forum?

Try uploading it again overwriting the file already inside the Sources folder in your forum.
Title: Re: httpBL
Post by: lurkalot on May 08, 2012, 02:26:12 PM
Quote from: Oldcrow on May 08, 2012, 08:22:56 AM
Quote from: snoopy_virtual on May 08, 2012, 02:16:46 AM
It doesn't make sense.

Are you sure those errors are new ones appearing AFTER you modified the file httpBL_Subs.php?


According to my change log I did this on May 4th. see below.






 
Quote

Re: Changelog - Admin (http://www.theover50goldengroup.com/smf/index.php?topic=576.msg4193#msg4193) 
« Reply #43 on: May 04, 2012, 12:39:55 PM »

 

Made the following change.


It is a bug in the code.While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:

Code: [Select] (http://www.theover50goldengroup.com/smf/index.php?topic=576.30)$ip = httpBL_look_for_empty_ip();
Replace it with: 

Code: [Select] (http://www.theover50goldengroup.com/smf/index.php?topic=576.30)$ip = httpBL_look_for_empty_ip($ip);Save the modified file and upload it to your forum.

Oldcrow, that file on your server was last modified on the 22/04/2012   The one in your old directory (remember you moved SMF) is dated the 04/05/2012.  So you've added it to the wrong place.  ;)
Title: Re: httpBL
Post by: Ronald_1938 on May 08, 2012, 04:56:08 PM
Quote from: snoopy_virtual on May 08, 2012, 01:54:56 PM
That file is correct.

Are you sure you uploaded it correctly to your forum?

Try uploading it again overwriting the file already inside the Sources folder in your forum.


What I did was make the change manually..


I'll ask Mick to make the change and upload it. Then this should take care of it..
Title: Re: httpBL
Post by: Ronald_1938 on May 26, 2012, 02:34:09 PM
Snoopy I keep getting this one error for sometime now..

Quote(http://www.theover50goldengroup.com/smf/Themes/nexus8_smf202/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=url;value=P2FjdGlvbj13aG8=) http://www.theover50goldengroup.com/smf/index.php?action=who (http://www.theover50goldengroup.com/smf/index.php?action=who) (http://www.theover50goldengroup.com/smf/Themes/nexus8_smf202/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=message;value=ODogVW5kZWZpbmVkIHZhcmlhYmxlOiBzY3JpcHR1cmw=) 8: Undefined variable: scripturl (http://www.theover50goldengroup.com/smf/Themes/nexus8_smf202/images/filter.gif) (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;desc;filter=file;value=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvV2hvLnBocA==)  File: /home/theoverg/public_html/smf/Sources/Who.php (http://www.theover50goldengroup.com/smf/index.php?action=admin;area=logs;sa=errorlog;file=L2hvbWUvdGhlb3ZlcmcvcHVibGljX2h0bWwvc21mL1NvdXJjZXMvV2hvLnBocA==;line=439)
Line: 439

Any thoughts on this..
Title: Re: httpBL
Post by: snoopy_virtual on May 26, 2012, 06:05:34 PM
mmmm

No idea.

As far as I know it has nothing to do with any of my mods.

Can you send me your file "Who.php" so I can take a look at it?

You will find it inside the Sources folder of your forum.
Title: Re: httpBL
Post by: Ronald_1938 on May 26, 2012, 06:21:52 PM
Quote from: snoopy_virtual on May 26, 2012, 06:05:34 PM
mmmm

No idea.

As far as I know it has nothing to do with any of my mods.

Can you send me your file "Who.php" so I can take a look at it?

You will find it inside the Sources folder of your forum.


Sorry about this, I thought it was part of the program.


I did attach the who file for you.
Title: Re: httpBL
Post by: snoopy_virtual on May 27, 2012, 04:53:20 AM
Somebody has done a change there at line 422 and has done it wrong. That's what causes the error.

Ask whoever is doing those changes for you in your site if that change was a manual change or if it was done with a mod.

If it was done with a mod you would need to ask the guy who did the mod to correct it.

If it was done manually you can correct it also manually:

Inside the original SMF file (without any modification) the proper lines there are:


// Unlisted or unknown action.
else
$data[$k] = $txt['who_unknown'];


In your file somebody has modified them and you have:


// Unlisted or unknown action.
else
// $data[$k] = $txt['who_unknown'];
$data[$k] = 'Viewing the <a href="' . $scripturl . '?action=' . $actions['action'] . '">' . $actions['action'] . '</a>';


If you want that change to work properly without errors you should have;


// Unlisted or unknown action.
else
{
// $data[$k] = $txt['who_unknown'];
global $scripturl;
$data[$k] = 'Viewing the <a href="' . $scripturl . '?action=' . $actions['action'] . '">' . $actions['action'] . '</a>';
}
Title: Re: httpBL
Post by: Ronald_1938 on May 27, 2012, 10:27:47 AM
Thanks Snoopy, I feel it may have something to do we Tiny Portal.. I disabled who is online block and the errors seem to have stopped, been almost a day now..


But I will make the change as you say, and try again..


Thanks for the help, I appreciate this.


Ron..
Title: Re: httpBL
Post by: sles on May 29, 2012, 11:05:00 PM
same time as other browsers, load page error as below.

An Error Has Occurred!
Sorry Guest, you are banned from using this forum!


If didn't use MOD it work fine.
Title: Re: httpBL
Post by: busterone on May 29, 2012, 11:16:33 PM
You need to be a little more descriptive of your issue. If I understand what you are attempting to say, then this mod does not ban anyone, nor does not touch the SMF ban system. If you are seeing the message- "An Error Has Occurred!
Sorry Guest, you are banned from using this forum!", that is generated from the SMF ban system, either by IP, email address, or username triggers.
Title: Re: httpBL
Post by: jeffharding on June 13, 2012, 03:13:21 PM
Aloha!

One of my customers had registered with the forum with a particular IP Address 41.241.239.55 ...
but about 90% of the time he visits, the forum claims that he is coming through IP 196.25.255.195
and he is denied access with the attached warning or error page.

I have contacted the Honey Pot and Eric replied ...

**************
So I've done a little digging on this. It looks like both of those IPs are from the same network:
descr:        Telkom SA Limited
descr:        Integrated Network Planning
descr:        Private Bag X74
descr:        Pretoria
descr:        Gauteng
descr:        0001
country:      ZA
196.25.255.195 has a hostname of: wblv-ip-pcache-5-vif0.telkom-ipnet.co.za
41.241.239.55 has a hostname of: dsl-241-239-55.telkomadsl.co.za

Best guess is that his ISP is attempting to do some acceleration on their end with their cache host and it's the cache hosts IP that is listed. I say it's my best guess because I have no view into what his ISP is doing with his traffic. If you look at your access logs are you seeing traffic from both IPs or just the cache IP?
What are you using to query httpBL? Does it have an internal white list mechanism? Alternatively he can probably contact his ISP and let them know they have an abuse problem with that cache.
Best Regards,
Eric
******************************

Can I whitelist this IP Address or can I whitelist this user no matter what IP he comes from?

Thanks!

Jeff
Title: Re: httpBL
Post by: snoopy_virtual on June 14, 2012, 06:17:21 AM
http://www.simplemachines.org/community/index.php?topic=366399.msg2932344;topicseen#msg2932344
Title: Re: httpBL
Post by: locutusweb on June 21, 2012, 03:51:50 PM
Quote from: snoopy_virtual on October 19, 2011, 05:46:32 AM
This mod needs the table smf_log_httpbl to work properly, so when you install the mod, one of the first things it does is to check if that table already exists.

If that table already exists the mod is supposed to go to the next step and don't show any error (and if it doesn't exists is supposed to create it). You shouldn't get any error there.

I suppose they must have changed the way the Packages Manager works in SMF 2.0.1 when creating new tables and it was trying to create the table again anyway (even if the mod was telling it to ignore it) so that's why you were getting the error saying "Table 'smf_log_httpbl' already exists".

You should have ignored that error and continue with the installation anyway.

The big problem now is when you removed that table from the database. The mod now cannot work at all.

I think the easiest solution now (if you haven't sort it already using another solution) would be this:


  • Uninstall the mod.
  • Check that the table 'smf_log_httpbl' still doesn't exist (or delete it if it does).
  • Install the mod again.

Sadly, I had to rebuild my smf forum after my host have been hacked. I am using my old DB; but when I install the mod I get the error "Table 'smf_log_httpbl' already exists". Since I have a clean install can't uninstall the mod, but when I delete the mentioned table I get the error "Table 'smf_log_httpbl' doesn't exist". I am in kind of loop.
Title: Re: httpBL
Post by: Inti31 on June 21, 2012, 05:13:29 PM
I might to remember about that  - rename that table to "smf_log_httpBL" and then it will work... - please note the capital BL at the end.
thought this were already said in this topic...
i had that problem in the past also - and thats the solution

cheers Inti31
Title: Re: httpBL
Post by: locutusweb on June 24, 2012, 02:43:46 PM
Thanks, that didn't work either.  :'(

At the end I deleted all references to httpbl in the DB and changed the install script to force install.
Title: Re: httpBL
Post by: Kolya on June 28, 2012, 06:58:15 PM
One thing that always bugged me about this mod is how it fills up the logs. It also wasn't very useful for me to know how many spammers it caught since day one. So in the end I wrote a cronjob that runs once a week. It empties the log and sets back the number of caught spammers to zero. That way this number actually becomes useful because now I can see if it's more or less than last week. Anyway, here's the file to run as cron:

<?php
// Connection details
$db['host'] = 'localhost';
$db['user'] = '';
$db['pass'] = '';
$db['db'] = '';

// MySQLconnection
$link = mysql_connect($db['host'], $db['user'], $db['pass']);
if (!$link) die('Could not connect: ' . mysql_error());
//Select database
mysql_select_db($db['db'], $link);   

//Delete httpBL mod log
$query = "TRUNCATE smf_log_httpBL";
mysql_query($query, $link);

//Update httpBL catch count number
$query = "UPDATE smf_settings SET value=0 WHERE variable='httpBL_count'";
mysql_query($query, $link);

// Close database connection
mysql_close($link);
?>
Title: Re: httpBL
Post by: busterone on June 28, 2012, 10:19:06 PM
Interesting.
I do look through the logs myself. I look for consistent hits by the same ips over a period of time and what they are attempting to do (register, login, etc). I don't have a db size issue to be concerned about though, so I usually just manually clear the logs on the average of once per week.
Title: Re: httpBL
Post by: FfdG on July 31, 2012, 04:09:23 AM
Maybe someone needs a German-English warning.php...
Title: Re: httpBL
Post by: Texan78 on August 15, 2012, 02:30:37 PM
Hello,

I am and have been running this mod for months without issue. I installed yesterday the RSS Feed Poster 3.0.4 mod. I set up a cron to run a setting file associated with the RSS mod. I set the email up to email me when the cron run so I know it was running without error. When it ran I was getting this error from the cron email.

<br />
<b>Warning</b>:  Missing argument 1 for httpBL_look_for_empty_ip(), called in /home4/mesquiu0/public_html/wxconnection/Sources/httpBL_Subs.php on line 680 and defined in <b>/home4/mesquiu0/public_html/wxconnection/Sources/httpBL_Subs.php</b> on line <b>517</b><br />
<br />
<b>Notice</b>:  Undefined variable: ip in <b>/home4/mesquiu0/public_html/wxconnection/Sources/httpBL_Subs.php</b> on line <b>519</b><br />


What in this mod is preventing the cron or causing this error to be thrown?

-Thanks
Title: Re: httpBL
Post by: snoopy_virtual on August 16, 2012, 05:53:35 AM
It is a bug in the code.

While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:


$ip = httpBL_look_for_empty_ip();


Replace it with:


$ip = httpBL_look_for_empty_ip($ip);


Save the modified file and upload it to your forum.
Title: Re: httpBL
Post by: Texan78 on August 28, 2012, 02:07:45 PM
One thing I noticed to is I had a log full of errors shows guests no information. After tracing it back to where it started I noticed it all started happening when I set a cron up for my site to run the RSS mod.

Question is, is there something that can be done so that it doesn't check the cron and see it as a guest?

-Thanks
Title: Re: httpBL
Post by: snoopy_virtual on August 30, 2012, 05:52:28 PM
I don't know the RSS mod and I don't know the way you have set the cron up, but somewhere inside it you can add these 2 lines:


global $httpBL_warning;
$httpBL_warning = true;


Doing that, every time the RSS mod enter httpBL mod, it would think it's an internal check and it won't inspect it.

If you get me in Skype I can see exactly how you have set up the cron and the way that RSS mod works and I would be able to tell you exactly where to put those 2 lines. Anyway, if you know basic programming maybe you can find it out by yourself.
Title: Re: httpBL
Post by: Texan78 on August 30, 2012, 06:44:38 PM
Thanks for your response. Since I am having problems with the cron not running successfully since it's conflicting with my Twitter Intergration mod which is strange how a cron conflicts with that anyways. I have disabled the cron job.

Everything is back to normal in httpBL and it's not detecting any "false" guests.

I will keep that snippet of code in mind once I get the other issue sorted out and I can enable the mod again.

-Thanks
Title: Re: httpBL
Post by: gafai on September 02, 2012, 02:59:52 AM
I go to  mysite/warning.php to check it...
When i answer to second question it show white page with Notice: Undefined index: minChar in /www/subdom/ja/Sources/Load.php(2242) : eval()'d code on line 377

Notice: Undefined index: minChar in /www/subdom/ja/Sources/Load.php(2242) : eval()'d code on line 439

Notice: Undefined index: minChar in /www/subdom/ja/Sources/Load.php(2242) : eval()'d code on line 377

Notice: Undefined index: minChar in /www/subdom/ja/Sources/Load.php(2242) : eval()'d code on line 439

Warning: Cannot modify header information - headers already sent by (output started at /www/subdom/ja/Sources/Load.php(2242) : eval()'d code:377) in /www/subdom/ja/Sources/httpBL_Subs.php on line 128

Warning: Cannot modify header information - headers already sent by (output started at /www/subdom/ja/Sources/Load.php(2242) : eval()'d code:377) in /www/subdom/ja/warning.php on line 218


what problem?
Title: Re: httpBL
Post by: snoopy_virtual on September 02, 2012, 01:48:05 PM
I don't know the index minChar that is the responsible for your problem.

I suppose that index must belong to a mod you have that has not been done properly.

Anyway it's very difficult to find out the problem when you have the eval code activated. You need to deactivate it and try again to find out exactly where is the conflict.
Title: Re: httpBL
Post by: gafai on September 03, 2012, 03:05:17 PM
i turned off eval()  i found problem in language files.. some old mofification leave undefined ' . $modSettings['minChar'] . ' I edit that (delete)... but problem was not solved... Now it shows another errors:
Notice: SSI.php nebolo schopné natiahnúť sedenie! To môže znamenať problém s odhlásením a ďalšími funkciami - uistite sa, že SSI.php je vložené pred čímkoľvek iným vo vaších skriptoch! in /www/subdom/ja/SSI.php on line 191

Warning: Cannot modify header information - headers already sent by (output started at /www/subdom/ja/Themes/default/languages/Modifications.slovak-utf8.php:1) in /www/subdom/ja/Sources/httpBL_Subs.php on line 128

Warning: Cannot modify header information - headers already sent by (output started at /www/subdom/ja/Themes/default/languages/Modifications.slovak-utf8.php:1) in /www/subdom/ja/warning.php on line 218
Title: Re: httpBL
Post by: snoopy_virtual on September 04, 2012, 02:50:30 AM
Your SSI.php is not loading properly.

Can you tell me what do you have in that file in the line 191?

You also have a mistake in the file Modifications.slovak-utf8.php

Can you attach that file here to see the problem?
Title: Re: httpBL
Post by: Jade Elizabeth on September 05, 2012, 07:22:35 AM
Hey this blocks Feedburner....is there any way to unblock feedburner? I can't figure it out on my own :S.

http://feeds2.feedburner.com/bunnyrabbitsex
Title: Re: httpBL
Post by: PixelPusher on October 10, 2012, 09:04:58 PM
Does anyone know if this (v2.5.1) is compatible with smf v2.0.2?
Title: Re: httpBL
Post by: Shambles on October 11, 2012, 05:13:09 AM
Quote
Does anyone know if this (v2.5.1) is compatible with smf v2.0.2?

It's been running fine on my 2.0.2 for quite some time now ;)
Title: Re: httpBL
Post by: PixelPusher on October 11, 2012, 06:51:49 PM
Thanks! I've installed it, and the honey pot, and it looks like it might be working.

Title: Re: httpBL
Post by: owg on November 01, 2012, 04:42:57 PM
I'm running smf 2.0.2 and installed httpBL - everything went fine but when I try to see the preview of the warning page all I get is a blank page in Firefox, and an error 500 in IE.  The mod itself seems to be working fine because I already have trapped spammer listings.  Any idea what I might have done wrong?
Title: Re: httpBL
Post by: Jade Elizabeth on November 04, 2012, 01:56:19 AM
Quote from: Jade Elizabeth on September 05, 2012, 07:22:35 AM
Hey this blocks Feedburner....is there any way to unblock feedburner? I can't figure it out on my own :S.

http://feeds2.feedburner.com/bunnyrabbitsex

Please help? :)
Title: Re: httpBL
Post by: Ravey76 on November 14, 2012, 05:39:46 AM
Hi,

have a small problem with httpBL - it blocks internal rss-communication on my server / blocks a special IP-address.
This IP address is shown in the spammers/error-log.  How can I delete this IP address in the httpBL-entries and stop it from blocking this address?
As far as I know I can just delete the LOG entries ...

Thanks a lot for any help!

ravey76
Title: Re: httpBL
Post by: CBG on December 13, 2012, 12:26:34 PM
Hi,

Sorry if this has been asked before.
Can this be used on Guest area post, where a guest can make a post?
Or is it just for Registration.

Thanks
Title: Re: httpBL
Post by: busterone on December 13, 2012, 06:42:06 PM
This mod will stop known bad ip ranges listed at Project HoneyPot  from ever reaching the forum at all. It sends them to a warning page, and depending upon your admin set thresholds, it will either give them a set of questions to answer to temporarily gain forum access, or it will simply deny them access. It doesn't really have anything to do with registration.
Title: Re: httpBL
Post by: ehr_aaron on December 13, 2012, 07:44:52 PM
Very cool. I am a big fan of Project Honeypot and SFS blacklists (use them on my wordpress blog). Good to see that there are solutions out here for SMF as well.
Title: Re: httpBL
Post by: SD-X on December 17, 2012, 01:34:13 PM
Anyone know if this mod is compatible with SMF 2.0.3? I'm assuming so, but I haven't tested it yet.
Title: Re: httpBL
Post by: spiros on December 20, 2012, 03:42:39 AM
It blocks feedburner, any help on that?

One solution I found is to raise the level of threat of Threat level considered bad from 10 to 29 or you may need to go up to 45, this is no good though.
Title: Re: httpBL
Post by: GraphicJunki on December 20, 2012, 05:48:13 PM
I have it running on my site and i'm using 2.0.3
Title: Re: httpBL
Post by: jobarjo on February 06, 2013, 08:01:55 AM
Hi

I upgraded to 2.0.4, then installed httpBL and stop spammer, through the package manager.

I don't know if it works. I don't know how to go to the configuration page. I tried /forum/index.php?action=admin;area=httpBL, but see nothing related to httpBL.

How can I check it is correctly installed?
Title: Re: httpBL
Post by: Shambles on February 06, 2013, 08:10:35 AM
@ jobarjo

Config should be in Admin > Members > MOD HttpBL
Title: Re: httpBL
Post by: jobarjo on February 06, 2013, 08:30:47 AM
I don't have such menu.
I will try to reinstall
Title: Re: httpBL
Post by: jobarjo on February 06, 2013, 09:32:51 AM
I tweaked my package manager permissions, and it is now much better.

I'm still seing a lot of spam accounts. But I think I should wait.

Now if anyone has a procedure to delete all spam account, it would be nice.
Title: Re: httpBL
Post by: discjocke on February 23, 2013, 01:58:38 PM
I'm trying to download Honey Pot zip file and this is the error I get: The package you tried to upload either is not a valid package or has become corrupted. The scripting language choses given, I chose php 4+. Is that correct? No other php option to choose.
Title: Re: httpBL
Post by: PixelPusher on March 07, 2013, 09:41:29 PM
Updating from SMF 2.0.3 to 2.0.4 broke both the httpBL and Stop Spammer mods. I can neither update nor delete the mods through the package manager. Can anyone tell me how to fix these things?

Thanks,
Thom
Title: Re: httpBL
Post by: SD-X on March 07, 2013, 09:47:11 PM
Quote from: PixelPusher on March 07, 2013, 09:41:29 PM
Updating from SMF 2.0.3 to 2.0.4 broke both the httpBL and Stop Spammer mods. I can neither update nor delete the mods through the package manager. Can anyone tell me how to fix these things?

Thanks,
Thom
Both mods are fully compatible with both versions of SMF you just mentioned, and are not affected by either update. Something else broke them for you. You may have a conflicting mod that was broken by the update, and it's affecting them. Try reinstalling all your mods on your forum with the latest version. StopSpammer and Mod httpBL will both retain the settings so long as you do not choose the option to remove them when uninstalling the package.
Title: Re: httpBL
Post by: Arantor on March 07, 2013, 09:48:03 PM
Use version emulate as described in How can I install a mod that doesn't work in my SMF version? (http://wiki.simplemachines.org/smf/How_can_install_a_mod_that_doesn%27t_work_in_my_SMF_version)

Same idea to uninstall as it is to install (and for the same reason, so that you tell package manager what instructions to look for)
Title: Re: httpBL
Post by: PixelPusher on March 07, 2013, 09:54:23 PM
Quote from: SugarD-x on March 07, 2013, 09:47:11 PM
Quote from: PixelPusher on March 07, 2013, 09:41:29 PM
Updating from SMF 2.0.3 to 2.0.4 broke both the httpBL and Stop Spammer mods. I can neither update nor delete the mods through the package manager. Can anyone tell me how to fix these things?

Thanks,
Thom
Both mods are fully compatible with both versions of SMF you just mentioned, and are not affected by either update. Something else broke them for you. You may have a conflicting mod that was broken by the update, and it's affecting them. Try reinstalling all your mods on your forum with the latest version. StopSpammer and Mod httpBL will both retain the settings so long as you do not choose the option to remove them when uninstalling the package.

Those are the only two mods that I have installed. When I try to uninstall either mod I get a bunch of errors saying that the tests failed and I should not proceed unless I know what I'm doing. It is becoming exceedingly obvious to me that I have no idea what I'm doing.  :o

Title: Re: httpBL
Post by: SD-X on March 07, 2013, 09:54:48 PM
Quote from: Arantor on March 07, 2013, 09:48:03 PM
Use version emulate as described in How can I install a mod that doesn't work in my SMF version? (http://wiki.simplemachines.org/smf/How_can_install_a_mod_that_doesn%27t_work_in_my_SMF_version)

Same idea to uninstall as it is to install (and for the same reason, so that you tell package manager what instructions to look for)
Version emulation isn't needed for either of those mods, though. They work fine in the latest version. He has something else breaking them.

Edit:
Quote from: PixelPusher on March 07, 2013, 09:54:23 PM
Quote from: SugarD-x on March 07, 2013, 09:47:11 PM
Quote from: PixelPusher on March 07, 2013, 09:41:29 PM
Updating from SMF 2.0.3 to 2.0.4 broke both the httpBL and Stop Spammer mods. I can neither update nor delete the mods through the package manager. Can anyone tell me how to fix these things?

Thanks,
Thom
Both mods are fully compatible with both versions of SMF you just mentioned, and are not affected by either update. Something else broke them for you. You may have a conflicting mod that was broken by the update, and it's affecting them. Try reinstalling all your mods on your forum with the latest version. StopSpammer and Mod httpBL will both retain the settings so long as you do not choose the option to remove them when uninstalling the package.

Those are the only two mods that I have installed. When I try to uninstall either mod I get a bunch of errors saying that the tests failed and I should not proceed unless I know what I'm doing. It is becoming exceedingly obvious to me that I have no idea what I'm doing.  :o
Have you used any other mods in the past? You may have lingering code from another still in your forum. Try uninstalling and deleting the packages, redownloading them, and reinstalling them again to see if it fixes them.

Edit 2: Scratch that, you said you can't uninstall them. What errors are you getting?
Title: Re: httpBL
Post by: PixelPusher on March 07, 2013, 10:13:23 PM
Quote from: SugarD-x on March 07, 2013, 09:54:48 PM
...
Have you used any other mods in the past? You may have lingering code from another still in your forum. Try uninstalling and deleting the packages, redownloading them, and reinstalling them again to see if it fixes them.

Edit 2: Scratch that, you said you can't uninstall them. What errors are you getting?

When I click the "Uninstall" link on the httpBL mod I get the "Uninstall Mod" page which has the error message that says:
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

It then show the list of actions to be taken by the uninstaller and the first 7 of them say in the description column that the "Test Failed".
Title: Re: httpBL
Post by: SD-X on March 07, 2013, 10:19:17 PM
Quote from: PixelPusher on March 07, 2013, 10:13:23 PM
Quote from: SugarD-x on March 07, 2013, 09:54:48 PM
...
Have you used any other mods in the past? You may have lingering code from another still in your forum. Try uninstalling and deleting the packages, redownloading them, and reinstalling them again to see if it fixes them.

Edit 2: Scratch that, you said you can't uninstall them. What errors are you getting?

When I click the "Uninstall" link on the httpBL mod I get the "Uninstall Mod" page which has the error message that says:
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

It then show the list of actions to be taken by the uninstaller and the first 7 of them say in the description column that the "Test Failed".
Can you please post a picture of those "Test Failed" sections here for us? It will help us identify where it's breaking, and might make it possible for us to help you, if we can. :)
Title: Re: httpBL
Post by: PixelPusher on March 07, 2013, 10:32:33 PM
Ok, there is another fail farther down which would not fit on the screen.
Title: Re: httpBL
Post by: SD-X on March 07, 2013, 10:37:22 PM
Quote from: PixelPusher on March 07, 2013, 10:32:33 PM
Ok, there is another fail farther down which would not fit on the screen.
It looks like the mod was already fully uninstalled. I would go through and check each modification it makes there, and ensure it has already been done in the files so there are no traces left of the mod. Then delete it from the Package Manager, download the mod package again, upload it, and reinstall.
Title: Re: httpBL
Post by: PixelPusher on March 07, 2013, 10:51:10 PM
Ok, thanks for the help. I will look at this again in the morning.

-Thom
Title: Re: httpBL
Post by: SD-X on March 07, 2013, 10:55:53 PM
Quote from: PixelPusher on March 07, 2013, 10:51:10 PM
Ok, thanks for the help. I will look at this again in the morning.

-Thom
No problem man. Best of luck to you! :)
Title: Re: httpBL
Post by: PixelPusher on March 13, 2013, 08:44:57 PM
I just wanted to let you know that I did get the old stuff cleaned out and both httpBL and Stop-Spammer installed in my forum. It was just a little scarey making the deletions, but it worked out in the end.

Now, on the OS and Browser detection...

-Thom
Title: Re: httpBL
Post by: SD-X on March 14, 2013, 05:16:14 AM
Quote from: PixelPusher on March 13, 2013, 08:44:57 PM
I just wanted to let you know that I did get the old stuff cleaned out and both httpBL and Stop-Spammer installed in my forum. It was just a little scarey making the deletions, but it worked out in the end.

Now, on the OS and Browser detection...

-Thom
Best of luck to you man! :)
Title: Re: httpBL
Post by: Grand Duke on March 23, 2013, 04:30:20 AM
Here is very important part of translation Warning.php in russian language (draft):
/*******************
*  Set 2 - Russian *
*******************/
// WARNING:  check it for right charset: UTF-8 only!
$txt['httpBL_warn_title_2'] = 'Внимание';
$txt['httpBL_warn_denied_2'] = 'Доступ запрещен';
$txt['httpBL_warn_head_2'] = 'Наша анти-спам защита посчитала, что вы являетесь роботом, который пытается через наш форум рассылать спам.';
$txt['httpBL_warn_infected_2'] = 'Наиболее вероятной причиной является то, что ваш компьютер, либо другой компьютер, который работает в вашей локальной сети, <strong> заражен вирусом, трояном или червем</strong>. Зараженные компьютеры используются преступниками, без ведома их владельцев, для рассылки спама и для атак на те веб-сайты, похожие на тот, на который вы сейчас пытаетесь зайти.';
$txt['httpBL_warn_dynamic_IP_2'] = 'Если у вас динамический ip-адрес, то есть, каждый раз при переключении маршрутизатора он изменяется, проблема может заключаться только в том, что сегодня у кас задействован ip-адрес, который некоторое время назад принадлежал зараженному компьютеру. Поэтому вы можете попытаться снова переключить  маршрутизатор, перегрузить компьютер и открыть одну из наших веб-страниц снова, чтобы посмотреть, сможете ли вы тогда получить к ним нормальный доступ.';
$txt['httpBL_warn_technician_1_2'] = 'В любом случае, чтобы проверить не заражен ли ваш компьютер и снять все возможные подозрения на заражения, мы рекомендуем вам как можно скорее обратиться к компьютерным специалистам и попросить их выяснить детали на <strong>www.projecthoneypot.org</strong>, касающиеся вашего ip-адреса:';
$txt['httpBL_warn_technician_2_2'] = 'чтобы точно выяснить, что именно было сделано неправильно.';
$txt['httpBL_warn_info_2'] = 'Для получения более подробной информации, свяжитесь с нами:';
$txt['httpBL_warn_at_2'] = 'с';
$txt['httpBL_warn_dot_2'] = 'точка';
$txt['httpBL_warn_hurry_2'] = 'У вас имеется возможность получить и более детальную информацию прямо сейчас. Если вы не торопитесь и у вас нет времени проверить свой компьютер на вирусы, мы сможем вам помочь. Мы собираемся дать вам два простых задания, правильно выполнить которые робот вряд ли сможет. Дайте ответ, пожалуйста, на первое задание (вводите только цифры), и нажмите на кнопку <strong>"Отправить"</strong>.';
$txt['httpBL_warn_send_2'] = 'Отправить';
$txt['httpBL_warn_blank_2'] = 'Оставьте, пожалуйста, это поле ввода пустым.<br />Впишите ответ в поле ввода, которое расположено выше.';
$txt['httpBL_warn_wrong_2'] = 'Ошибка';
$txt['httpBL_warn_wrong_head_2'] = 'Неверный ответ.';
$txt['httpBL_warn_wrong_answer_2'] = 'Возможно вы не совсем правильно поняли задание или нажали не на ту клавишу. У вас здесь две разных строки. В первой вы видите простой пример суммирования, пустое поле ввода и кнопку "Отправить". В это пустое поле вам нужно вписать ответ (просто число) и нажать кнопку. Поле ввода во второй строке пока не заполняйте вообще.';
$txt['httpBL_warn_good_2'] = 'Правильно';
$txt['httpBL_warn_good_head_2'] = 'Верный ответ.';
$txt['httpBL_warn_good_answer_2'] = 'Ваш ответ был правильным, но все-таки надо иметь в виду, что робот, даже не способный увидеть или понять задание, сможет дать верный ответ просто пытаясь передавать случайные цифры. Естественно, что он не сможет передать верный ответ дважды, поэтому просто введите последний ответ еще раз и нажмите кнопку <strong>"Отправить"</strong>:';
Title: Re: httpBL
Post by: tomreyn on April 08, 2013, 07:04:41 PM
As discussed in http://www.simplemachines.org/community/index.php?topic=501392.0 and http://www.simplemachines.org/community/index.php?topic=500483.0 we're trying to use SMF 2.0.4 and httpBL 2.5.1 with the InnoDB storage engine exclusively. Sadly the httpBL mod / scheme doesn't seem to be ready for this. If we switch this table to InnoDB the mod will stop working: users will no longer get flagged and the admin panels' httpBL pages which normally list flagged users are empty.

Can you suggest a fix for this issue?

Thanks in advance!
Title: Re: httpBL
Post by: snoopy_virtual on April 24, 2013, 04:27:30 AM
Quote from: tomreyn on April 08, 2013, 07:04:41 PM
As discussed in http://www.simplemachines.org/community/index.php?topic=501392.0 and http://www.simplemachines.org/community/index.php?topic=500483.0 we're trying to use SMF 2.0.4 and httpBL 2.5.1 with the InnoDB storage engine exclusively. Sadly the httpBL mod / scheme doesn't seem to be ready for this. If we switch this table to InnoDB the mod will stop working: users will no longer get flagged and the admin panels' httpBL pages which normally list flagged users are empty.

Can you suggest a fix for this issue?

Thanks in advance!

I have never used InnoDB, so I don't know where the conflict can be. If I can find some time I will take a look at it.

Can you tell me a little more about it?
Title: Re: httpBL
Post by: Doc.Blade on May 06, 2013, 01:55:18 AM
OMG, i LOVE this mod, thank you, thank you, thank you!! Gone from over 200 spamming parasites a day down to 0 - 6 a day! THANK YOU!!
Title: Re: httpBL
Post by: cortez on June 18, 2013, 08:47:28 AM
Great mod, works fine on 2.0.4 but I have one question: even it detected sh*tload of spambots trying to access site and blocked them, why the stats list on official "manage honey pots" page is empty? Or it refreshes slowly?
Title: Re: httpBL
Post by: rajeshvv on July 31, 2013, 06:11:12 AM
I installed the script according to the instructions given by manage honey pot website
I had successfully passed all the 4 steps... but only one confusion is like where to Add Links to Existing Web Pages.

I had taken the link added in the template and I tried to open the page.. it was broken with showing error.I removed immediately am back to normal... so

could any one exactly help me where to add the links into webiste.
Title: Re: httpBL
Post by: HR on August 10, 2013, 08:22:31 AM
Long time Snoopy.. Hope everything is going well. Been using this on a few clients who are ecstatic about it but I need a button where I could download the lox (xml would be heavently) so the database log can be cleared...

Ideas?
Title: Re: httpBL
Post by: tomreyn on September 13, 2013, 12:12:27 PM
Quote from: snoopy_virtual on April 24, 2013, 04:27:30 AM
Quote from: tomreyn on April 08, 2013, 07:04:41 PM
As discussed in http://www.simplemachines.org/community/index.php?topic=501392.0 and http://www.simplemachines.org/community/index.php?topic=500483.0 we're trying to use SMF 2.0.4 and httpBL 2.5.1 with the InnoDB storage engine exclusively. Sadly the httpBL mod / scheme doesn't seem to be ready for this. If we switch this table to InnoDB the mod will stop working: users will no longer get flagged and the admin panels' httpBL pages which normally list flagged users are empty.

Can you suggest a fix for this issue?

Thanks in advance!

I have never used InnoDB, so I don't know where the conflict can be. If I can find some time I will take a look at it.

Can you tell me a little more about it?

I'll be happy to. Sadly I missed your reply. I did not (and cannot) subscribe to this entire httpBL forum here because there will be other people talking. So it's easy to miss your replies. You are always welcome to get in touch at tomreyn [ AT ] megaglest.org, I'm also available during European evenings at #megaglest on the FreeNode IRC network (http://chat.megaglest.org) (as nickserv registered user tomreyn).

As you may know, with MySQL 5.5, InnoDB has been set as the default MySQL storage engine. Currently, MySQL server community edition (and its forks) is at version 5.6. We should therefore expect more people to run into these problems soon, and testing and fixing any related issues would seem to become more crucial for continued support of the fine httpBL mod.

I'm looking forward to discuss more, and to provide you with detailed error messages, but first we should try to find a way to communicate which does not involve missing each others' replies. I'm also open to any other suggestions (which do not involve use of proprietary software and protocols).

Thank you!
Title: Re: httpBL is AWESOME!!!
Post by: Sea Mac on December 23, 2013, 08:00:36 AM
Thank You snoopy_virtual: and Merry Christmas!

Our forums RELY on your MOD and at least I remembered to donate this year (with Thanks) ....

Wish I could donate 100 times that much ...
Title: Re: httpBL
Post by: Auke on September 19, 2014, 10:49:50 PM
2.0.8, default theme. Please don't suggest I alter codes, it would mean disaster.

I'm seriously thinking about adding this mod to my forum, but since my forum in trilingual, I need to know if the warning pages are next to English also available in French and Dutch. Thanks for replying.

Auke
Title: Re: httpBL
Post by: DarkAngel612 on September 19, 2014, 11:21:52 PM
I looked at the installations xml file and the only ones listed are english and spanish.

maybe someone that has those languages may have them for this mod.

or one of your members might be kind enough to translate their language into the files for you.
Title: Re: httpBL
Post by: Auke on September 19, 2014, 11:44:50 PM
Thank you for checking DarkAngel612. I can translate into Dutch myself, but I need to know which texts need translation and someone has to insert those translated texts back into the mod. My French is unfortunately insufficient for a proper translation.
Title: Re: httpBL
Post by: DarkAngel612 on September 20, 2014, 01:02:32 AM
that would be in the language files that you would most likely copy the english to a doc then translate and save as the dutch version.

I don't know for sure how to add it to the mod I just know when it gets done you do not need to repack it, just upload the folder with all files that you unzip and the package manager will see it.
Title: Re: httpBL
Post by: Auke on September 20, 2014, 09:02:34 PM
If someone would post the English text in this thread, I could make a Dutch translation. That would still leave a missing French version though.  :-\ Let's hope someone volunteers for that...

Fortunately I still get few spammers on my forum.
Title: Re: httpBL
Post by: DarkAngel612 on September 21, 2014, 02:24:53 AM
It is rather long so you will need to copy/paste into a document to translate it, then save it as: Modifications.dutch.php

Then he can just upload it directly into his default template/language directory

I think that is all that needs to be done to the pack, install it and it should "see" it as well as the viewer. I hope.




// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <strong>VERY</strong> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';

// View log page
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <strong>VERY</strong> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <strong>"Show extra information"</strong>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hiding'] = 'Wrote on a hiding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Never be checked by mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'If this permission is enabled, all the members in this group will be able to enter always the forum without been checked by mod httpBL, even if their computer is controlled by a trojan spammer robot.<br />---<br />Enable it only if you know exactly what you are doing.';
$txt['httpBL_last_act_too_high'] = 'Last activity too long ago. Allowed to pass';
$txt['httpBL_threat_too_low'] = 'Threat Level too low. Allowed to pass';
$txt['httpBL_enable_sub'] = 'With this check-box checked the mod is ON. With the check-box unchecked the mod is OFF.';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.';
$txt['httpBL_mod_no_connect_2'] = 'If the problem persists ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL is ON but it is not up-to-date.';
$txt['httpBL_mod_new_version_2'] = 'There is a new version of this mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Please update it here whenever you can</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL is OFF.';
$txt['OS_Browser_Compatible'] = 'compatible';
$txt['OS_Browser_OS'] = 'Operating System';
$txt['OS_Browser_Unknown'] = 'Unknown';
$txt['OS_Browser_Browser'] = 'Browser';
$txt['httpBL_cache_length'] = 'Minutes to keep the data in the cache';
$txt['httpBL_cache_length_sub'] = 'Every time the mod checks an IP saves the data in the cache (if it\'s enabled) and in the visitor\'s session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won\'t check it again, but it will use the data stored in the cache and/or session.';
$txt['httpBL_view_os_whosonline'] = 'View OS & Browser data in "Who\'s Online" page';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Settings';
$txt['httpBL_honeyPot_link_sub'] = 'After you have installed a Honey Pot in your server, write here the link to it. It will be something like:<br /><strong>http://www.yourwebsite.com/yourhoneypot.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Please notice Project Honey Pot is not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_viewlog'] = 'Spammers Log';
$txt['httpBL_viewlogpass'] = 'Humans Log';
$txt['httpBL_viewlogerror'] = 'Errors Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots. Plus all the people detected as spammers in the database but with a threat level lower than the "Threat level considered bad" you have in your settings, so they were not stopped at all.';
$txt['httpBL_info_email_desc'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <strong>warning.php</strong>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <strong>[email protected]</strong> the first word is <strong>info</strong>, the second one <strong>yourwebsite</strong>, and the third one <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL uses the functions inside "Mod OS & Browser Detection" to display in the logs the operating system and the browser used by all the visits stored in those logs. If you want to see also in your "Who\'s Online" page, the operating system and the browser used by all your visitors, check this check-box. Of course, to be able to see them, in the logs and in your "Who\'s Online" page, you need to have installed either <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> or the small <a href="http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0" target="_blank">addon to see OS & Browser in httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
    $httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
    $httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'General Settings';
$txt['httpBL_general_settings_desc'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven\'t got them you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key.';
$txt['httpBL_info_email'] = 'Your email address';
$txt['httpBL_internal_settings'] = 'Internal Settings';
$txt['httpBL_internal_settings_desc'] = 'These are the internal settings to control the way mod httpBL works. We wouldn\'t recommend you to change them until you know the way every change will affect the mod.';
$txt['httpBL_extra_settings'] = 'Extra Settings';
$txt['httpBL_extra_settings_desc'] = 'Other settings you may like to change.';
$txt['httpBL_warning_settings'] = 'Warning Page Settings';
$txt['httpBL_warning_settings_desc'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br />That\'s the way it is going to appear to the not too dangerous ones. With a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (without captcha) use this link instead: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br />If you want to change its design or translate that page to other languages and you don\'t know how, or if you have any other question about the MOD, you will find useful information in the <a href="'. $httpBL_help_link. '">httpBL HELP section</a>.';
$txt['httpBL_use_two_languages'] = 'Use 2 languages on the warning page';
$txt['httpBL_use_two_languages_sub'] = 'By default the warning page is in 2 different languages: English and Spanish, so all your possible visitors can understand what it says. If you leave this check-box empty it will use only English instead.';
$txt['httpBL_horizontal_separator'] = 'Horizontal separator for the warning page';
$txt['httpBL_horizontal_separator_sub'] = 'The default horizontal separator for each block inside the warning page is &lt;hr /&gt; (horizontal grey line) but you can change it to any other thing you want using HTML language.<br />
For example &lt;br /&gt; will give you just a blank line.<br />
Or for example you can put here any horizontal picture you like just writing:<br />
&lt;img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" /&gt;<br />
(Replace the link inside the src="" with the actual path to your picture).';
$txt['httpBL_log_clear_this_log'] = 'Clear this log';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Spammers Log?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Humans Log?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Errors Log?';

// Help
$txt['httpBL_helping'] = 'Help';
$txt['httpBL_helping_description'] = 'I would recommend you to read this page carefully even if you don\'t need help with mod httpBL.';
$txt['httpBL_online_title'] = 'Online help';
$txt['httpBL_online_body'] = '<p>There are a lot of ways you can ask for help, but the best one is to ask me directly any doubt you may have, so we can talk about it and sort the problem without losing any time. I don\'t mind to answer questions through forums, emails, PMs, etc, but for me it\'s a lot easier to see what is the problem and find the solution when I can talk about it using a microphone. And also I think this is a lot faster and more effective way to sort problems.<p>
<p>I am connected around 10 hours every day using the programs <strong>"Skype"</strong>, <strong>"YIM"</strong> (Yahoo Messenger) and <strong>"MSN"</strong> (Live Messenger). I have also created a system in my server to write down what I am doing at every moment and have added a piece of code to the mod to read that info from my server (the piece you can see just next to these lines) so you can see if I am available or not.</p>
<p>If you have installed as well the program Skype, the process cannot be any easier. All you have to do is wait until I am available and click on the "Online" button. That will open automatically the program Skype in your computer and will start a conversation between us.</p>
<p>If you prefer to use YIM or MSN instead of Skype or if you haven\'t got a microphone, the button is not going to work automatically. In that case the button is going to be useful for you only to know if I am available or not, but to contact me you will need to add me first inside the program you use, like any other of your contacts. My ID inside those 3 programs is this one:</p>
<ul>
    <li>Skype and YIM : <strong>snoopy_virtual_studio</strong></li>
    <li>MSN : <strong>[email protected]</strong></li>
</ul>
<p><strong>NOTICE:</strong> Don\'t use my hotmail address to send me emails, as I almost never read them. If you need to send me an email use this other address instead: <a href="mailto:[email protected]">[email protected]</a></p>
<p><strong>WARNING:</strong> There are a lot of languages in the world I can understand even if it\'s only a little of it, but the only 2 I am really fluent with are English and Spanish. If you cannot speak any of those 2 languages you can call me if you want, but I cannot promise we will be able to understand each other.</p>
<p><strong>ANOTHER WARNING:</strong> Before you start asking questions it would be a good idea to do a quick search using the links you can see further down, to see if somebody else have already had the same problem and it has already been sorted. The main reason why I have created this "Online Help" system is to save time and it would make no sense at all if I end up answering hundreds of times the same questions every day.</p>';
$txt['httpBL_help_1_title'] = 'Other ways to ask for help';
$txt['httpBL_help_1_body'] = '<p>Of course, even if I personally prefer the "Online Help" system, there will be times when it will be impossible to use it. Either because you live too far away from me and we are never online at the same time, or because you don\'t like the instant messenger programs, or because you need help when I am too busy with other projects and cannot be connected, or whatever other reason. In any of these cases you can find and/or ask for help using a lot of different ways:</p>
<ul>
    <li><strong><a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english" target="_blank">Tutorial explaining how the mod works, how to install it and how to configure it properly</a></strong></li>
</ul>
<p>Every time I update the mod I try to update the tutorial as well, but of course that depends on the amount of free time I have at any given moment, so sometimes you will see the tutorial a little out of date with the actual performance of the mod. But I hope some day I will find time to update the tutorial properly. Besides I have been planing to add to the tutorial also a <strong>"FAQ"</strong> section with all the questions that people have been asking me over time and to add also some other useful sections. It won\'t be a bad idea to check from time to time if there is something new there.</p>
<ul>
    <li><strong><a href="http://www.simplemachines.org/community/index.php?topic=366399.0" target="_blank">Official mod\'s support thread</a></strong></li>
</ul>
<p>Full of very interesting questions and answers about the mod and other topics related to the protection against spammers. It is also the place to report any bugs you may find in the mod or to ask for new features you would like to see in future versions.</p>
<ul>
    <li><strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0;language=english" target="_blank">The section dedicated to this mod inside my personal forum</a></strong></li>
</ul>
<p>My personal forum is dedicated to sort any kind of problems anybody may have inside a lot of different IT fields. Inside it there is a section dedicated to mod httpBL, where you can see (among other things) how you can install as well this mod on other web sites made with PHP but without SMF.</p>';
$txt['httpBL_help_2_title'] = 'How you can help us';
$txt['httpBL_help_2_body'] = '<p>This mod is <strong>"Free Source"</strong> and that means it\'s a team work where all of us help each other. So it\'s not only about others solving your problems, but you should also ask yourself in what ways you can help all the people who use it. Depending on your skills and free time, the different ways you can help are these ones:</p>
<ul>
    <li><strong>Donations</strong></li>
</ul>
<p>If this mod have helped you out, donations are a great way of saying "Thanks!". Furthermore, the months when donations reach an acceptable level, I don\'t have to spend so many hours looking for customers to make other types of work and I can devote more time to what really matters: The various free software projects which I collaborate with.</p>
<ul>
    <li><strong>Reporting bugs</strong></li>
</ul>
<p>Whenever you see that the mod is behaving in a way that is not expected, you should report the bug in the appropriate forum. If you also have enough programming knowledge to find where is the failure and propose a solution, the better, but even if you have no idea of where the fault is, the mere fact of reporting it is helpful, because it will allow someone with more experience to know that the bug exists and to dedicate some time to solve it, which will make the mod work even better.</p>
<ul>
    <li><strong>Answering questions in the forum</strong></li>
</ul>
<p>If you\'ve been using this mod for some time and have some practice with it, you\'ll see at times that someone asks a question in the forum that you know the answer. If you answer that question it will save me some time and allow me to concentrate on more important problems.</p>
<ul>
    <li><strong>Helping with the development of this mod</strong></li>
</ul>
<p>If you have enough knowledge of PHP and some free time you can help solving mod bugs and/or developing future versions. To do this I have opened a <strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=36.0;language=english" target="_blank">sub-forum inside my personal forum</a></strong> where you are welcome if you are interested in the subject.</p>
<ul>
    <li><strong>More</strong></li>
</ul>
<p>Any other ideas you can think of to help us is welcome.</p>';
$txt['httpBL_about_title'] = 'About MOD httpBL';
$txt['httpBL_about_body'] = '<p>Mod httpBL was started in 2009 by me, J. C. Redondo "Snoopy", from <strong><a href="http://www.snoopyvirtualstudio.com/index.php?language=english" target="_blank">Snoopy Virtual Studio</a></strong>, based on ideas from Project Honey Pot message board, mainly <strong><a href="http://www.projecthoneypot.org/board/read.php?f=10&i=1&t=1" target="_blank">from this thread</a></strong> and also from the <strong><a href="http://drupal.org/project/httpBL" target="_blank">Drupal http:BL MOD made by praseodym</a></strong>.</p>
<p>Of course, Drupal code is very different from SMF code, so since the beginning I had to change it a lot. Furthermore, since I started it, I\'ve been modifying it a lot more and adding new features, as I have been having new ideas or they have been suggested to me by other people in SMF forum, so in the current version there is very little left from the original work, but all this would not have been possible without that initial work.</p>
<p>Since version 2.4 of October 2010, this mod also uses the functions created by <strong>Marcin Krol</strong> and modified by <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">X3mE</a></strong> in his mod <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">OS & Browser Detection</a></strong> to detect the Operating System and Browser of potential spammers.</p>
<p>This program, as most of my work, is free software (at least the parts I have done). You may redistribute it and/or modify it for your own projects anyway you want. Just mention where you got it from, to give me the credit I deserve for my efforts. Anyway if you are going to make any money with it, I will be very grateful if you consider donating me a small percentage of your profit.</p>';
// MOD httpBL END






Title: Re: httpBL
Post by: Auke on September 30, 2014, 11:35:57 PM
Oops!

That is actually working within codes. I can translate stuff, but I don't venture in coded things. :-\

Thanks anyway.
Title: Re: httpBL
Post by: City Builder on November 11, 2014, 06:18:56 PM
Sorry if this has been mentioned but... I can't read through all of the posts in this topic.

What about IP address that show up as 2601:0:7700:33f: (something like that)?
Are these just automatically considered spammers, or they're not even compared to the honeypot?

I notice since implementing httpBL on my clients server that it's already caught something like 2 or 3 different ip addresses each minute or so and they're all listed as High Threat or Very High Threat.  But all the ones that list an IP address as shown above (of course the numbers and letters change) show as No color, or I assume, No threat.

Is this going to be a problem and these folks using IP addresses like that are going to get through even if they are spammers?

Edit... And a suggestion..
If it is possible it would be really great if when I click on the spammers IP address and it takes me to the IP look up page in the SMF forums and below it will show all users that registered with that email, if you could build in a way to do a mass delete of all of those accounts listed.

I know I can just take the IP address and go and look up all members and select them that way but we've got something like 30,560 spammers that tried to register when we had your stop forum spammer mod installed that stopped them from completing their registration but they're still in our system so sometimes the page that is shown to me of all users that use an IP can be many many MANY pages long so I have to keep selecting all on each page and deleting, would be nice if through your mod it could be done in one fell swoop.
Title: Re: httpBL
Post by: DarkAngel612 on November 11, 2014, 08:17:25 PM
Quote from: City Builder on November 11, 2014, 06:18:56 PM
Sorry if this has been mentioned but... I can't read through all of the posts in this topic.

What about IP address that show up as 2601:0:7700:33f: (something like that)?
Are these just automatically considered spammers, or they're not even compared to the honeypot?


what I do in addition to the great mod is to grab the ip from those requesting registration and use google to look them up, there are times that honeypot will have them listed when stopforumspam does not.

I have also installed " reason for joining" they enter some really stupid things when giving reasons or gibberrish with the occasional idiot entering their spam links there.....dummies they are

I have found from time to time that when the member is banned it will also take out anyone with that IP that might have gotten through...not too often and if they are on the awaiting list if one of them enters with the same ip only different usernames then when one is banned the others are too.

If you click the actual IP of the registrant it will take you to a page that I think is what you want.
Title: Re: httpBL
Post by: City Builder on November 17, 2014, 12:02:03 PM
And sadly there seems to be quite a few times that Honeypot doesn't have them listed but stop forum spam does.

There's too many registrations for us to try to look up each one individually.

Still, I wonder whether the httpBL mod considers IP addresses in the format of what I wrote above as a spammer or not.  Since it's in the spammers log that I see them as well as the error log I have been assuming that httpBL mod considers anybody with such an IP address listed as a spammer and denies them access.  Of course that could be a problem to people that are actually using (I'm assuming here after only 3 or so minutes of reading) the IPv6 Ip addresses.

So, could anybody tell me if IPv6 IP addresses are just automatically tossed out as a spammer when it comes to httpBL mod?
Title: Re: httpBL new install
Post by: Reason 7 Fan on November 30, 2014, 01:13:23 PM
LOCATE THE SCRIPT: Done

COPY IT TO THE CORRECT LOCATION: /public_html/commercemagical.php Done.

SET THE PERMISSIONS: What should my permission settings be for commercemagical.php (see bluehost cpanel pic). And do they stay that way forever or do I change them back once executed?

INSTALL PHP: If I'm running SMF I have PHP already, right?


Any other mod suggestions for stopping spam other than:

httpBL

and

Stop spammer

Thanks!

And yes this is my first forum.
Title: Re: httpBL
Post by: cadsite on December 11, 2014, 03:22:41 PM
This mod keeps my forum clean, but gives an error to users who aren't logged in on the forum. The error is on my site index (not the forum index).
QuoteWarning: Missing argument 1 for httpBL_look_for_empty_ip(), called in /home/deb18051/domains/cadsite.be/public_html/smf/Sources/httpBL_Subs.php on line 680 and defined in /home/deb18051/domains/cadsite.be/public_html/smf/Sources/httpBL_Subs.php on line 517

Notice: Undefined variable: ip in /home/deb18051/domains/cadsite.be/public_html/smf/Sources/httpBL_Subs.php on line 519
I made use of:
<?php require("smf/SSI.php"); ?>
for the extra content on my index (not forum index) page
such as:
<?php ssi_welcome(); ?>
and
<?php ssi_recentTopics(); ?>

When the user is logged in, everything is perfect, otherwise the error like above.

Hope someone can help with this.
Title: Re: httpBL
Post by: riou on December 15, 2014, 04:42:20 AM
The first error fix should be changing:

$ip = httpBL_look_for_empty_ip();

to

$ip = httpBL_look_for_empty_ip($ip);

in Sources/httpBL_Subs.php
Title: Re: httpBL
Post by: julien on December 15, 2014, 04:48:25 AM
Thanks!!
It looks to be solved.  8)
Title: Re: httpBL
Post by: Arancaytar on December 18, 2014, 07:57:08 AM
I'm having issues with this module when using SSI.php in a CLI (ie. non-web) context. In my case this is for shared authentication, but this use case could crop up any time things are run on the server internally instead of through a web request, eg. for maintenance or cronjobs.

As there is no web request and no client connected to the server, $_SERVER['REMOTE_ADDR'] will not be set, and httpBL will terminate the script.

There are plenty of different ways (some better than others) to distinguish a CLI from a web context; eg. by checking $_SERVER['HTTP_HOST'] (empty in CLI), $_SERVER['SHELL'] (empty in web), calling php_sapi_name() (see: php.net/php_sapi_name) (usually returns 'cli' in command-line mode, but there may be some exceptions).

One place to handle this appears to be in this code section (httpBL_Subs.php:683; httpBL_dns_lookup()); alternatively in the code that calls this function (install_2.xml:72):


    if ($values['ip'] == '')
    {
        // Still empty? Stop the visitor. Sorry, no blanks IPs allowed
        // TO DO: Find more methods or more possibilities why sometimes $ip is blank
        $values['errorNumber'] = 150;
        $values['ID'] = httpBL_logme($values, true);
        //httpBL_session_put_data($httpBL_session, $values, $cache_seconds);
        return $values;
    }


It'd be great if this case were handled, since any other workaround would seem to require either patching this file, disabling the plugin or filling the $_SERVER['REMOTE_ADDR'] field with a bogus value...

Edit: For reference, my side of this issue is tracked at github.com/cburschka/ejabberd-auth-php/issues/10 .
Title: Re: httpBL
Post by: TMR Guy on January 09, 2015, 09:09:35 PM
There are 3 different versions of this mod.

addon_readme_v1_1.zip    (90kB)    [951]    
      
httpBL_v2_5_1.zip    (74kB)    [6163]    
   
language_full_2-5-1.zip    (61kB)    [975]
   

How do I know which one to use?

Thanks,

TMR Guy

Title: Re: httpBL
Post by: Arantor on January 09, 2015, 09:10:41 PM
Well... one's the core mod, one's a readme about add-ons and one's a language package for the mod... the names kind of give it away, don't they?
Title: Re: httpBL
Post by: TMR Guy on January 09, 2015, 10:05:28 PM
Quote from: Arantor on January 09, 2015, 09:10:41 PM
Well... one's the core mod, one's a readme about add-ons and one's a language package for the mod... the names kind of give it away, don't they?
I'm still really new at this. So I should install httpBL_v2_5_1.zip  which is also the core mod?

Thanks for the help,

TMR Guy.
Title: Re: httpBL
Post by: Arantor on January 09, 2015, 10:05:41 PM
Um... yes?
Title: Re: httpBL
Post by: TMR Guy on January 09, 2015, 10:07:32 PM
WOW!!!.....that was fast lol.

Thank you sir,

TMR Guy
Title: Re: httpBL
Post by: stub on January 26, 2015, 02:16:26 PM
I'm new with SMF. Just investigating my first mods. I'm already getting spam on my forum, which is becoming more heavy to moderate all of the spam, using the standard features. I found this thread. Does httpBL work with SMF 2.0.9. As far as I have read, it only supports up to 2.0 RC. So I'd just like to get this clarified.
Title: Re: httpBL
Post by: busterone on January 26, 2015, 04:11:27 PM
Yes, it works with 2.0.9
I am unsure if you need to use version emulation to install it though. I have had it installed since way back and continually upgraded the forum each time a new upgrade was available.  It is working on 2.0.9 as it should though.
Title: Re: httpBL
Post by: SD-X on January 27, 2015, 03:00:59 AM
It should still install normally.
Title: Re: httpBL
Post by: stub on February 02, 2015, 12:50:35 AM
OK. I've got as far as getting the honeypot activated, and got the http:BL api key.

I looked if I could install the http:BL v2.5.1 from the control panel, and couldn't find it. So I presume I have to install this mod manually. But this is where I get stumped with the instructions. I'm not sure where I'm supposed to upload the files. The instructions say install in domain.com/forum/Themes/default/. Is this really where I'm supposed to upload all the unarchived files? I would have thought there would have been a /mods/ or even /mods/httpBL/ folder (I'm new using SMF, and this is the first mod I'm trying to install). It doesn't feel right to be uploading the contents of httpBL_v2_5_1.zip to the /Themes/default/ folder.

Any guidance would be appreciated. Thanks.
Title: Re: httpBL
Post by: busterone on February 02, 2015, 01:02:03 AM
Upload the zip into your /Packages folder.    Then go to Admin-Package manager and install the mod from there.
Title: Re: httpBL
Post by: SD-X on February 02, 2015, 01:20:39 PM
Quote from: busterone on February 02, 2015, 01:02:03 AM
Upload the zip into your /Packages folder.    Then go to Admin-Package manager and install the mod from there.
If he has Package Manager access, he should be able to easily upload it via the admin panel, cutting out the need to use FTP altogether.
Title: Re: httpBL
Post by: stub on February 03, 2015, 02:04:53 AM
That worked great. Thank you very much. Now onto MOD Stop Spammer :)
Title: Re: httpBL
Post by: SD-X on February 03, 2015, 11:58:38 AM
Quote from: stub on February 03, 2015, 02:04:53 AM
That worked great. Thank you very much. Now onto MOD Stop Spammer :)
Those two are a great pair. :)
Title: Re: httpBL
Post by: sparkylabs on February 14, 2015, 04:36:57 AM
I can't seem to download any of the mods from the site, what am I doing wrong ? i just get lists of text to change but no files
Title: Re: httpBL
Post by: SD-X on February 14, 2015, 08:29:59 AM
Quote from: sparkylabs on February 14, 2015, 04:36:57 AM
I can't seem to download any of the mods from the site, what am I doing wrong ? i just get lists of text to change but no files
Click the name of the file itself. They are links, but they aren't underlined. :)
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 12:43:57 PM
Hello. 

Ran into a snag.  I have this code before [/body]:

</div>': '';
}

function template_html_below()
{
   global $context, $settings, $options, $scripturl, $txt, $modSettings;

   echo '

</body></html>';

Am I to replace that with:
';

   /*****************
   ** httpBL START **
   *****************/
   global $sourcedir, $modSettings;
   if ($modSettings['httpBL_enable'])
   {
      require_once($sourcedir . '/httpBL_Subs.php');
      $honeyLink = httpBL_honeylink($modSettings['httpBL_honeyPot_link'], $modSettings['httpBL_honeyPot_word']);
      echo $honeyLink;
   }
   /*****************
   **  httpBL END  **
   *****************/
   
    echo '
_________________

Also, not sure where to put the links and/or API key for honeyspot which is now installed and activated.

Thanks for any help.

Best,
Al
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 02:05:26 PM
How come you aren't using the Package Manager to install the mod?
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 02:12:52 PM
Thanks for the reply. When I use the Package Manager, I get this at the top of my page:

// MOD httpBL START // General $txt['httpBL_title'] = 'MOD httpBL'; $txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.'; $txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: '; // Config page $txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.
Here you can turn the mod on and off and change some of its parameters.'; $txt['httpBL_enable'] = 'Enable/Disable MOD httpBL'; $txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.'; $txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot'; $txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key'; $txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link'; $txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.'; $txt['httpBL_info_email_1'] = 'First word of your email'; $txt['httpBL_info_email_2'] = 'Second word of your email'; $txt['httpBL_info_email_3'] = 'Third word of your email'; $txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.'; $txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP'; $txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.'; $txt['httpBL_bad_threat'] = 'Threat level considered bad'; $txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.'; $txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad'; $txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.'; $txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human'; $txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.'; $txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered VERY bad.'; $txt['httpBL_viewlog_extra'] = 'View extra information in the log'; $txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.'; // View log page $txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered VERY bad or because they saw the captcha and couldn\'t prove they were humans.'; $txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button "Show extra information".'; $txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.'; $txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.'; $txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.'; $txt['httpBL_viewlog_extra'] = 'Show extra information'; $txt['httpBL_viewlog_normal'] = 'Hide extra information'; $txt['httpBL_log_show_legend'] = 'Show legend'; $txt['httpBL_log_hide_legend'] = 'Hide legend'; $txt['httpBL_pages'] = 'Pages'; $txt['httpBL_log_date'] = 'Date'; $txt['httpBL_log_ip'] = 'IP'; $txt['httpBL_log_threat'] = 'Th. L.'; $txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.'; $txt['httpBL_log_activity'] = 'L. B. A.'; $txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.'; $txt['httpBL_log_suspicious'] = 'S.'; $txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.'; $txt['httpBL_log_harvester'] = 'H.'; $txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.'; $txt['httpBL_log_comment'] = 'C.'; $txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.'; $txt['httpBL_log_url'] = 'Page'; $txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.'; $txt['httpBL_log_error_message'] = 'Message'; $txt['httpBL_yes'] = 'Yes'; $txt['httpBL_threat_colors'] = 'Meaning of colors:'; $txt['httpBL_threat_low'] = 'Low threat'; $txt['httpBL_threat_medium'] = 'Medium threat'; $txt['httpBL_threat_high'] = 'High threat'; $txt['httpBL_threat_very_high'] = 'Very high threat'; $txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.'; $txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?'; // Errors $txt['httpBL_log_no_error'] = 'No error'; $txt['httpBL_no_errorNumber'] = 'There is no error number'; $txt['httpBL_no_defined'] = 'No defined yet'; $txt['httpBL_answers_captcha'] = 'Answers on the captcha'; $txt['httpBL_answer_captcha'] = 'Answer on the captcha'; $txt['httpBL_good'] = 'Good'; $txt['httpBL_bad'] = 'Bad'; $txt['httpBL_empty_ip'] = 'Empty IP'; $txt['httpBL_wrote_hiding'] = 'Wrote on a hiding place'; $txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha'; $txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass'; $txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass'; $txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass'; $txt['httpBL_unknown'] = 'unknown'; // Lines changed from v2.3 to v2.4 $txt['httpBL_log_user_agent'] = 'User Agent'; // New lines in v2.4 $txt['permissionname_httpBL_free_pass'] = 'Never be checked by mod httpBL'; $txt['permissionhelp_httpBL_free_pass'] = 'If this permission is enabled, all the members in this group will be able to enter always the forum without been checked by mod httpBL, even if their computer is controlled by a trojan spammer robot.
---
Enable it only if you know exactly what you are doing.'; $txt['httpBL_last_act_too_high'] = 'Last activity too long ago. Allowed to pass'; $txt['httpBL_threat_too_low'] = 'Threat Level too low. Allowed to pass'; $txt['httpBL_enable_sub'] = 'With this check-box checked the mod is ON. With the check-box unchecked the mod is OFF.'; $txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.'; $txt['httpBL_mod_no_connect_2'] = 'If the problem persists ask for help in the official support forum.'; $txt['httpBL_mod_new_version_1'] = 'Mod httpBL is ON but it is not up-to-date.'; $txt['httpBL_mod_new_version_2'] = 'There is a new version of this mod. Please update it here whenever you can.'; $txt['httpBL_mod_all_ok'] = 'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.'; $txt['httpBL_mod_is_off'] = 'Mod httpBL is OFF.'; $txt['OS_Browser_Compatible'] = 'compatible'; $txt['OS_Browser_OS'] = 'Operating System'; $txt['OS_Browser_Unknown'] = 'Unknown'; $txt['OS_Browser_Browser'] = 'Browser'; $txt['httpBL_cache_length'] = 'Minutes to keep the data in the cache'; $txt['httpBL_cache_length_sub'] = 'Every time the mod checks an IP saves the data in the cache (if it\'s enabled) and in the visitor\'s session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won\'t check it again, but it will use the data stored in the cache and/or session.'; $txt['httpBL_view_os_whosonline'] = 'View OS & Browser data in "Who\'s Online" page'; // Lines changed from v2.4 to v2.5 $txt['httpBL_config'] = 'Settings'; $txt['httpBL_honeyPot_link_sub'] = 'After you have installed a Honey Pot in your server, write here the link to it. It will be something like:
http://www.yourwebsite.com/yourhoneypot.php'; $txt['httpBL_honeyPot_key_sub'] = 'Please notice Project Honey Pot is not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.'; $txt['httpBL_viewlog'] = 'Spammers Log'; $txt['httpBL_viewlogpass'] = 'Humans Log'; $txt['httpBL_viewlogerror'] = 'Errors Log'; $txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots. Plus all the people detected as spammers in the database but with a threat level lower than the "Threat level considered bad" you have in your settings, so they were not stopped at all.'; $txt['httpBL_info_email_desc'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page warning.php, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is [email protected] the first word is info, the second one yourwebsite, and the third one com.'; $txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.'; $txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL uses the functions inside "Mod OS & Browser Detection" to display in the logs the operating system and the browser used by all the visits stored in those logs. If you want to see also in your "Who\'s Online" page, the operating system and the browser used by all your visitors, check this check-box. Of course, to be able to see them, in the logs and in your "Who\'s Online" page, you need to have installed either Mod OS & Browser Detection or the small addon to see OS & Browser in httpBL.'; // Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x global $boardurl, $smcFunc; if (empty($smcFunc['db_query'])) $httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping'; else $httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping'; // New lines in v2.5 $txt['httpBL_general_settings'] = 'General Settings'; $txt['httpBL_general_settings_desc'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven\'t got them you need to go first to www.projecthoneypot.org to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key.'; $txt['httpBL_info_email'] = 'Your email address'; $txt['httpBL_internal_settings'] = 'Internal Settings'; $txt['httpBL_internal_settings_desc'] = 'These are the internal settings to control the way mod httpBL works. We wouldn\'t recommend you to change them until you know the way every change will affect the mod.'; $txt['httpBL_extra_settings'] = 'Extra Settings'; $txt['httpBL_extra_settings_desc'] = 'Other settings you may like to change.'; $txt['httpBL_warning_settings'] = 'Warning Page Settings'; $txt['httpBL_warning_settings_desc'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link: warning.php

That\'s the way it is going to appear to the not too dangerous ones. With a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (without captcha) use this link instead: warning.php?style=medium

If you want to change its design or translate that page to other languages and you don\'t know how, or if you have any other question about the MOD, you will find useful information in the httpBL HELP section.'; $txt['httpBL_use_two_languages'] = 'Use 2 languages on the warning page'; $txt['httpBL_use_two_languages_sub'] = 'By default the warning page is in 2 different languages: English and Spanish, so all your possible visitors can understand what it says. If you leave this check-box empty it will use only English instead.'; $txt['httpBL_horizontal_separator'] = 'Horizontal separator for the warning page'; $txt['httpBL_horizontal_separator_sub'] = 'The default horizontal separator for each block inside the warning page is <hr /> (horizontal grey line) but you can change it to any other thing you want using HTML language.
For example <br /> will give you just a blank line.
Or for example you can put here any horizontal picture you like just writing:
<img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" />
(Replace the link inside the src="" with the actual path to your picture).'; $txt['httpBL_log_clear_this_log'] = 'Clear this log'; $txt['httpBL_log_clear_SpammerLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Spammers Log?'; $txt['httpBL_log_clear_HumanLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Humans Log?'; $txt['httpBL_log_clear_ErrorLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Errors Log?'; // Help $txt['httpBL_helping'] = 'Help'; $txt['httpBL_helping_description'] = 'I would recommend you to read this page carefully even if you don\'t need help with mod httpBL.'; $txt['httpBL_online_title'] = 'Online help'; $txt['httpBL_online_body'] = '
There are a lot of ways you can ask for help, but the best one is to ask me directly any doubt you may have, so we can talk about it and sort the problem without losing any time. I don\'t mind to answer questions through forums, emails, PMs, etc, but for me it\'s a lot easier to see what is the problem and find the solution when I can talk about it using a microphone. And also I think this is a lot faster and more effective way to sort problems.



I am connected around 10 hours every day using the programs "Skype", "YIM" (Yahoo Messenger) and "MSN" (Live Messenger). I have also created a system in my server to write down what I am doing at every moment and have added a piece of code to the mod to read that info from my server (the piece you can see just next to these lines) so you can see if I am available or not.

If you have installed as well the program Skype, the process cannot be any easier. All you have to do is wait until I am available and click on the "Online" button. That will open automatically the program Skype in your computer and will start a conversation between us.

If you prefer to use YIM or MSN instead of Skype or if you haven\'t got a microphone, the button is not going to work automatically. In that case the button is going to be useful for you only to know if I am available or not, but to contact me you will need to add me first inside the program you use, like any other of your contacts. My ID inside those 3 programs is this one:
•Skype and YIM : snoopy_virtual_studio
•MSN : [email protected]

NOTICE: Don\'t use my hotmail address to send me emails, as I almost never read them. If you need to send me an email use this other address instead: [email protected]

WARNING: There are a lot of languages in the world I can understand even if it\'s only a little of it, but the only 2 I am really fluent with are English and Spanish. If you cannot speak any of those 2 languages you can call me if you want, but I cannot promise we will be able to understand each other.

ANOTHER WARNING: Before you start asking questions it would be a good idea to do a quick search using the links you can see further down, to see if somebody else have already had the same problem and it has already been sorted. The main reason why I have created this "Online Help" system is to save time and it would make no sense at all if I end up answering hundreds of times the same questions every day.
'; $txt['httpBL_help_1_title'] = 'Other ways to ask for help'; $txt['httpBL_help_1_body'] = '
Of course, even if I personally prefer the "Online Help" system, there will be times when it will be impossible to use it. Either because you live too far away from me and we are never online at the same time, or because you don\'t like the instant messenger programs, or because you need help when I am too busy with other projects and cannot be connected, or whatever other reason. In any of these cases you can find and/or ask for help using a lot of different ways:
•Tutorial explaining how the mod works, how to install it and how to configure it properly

Every time I update the mod I try to update the tutorial as well, but of course that depends on the amount of free time I have at any given moment, so sometimes you will see the tutorial a little out of date with the actual performance of the mod. But I hope some day I will find time to update the tutorial properly. Besides I have been planing to add to the tutorial also a "FAQ" section with all the questions that people have been asking me over time and to add also some other useful sections. It won\'t be a bad idea to check from time to time if there is something new there.
•Official mod\'s support thread

Full of very interesting questions and answers about the mod and other topics related to the protection against spammers. It is also the place to report any bugs you may find in the mod or to ask for new features you would like to see in future versions.
•The section dedicated to this mod inside my personal forum

My personal forum is dedicated to sort any kind of problems anybody may have inside a lot of different IT fields. Inside it there is a section dedicated to mod httpBL, where you can see (among other things) how you can install as well this mod on other web sites made with PHP but without SMF.
'; $txt['httpBL_help_2_title'] = 'How you can help us'; $txt['httpBL_help_2_body'] = '
This mod is "Free Source" and that means it\'s a team work where all of us help each other. So it\'s not only about others solving your problems, but you should also ask yourself in what ways you can help all the people who use it. Depending on your skills and free time, the different ways you can help are these ones:
•Donations

If this mod have helped you out, donations are a great way of saying "Thanks!". Furthermore, the months when donations reach an acceptable level, I don\'t have to spend so many hours looking for customers to make other types of work and I can devote more time to what really matters: The various free software projects which I collaborate with.
•Reporting bugs

Whenever you see that the mod is behaving in a way that is not expected, you should report the bug in the appropriate forum. If you also have enough programming knowledge to find where is the failure and propose a solution, the better, but even if you have no idea of where the fault is, the mere fact of reporting it is helpful, because it will allow someone with more experience to know that the bug exists and to dedicate some time to solve it, which will make the mod work even better.
•Answering questions in the forum

If you\'ve been using this mod for some time and have some practice with it, you\'ll see at times that someone asks a question in the forum that you know the answer. If you answer that question it will save me some time and allow me to concentrate on more important problems.
•Helping with the development of this mod

If you have enough knowledge of PHP and some free time you can help solving mod bugs and/or developing future versions. To do this I have opened a sub-forum inside my personal forum where you are welcome if you are interested in the subject.
•More

Any other ideas you can think of to help us is welcome.
'; $txt['httpBL_about_title'] = 'About MOD httpBL'; $txt['httpBL_about_body'] = '
Mod httpBL was started in 2009 by me, J. C. Redondo "Snoopy", from Snoopy Virtual Studio, based on ideas from Project Honey Pot message board, mainly from this thread and also from the Drupal http:BL MOD made by praseodym.

Of course, Drupal code is very different from SMF code, so since the beginning I had to change it a lot. Furthermore, since I started it, I\'ve been modifying it a lot more and adding new features, as I have been having new ideas or they have been suggested to me by other people in SMF forum, so in the current version there is very little left from the original work, but all this would not have been possible without that initial work.

Since version 2.4 of October 2010, this mod also uses the functions created by Marcin Krol and modified by X3mE in his mod OS & Browser Detection to detect the Operating System and Browser of potential spammers.

This program, as most of my work, is free software (at least the parts I have done). You may redistribute it and/or modify it for your own projects anyway you want. Just mention where you got it from, to give me the credit I deserve for my efforts. Anyway if you are going to make any money with it, I will be very grateful if you consider donating me a small percentage of your profit.
'; // MOD httpBL END               



Hackensack, NJ Community Message Boards
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 02:23:28 PM
Have you tried to re-download the package in case your copy may have been corrupted?

Also, what version of SMF are you using?
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 02:40:46 PM
Just tried re-downloading and installing. Same issue.

I thought I was on 2.0.9 but I see now Sources didn't update to 2.0.9 for some reason. 

SMF Package  SMF 2.0.9  SMF 2.0.9 
Sources  2.0.8  2.0.9
Default Templates  2.0.9  2.0.9 
Language Files  2.0.7  2.0.8 

More specifically:
Subs-Post.php  2.0.8  2.0.9 
__________________________

Maybe there is another clue here?

* 1. Execute Modification .Sources/ManagePermissions.php Test successful
* 2. Execute Modification .Sources/Admin.php Test successful
* 3. Execute Modification ./index.php Test successful
* 4. Execute Modification ./SSI.php Test successful
* 5. Execute Modification .Themes/default/index.template.php Test successful
* 6. Execute Modification .Themes/default/Who.template.php Test successful
* 7. Execute Modification .Themes/default/languages/Modifications.english.php Test successful
8. Execute Modification .Themes/default/languages/Modifications.english_british.php Skipping file
9. Execute Modification .Themes/default/languages/Modifications.spanish_es.php Skipping file
10. Execute Modification .Themes/default/languages/Modifications.spanish_latin.php Skipping file
11. Execute Modification .Themes/default/languages/Modifications.english-utf8.php Skipping file
12. Execute Modification .Themes/default/languages/Modifications.english_british-utf8.php Skipping file
13. Execute Modification .Themes/default/languages/Modifications.spanish_es-utf8.php Skipping file
14. Execute Modification .Themes/default/languages/Modifications.spanish_latin-utf8.php Skipping file
15. Delete File .Sources/httpBL_Subs.php 
16. Delete File .Sources/httpBL_2_Config.php 
17. Delete File .Themes/default/httpBL.template.php 
18. Delete File .Themes/default/css/httpBL_css.css 
19. Delete File ./warning.php 
20. Delete File ./warning_css.css  

Should I have deleted these files?
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 04:10:39 PM
Also, after installing the mod, all of these fields are empty and I don't see the mod link under members.

Can't find where I could "configure" any settings.

Title: Re: httpBL
Post by: SD-X on February 15, 2015, 04:34:25 PM
If it is asking you to delete those files, it wants you to uninstall the mod. I would recommend undoing any changes you have made, ensuring no mod code is left over, and double check that the mod is uninstalled completely elsewhere. Then try reinstalling it again from the Package Manager once you are sure your forum is up-to-date.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 05:16:32 PM
Went back, installed mod again and uploaded again via package manager. I get this:

1-7:Test successful
8. Execute Modification .Themes/default/languages/Modifications.english_british.php Skipping file
9. Execute Modification .Themes/default/languages/Modifications.spanish_es.php Skipping file
10. Execute Modification .Themes/default/languages/Modifications.spanish_latin.php Skipping file
11. Execute Modification .Themes/default/languages/Modifications.english-utf8.php Skipping file
12. Execute Modification .Themes/default/languages/Modifications.english_british-utf8.php Skipping file
13. Execute Modification .Themes/default/languages/Modifications.spanish_es-utf8.php Skipping file
14. Execute Modification .Themes/default/languages/Modifications.spanish_latin-utf8.php Skipping file
15. Extract File .Sources/httpBL_Subs.php 
16. Extract File .Sources/httpBL_2_Config.php 
17. Extract File .Themes/default/httpBL.template.php 
18. Extract File .Themes/default/css/httpBL_css.css 
19. Extract File ./warning.php 
20. Extract File ./warning_css.css  
21. Adapt Database install_2.php

Do I need to manually extract and install those files via FTP?

Also, - not sure how to just update my one file that is not up to date. 
Subs-Post.php  2.0.8  2.0.9 

Really appreciate your replies.
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 05:21:11 PM
The package manager will extract them for you.




Not sure about that file, but SMF doesn't always update all of the files when a new update is released. That may be intended.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 05:25:38 PM
Ok.  I still have the same issue when I install.

What does this mean:

21. Adapt Database install_2.php

Also, What does this mean:

'Wrong honeyPot link. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 05:32:59 PM
The first part is just a step that the package manager plans to take. It will "adapt the database" for you. What this means is that it plans on adding any information necessary to the database that you don't already have.

The second part sounds like you either need to put in your key in the settings area, you are using the wrong one, or your host is blocking the connection to ProjectHoneyPot, which is the site the mod uses to check for spammers.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 05:35:06 PM
I will check with my host, but is there any other way to access the settings area if I can't see it in my admin area yet?

Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 05:38:42 PM
Quote from: HackAl on February 15, 2015, 05:35:06 PM
I will check with my host, but is there any other way to access the settings area if I can't see it in my admin area yet?


you could try this:

http://yoursite here/index.php?action=admin;area=httpBL
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 05:38:57 PM
Quote from: HackAl on February 15, 2015, 05:35:06 PM
I will check with my host, but is there any other way to access the settings area if I can't see it in my admin area yet?
You have to finish installing the mod first.

(You'll also need to install your honeypot, which you can get from www.projecthoneypot.org. I would suggest using the PHP version. It will allow you to simply upload a file to your forum's directory, and then link it via your mod's settings).

One it is installed, you can find the settings from within the administration panel under "Members" -> "Mod httpBL..." -> "Settings".
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 05:49:11 PM
Thank you both.

DarkAngel: When I access the admin area, all fields are blank as shown in my screenshot above.
Sugar: I had already installed and activated the honey pot via their site, PHP version.
Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 06:03:15 PM
Quote from: HackAl on February 15, 2015, 05:49:11 PM
Thank you both.

DarkAngel: When I access the admin area, all fields are blank as shown in my screenshot above.
Sugar: I had already installed and activated the honey pot via their site, PHP version.

If you used the package manager then there might be something not uploaded right

If manual then recheck your coding to ensure you put it all in there.
sounds like something is missing.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 06:23:19 PM
It's installed on the server as a zip file.  I'm not sure how to extract/check the coding. 

Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 06:34:18 PM
Quote from: HackAl on February 15, 2015, 06:23:19 PM
It's installed on the server as a zip file.  I'm not sure how to extract/check the coding.

the zip should be in the packages folder.
admin/packages/ should show you the item in the list with the uninstall or install link to the right of it.

questions for you:

1. when you first posted you had coding --- did you remove that coding that you manually added to the files?

2. You then installed via package manager and still had issues...did you uninstall it totally prior to reinstalling it?

3. Did you ever fix the old files to their newer versions (upload and overwrite the ones on the server with new ones)?

4. I may have missed this but any other mods installed?

Have you thought of doing what I had to do once, after all mods were installed.......removed ALL files for SMF, then upload the SMF files fresh --- a few at a time cause some uploaders do not play nice with bunches at once...LOL THEN c heck files to make sure they are all current. Doing this will not make it necessary to run the installer for SMF, it just refreshes files and your forum is intact.

Install this mod first to see if it behaves.

drastic but sometimes needed.

OOPs I forgot.... when asking for assistance it is also very helpful to have  link to the forum. those with lots more experience can sometimes see what the rest of us do not.
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 06:43:44 PM
Quote from: DarkAngel612 on February 15, 2015, 06:34:18 PM
Have you thought of doing what I had to do once, after all mods were installed.......removed ALL files for SMF, then upload the SMF files fresh --- a few at a time cause some uploaders do not play nice with bunches at once...LOL THEN c heck files to make sure they are all current. Doing this will not make it necessary to run the installer for SMF, it just refreshes files and your forum is intact.
If you go this route, make sure you uninstall all of your mods via the Package Manager first, else you'll get some buggy results later.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 06:47:43 PM
Yes, I can see the install and install links via the package manager if that's what you are asking

1. Yes, I went back and removed that code.
2. Totally uninstalled via package manager. Re-downloaded and installed again via PM.
3. Not sure which files you refer to here. When I uninstalled via PM, they were no longer on the server.
4. FB socialization app

Sounds drastic but will consider if all else fails. Still waiting to hear from my host who is asking about IP and port used to connect to honey pot.  I don't know how to answer that.

www.hackensacknow.com

Again- thanks for taking the time.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 07:04:02 PM
I just noticed this error log in my public_html under the honey pot file:

[15-Feb-2015 18:58:12 America/New_York] PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so' - /usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so: cannot open shared object file: No such file or directory in Unknown on line 0

Related?
Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 07:06:19 PM
Quote from: HackAl on February 15, 2015, 06:47:43 PM
Yes, I can see the install and install links via the package manager if that's what you are asking

1. Yes, I went back and removed that code.
2. Totally uninstalled via package manager. Re-downloaded and installed again via PM.
3. Not sure which files you refer to here. When I uninstalled via PM, they were no longer on the server.
4. FB socialization app

Sounds drastic but will consider if all else fails. Still waiting to hear from my host who is asking about IP and port used to connect to honey pot.  I don't know how to answer that.

www.hackensacknow.com (http://www.hackensacknow.com)

Again- thanks for taking the time.

ok I think you said your files--some were not up to date for SMF...mebbe someone else I have been reading in here lots today...lol

Uninstalling all mods before deleting the files is something I know to do but usually forget to tell others. I tried to register but know nothing of NJ so could not answer the 2nd question...lol

Thought maybe if you could make me an admin temporary, then I could take a quick look backstage. I have had many mods that my forum will not play nice to install and sometimes they win but not too often.
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 07:06:46 PM
Quote from: HackAl on February 15, 2015, 06:47:43 PM
Still waiting to hear from my host who is asking about IP and port used to connect to honey pot.
You may be able to find that information by asking here:
http://www.projecthoneypot.org/board/
Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 07:10:26 PM
Quote from: HackAl on February 15, 2015, 07:04:02 PM
I just noticed this error log in my public_html under the honey pot file:

[15-Feb-2015 18:58:12 America/New_York] PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so' - /usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so: cannot open shared object file: No such file or directory in Unknown on line 0

Related?

It might all boil down to your host, whoever that is. they may not have given you the ability to create a php.ini file, some restrict this. but doing a quick search I find this in reply to a wordpress with the same error:

---------------------
This is a server configuration issue that has nothing to do with the plugin.
You need to update your php.ini configuration file to

--------------------

that said you would do well to either call them (if their suppport is there on weekends) or create a ticket with your issues. It might be something they have to take care of.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 07:18:31 PM
HostDime

I think I found the port/IP info.  I sent to HostDime.  Let's see what they say.

I'll keep you posted.

Thanks.
Title: Re: httpBL
Post by: Mortissimov on February 15, 2015, 07:32:11 PM
Quote from: HackAl on February 15, 2015, 07:04:02 PM
I just noticed this error log in my public_html under the honey pot file:

[15-Feb-2015 18:58:12 America/New_York] PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so' - /usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so: cannot open shared object file: No such file or directory in Unknown on line 0

Related?

See if the module exists on the system:

ls -lah /usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so
ls -lah /usr/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so


If it doesn't, try to install it:

pecl install timezonedb

If that places a copy into /usr/lib for the path rather than /usr/local/lib, copy the timezonedb.so file into /usr/local/lib/php/extensions/no-debug-non-zts-20090626/ location.

Source: cPanelTristan
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 07:56:07 PM
Thanks Martin but that's a little beyond me.  Not sure where/what system I would check; where to find the install file or how to install it.

I'm on a shared/hosted server.
Title: Re: httpBL
Post by: SD-X on February 15, 2015, 08:18:09 PM
Quote from: HackAl on February 15, 2015, 07:56:07 PM
Thanks Martin but that's a little beyond me.  Not sure where/what system I would check; where to find the install file or how to install it.

I'm on a shared/hosted server.
You likely won't have access to any of the settings or commands he stated then.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 08:24:57 PM
HostDime updated my php.ini file.  Still no luck.

:-\
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 08:48:24 PM
Hostdime says:

Thank you for your response. Usually the php.ini contains information such as upload size, memory limits, execution times, error reporting and various other items. If you could provide us any information about settings you will need in the php.ini, we can look in to making the necessary changes. If you are not sure which changes need to be made, you may have to contact the other companies' support to see if they are aware of any settings that need to be set. As this is third party, we are not aware of what changes must be made.
Title: Re: httpBL
Post by: DarkAngel612 on February 15, 2015, 09:14:35 PM
do you have shared, virtual or dedicated server account with them. they are really good at helping out when possible.

I have them also.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 09:23:35 PM
Shared.  I have no complaints about Hostdime's service. They updated in the php.ini file but I still haven't heard back from them about this:

[15-Feb-2015 18:58:12 America/New_York] PHP Warning:  PHP Startup: Unable to load dynamic library '/usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so' - /usr/local/lib/php/extensions/no-debug-non-zts-20090626/timezonedb.so: cannot open shared object file: No such file or directory in Unknown on line 0

My problem now is that I can't determine if it's me, the host, software, hardware or any combination of the above.
Title: Re: httpBL
Post by: HackAl on February 15, 2015, 09:32:57 PM
Hostdime says:

Unfortunately, that error you are seeing is unrelated to the Honey Pot issues you are experiencing. The timezone function isn't installed by default in PHP any longer because PHP itself now handles time zones. You have a local php.ini that tried to load up that library, but as it no longer exists, it gave you and error.

Unfortunately, it is difficult to pinpoint the exact issues that you are experiencing other than it being a connection error. If you could, please provide us detailed steps to replicate the error on our end so that we can determine the errors you are experiencing and see if it is a coding issue, or simply a connection issue that we can assist with.

We will await your reply.
______________________________

Can I delete that local php.ini file? Is that presenting some kind of a conflict?
Title: Re: httpBL
Post by: HackAl on February 16, 2015, 09:53:23 PM
Problem solved. For some reason, I had an older Themes/default/Modifications.english.php.

Found similar problem here: http://www.simplemachines.org/community/index.php?topic=368499.msg3793070#new

Thanks to everyone for pitching in!
Title: Re: httpBL
Post by: HackAl on February 16, 2015, 11:16:12 PM
I would still like to know how to fix the timezone db issue. Thanks.
Title: Re: httpBL Vs. "Responsive Curve" MOD
Post by: Sea Mac on May 09, 2015, 08:49:12 PM
I just did an "Upgrade Install" of SMF 2.0.10 and had all my MODs uninstalled. I've got SimplePortal 2.3.6 and the "Responsive Curve" MOD (Beta 4) installed - I added that one first - and it causes an error while reinstalling httpBL.
QuoteError in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.
  Installations actions for "httpBL"    Installing this package will perform the following actions: 


TypeActionDescription
1.Execute Modification./Sources/ManagePermissions.phpTest successful
2.Execute Modification./Sources/Admin.phpTest successful
3.Execute Modification./index.phpTest successful
4.Execute Modification./SSI.phpTest successful
5.Execute Modification./Themes/default/index.template.phpTest successful
6.Execute Modification./Themes/default/Who.template.phpTest failed

(http://thetruthabouthemp.com/hempity/Themes/default/images/admin/package_ops.gif) (http://thetruthabouthemp.com/hempity/index.php?action=admin;area=packages;sa=showoperations;operation_key=21;package=httpBL_v2_5_1.zip;filename=install_2.xml)1.Add Before./Themes/default/Who.template.phpTest successful

(http://thetruthabouthemp.com/hempity/Themes/default/images/admin/package_ops.gif) (http://thetruthabouthemp.com/hempity/index.php?action=admin;area=packages;sa=showoperations;operation_key=22;package=httpBL_v2_5_1.zip;filename=install_2.xml)2.Add Before./Themes/default/Who.template.phpTest failed
7.Execute Modification./Themes/default/languages/Modifications.english.phpTest successful

8.Execute Modification./Themes/default/languages/Modifications.english_british.phpSkipping file

9.Execute Modification./Themes/default/languages/Modifications.spanish_es.phpSkipping file

10.Execute Modification./Themes/default/languages/Modifications.spanish_latin.phpSkipping file

11.Execute Modification./Themes/default/languages/Modifications.english-utf8.phpSkipping file

12.Execute Modification./Themes/default/languages/Modifications.english_british-utf8.phpSkipping file

13.Execute Modification./Themes/default/languages/Modifications.spanish_es-utf8.phpSkipping file

14.Execute Modification./Themes/default/languages/Modifications.spanish_latin-utf8.phpSkipping file

15.Extract File./Sources/httpBL_Subs.php

16.Extract File./Sources/httpBL_2_Config.php

17.Extract File./Themes/default/httpBL.template.php

18.Extract File./Themes/default/css/httpBL_css.css

19.Extract File./warning.php

20.Extract File./warning_css.css

21.Adapt Databaseinstall_2.php


I'm now sure the latest version of httpBL is not compatible with the Who template installed by the "Responsive" MOD ....
I uninstalled the Responsive MOD and httpBL installed OK!
Title: Re: httpBL
Post by: snoopy_virtual on May 10, 2015, 06:58:50 AM
Hi Sea Mac

In one of my forums I need to upgrade from 2.0.9 to 2.0.10 and I wanted also to install the new Responsive Curve MOD in that forum. And of course httpBL MOD as well.

I don't know when I will do that, but it need to be soon. When I do it I will see where is the problem between the new Who.template and httpBL MOD and I will publish here a hack or a new mod version.

I think the Responsive Curve MOD is very important for all the sites that are normally accessed via mobiles and all the mods should try to be compatible with that one.
Title: Re: httpBL
Post by: snoopy_virtual on May 28, 2015, 01:22:41 PM
I have been checking the compatibility between httpBL MOD, SMF 2.0.10 and Responsive Curve MOD

I have seen that httpBL MOD is fully compatible with SMF 2.0.10. No problems there.

There is a small conflict between httpBL MOD and Responsive Curve MOD though, as Sea Mac was reporting, and I was thinking on releasing a new version of my mod to make them compatible, but as Responsive Curve MOD is still in beta (it has already 4 beta versions in a month and I suppose they will release a few more before it's stable) I'd prefer to wait until Responsive Curve MOD is stable before doing any changes to httpBL MOD.

In the mean time there is a small trick if you want to have them both installed in the same forum.

You just need to install httpBL MOD BEFORE installing Responsive Curve MOD. That way you won't have any errors and both mods will be working properly.

Of course when un-installing you will need to do it the other way round. Un-install first Responsive Curve MOD and then httpBL MOD.

Checked with Responsive Curve MOD beta 3 and beta 4.
Title: Re: httpBL
Post by: Sea Mac on May 29, 2015, 01:58:26 PM
My Bad!

I figured that out, and fixed up my forums ... but forgot to let you know. 
(I wound up doing a clean upgrade install on one of them, and then reinstalling the MODs in a different order than before .... and it worked fine!)

Another reason to install Responsive Curve last would be to make it easier to upgrade that MOD (by uninstalling the old, and then installing the new one) without affecting the other, previously installed MODs.

I appreciate all your hard work on the MOD: and try to donate with PayPal, every now and then ....

Thank you! (http://softwaresanta.com/underworld/smf2/Smileys/old/bows.gif)
Title: Re: httpBL
Post by: ziycon on July 27, 2015, 03:59:06 AM
Having an odd issue, I installed a custom theme and all is working as it should be, I've started getting thosands of the below errors in the error logs.

8: Undefined index: httpBL_unknown
File: /home/igniejfz/public_html/aprai/forum/Sources/httpBL_Subs.php
Line: 674

8: Undefined index: guest
File: /home/igniejfz/public_html/aprai/forum/Sources/httpBL_Subs.php
Line: 672



Looks like the two strings are loaded via '$txt' so it looks like the $txt global isn't loading properly for the function in httpBl, but why everything else is working as it should. The code snippet is loaded via the 'httpBL_dnslookup' function in httpBl_Subs.php.

$values = array();
$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');
$values['user_agent'] = $httpBL_user_agent != '' ? $httpBL_user_agent : $txt['httpBL_unknown'];
<!-- line 672 -->$values['username'] = $user_info['is_guest'] ? $txt['guest'] : $user_info['username'];
$values['stopped'] = 1;
<!-- line 674 -->$values['raw'] = $txt['httpBL_unknown']
Title: Re: httpBL
Post by: snoopy_virtual on July 27, 2015, 05:32:06 AM
Hi ziycon

That's really odd.

I suppose you are talking about httpBL version 2.5.1 working on SMF 2.0.10 and I suppose you are using only english and no other languages. If you are using other versions and / or other languages please tell me.

$txt['httpBL_unknown'] is defined inside the file / Themes / default / languages / Modifications.english.php

$txt['guest'] is defined inside the file / Themes / default / languages / index.english.php

Both files should be always loaded by SMF at all times, with or without mod httpBL installed.

Can you check if this custom Theme you are using has overwritten any of those files?

Check inside / Themes / your_custom_theme / languages /. Any file inside that folder is overwriting the files inside your default folder.

Let me know if that's not the problem and we will try to check other possibilities.
Title: Re: httpBL
Post by: ziycon on July 27, 2015, 07:31:55 AM
All language files except index.english.php are being inherited from the default theme. I'm using English British UTF8 but the issue also happens on the default English ISO-8859-1 language files. Yes it's httpBL version 2.5.1 working on SMF 2.0.10.

It looks to be only any $txt string loaded via the 'httpBL_dnslookup' function as these are the only two $txt strings in that function, when I go to the httpBL mod interface to look at the logs or caught spammers etc. all loads fine, and text is there.
Title: Re: httpBL
Post by: ziycon on July 27, 2015, 09:45:54 AM
If I put the below code snippet on line 666 of httpBL_Subs.php it looks like there are no errors generating.

if (empty($txt['guest'])) {
loadLanguage('index');
        loadLanguage('Modifications');
}
Title: Re: httpBL
Post by: snoopy_virtual on July 27, 2015, 10:19:38 AM
It's really weird, because index and Modifications languages should be loaded always doesn't matter what.

Anyway, as the error you were getting was that $txt['guest'] and $txt['httpBL_unknown'] were not defined I think you should check


if (!isset($txt['guest']))


instead of


if (empty($txt['guest']))


or even better:


if (!isset($txt['guest']) || empty($txt['guest']))


Anyway you said the file index.english.php you are using is the one inside your custom theme instead of the default one.

Can you compare both files (the custom and the default ones) and add to the custom file the missing lines from the default one?

It looks like at list this line is missing in your custom index.english.php


$txt['guest'] = 'Guest';


As a general rule I always try to avoid language files in my custom themes. When I find one I merge that file with the one inside the default theme (comparing them and copying the missing lines to the default file) and then I delete the custom language file.

And now that you are at it can you check also the file Modifications.english.php to see if this line is also missing?


$txt['httpBL_unknown'] = 'unknown';
Title: Re: httpBL
Post by: ziycon on July 27, 2015, 10:46:34 AM
Thanks for that, I've applied the suggested changed to the if statement.

I've also checked both languagefiles the index in my custom theme and the Modifications file in the default theme and the two strings exist as expected in both files.
Title: Re: httpBL
Post by: margarett on July 27, 2015, 10:52:59 AM
Quote from: snoopy_virtual on July 27, 2015, 10:19:38 AM
if (!isset($txt['guest']) || empty($txt['guest']))
Not really, as empty will perform an implicit check on isset

So empty($.... is the exact equivalent of the code you gave ;)
Title: Re: httpBL
Post by: snoopy_virtual on July 27, 2015, 11:01:21 AM
Quote from: margarett on July 27, 2015, 10:52:59 AM
Not really, as empty will perform an implicit check on isset

So empty($.... is the exact equivalent of the code you gave ;)

LOL you are right. That means I can delete half of my code, because I always check both things.  ;D
Title: Re: httpBL
Post by: Miker1029 on November 29, 2015, 07:52:04 PM
Hey,

   Just wanted to stop in say this is running great, I'm Finalizing everything, SO now I'm looking for an HttpBL backlink (image) maybe to your site, and also looking for one for Honeypot if you could help me out.....

You can check my page, http://android-x86.net and check the bottom of the page to see what I'm kind of looking for to put in there....


Thanks
Mike
Title: Re: httpBL
Post by: snoopy_virtual on November 29, 2015, 08:23:01 PM
I see what you mean.

Here you can get some for project honey pot:

http://www.projecthoneypot.org/link_to_us.php

I haven't made one for my site http://www.snoopyvirtualstudio.com but if I make one I will let you know.

I'm glad you like my work and to hear it is helping you protecting your site.
Title: Re: httpBL
Post by: Miker1029 on November 29, 2015, 08:25:13 PM
Quote from: snoopy_virtual on November 29, 2015, 08:23:01 PM
I see what you mean.

Here you can get some for project honey pot:

http://www.projecthoneypot.org/link_to_us.php

I haven't made one for my site http://www.snoopyvirtualstudio.com but if I make one I will let you know.

I'm glad you like my work and to hear it is helping you protecting your site.

Ok I'll just Pop a Text link in for now.

Title: Re: httpBL
Post by: Miker1029 on November 29, 2015, 08:42:45 PM
Ok it's in thanks, take your time on the tag, it's not real pretty but it's there, I'll play with the colors tomorrow, been going on the site since 6am....

Mike
Title: Re: httpBL
Post by: Miker1029 on November 29, 2015, 10:26:15 PM
Hey,

Sorry to bother you again, But am I messing up my settings, I know, I have the limits set in your Mod and I didn't check Zb, Or the crawltrack but check this out... and he was allowed in Because of the Answers which I guess is ok, but I'd still not want a user on my site like this check out the screenshots, and Know I just figured out how to stop spam 6-8 months ago, these bot, Hidden things got me confused, But this, to me, isn't good.....   I'm probably got settings messed up....

Thanks

Mike
Title: Re: httpBL
Post by: Miker1029 on November 29, 2015, 10:28:10 PM
And I know it's not fool proof I'm just seeing if I'm not understanding the settings... Or if it is what it is...

Mike
Title: Re: httpBL
Post by: snoopy_virtual on November 30, 2015, 08:16:25 AM
@Miker1029

It looks like this is one of the robots who can answer some easy captcha questions. The problem is not the settings (normally the default settings are good enough for most sites and you don't need to change them) the problem is a bug inside mod httpBL that I was supposed to fix ages ago but never found some spare time to do it.

Try reading this problem first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023

If I ever get some spare time I will change all that in mod httpBL and publish a new version with this bug fixed, but I have no idea when I will have time to do it. Sorry.
Title: Re: httpBL
Post by: Miker1029 on November 30, 2015, 10:57:28 AM
Lol, Hi Botmaster!!!

I Know that 3rd party Captures Stink, But wouldn't that handle it??  I have the KeyKaptcha on Registration and 1st Post Approval, For my Spam Prevention... Couldn't we just Add something like that to the Warning Page?? Not that I know how, But I'm Already registered with them so....

And yes I understood your Idea, Makes Sense,And I good Idea, But as you said, They'll figure it, Simple IF/AND/NOT/OR I could figure out....

I just 2 Days ago told a user (Because He Didn't like the Picture Assemble 1x!!),

To My User:

"I'm an Old School Programmer, And If you Have Color and Sky in the Same Sentence, I could write an Extremely simple A.I. that would figure out Blue, Get past it and on to the next one, You Say what Color Is Lady (What's Her Faces) White horse? The first thing I'm gonna do is plug every one of those words into the answer!!"....

Really Questions are going to be obsolete soon, Lol, I just thought of a good one, ask em what 1000000/35.5*93.421 = and when they get it right don't let them in 8-)

Will Wait on your reply on the capture..

Mike

P.S. AND I understand the Time thing as I said I was a Programmer in the day, and NOT a Paid one....You made a good MOD!
Title: Re: httpBL
Post by: willerby on March 15, 2016, 11:22:30 AM
Hi Snoopy, long time no contact. httpBL has been working away admirably on my forum for a number of years but just started seeing this error in my error log over last few days -

Error Log: Sorry, can not register new user with spam info

Hundreds of them all different IP addresses, trying to register. The trigger appears to be ...index.php?action=register2

It's been a while since I had some sort of automated login attempt but SMF seems to be coping admirably. I'm led to believe from Kindred that this is likely to be a mod specific error message and my main protection is your mod so I'm assuming its something triggered by httpBL? Apologies if not.
Title: Re: httpBL
Post by: snoopy_virtual on March 15, 2016, 12:39:41 PM
Quote from: laetabi on March 15, 2016, 11:22:30 AM
(...) just started seeing this error in my error log over last few days -

Error Log: Sorry, can not register new user with spam info

There is not a single line in mod httpBL (in the text fields) with those words, so this must be coming from some other mod.

Can you give me a list of the mods you have installed?

In the mean time I would suggest you to add at least an anti-spam question in your forum (if you haven't got one already).
Title: Re: httpBL
Post by: willerby on March 15, 2016, 04:01:57 PM
Thanks Snoopy... I couldn't find it either. I've looked through all my mods and there are only a few that could be impacting registration. I've checked all and most likely culprit is Tapatalk - SMF on an App.

Having just launched BYO Apps I supect this is either part of their testing or the login via their App is causing issues. Will check with them. Thanks for the fast response and sorry to have troubled you.

Keep up the great work!
Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2016, 09:32:00 AM
I've just discovered something wonderful when you are using mod httpBL and you have an Apache dedicated server with WHM-cPanel in it.

You just need to access your WHM.
Navigate to "Security Center" => "ModSecurity Tools"
Click on "Rules List"
Click on "Add Rule"
And enter this text:


SecHttpBlKey YOUR_API_KEY_HERE
SecRule TX:REAL_IP|REMOTE_ADDR "@rbl dnsbl.httpbl.org" "id:'99010',chain,phase:1,t:none,capture,block,msg:'HTTPBL Match of Client IP.',logdata:'%{tx.httpbl_msg}',setvar:tx.httpbl_msg=%{tx.0}"
SecRule TX:0 "threat score (\d+)" "chain,capture"
SecRule TX:1 "@gt 20"


Before you save this new rule you need to edit it a little.

In the first line, change the text YOUR_API_KEY_HERE for your actual httpBL API key (the same one you are using in mod httpBL).

The last line SecRule TX:1 "@gt 20" means that you are going to block every visitor with a threat score greater than 20.

That's the way I have it just now in my server, but you can use here any other value if you want.

The way this rule works, every visitor arriving to your server (human or robot) with a threat score in Project Honey Pot higher than this value, will be blocked from the server completely, with no even the possibility of watching a "warning page" or anything at all. So you may want to use a higher value here like 25 or 30.

It's up to you. You can edit the rule later, if you need to.

After you finish editing the rule, just save it and re-start your Apache server.

The good thing about this rule is that (when you have it enabled) mod httpBL is protecting every single port in your server. Not only from malicious visitors trying to access your web pages (ports 80 - http and 443 - https) but every other port and process on your server at the same time.
Title: Re: httpBL
Post by: szinski on March 28, 2016, 06:47:57 PM
Quote from: snoopy_virtual on March 16, 2016, 09:32:00 AM
I've just discovered something wonderful when you are using mod httpBL

Awesome find! I have it running on my server now, thanks!!
Title: Re: httpBL
Post by: szinski on March 28, 2016, 07:10:09 PM
I found a setting under ModSecurity Configuration where you can add your Project Honey Pot API Key.
Title: Re: httpBL
Post by: snoopy_virtual on March 29, 2016, 09:06:39 PM
Quote from: szinski on March 28, 2016, 07:10:09 PM
I found a setting under ModSecurity Configuration where you can add your Project Honey Pot API Key.

Yes, I found it too the next day.

If you enter your API key there, you can delete the first line in the rule, because you don't need to put it twice.
Title: Re: httpBL
Post by: Nodaz on August 18, 2016, 04:42:34 PM
Two questions:
A. i am following the directions to install a honeypot and it is asking for a preferred language, what do i choose?
My host is running:
cPanel Version    58.0 (build 20)
Apache Version    2.4.23
PHP Version    5.6.24
MySQL Version    10.0.25-MariaDB-cll-lve
Architecture    x86_64
Operating System    linux


Perl Version    5.10.1
Kernel Version    2.6.32-531.17.1.lve1.2.60.el6.x86_64

Am i better off, being a novice for the most part just using a honey pot quicklink?
Title: Re: httpBL
Post by: snoopy_virtual on August 18, 2016, 07:02:17 PM
I suppose you didn't read the tutorial I wrote:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english

Quote from: Nodaz on August 18, 2016, 04:42:34 PM
A. i am following the directions to install a honeypot and it is asking for a preferred language, what do i choose?

The language you need to chose is PHP.

Quote from: Nodaz on August 18, 2016, 04:42:34 PM
Am i better off, being a novice for the most part just using a honey pot quicklink?

This mod doesn't work with a honey pot quicklink.

You need the good honey pot.
Title: Re: httpBL
Post by: Nodaz on August 18, 2016, 07:08:24 PM
I hadn't seen that tutorial yet, i ended up downloading the mod through a referral in a post about another mod, not sure if i just missed it or if i hadnt come across it yet.
i will read it, thanks for the additional information as well.
Title: Re: httpBL
Post by: Nodaz on August 22, 2016, 02:54:51 PM
i have installed the honeypot and activated it sucessfully, i have retreived the BL aAPI key and downloaded the MOD package, BUT when i attempt to install i am getting two errors:
at kibe 6 and 6.2
   1.    Execute Modification    ./Sources/ManagePermissions.php    Test successful
*    2.    Execute Modification    ./Sources/Admin.php    Test successful
*    3.    Execute Modification    ./index.php    Test successful
*    4.    Execute Modification    ./SSI.php    Test successful
*    5.    Execute Modification    ./Themes/default/index.template.php    Test successful
*    6.    Execute Modification    ./Themes/default/Who.template.php    Test failed
      1.    Add Before    ./Themes/default/Who.template.php    Test successful
      2.    Add Before    ./Themes/default/Who.template.php    Test failed
*    7.    Execute Modification    ./Themes/default/languages/Modifications.english.php    Test successful
   8.    Execute Modification    ./Themes/default/languages/Modifications.english_british.php    Skipping file
   9.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es.php    Skipping file
   10.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin.php    Skipping file
*    11.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Test successful
   12.    Execute Modification    ./Themes/default/languages/Modifications.english_british-utf8.php    Skipping file
   13.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es-utf8.php    Skipping file
   14.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin-utf8.php    Skipping file
   15.    Extract File    ./Sources/httpBL_Subs.php    
   16.    Extract File    ./Sources/httpBL_2_Config.php    
   17.    Extract File    ./Themes/default/httpBL.template.php    
   18.    Extract File    ./Themes/default/css/httpBL_css.css    
   19.    Extract File    ./warning.php    
   20.    Extract File    ./warning_css.css    
   21.    Adapt Database    install_2.php

I dont want to continue without some direction as to what is happening.
Title: Re: httpBL
Post by: snoopy_virtual on August 22, 2016, 03:49:25 PM
I suppose it's some other mod you have installed.

Attach here your Who.template.php file (or send me it via PM or email) and I will sort it for you.
Title: Re: httpBL
Post by: Nodaz on August 22, 2016, 04:06:51 PM
Ive tried to keep mods to a minimum, here is what is installed:
1.    Google Analytics Code    1.4    [ Uninstall ] [ List Files ] [ Delete ]
2.    httpBL    2.5.1    [ Install Mod ] [ List Files ] [ Delete ]
3.    Responsive Curve    1.0 Beta 3    [ Uninstall ] [ List Files ] [ Delete ]
4.    Misc Anti Spam    1.0    [ Uninstall ] [ List Files ] [ Delete ]
5.    Stop Spammer    2.3.9    [ Uninstall ] [ List Files ] [ Delete ]
6.    SMF 2.0.11 Update    1.0    [ Uninstall ] [ List Files ] [ Delete ]
7.    SMF 1.1.21 / 2.0.10 Update    1.0    [ List Files ] [ Delete ]
8.    Ad Managment    3.2    [ Uninstall ] [ List Files ] [ Delete ]

ive attached the file.
I appreciate the help
Title: Re: httpBL
Post by: snoopy_virtual on August 23, 2016, 06:57:20 AM
I think the problem is with the mod Responsive Curve.

Try this:

1.- Uninstall the mod Responsive Curve

2.- Install the mod httpBL (it should show no errors this time I hope).

3.- Install again the mod Responsive Curve
Title: Re: httpBL
Post by: Nodaz on August 23, 2016, 03:28:14 PM
That was it, i uninstalled the responsive curve mod and httpBL installed without issue, i was able to set it up with the BL API and turn it on, it shows me a green bar and states it connected to the honeypot perfectly.
I have not reinstalled responsive curve yet, not sure why i actually installed it in the first place, dont remember exactly what it does and may leave it uninstalled.
Thanks very much for the help !
Title: Re: httpBL
Post by: Kindred on August 23, 2016, 04:15:12 PM
it makes your default theme somewhat responsive (enough to pass the google mobile friendly check)
Title: Re: httpBL
Post by: lepidas on November 24, 2016, 04:43:11 AM
Hello to all and specially to the author of the mod.
Today I was checking the source of my index and at the 2nd line from the end I found this
</div></div><div><a href="http://forum.snowguide.gr/clandestine.php"><span style="display: none;">anything</span></a></div>

I was just wondering what is this about? just out of curiosity
Title: Re: httpBL
Post by: DarkAngel612 on November 24, 2016, 04:54:04 AM
Is the link your site link?

If so it looks like it may be something to do with honey pot that you have registered to your site. The one to catch "spammers", maybe
Title: Re: httpBL
Post by: snoopy_virtual on November 24, 2016, 05:00:12 AM
Exactly.

That's the link to your honey pot.

It's done in a way that humans cannot see if they only look to the site in the normal way. Only robots see it.

It's explained better in the tutorial I started to write ages ago (but I never finished, sorry).

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english
Title: Re: httpBL
Post by: lepidas on November 24, 2016, 05:17:04 AM
Because I don't understand, I don't have such a php, what is the purpose of the link? How the HttpBl mod will understand that someone loaded that .php?
Title: Re: httpBL
Post by: snoopy_virtual on November 24, 2016, 05:23:50 AM
Quote from: lepidas on November 24, 2016, 05:17:04 AM
Because I don't understand, I don't have such a php, what is the purpose of the link? How the HttpBl mod will understand that someone loaded that .php?

Did you install this mod?

It doesn't work properly without a honey pot.

If you didn't uploaded that file (or a similar one) to your site and didn't tell the mod in the configuration page where is the honey pot, the mod is not going to work

If you want to use this mod I will recommend you to read the tutorial I was talking about. I know it's not finished, but all the important things are there.
Title: Re: httpBL
Post by: lepidas on November 24, 2016, 08:19:45 AM
I just uploaded the honeypot file now, now I understand that the clandestine.php is a generic name :)
thanx for the support
Title: Re: httpBL
Post by: Kindred on November 24, 2016, 08:45:47 AM
when you signed up for project honeypot, they sent you a php file along with the API connection information.
You would have had to upload that php file to your server.

Additionally, you must have typed in the file name/trigger word in the project honeypot settings for this mod.
Title: Re: httpBL
Post by: snoopy_virtual on November 24, 2016, 04:03:10 PM
Quote from: lepidas on November 24, 2016, 08:19:45 AM
I just uploaded the honeypot file now, now I understand that the clandestine.php is a generic name :)
thanx for the support

After uploading the file, remember you need to activate it too.
Title: Re: httpBL
Post by: lepidas on November 24, 2016, 11:15:54 PM
All is online now, Thanx for yours time
Title: Re: httpBL
Post by: Nodaz on December 01, 2016, 02:10:40 PM
I have been contacted by a user who is trying to register for my forum but their IP is being blocked and does not allow them to register.  I suspect httpBL    2.5.1     is the one blocking, but i have two other spam prevention mods in place

Misc Anti Spam    1.0       
Stop Spammer

IF i decide i would allow them, how do i go about doing so?

Do i need to register them manually? 
Title: Re: httpBL
Post by: shawnb61 on December 01, 2016, 03:45:13 PM

I have seen a several false positives over the years.  Yes, I add them manually when I encounter them.   

IP is far from a perfect tool to use, but it works the vast majority of the time. 
Title: Re: httpBL
Post by: DarkAngel612 on December 01, 2016, 10:21:29 PM
Quote from: Nodaz on December 01, 2016, 02:10:40 PM
I have been contacted by a user who is trying to register for my forum but their IP is being blocked and does not allow them to register.  I suspect httpBL    2.5.1     is the one blocking, but i have two other spam prevention mods in place

Misc Anti Spam    1.0       
Stop Spammer

IF i decide i would allow them, how do i go about doing so?

Do i need to register them manually?

When this happens to me I click the little magnifying glass next to their names in the admin/members area...that is where they will be if they are trying to register.

Then you can see if indeed they are listed with username/ip or email. If the username is listed and the ipor email is not one of the offending ones then possibly they are alright to let in, just accept them.

Since you were contacted by them then you can also see what IP they used and then take it from there. I have only had to register them myself 2 times. It might be that the offenders spoofed the IP and/or the IP was used long enough to annoy us and then got recycled to a new user by their host.

I forgot, if you click the username it should bring up the account then you can choose to edit the items out or allow them with restrictions.
Title: Re: httpBL
Post by: snoopy_virtual on December 02, 2016, 01:49:24 AM
@DarkAngel612: That's the process if it's the mod StopSpammer who is blocking them, but that's not clear in this case.

@shawnb61: To add them manually, first you need to know what mod is blocking them and why.

@Nodaz: If you tell me the IP of the user that has being blocked, I can tell you what mod is blocking the registration (and why) and what process you need to use.
Title: Re: httpBL
Post by: landyvlad on February 02, 2017, 06:57:49 AM
Went to install this mod and got:
Quote
1.   Execute Modification   ./Sources/ManagePermissions.php   Test successful
*   2.   Execute Modification   ./Sources/Admin.php   Test successful
*   3.   Execute Modification   ./index.php   Test successful
*   4.   Execute Modification   ./SSI.php   Test successful
*   5.   Execute Modification   ./Themes/default/index.template.php   Test successful
*   6.   Execute Modification   ./Themes/default/Who.template.php   Test failed
   1.   Add Before   ./Themes/default/Who.template.php   Test successful
   2.   Add Before   ./Themes/default/Who.template.php   Test failed
*   7.   Execute Modification   ./Themes/default/languages/Modifications.english.php   Test successful
8.   Execute Modification   ./Themes/default/languages/Modifications.english_british.php   Skipping file
9.   Execute Modification   ./Themes/default/languages/Modifications.spanish_es.php   Skipping file
10.   Execute Modification   ./Themes/default/languages/Modifications.spanish_latin.php   Skipping file
11.   Execute Modification   ./Themes/default/languages/Modifications.english-utf8.php   Skipping file
12.   Execute Modification   ./Themes/default/languages/Modifications.english_british-utf8.php   Skipping file
13.   Execute Modification   ./Themes/default/languages/Modifications.spanish_es-utf8.php   Skipping file
14.   Execute Modification   ./Themes/default/languages/Modifications.spanish_latin-utf8.php   Skipping file
15.   Extract File   ./Sources/httpBL_Subs.php   
16.   Extract File   ./Sources/httpBL_2_Config.php   
17.   Extract File   ./Themes/default/httpBL.template.php   
18.   Extract File   ./Themes/default/css/httpBL_css.css   
19.   Extract File   ./warning.php   
20.   Extract File   ./warning_css.css   
21.   Adapt Database   install_2.php   

Should I install the add-on first, or afterwards?

I have just installed the stopspammer mod without any problem.

These are the other mods I have installed on my forum.

1.   Stop Spammer   2.3.9   
2.   SMF Links   3.0.5   
3.   SMF Post Prefix   
4.   SMF Gallery Pro   7.2.2
5.   Google Member Map   3.0   
6.   Downloads System   3.0   
7.   Like Posts   2.0.5   
8.   Sortable Packages (and Installed Time)   
9.   Automatic Attachment Rotation   3.1   
10.   EzPortal   3.1.3   
11.   Responsive Curve   
12.   Social Login   
13.   Yet Another YouTube BBCode Tag   4.1


I'd appreciate guidance on how to proceed.

Thanks

P.S. I note that the Project Honeypot website / system is 'down'for hardware upgrades currently.
Title: Re: httpBL
Post by: snoopy_virtual on February 02, 2017, 08:20:57 AM
QuoteShould I install the add-on first, or afterwards?

It doesn't matter if you install the addon before or after the mod.

There is a small conflict between mod httpBL and Responsive Curve.

You need to have httpBL BEFORE you install Responsive Curve

But there is an easy solution:

- Uninstall Responsive Curve

- Install httpBL

- Install again Responsive Curve

This way, every thing should go smooth.
Title: Re: httpBL
Post by: Kindred on February 02, 2017, 08:23:06 AM
or do it by hand... it's one little change. :P


However be aware that httpBL has been down for several weeks now.
Title: Re: httpBL
Post by: snoopy_virtual on February 02, 2017, 08:30:43 AM
Quote from: Kindred on February 02, 2017, 08:23:06 AM
or do it by hand... it's one little change. :P


However be aware that httpBL has been down for several weeks now.

The server has been down for weeks?

I didn't know. I noticed today the server was down when I saw what landyvlad wrote, but I thought it was just a temporary thing,

I will try to contact them to see what's the matter.

If the server is off, this mod won't work at all.

=============
Edit:

"Project Honey Pot is performing database maintenance. Should be back soon.
Data Migrations are underway.
Hardware upgrades will be onsite Wednesday February 1. Updates to follow." (http://www.projecthoneypot.org/?rf=62759)

At least that's what they say.
Title: Re: httpBL
Post by: Kindred on February 02, 2017, 08:33:07 AM
yeah...   a user of the bad behavior+httpbl mod noted the outage -- and noted that it's been reported on facebook etc with no response from the owners. :(
Title: Re: httpBL
Post by: snoopy_virtual on February 02, 2017, 08:49:51 AM
I hope it doesn't mean they have made so much money with cloudflare they have forgotten all this started as an open source project.

But of course if they are making "Hardware upgrades" is thanks to the money they made with cloudflare. (I suppose).
Title: Re: httpBL
Post by: Kindred on February 02, 2017, 08:56:35 AM
hmmmm....
https://www.facebook.com/Project-Honey-Pot-241276949072

Quote
Project Honey Pot
January 31 at 9:46pm ·

Data migration is underway. New servers as part of our hardware updates will be onsite tomorrow.

http://www.projecthoneypot.org/maintenance/maintenance.html
Quote
Project Honey Pot is performing database maintenance. Should be back soon.

Data Migrations are underway.

Hardware upgrades will be onsite Wednesday February 1. Updates to follow.
Title: Re: httpBL
Post by: landyvlad on February 02, 2017, 04:33:42 PM
Reposted 1 Feb on FB  Data migration is underway. New servers as part of our hardware updates will be onsite tomorrow.
Title: Re: httpBL
Post by: snoopy_virtual on February 02, 2017, 08:10:24 PM
Good news:

Project Honey Pot website is down, but the servers that mod httpBL uses to work are OK.

I have been checking the logs in a couple of sites where I have this mod installed and they are stopping the spammers as always. More or less 100 spammers stopped in each site a day.

I was wondering how it was possible (if their servers had been down for weeks) that I hadn't seen even one spammer in any of my forums.

Well, that's why.  ;)

Cheers (http://www.snoopyvirtualstudio.com/foro/Smileys/default/asturiaspatriaquerida.gif)
Title: Re: httpBL
Post by: landyvlad on February 02, 2017, 08:32:09 PM
Simply means that no new installs of this mod are possible (or rather useful) until the forum admin can make a honeypot account, for which the website needs to be up.
Hopefully that'll be soon-ish.
Cheers Snoop dog !
Title: Re: httpBL
Post by: snoopy_virtual on February 03, 2017, 05:07:04 AM
Of course. I didn't think about that.

That means the good news are only for the people who already have this mod installed.

Sorry about that. This way of saying "It will be here tomorrow" (and keeping saying that day after day) doesn't sound too promising.

If I remember correctly, one of the admins in Project Honey Pot's website has an account in SMF. (He posted here in this thread a couple of times to help somebody). If I find out what's his username here in SMF, I will say it here so we can send him a PM to see exactly what's going on. But of course, that doesn't mean we are going to get an answer.
Title: Re: httpBL
Post by: landyvlad on February 05, 2017, 07:32:44 AM
Thanks for that. Yeah it's a bit worrying that it's now the 5th (or it is where I am) and no change on the website.....
Title: Re: httpBL
Post by: landyvlad on February 27, 2017, 08:20:48 AM
The honeypot website has updates so there is hope yet !

QuoteCurrent Status: Feb 24th, 2017 @ 3PM EST: In the process of updating MX and HPOT data structures and realigning message map relations.

Current Status: Feb 16th, 2017 @ 5PM EST: Master Slave replication is configured. Data Imports are continuing

Current Status: Feb 12th, 2017 @ 3PM EST: Data Imports are continuing

Current Status: Feb 8th, 2017 @ 1PM EST: Hardware installs and base configuration completed. Starting to import data

Current Status: Feb 1st 2017 @ 3PM EST: Upgraded hardware is onsite and being installed.
Title: Re: httpBL
Post by: landyvlad on February 27, 2017, 09:38:50 PM
QuoteCurrent Status: Feb 27th, 2017 @ 1PM EST: MX data structure updates are complete. HPOT data structures are in progress

It's very encouraging that the honeypot maintenance is page is now being updated regularly and I expect this will be back so we can register soon ! :)
Title: Re: httpBL
Post by: landyvlad on March 05, 2017, 11:23:01 PM
(I'd modify my existing posts but evidently can't after a period of time. Anyway...)

Latest honeypot update:
QuoteCurrent Status: March 3rd, 2017 @ 6PM EST: HPOT data structures and E3 processing complete. Message map updates underway

It will be great when this is back as I am very much looking forward to getting this mod up and running.

I had 8 spammers attempt to register today - avoided dramas thanks to the companion MOD stop spammer, and I think having httpBL as well will be even better protection. :)
Title: Re: httpBL
Post by: landyvlad on March 16, 2017, 02:30:28 AM
More progress...

QuoteCurrent Status: March 15 2017 @ 7PM EST: Indexes complete. Importing queued message data.

Current Status: March 14 2017 @ 3PM EST: Indexes continue to rebuild. 4 remaining.

Current Status: March 14 2017 @ 9AM EST: Indexes continue to rebuild. 9 remaining.

Current Status: March 13 2017 @ 9PM EST: Indexes continue to rebuild. 25 remaining.

Current Status: March 10 2017 @ 1PM EST: Msg map data successfully imported. Rebuilding db indexes and vacuuming db.
Title: Re: httpBL
Post by: GL700Wing on March 18, 2017, 06:31:10 PM
HoneyPot online again!!
Title: Re: httpBL
Post by: landyvlad on March 20, 2017, 10:12:25 AM
sweet. Bit late tonight, I'll have to have a look tomorrow and get it set up on my forum....
Title: Re: httpBL
Post by: landyvlad on March 20, 2017, 10:16:55 AM
snoopy I tried to read the tutorial mentioned on the mod page, and get this message when I click the link

Quote
The web service to this account has been limited temporarily!
Please contact your host provider to find more information on the reason why service was limited and what actions to take to restore it.
Title: Re: httpBL
Post by: landyvlad on March 20, 2017, 10:22:22 AM
The honeypot website offers:
   Specify the scripting language you prefer (e.g. PHP, ASP, Perl, mod_perl, ColdFusion, Python, or Movable Type

How do I know which to choose for me?  Would I be right to assume PHP would be best for a normal SMF forum?
Title: Re: httpBL
Post by: Kindred on March 20, 2017, 10:26:43 AM
yes
Title: Re: httpBL
Post by: landyvlad on March 20, 2017, 10:47:12 AM
Thanks.  OK now I have installed and activated my honeypot :)

I have then gone to install httpBL mod and get the following error

Quote
   Type   Action   Description
*   1.   Execute Modification   ./Sources/ManagePermissions.php   Test successful
*   2.   Execute Modification   ./Sources/Admin.php   Test successful
*   3.   Execute Modification   ./index.php   Test successful
*   4.   Execute Modification   ./SSI.php   Test successful
*   5.   Execute Modification   ./Themes/default/index.template.php   Test successful
*   6.   Execute Modification   ./Themes/default/Who.template.php   Test failed
   1.   Add Before   ./Themes/default/Who.template.php   Test successful
   2.   Add Before   ./Themes/default/Who.template.php   Test failed
*   7.   Execute Modification   ./Themes/default/languages/Modifications.english.php   Test successful
8.   Execute Modification   ./Themes/default/languages/Modifications.english_british.php   Skipping file
9.   Execute Modification   ./Themes/default/languages/Modifications.spanish_es.php   Skipping file
10.   Execute Modification   ./Themes/default/languages/Modifications.spanish_latin.php   Skipping file
11.   Execute Modification   ./Themes/default/languages/Modifications.english-utf8.php   Skipping file
12.   Execute Modification   ./Themes/default/languages/Modifications.english_british-utf8.php   Skipping file
13.   Execute Modification   ./Themes/default/languages/Modifications.spanish_es-utf8.php   Skipping file
14.   Execute Modification   ./Themes/default/languages/Modifications.spanish_latin-utf8.php   Skipping file
15.   Extract File   ./Sources/httpBL_Subs.php   
16.   Extract File   ./Sources/httpBL_2_Config.php   
17.   Extract File   ./Themes/default/httpBL.template.php   
18.   Extract File   ./Themes/default/css/httpBL_css.css   
19.   Extract File   ./warning.php   
20.   Extract File   ./warning_css.css   
21.   Adapt Database   install_2.php   
Install in Other Themes
To use this modification in themes other than the default, the package manager needs to make additional changes to the other themes. If you'd like to install this modification in the other themes, please select these themes below.
   Core Theme
   Execute Modification   ./Themes/core/index.template.php   Test successful

Suggestions / Ideas how to proceed?
Title: Re: httpBL
Post by: Kindred on March 20, 2017, 10:58:40 AM
same as always...
http://wiki.simplemachines.org/smf/Error_in_mod_installation
Title: Re: httpBL
Post by: snoopy_virtual on March 21, 2017, 08:33:05 AM
Quote from: landyvlad on March 20, 2017, 10:16:55 AM
snoopy I tried to read the tutorial mentioned on the mod page, and get this message when I click the link

Quote
The web service to this account has been limited temporarily!
Please contact your host provider to find more information on the reason why service was limited and what actions to take to restore it.

Yes, sorry. They have closed my server temporarily because I owe them some money. I hope I would manage to get it open again soon.

I don't know exactly when because I haven't got any kind of regular income. It's not easy to find a job when you are 60 years old, so all the work I have been doing in the past 10 years have been mostly free source programs.

Quote from: landyvlad on March 20, 2017, 10:47:12 AM
I have then gone to install httpBL mod and get the following error

Quote
   Type   Action   Description
...
*   6.   Execute Modification   ./Themes/default/Who.template.php   Test failed
...
   2.   Add Before   ./Themes/default/Who.template.php   Test failed
...

Suggestions / Ideas how to proceed?

You already asked that question here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3912548#msg3912548

I Kindred and me already answered you there.

Quote from: snoopy_virtual on February 02, 2017, 08:20:57 AM
There is a small conflict between mod httpBL and Responsive Curve.

You need to have httpBL BEFORE you install Responsive Curve

But there is an easy solution:

- Uninstall Responsive Curve

- Install httpBL

- Install again Responsive Curve

This way, every thing should go smooth.

Quote from: Kindred on February 02, 2017, 08:23:06 AM
or do it by hand... it's one little change. :P
Title: Re: httpBL
Post by: landyvlad on March 21, 2017, 06:22:42 PM
hahaha I must be dopey !  My memory is going to mush and I'm a decade or so younger than you so no excuses eh.  Thanks for that.
Title: Re: httpBL
Post by: landyvlad on March 21, 2017, 08:32:06 PM
OK just reporting back.

I have managed to get it all set up on the honeypot site and the mod successfully installed, up and running on the forum !

If I can do it, anyone can, so thanks for everyone's help. :)

Now to wait and see what flies wander in for the honey.... 
Title: Re: httpBL
Post by: landyvlad on March 23, 2017, 08:38:15 AM
A question.

I have had the mod going for 24 hours so far and have no caught any spammers.

There are a few however which have snuck through into the "awaiting approval" section of the Stop Spammer mod.

One example is:  [username]exacet09276   [email]bing.(femaledog)[email protected]   [IP]121.205.216.79

I assume then, that this spammer isn't in the project honeypot databsae - but then it would appear that another 3 or 4 got through during the last 24 hours as well.

The mod says everything is up and running OK, with honeypot working etc.  Any ideas why it isn't catching anything?
Title: Re: httpBL
Post by: snoopy_virtual on March 23, 2017, 09:34:39 AM
Quote from: landyvlad on March 23, 2017, 08:38:15 AM
A question.

I have had the mod going for 24 hours so far and have no caught any spammers.

There are a few however which have snuck through into the "awaiting approval" section of the Stop Spammer mod.

One example is:  [username]exacet09276   [email]bing.(femaledog)[email protected]   [IP]121.205.216.79

I assume then, that this spammer isn't in the project honeypot databsae - but then it would appear that another 3 or 4 got through during the last 24 hours as well.

The mod says everything is up and running OK, with honeypot working etc.  Any ideas why it isn't catching anything?

If you log into projecthoneypot's web site, you can see the details of any IP inside the database.

For example in this case, after you are logged in, go to:

http://www.projecthoneypot.org/ip_121.205.216.79

You can see that this is a "suspect" spammer, but the Threat Rating is only 1 just now

Usually we only consider dangerous an IP with Threat Rating 10 or more.

============================================

Anyway, some time ago, we found out there are a few spam-bots that can pass through mod httpBL.

It was first reported by Sea Mac here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3080909#msg3080909

I suggested him a small change in the warning page to sort that problem here:

http://www.simplemachines.org/community/index.php?topic=366399.msg3081023#msg3081023

You should do that small change too to avoid this kind of spam-bots.
Title: Re: httpBL
Post by: landyvlad on March 24, 2017, 12:45:10 AM
Thanks. I'll give that a crack
Stupid Q no.1 - where do I find the warning page? What file to change?

Stupid Qs no.2 - in the mod settings "Keyword of your Honey Pot link".  It says I can leave it blank, which I did, do I just assume its chosen one? (it doesn't show one).
Would it be better to choose one myself. How do I know what sort of word to use? (and is the mod settings the only place this appears or is it something that needs to be in the honeypot itself...)


FYI in case it helps/matters two more today which slipped through (but Stop Spammer got em). Both appear to be not recorded in the honeypot database.
Quote
JimmieDeha [email protected] 192.227.182.173
SheldonGuamiaccuse [email protected] 185.167.216.38

Still nothing caught by httpBL yet.
Title: Re: httpBL
Post by: Shambles on March 24, 2017, 05:11:21 AM
Quote from: landyvlad
Still nothing caught by httpBL yet.

Try visiting your website using the Tor browser...
Title: Re: httpBL
Post by: snoopy_virtual on March 24, 2017, 02:58:20 PM
Quote from: landyvlad on March 24, 2017, 12:45:10 AM
Stupid Q no.1 - where do I find the warning page? What file to change?

It is a file called warning.php and it's located at the root of your SMF installation.

Quote from: landyvlad on March 24, 2017, 12:45:10 AM
Stupid Qs no.2 - in the mod settings "Keyword of your Honey Pot link".  It says I can leave it blank, which I did, do I just assume its chosen one? (it doesn't show one).
Would it be better to choose one myself. How do I know what sort of word to use? (and is the mod settings the only place this appears or is it something that needs to be in the honeypot itself...)

Leave it blank and don't worry at all about it. The program will choose one for you and use it wherever it needs to use it.

Quote from: landyvlad on March 24, 2017, 12:45:10 AM
FYI in case it helps/matters two more today which slipped through (but Stop Spammer got em). Both appear to be not recorded in the honeypot database.
Quote
JimmieDeha [email protected] 192.227.182.173
SheldonGuamiaccuse [email protected] 185.167.216.38

Still nothing caught by httpBL yet.

Send me a PM and tell me what time of the day (and what days of the week) you have time to talk.

We can connect using Skype and Teamviewer so I can take a look at what exactly is going on there, because obviously something is wrong.

Don't forget to tell me also what part of the planet you live in, because I live in Spain and I will need to see how many ours difference we have between your country and mine.  ;)
Title: Re: httpBL
Post by: landyvlad on March 26, 2017, 09:49:41 PM
OK so it seems it is working.  In the last 4 days it has detected and stopped (according to the spammers log page) 8 attempts, from 3 different IP addresses in total.

At the same time though an average of two a day are getting through past this to be intercepted by the "stop spammer' mod.

I couldn't find anything which details the difference between the various 'logs' so am seeking some guidance on this:

The 'humans log' indicates that two high threat ones have been stopped (and these are from the same IP as 6 of those in the 'spammers log'. It was also detected stopped 7 medium threat and one low threat attempt.

How does it know / decide whether it is a bot or human spammer attack?  I presume that's what the difference between these two logs is.


What is the "Errors Log" ?  As in what does it record - what sort of 'errors' ?
In the brief time this mod has been up and running, the errors log extends to 94 pages!
Also the IP column of that log has strange (non IP) codes in it eg. 2a02:c7f:d81b:a0  so obviously recording something different and just displaying it there?

Thanks for your help.
Title: Re: httpBL
Post by: snoopy_virtual on March 28, 2017, 09:01:14 AM
Quote from: landyvlad on March 26, 2017, 09:49:41 PM
The 'humans log' indicates that two high threat ones have been stopped (and these are from the same IP as 6 of those in the 'spammers log'. It was also detected stopped 7 medium threat and one low threat attempt.

How does it know / decide whether it is a bot or human spammer attack?  I presume that's what the difference between these two logs is.

The Humans log is where you can see the visitors who have seen the captcha inside the warning page and who have answered the questions.

Only humans should be able to answer those questions. (That's how the program knows if they are human or robots).

But it looks like you are getting spam-bots who are visiting your site and answering the questions.

That means you haven't made the change to the warning page I suggested (or you have don't it wrong).

In all my sites I usually get something like 100 entries per day in the spammers log but just 1 or 2 per week in the humans log.

Quote from: landyvlad on March 26, 2017, 09:49:41 PM
What is the "Errors Log" ?  As in what does it record - what sort of 'errors' ?
In the brief time this mod has been up and running, the errors log extends to 94 pages!
Also the IP column of that log has strange (non IP) codes in it eg. 2a02:c7f:d81b:a0  so obviously recording something different and just displaying it there?

The entries in the Errors log are all the errors inside the program so it should be always empty unless there is something wrong with the mod.

I already told you it would be a lot easier for me to see what's wrong if we could talk using Skype and I could take a look at your site using Teamviewer.
Title: Re: httpBL
Post by: landyvlad on March 28, 2017, 09:42:29 AM
OK snoopy I'll get to work on getting skype working in next few days.  Cheers mate.
Title: Re: httpBL
Post by: edi1967 on May 01, 2017, 04:41:17 PM
hi snoopy i using your Who.template of here:

http://www.simplemachines.org/community/index.php?topic=366399.msg2816231#msg2816231

but i have one little problem in your Who.template there are a couple of strings that i have not translated in my italian forum so them create me errore.
Please you could help me and tell me them translation?

$txt[139] = ?
$txt[92] = ?

thank you so much


Title: Re: httpBL
Post by: snoopy_virtual on May 02, 2017, 06:39:43 AM
That was done 7 years ago and it was for SMF 1. That's why you cannot find those old $txt entries.

If you are using SMF 2 that page shouldn't work properly. Is it working for you?

Anyway, if you check the source code of SMF 1, in the file /Themes/default/languages/index.english.php you can see:


$txt[139] = 'Pages';
$txt[92] = 'View the profile of';
Title: Re: httpBL
Post by: edi1967 on May 02, 2017, 08:14:03 AM
Quote from: snoopy_virtual on May 02, 2017, 06:39:43 AM
That was done 7 years ago and it was for SMF 1. That's why you cannot find those old $txt entries.

If you are using SMF 2 that page shouldn't work properly. Is it working for you?


Work perfectly in SMF 2.0.13

Thxnk you
Title: Re: httpBL
Post by: skitty on May 21, 2017, 04:32:02 PM
just out of curiosity i keep getting Type of error: Undefined in the logs for the forums. its been happening it for a while but i never really looked at it that much.
Title: Re: httpBL
Post by: snoopy_virtual on May 22, 2017, 10:02:54 AM
Quote from: skitty on May 21, 2017, 04:32:02 PM
just out of curiosity i keep getting Type of error: Undefined in the logs for the forums. its been happening it for a while but i never really looked at it that much.

Could you copy the exact error you are getting and paste it here?

I mean the full text.

Just "Type of error: Undefined" could be almost anything.
Title: Re: httpBL
Post by: landyvlad on September 02, 2017, 11:53:21 PM
I've been seeing a MASSIVE increase in Spammers over the lest few weeks.

It's only a small forum www.gsx1400owners.org ,  running SMF 2.0.13
I am running this httpBL mod as well as Stop Spammer mod (I'll ask there as well). Current versions of course.

Where we previously might have had to manually reject one or two a week, we are now manually rejecting at least 10 (often many more) each day. A few are even getting through to the forum itself (not being intercepted at all)

I get that they are largely being stopped and popped into the moderation queue BUT these are usually flagged red (spammers) against both the IP AND email address.  I'd have thought it should automatically boot those, rather than leave them for moderation?  That is, shouldn't they be intercepted and 'killed' before even making it to the possibility if registering.. which appears to be what's happening?

If you have any advice about how I should be addressing this issue, I'd be most appreciative.


(oh and one secondary question - I'm considering updating, I assume no problems between this mod and SMF2.0.14? )
Title: Re: httpBL
Post by: Kindred on September 03, 2017, 06:35:09 AM
Add good questions
Title: Re: httpBL
Post by: ms_ukyankee on September 03, 2017, 07:44:09 AM
QuoteI've been seeing a MASSIVE increase in Spammers over the lest few weeks.

I get this once or twice a year and I notice it drops off again if I change the questions and answers when I notice an increase. I'm guessing they use a bot to auto-fill answers, so if the answers change it doesn't work anymore. It seems to solve the problem for a few months.
Title: Re: httpBL
Post by: Kindred on September 03, 2017, 08:33:11 AM
You should have at least 20 questions in the stack and ask 2-3 at registration.
Title: Re: httpBL
Post by: landyvlad on September 03, 2017, 08:49:45 AM
Twenty? Ouch ?!
I had a single Q&A.  That's now deleted

I now have 6 Q&A with a requirement of 2 to be answered.  Will see how that goes, thanks.

(Out of interest I don't suppose that if a bot does get through there is any way of knowing what question was compromised? ) 
Title: Re: httpBL
Post by: Kindred on September 03, 2017, 01:17:31 PM
No...
Title: Re: httpBL
Post by: landyvlad on September 06, 2017, 09:37:43 AM
The changes seemed to have stemmed the flow back to close to 'normal'. Thanks
Title: Re: httpBL
Post by: Torngate on November 30, 2017, 08:43:13 AM
First I wanna say I love this mod, but I've been having two errors pop up in my logs with alarming frequency (Thousands a day, somehow?) that don't seem to be impacting performance on the site or the mod, yet show up and I can't say I understand them.

First, a "general" class error.

8: Undefined variable: ip
Apply Filter: Only show the errors from this file
File: /blahblahblahblah/forum/Sources/httpBL_Subs.php
Line: 519

and a "Uncategorized" error

2: Missing argument 1 for httpBL_look_for_empty_ip(), called in /home2/shadowi7/public_html/forum/Sources/httpBL_Subs.php on line 680 and defined
Apply Filter: Only show the errors from this file
File: /thingstuffthing/forum/Sources/httpBL_Subs.php
Line: 517

Any idea how to fix those? They seem to happen at random, when a user does a lot of things.

Any help would be appreciated!

Forum Version: SMF 2.0.15,
PHP: 7.0.25
Server version: Apache

I can provide more information if needed.

Thanks!
Title: Re: httpBL
Post by: snoopy_virtual on December 02, 2017, 01:13:11 PM
@Torngate

Sorry.

This is a known bug that I discovered ages ago, but never found time to sort.

Look inside your Sources folder for the file httpBL_Subs.php

Inside that file look for the line:


$ip = httpBL_look_for_empty_ip();


Replace with:


$ip = httpBL_look_for_empty_ip($ip);


And that's it. Problem sorted.
Title: Re: httpBL
Post by: Torngate on December 04, 2017, 06:57:48 PM
Quote from: snoopy_virtual on December 02, 2017, 01:13:11 PM
@Torngate

Sorry.

This is a known bug that I discovered ages ago, but never found time to sort.

Look inside your Sources folder for the file httpBL_Subs.php

Inside that file look for the line:


$ip = httpBL_look_for_empty_ip();


Replace with:


$ip = httpBL_look_for_empty_ip($ip);


And that's it. Problem sorted.

This worked great! Thank you!
Title: Re: httpBL
Post by: landyvlad on January 26, 2018, 11:19:25 AM
I was having the same issue so have now done this fix. Ta.

Would this impact the number of dodgy types sneaking past the mod and ending up in the 'requires approval' queue?  Because since the 2.0.15 upgrade that has gone up significantly.

(nb I also have 'stop spammer' and have followed the reinstall and file edit that kindred advised and that seems to be working fine.

Title: Re: httpBL
Post by: dynaweb on January 30, 2018, 04:08:03 PM
Thanks for the great mod!
Title: Re: httpBL
Post by: snoopy_virtual on January 31, 2018, 03:20:55 AM
Quote from: landyvlad on January 26, 2018, 11:19:25 AM
Would this impact the number of dodgy types sneaking past the mod and ending up in the 'requires approval' queue?  Because since the 2.0.15 upgrade that has gone up significantly.

No.

This is a minor bug that doesn't have any impact at all in the way the mod stop the spammers.

The only problem with this bug is that it fills your "error log" with hundreds of "error 8: Undefined variable: ip" etc.

But the mod works exactly the same either if you fix it or not.
Title: Re: httpBL
Post by: landyvlad on February 05, 2018, 08:26:19 PM
OK thanks mate.  Obviously just a coincidence.
The Russian spammers seem super active of late.

I'm wondering how these are ending up in the 'require approval' queue, rather than getting bounced earlier and I never see them?
They are flagged by both email and IP as spammers.

And I've increased the number of 'security questions' to fifteen or so, with three correct answers needed. 

Any ideas?
Title: Re: httpBL
Post by: landyvlad on March 14, 2018, 11:32:27 PM
Is there a version planned for SMF 2.1?

If not, what alternative is recommended for 2.1 ?
Title: Re: httpBL
Post by: ziycon on May 21, 2018, 06:41:33 AM
Using 2.0.15, never come across any issues before except today I'm getting the below.


URL /index.php?
: Field 'error' doesn't have a default value
File: /var/www/Sources/httpBL_Subs.php
Line: 298

Gotten about 20 of these errors today, not other mods installed.
Title: Re: httpBL
Post by: spiros on July 04, 2018, 07:38:04 AM
Same for me, here is the code:

292: array(
293: $time, $ip, $threat, $last_activity,
294: $suspicious, $harvester, $comment, $url,
295: $user_agent, $errorNumber, $username,
296: $raw, $stopped
297: ),
==>298: array()
299: );
300:
301: if ($return)
Title: Re: httpBL
Post by: Arantor on July 04, 2018, 08:22:44 AM
Give the error column a default value in the database, or make it nullable.
Title: Re: httpBL
Post by: spiros on July 04, 2018, 09:39:57 AM
Thank you! That did the trick.
Title: Re: httpBL
Post by: barrypoore on October 19, 2018, 10:19:18 AM
Hi,
I am trying to fix a website which has the forum on but are encountering an error. This error seems to only be on php7.2, when I go back to 5.6 the error is gone, could you please advise as 5.6 has now been dropped from the host and this is a very very active forum, thank you.

I only get this error when logged out and on the home page, the site is currently on my local server, the error is:

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /xxx/xxx/xxx/xxx/xxx/docroot/KNEEtalk/sources/httpBL_Subs.php on line 680 and exactly 1 expected
Title: Re: httpBL
Post by: SD-X on October 20, 2018, 06:56:54 AM
Quote from: barrypoore on October 19, 2018, 10:19:18 AM
Hi,
I am trying to fix a website which has the forum on but are encountering an error. This error seems to only be on php7.2, when I go back to 5.6 the error is gone, could you please advise as 5.6 has now been dropped from the host and this is a very very active forum, thank you.

I only get this error when logged out and on the home page, the site is currently on my local server, the error is:

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /xxx/xxx/xxx/xxx/xxx/docroot/KNEEtalk/sources/httpBL_Subs.php on line 680 and exactly 1 expected
I actually just ran into an unrelated issue with PHP 7.2.x in regard to SMF 2.0.x. Apparently Only SMF 2.1.x supports PHP 7.2.x at this time, which httpBL is not currently compatible with yet.
Title: Re: httpBL
Post by: riou on October 21, 2018, 11:36:22 PM
Quote from: barrypoore on October 19, 2018, 10:19:18 AM
Hi,
I am trying to fix a website which has the forum on but are encountering an error. This error seems to only be on php7.2, when I go back to 5.6 the error is gone, could you please advise as 5.6 has now been dropped from the host and this is a very very active forum, thank you.

I only get this error when logged out and on the home page, the site is currently on my local server, the error is:

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /xxx/xxx/xxx/xxx/xxx/docroot/KNEEtalk/sources/httpBL_Subs.php on line 680 and exactly 1 expected


Believe the fix for that error was to swap that line to


$ip = httpBL_look_for_empty_ip($ip);
Title: Re: httpBL
Post by: Kindred on October 21, 2018, 11:45:50 PM
Since smf itself does not support php 7.2, you should be using a different version
Title: Re: httpBL
Post by: landyvlad on December 03, 2018, 11:11:54 PM
Recently (last month or so) I have been getting a LOT of spammers attempting to register.

I'm wondering how these are ending up in the "Stop Spammer" mod's 'require approval' queue, rather than getting bounced earlier by httpBL and I never see them? Most are flagged by both email and IP as spammers.  This can easily be a 10+ a day though, so even managing that is tedious.

Usual core forum anti spam features in use - 15 'security questions'  with three correct answers needed.

Any advice around this would be most welcome.  Thanks.



Title: Re: httpBL
Post by: SD-X on December 04, 2018, 03:54:16 AM
Quote from: landyvlad on December 03, 2018, 11:11:54 PM
Recently (last month or so) I have been getting a LOT of spammers attempting to register.

I'm wondering how these are ending up in the "Stop Spammer" mod's 'require approval' queue, rather than getting bounced earlier by httpBL and I never see them? Most are flagged by both email and IP as spammers.  This can easily be a 10+ a day though, so even managing that is tedious.

Usual core forum anti spam features in use - 15 'security questions'  with three correct answers needed.

Any advice around this would be most welcome.  Thanks.
A lot of times, new spammers take awhile to get entered into the database because someone has to report them as malicious first. MOD httpBL can also only do so much on its own with its heuristics. With IPv6 becoming more and more common these days, spammers are using it to bypass most anti-spam mods that haven't been updated to properly handle such protocols yet.

If I were you, I'd use this and StopSpammer in conjunction with a few other security mods or methods. Personally on my heavier forums, I'll mix those two with at least ReCaptcha and Bot Buster. More prevention methods and additional databases being used to catch and block the spammers tends to help as long as they are properly managed and don't conflict.

In that combination, I've had maybe one or two slip through in the last several years, which I promptly reported and removed. Additionally, I've only had three to four actual users at most get falsely caught in the captcha page for MOD httpBL by mistake, to which I simply just assigned them a secondary forum rank that didn't check them against the modification. (The ones accidentally caught by the captcha page were probably using old spammer IP addresses and/or usernames that were recycled).
Title: Re: httpBL
Post by: Illori on December 04, 2018, 05:05:20 AM
httpBL stops them from registering completely. this mod does not do what you are seeing.
Title: Re: httpBL
Post by: landyvlad on December 17, 2018, 04:58:56 AM
Quote from: Illori on December 04, 2018, 05:05:20 AM
httpBL stops them from registering completely.

Yes I understand that's the theory but the problem is getting worse by the week despite having changed security questions etc.

So httpBL seems to be missing quite a few.

Quote from: SugarD-x on December 04, 2018, 03:54:16 AM
If I were you, I'd use this and StopSpammer in conjunction with a few other security mods or methods. Personally on my heavier forums, I'll mix those two with at least ReCaptcha and Bot Buster. More prevention methods and additional databases being used to catch and block the spammers tends to help as long as they are properly managed and don't conflict.

bot buster as in  https://custom.simplemachines.org/mods/index.php?mod=1599  ?

ReCaptcha as in https://custom.simplemachines.org/mods/index.php?mod=1044  ?

others?


Title: Re: httpBL
Post by: SD-X on December 18, 2018, 08:06:22 PM
Quote from: landyvlad on December 17, 2018, 04:58:56 AM
Quote from: Illori on December 04, 2018, 05:05:20 AM
httpBL stops them from registering completely.

Yes I understand that's the theory but the problem is getting worse by the week despite having changed security questions etc.

So httpBL seems to be missing quite a few.

Quote from: SugarD-x on December 04, 2018, 03:54:16 AM
If I were you, I'd use this and StopSpammer in conjunction with a few other security mods or methods. Personally on my heavier forums, I'll mix those two with at least ReCaptcha and Bot Buster. More prevention methods and additional databases being used to catch and block the spammers tends to help as long as they are properly managed and don't conflict.

bot buster as in  https://custom.simplemachines.org/mods/index.php?mod=1599  ?

ReCaptcha as in https://custom.simplemachines.org/mods/index.php?mod=1044  ?

others?
Those are the ones I use with StopSpammer and Mod httpBL, yes.
Title: Re: httpBL
Post by: MartiMedia on January 20, 2019, 02:18:07 PM
Hi @snoopy_virtual ,

I've used the httpbl with a lot of success, great mod, thanx for making that available to us!

I have one question:
I see a lot of errors in the log, with the following description:
'Cannot check. IP not normal. Allowed to pass'

What does that mean? Is any action required? And if not: how to disable these messages to flood the logs?
I can code a bit PHP, but I could use need a hint where to look..

Cheers,
Marti
Title: Re: httpBL
Post by: SD-X on January 21, 2019, 10:16:03 AM
Quote from: MartiMedia on January 20, 2019, 02:18:07 PM
Hi @snoopy_virtual ,

I've used the httpbl with a lot of success, great mod, thanx for making that available to us!

I have one question:
I see a lot of errors in the log, with the following description:
'Cannot check. IP not normal. Allowed to pass'

What does that mean? Is any action required? And if not: how to disable these messages to flood the logs?
I can code a bit PHP, but I could use need a hint where to look..

Cheers,
Marti
Sounds like something is blocking your ability to connect to the Project Honey Pot database online.
Title: Re: httpBL
Post by: MartiMedia on January 21, 2019, 01:24:19 PM
Thanx @SugarD-x , I'm talking about the httbl error log.. In the httpbl mod page (in the admin console) it shows:
'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.'

I thought it may have to do with guests trying to register with a hidden ip (from a VPN for example)..
Anyway I'd like to get rid of those errors, so they don't flood my log, which help to analyse other less frequent messages (hard to spot now).
Unless the 'Cannot check. IP not normal. Allowed to pass' is an error I have to take action upon of course ;-)
Title: Re: httpBL
Post by: SD-X on January 21, 2019, 01:33:05 PM
Quote from: MartiMedia on January 21, 2019, 01:24:19 PM
Thanx @SugarD-x , I'm talking about the httbl error log.. In the httpbl mod page (in the admin console) it shows:
'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.'

I thought it may have to do with guests trying to register with a hidden ip (from a VPN for example)..
Anyway I'd like to get rid of those errors, so they don't flood my log, which help to analyse other less frequent messages (hard to spot now).
Unless the 'Cannot check. IP not normal. Allowed to pass' is an error I have to take action upon of course ;-)
Oh! I wonder if this could be a possible IPv6 issue then.
Title: Re: httpBL
Post by: MartiMedia on January 22, 2019, 05:45:42 PM
Ah ok, if so, is there a fix?
Title: Re: httpBL
Post by: SD-X on January 27, 2019, 07:02:39 PM
Quote from: MartiMedia on January 22, 2019, 05:45:42 PM
Ah ok, if so, is there a fix?
That would be up to the mod author to fix.
Title: Re: httpBL
Post by: shadav on September 09, 2019, 03:00:18 PM
I tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();

lines 666 to 691
// Initialize some values and add some more stuff you could log for further analysis
$values = array();
$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');
$values['user_agent'] = $httpBL_user_agent != '' ? $httpBL_user_agent : $txt['httpBL_unknown'];
$values['username'] = $user_info['is_guest'] ? $txt['guest'] : $user_info['username'];
$values['stopped'] = 1;
$values['raw'] = $txt['httpBL_unknown'];
// If we ever get this error number something has gone really wrong
$values['errorNumber'] = 300;

// If $ip is empty let's try to find it with more methods
if ($ip == '')
$ip = httpBL_look_for_empty_ip();

$values['ip'] = $ip;
if ($values['ip'] == '')
{
// Still empty? Stop the visitor. Sorry, no blanks IPs allowed
// TO DO: Find more methods or more possibilities why sometimes $ip is blank
$values['errorNumber'] = 150;
$values['ID'] = httpBL_logme($values, true);
//httpBL_session_put_data($httpBL_session, $values, $cache_seconds);
return $values;
}
Title: Re: httpBL
Post by: Kindred on September 09, 2019, 03:31:36 PM
I don't think this mod has been updated for php 7.2

but, then again, SMF itself does not currently support php 7.2
Title: Re: httpBL
Post by: SD-X on September 09, 2019, 05:48:24 PM
Quote from: Kindred on September 09, 2019, 03:31:36 PM
I don't think this mod has been updated for php 7.2

but, then again, SMF itself does not currently support php 7.2
^This.

Unfortunately it also doesn't work on SMF 2.1.x, which makes me sad. :(
Title: Re: httpBL
Post by: shadav on September 09, 2019, 06:57:28 PM
hm...hadn't paid attention, just switched to a new host and yeah my php is 7.2
if I use something lower will this work?
odd lol everything else so far seems to be working  ???
Title: Re: httpBL
Post by: riou on September 09, 2019, 08:43:37 PM
Quote from: shadav on September 09, 2019, 03:00:18 PM
I tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();


Believe the fix to this was changing that line to

$ip = httpBL_look_for_empty_ip($ip);


The mod was never updated to fix this and I think maybe the other issue that has existed for a bit in the 2.0 line
Title: Re: httpBL
Post by: shadav on September 09, 2019, 09:29:10 PM
Quote from: riou on September 09, 2019, 08:43:37 PM
Quote from: shadav on September 09, 2019, 03:00:18 PM
I tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();


Believe the fix to this was changing that line to

$ip = httpBL_look_for_empty_ip($ip);


The mod was never updated to fix this and I think maybe the other issue that has existed for a bit in the 2.0 line

thank you that seems to have fixed the issue
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2020, 10:18:46 AM
Quote from: SugarD-x on January 21, 2019, 01:33:05 PM
Quote from: MartiMedia on January 21, 2019, 01:24:19 PM
Thanx @SugarD-x , I'm talking about the httbl error log.. In the httpbl mod page (in the admin console) it shows:
'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.'

I thought it may have to do with guests trying to register with a hidden ip (from a VPN for example)..
Anyway I'd like to get rid of those errors, so they don't flood my log, which help to analyse other less frequent messages (hard to spot now).
Unless the 'Cannot check. IP not normal. Allowed to pass' is an error I have to take action upon of course ;-)
Oh! I wonder if this could be a possible IPv6 issue then.

@MartiMedia
@SugarD-x

Sorry, I had missed this conversation.

Yes, that kind of errors are related to IPv6

But the problem is not to update httpBL or StopSpammer mods.

The problem is that both databases from Project Honey Pot and Stop Forum Spam only have the IPv4 data.

The only solution will be to update first both projects or to create new ones with both IPv4 and IPv6 in mind from the start.

And then change our mods or create new ones.

Quote from: Kindred on September 09, 2019, 03:31:36 PM
I don't think this mod has been updated for php 7.2

but, then again, SMF itself does not currently support php 7.2


I should make a version for 2.1 one day.

The problem is I'm still using 2.0.17 in all my forums.

As soon as I update one of them to 2.1 it would be urgent for me to have these mods updated, but I don't know when that could be.

Quote from: shadav on September 09, 2019, 09:29:10 PM
Quote from: riou on September 09, 2019, 08:43:37 PM
Quote from: shadav on September 09, 2019, 03:00:18 PM
I tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();


Believe the fix to this was changing that line to

$ip = httpBL_look_for_empty_ip($ip);


The mod was never updated to fix this and I think maybe the other issue that has existed for a bit in the 2.0 line

thank you that seems to have fixed the issue

That's another thing I should have sorted ages ago and keep forgetting.

The problem is, with IPv6 spreading all over the world, all the programs based only in IPv4 are going to be obsolete soon, so I don't seem to really look after them as I should.
Title: Re: httpBL
Post by: SD-X on March 01, 2020, 11:39:08 AM
Glad to see you're back!

I agree on IPv6 being the future, however I wouldn't quite hold my breathe yet on it. While support for it has been widespread in the last several years, very few places put it as the priority in their web applications and software. Likewise, ISP's are relying heavily on IPv4 addresses being constantly reused, (dynamic IP's are very common now on residential internet services), so they will probably fight to the death on keeping IPv4 as the main standard until it simply cannot handle the amount of devices anymore. (Think of it like the Y2K panic where everyone waited until the last minute to update their systems to support the new millennium rollover. I see something similar happening with the IPv6 takeover).

That being said, I personally welcome the idea of IPv6 support being added, but I completely understand your reasoning behind why this has been held back. (Project Honeypot and Stop Forum Spam need to get on this!)


As for SMF 2.1, I'd absolutely LOVE it if httpBL and StopSpammer supported it. Right now I'm running my 2.1 forum without any anti-spam mods simply because none exist. Your mods are hands down the best I've seen, and definitely the most effective. On my old 2.0.x forums elsewhere, I used to couple them with a group of other miscellaneous anti-spam mods that queried smaller databases just so I could catch the few rare ones that slipped through, (and boy were they rare). If 2.1 versions existed, I would install them right now. These mods are absolutely incredible. Please, please, please add 2.1 support!


On a side note, your mods are so effective that even my PHPBB 3.1 forums use similar mods to query the same databases, that's how much I believe in them. Your SMF versions still blow the PHPBB equivalents out of the water too, and I've been using both forum softwares for a very long time.
Title: Re: httpBL
Post by: Shades. on October 09, 2020, 06:30:50 PM
I have this installed and working fine on several 2.0.17 sites but on one site I try to install it and get the following:
Table 'mysite_xxxx.bh_log_httpBL' doesn't exist
File: /home2/mysite/public_html/xxxx/Packages/temp/install_2.php
Line: 68


Do i need to create that table and if so how or what is the query?
Title: Re: httpBL
Post by: shadav on December 31, 2020, 03:24:27 AM
ok so I've run into a problem...and I think it's this mod...

I can not access any of my forums, for me it says there's a database error, but for everyone else my site is just fine...

I think the mod up and decided out of nowhere to run amuck and lock me out of all of my forums.....

is there anyway within the database to disable the mod so that I can check to make sure that this is in fact what is happening?
Title: Re: httpBL
Post by: SD-X on December 31, 2020, 05:11:04 AM
Quote from: snoopy_virtual on March 01, 2020, 10:18:46 AM
The problem is that both databases from Project Honey Pot and Stop Forum Spam only have the IPv4 data.
I've reached out to Project Honey Pot. According to their development team, they are already working on adding IPv6 support as we speak. They said it should be finished soon:
Quote
<- Name Censored ->,

Thank you for reaching out. We are finishing up our IPv6 work currently and
should have it pushed early in the new year.

Best Regards,

Eric


Stop Forum Spam started supporting IPv6 quietly as of circa 2019 or so:
https://www.stopforumspam.com/forum/viewtopic.php?id=6392
Title: Re: httpBL
Post by: shadav on December 31, 2020, 11:43:07 AM
Quote from: shadav on December 31, 2020, 03:24:27 AM
ok so I've run into a problem...and I think it's this mod...

I can not access any of my forums, for me it says there's a database error, but for everyone else my site is just fine...

I think the mod up and decided out of nowhere to run amuck and lock me out of all of my forums.....

is there anyway within the database to disable the mod so that I can check to make sure that this is in fact what is happening?

so I just went through and manually uninstalled this mod and sure enough this was the culprit....not sure why sometime between the day before and yesterday it decided to block me out of my own forums but um ok then...guess I can't use this mod anymore  :-\ :o
Title: Re: httpBL
Post by: SD-X on December 31, 2020, 11:52:51 AM
Quote from: shadav on December 31, 2020, 11:43:07 AM
Quote from: shadav on December 31, 2020, 03:24:27 AM
ok so I've run into a problem...and I think it's this mod...

I can not access any of my forums, for me it says there's a database error, but for everyone else my site is just fine...

I think the mod up and decided out of nowhere to run amuck and lock me out of all of my forums.....

is there anyway within the database to disable the mod so that I can check to make sure that this is in fact what is happening?

so I just went through and manually uninstalled this mod and sure enough this was the culprit....not sure why sometime between the day before and yesterday it decided to block me out of my own forums but um ok then...guess I can't use this mod anymore  :-\ :o
Your IP may be flagged by the Project Honey Pot database. I would check it and see, and if so, contact them to have it removed. IP addresses are constantly reused, so it is possible you ended up with one previously owned by a spammer.
Title: Re: httpBL
Post by: shadav on December 31, 2020, 11:57:57 AM
Quote from: SugarD-x on December 31, 2020, 11:52:51 AM
Quote from: shadav on December 31, 2020, 11:43:07 AM
Quote from: shadav on December 31, 2020, 03:24:27 AM
ok so I've run into a problem...and I think it's this mod...

I can not access any of my forums, for me it says there's a database error, but for everyone else my site is just fine...

I think the mod up and decided out of nowhere to run amuck and lock me out of all of my forums.....

is there anyway within the database to disable the mod so that I can check to make sure that this is in fact what is happening?

so I just went through and manually uninstalled this mod and sure enough this was the culprit....not sure why sometime between the day before and yesterday it decided to block me out of my own forums but um ok then...guess I can't use this mod anymore  :-\ :o
Your IP may be flagged by the Project Honey Pot database. I would check it and see, and if so, contact them to have it removed. IP addresses are constantly reused, so it is possible you ended up with one previously owned by a spammer.

thanks...I requested for them to whitelist my ip, though it didn't show up in their list...guess we'll see, they said to check back in an hour....
my ip hasn't changed but that's not to say that someone in the same range as me didn't do something to get me blocked....
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on December 31, 2020, 12:02:05 PM
Nah, I'm fairly sure it's not that. HttpBL lets you know if that's the case 
I'd look at IPv6 compatibility here, the error you shared last included an IPv6 address. So you just might have suddenly got yourself a new and "improved" IP.
Title: Re: httpBL
Post by: shadav on December 31, 2020, 12:16:20 PM
Quote from: Aleksi "Lex" Kilpinen on December 31, 2020, 12:02:05 PM
Nah, I'm fairly sure it's not that. HttpBL lets you know if that's the case 
I'd look at IPv6 compatibility here, the error you shared last included an IPv6 address. So you just might have suddenly got yourself a new and "improved" IP.

that's a good point...hehehe guess as of yesterday I now have ipv6  :laugh:
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on December 31, 2020, 12:17:08 PM
Congrats, and I'm so sorry at the same time :P
Title: Re: httpBL
Post by: shadav on December 31, 2020, 12:29:41 PM
Quote from: Aleksi "Lex" Kilpinen on December 31, 2020, 12:17:08 PM
Congrats, and I'm so sorry at the same time :P
eh well simple enough to disable ipv6 on my computer  ;D and I'm back up and running again...

hm, but this could be a problem for my users...hm.....well about that....may still need to remove this mod anyways if others who use ipv6 can't access the site, that's gonna be an issue
Title: Re: httpBL
Post by: Shades. on December 31, 2020, 03:07:18 PM
Quote from: shadav on December 31, 2020, 12:29:41 PM
Quote from: Aleksi "Lex" Kilpinen on December 31, 2020, 12:17:08 PM
Congrats, and I'm so sorry at the same time :P
eh well simple enough to disable ipv6 on my computer  ;D and I'm back up and running again...

hm, but this could be a problem for my users...hm.....well about that....may still need to remove this mod anyways if others who use ipv6 can't access the site, that's gonna be an issue
I just tested my connection at testmyipv6.com and it says Im on this ipv6. I'm also using this mod on several of my sites and have had no issues myself. I hope this wont be a problem.  :o 8)
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on December 31, 2020, 03:11:37 PM
Could also be a different version of the mod, or something else differing - but based on the error I saw, the DB field for IP in shadav's install couldn't hold an IPv6 address because of it's length.
Title: Re: httpBL
Post by: shadav on December 31, 2020, 03:24:57 PM
here's where Lex is talking about

after a day of my site being down...I thought it was my host at first but then turns out it wasn't....for me I was seeing database error message but for everoyne else the site was fine....
after checking error logs httpbl was the one giving issues...which again is strange as it hadn't ever popped up before

https://www.simplemachines.org/community/index.php?topic=576208.0

after fixing the default to null, the last error that showed up was

Database Error: Data too long for column 'ip' at row 1<br /><br /><br />         INSERT INTO smf_log_httpBL(`logTime`, `ip`, `threat`, `last_activity`, `suspicious`, `harvester`, `comment`, `url`, `user_agent`, `errorNumber`, `username`, `raw`, `stopped`)<br />         VALUES<br />            (1609402130, '2601:805:8204:1430:7415:e9a:1fa1:68ab', 0, 0, 0, 0, 0, '/index.php?action=enotify', 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36', 200, 'Guest', 'unknown', 2)
Title: Re: httpBL
Post by: SD-X on January 03, 2021, 10:34:32 AM
Quote from: shadav on December 31, 2020, 03:24:57 PM
Database Error: Data too long for column 'ip' at row 1<br /><br /><br />         INSERT INTO smf_log_httpBL(`logTime`, `ip`, `threat`, `last_activity`, `suspicious`, `harvester`, `comment`, `url`, `user_agent`, `errorNumber`, `username`, `raw`, `stopped`)<br />         VALUES<br />            (1609402130, '2601:805:8204:1430:7415:e9a:1fa1:68ab', 0, 0, 0, 0, 0, '/index.php?action=enotify', 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36', 200, 'Guest', 'unknown', 2)
That's likely because SMF 2.0.x is designed to store IPv4 addresses only, which are a specific length. IPv6 support was officially added in SMF 2.1.x, however this mod sadly has not been updated to support those versions yet. :(
Title: Re: httpBL
Post by: spiros on February 02, 2021, 08:31:58 AM
I just upgraded  to smf 2.0.18 and php 7.4  and I get multiple errors in error log:

8: Trying to access array offset on value of type null
/home/translat/public_html/forum/Sources/httpBL_Subs.php
Line 674
$values['raw'] = $txt['httpBL_unknown'];
Line: 672
$values['username'] = $user_info['is_guest'] ? $txt['guest'] : $user_info['username'];
Title: Re: httpBL
Post by: Kolya on February 07, 2021, 06:09:41 AM
I'm also on smf 2.0.18. I don't get any errors, possibly because I disabled all the translation stuff long ago.
But the mod is clearly not working either. HttpBL's spammers log just lists a lot of IPv6 addresses, without any further information besides "Guest" in the User column.
I've disabled this mod for now.
Title: Re: httpBL
Post by: spiros on February 07, 2021, 06:52:33 AM
Yes, I had to disable it until a fix is provided -:)
Pity, because it is a good mod.
Nice theme in your site by the way, which one is it?
Title: Re: httpBL
Post by: SD-X on February 07, 2021, 07:32:28 AM
Your issue is probably because of the same problem others are having:

Quote from: SugarD-x on January 03, 2021, 10:34:32 AM
That's likely because SMF 2.0.x is designed to store IPv4 addresses only, which are a specific length. IPv6 support was officially added in SMF 2.1.x, however this mod sadly has not been updated to support those versions yet. :(
Title: Re: httpBL
Post by: Kolya on February 07, 2021, 08:55:36 AM
Quote from: spiros on February 07, 2021, 06:52:33 AM
Nice theme in your site by the way, which one is it?
Thanks, it is self-created. Worked on it for some 15 years and became a frontend-dev over that.
Title: Re: httpBL
Post by: riou on February 07, 2021, 06:31:55 PM
Quote from: spiros on February 02, 2021, 08:31:58 AM
I just upgraded  to smf 2.0.18 and php 7.4  and I get multiple errors in error log:

8: Trying to access array offset on value of type null
/home/translat/public_html/forum/Sources/httpBL_Subs.php
Line 674
$values['raw'] = $txt['httpBL_unknown'];
Line: 672
$values['username'] = $user_info['is_guest'] ? $txt['guest'] : $user_info['username'];



it seems the problem is that it doesn't find values for those $txt things if you replace $txt['guest'] with "guest" and $txt['httpBL_unknown'] with "unknown" (what they match in the english mod language file) it will make it stop erroring, not sure why it isn't picking it up from the language files anymore, not sure if more of the $txt's will have to do this too or not for now
Title: Re: httpBL
Post by: Shades. on February 18, 2021, 07:28:14 PM
Quote from: Shades. on October 09, 2020, 06:30:50 PM
I have this installed and working fine on several 2.0.17 sites but on one site I try to install it and get the following:
Table 'mysite_xxxx.bh_log_httpBL' doesn't exist
File: /home2/mysite/public_html/xxxx/Packages/temp/install_2.php
Line: 68


Do i need to create that table and if so how or what is the query?
Just installed it on a fresh 2.0.18 install and it works fine but still cant get it to install on the site in quotes because the table doesnt exist. Any help on this please?
Title: Re: httpBL
Post by: shawnb61 on June 16, 2021, 02:25:45 PM
Quote from: shadav on September 09, 2019, 03:00:18 PM
Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected on line 680
$ip = httpBL_look_for_empty_ip();

I believe this is a php7.1+ issue.  The function has a required parameter, not passed on line 680.  Prior to php7.1, this was a warning, not an error.  In 7.1, it was promoted to an error. 

I'm seeing this error occasionally with ipv4. 
Title: Re: httpBL
Post by: landyvlad on July 13, 2021, 01:50:56 AM
I've asked a general question elsewhere - but is there any chance of a 2.1 version being developed for this mod?
Title: Re: httpBL
Post by: SD-X on July 13, 2021, 03:29:25 PM
Quote from: landyvlad on July 13, 2021, 01:50:56 AM
I've asked a general question elsewhere - but is there any chance of a 2.1 version being developed for this mod?
I'm wondering the same, and hoping the answer is yes. This is desperately needed.
Title: Re: httpBL
Post by: shadav on July 13, 2021, 04:10:38 PM
 :P let's fix the ipv 6 issue first ;)
though seeing as 2.1 has ipv6 support already then hopefully if and when this gets updated for 2.1 that won't be an issue anymore and I can use this mod again
Title: Re: httpBL
Post by: landyvlad on September 07, 2021, 01:12:13 AM
I know I last asked in July but we are a few months along now.
Just wondering if any plans for this to be updated to be 2.1.x compatible? 
Title: Re: httpBL
Post by: landyvlad on September 12, 2021, 07:36:00 AM
Trying to reinstall this now I have upgraded to 2.0.18 and am getting a fail.

6.   Execute Modification   ./Themes/default/Who.template.php   Test failed
   1.   Add Before   ./Themes/default/Who.template.php   Test successful
   2.   Add Before   ./Themes/default/Who.template.php   Test failed

I read the readme files and it also suggests installing this mod is necessary:
https://custom.simplemachines.org/index.php?mod=1515

I've tried installing httpBL both with and without that mod installed first but get the same error.

Any suggestions?
Title: Re: httpBL
Post by: landyvlad on September 13, 2021, 07:25:19 PM
This is the portion which is failing.

QuoteCode: (Find) [Select]
        echo '
                            </td>
                            <td nowrap="nowrap">', $member['time'], '</td>
Code: (Add Before) [Select]
            // OS & Browser Detection
            // Parse the user agent only if OS & Browser Detection is installed and enabled
            if ($os_browser_exists)
                $os_browser_detected = parse_user_agent($member['query']['USER_AGENT']);
            // Display only if allowed
            if (allowedTo('view_os_browser') && $os_browser_exists){
                if ($os_browser_detected['system'] || $os_browser_detected['browser']){ //Do not display if both are unknown
                    echo '<br />';
                    if ($os_browser_detected['system']) {
                        echo '
                                    <strong>', $txt['OS_Browser_OS'], ':</strong>
                                    <br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['system_icon'], '.png" align="top" alt="', $os_browser_detected['system'], '" /> ', $os_browser_detected['system'], '<br />';
                    } else {
                        echo '
                                    <strong>', $txt['OS_Browser_OS'], ':</strong>
                                    <br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'], '<br />';
                    }
                   
                    if ($os_browser_detected['browser']) {
                        echo '
                                    <strong>', $txt['OS_Browser_Browser'], ':</strong>
                                    <br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['browser_icon'], '.png" align="top" alt="', $os_browser_detected['browser'], '" /> ', $os_browser_detected['browser'];
                    } else {
                        echo '
                                    <strong>', $txt['OS_Browser_Browser'], ':</strong>
                                    <br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'];
                    }
               
                }
            }

File copy attached hoping someone can diagnose please :)
Title: Re: httpBL
Post by: shadav on September 13, 2021, 07:53:10 PM
;) you've installed the responsive curve  :P

in the install find
        echo '
                            </td>
                            <td nowrap="nowrap">', $member['time'], '</td>
replace
        echo '
                            </td>
                            <td nowrap="nowrap" class="hidden">', $member['time'], '</td>

keep in mind though with this mod, those who use ipv6 will be blocked from accessing your forum (including you if you use ipv6 and not ipv4)
though I think there is a mod or tip somewhere about adding ipv6 support for 2.0.x
Title: Re: httpBL
Post by: landyvlad on September 14, 2021, 04:10:58 AM
Yes I am running that mod and it already has that code in it

echo '
                            </td>
                            <td nowrap="nowrap" class="hidden">', $member['time'], '</td>
Title: Re: httpBL
Post by: shadav on September 14, 2021, 09:06:37 AM
Quote from: landyvlad on September 14, 2021, 04:10:58 AMYes I am running that mod and it already has that code in it

echo '
                            </td>
                            <td nowrap="nowrap" class="hidden">', $member['time'], '</td>

you need to change the install for this mod to match what you have so it will install
download the package unzip it, edit the install_2.xml with notepad
in notepad search for
', $member['time'], 'now at this point find and highlight all of
        echo '
                            </td>
                            <td nowrap="nowrap">', $member['time'], '</td>
now copy all of this
        echo '
                            </td>
                            <td nowrap="nowrap" class="hidden">', $member['time'], '</td>
and paste it to the notepad replacing what you highlighted
save and exit
now zip up the package and make sure to name it the same that it was httpBL_v2_5_1.zip
upload this new package to your package folder and install it
if it still gives an error it's probably a spacing issue
you could try replacing it with
echo '
                            </td>
                            <td nowrap="nowrap" class="hidden">', $member['time'], '</td>
Title: Re: httpBL
Post by: Kindred on September 14, 2021, 09:48:01 AM
or don't even bother modifying the mod install.... just manually apply the "add before code.

Basically, the responsive curve mod has modified the target code

You can
a) change the mod install instructions to look for the modified code instead of the original code.
b) change the code in your template to match the code that is being looked for --  apply the mod, and then change it back to what was there before.
c) just add the mod code to the location yourself, since you KNOW what the location actually is, and it's an add, not a replace.
Title: Re: httpBL
Post by: landyvlad on September 18, 2021, 04:57:50 AM
So rather than apply one of the suggested solutions offered by you Kindred (thanks BTW) all I saw was this part.
Quote from: Kindred on September 14, 2021, 09:48:01 AMBasically, the responsive curve mod has modified the target code

so I thought I'd be clever so uninstalled the responsive curve mod (no errors) then installed httpBL (no errors) all good.

I thought when I went to reinstall the responsive curve mod I had lots of errors, and panicked, but then I realised the errors were all related to the Core theme not the default theme. Phew! Panic averted.

All seems good now.


Thanks Shadav and Kindred for your patient help. 
Title: Re: httpBL
Post by: landyvlad on September 18, 2021, 06:59:25 AM
I read somewhere in this thread that the "OS & Browser Detection" mod is required to be installed for httpBL to function properly.  I see that mod is mentioned on the httpBL mod page but only as:
QuoteThanks to Marcin Krol and X3mE for writing the functions in the Mod OS & Browser Detection
so maybe that advice is outdated or I have just misinterpreted it.

If it's not necessary I'll get rid of it because I have no other need for it. 

Please advise :)
Title: Re: httpBL
Post by: landyvlad on October 07, 2021, 03:21:34 AM
The mod author @snoopy_virtual hasn't been online since June which is concerning.

I was really hoping for this to be updated to be compatible with 2.1 
Title: Re: httpBL
Post by: EL34 on December 03, 2021, 09:43:44 AM
Is it possible to have the httpBL mod not write to the spammers log and humans log?
All I do is delete all those entries every day
I don't really need to look at any of the info in those two logs

Is that possible?
Thanks
Title: Re: httpBL
Post by: landyvlad on December 05, 2021, 08:53:45 PM
Why change the mod - there's no need

Quote from: EL34 on December 03, 2021, 09:43:44 AMI don't really need to look at any of the info in those two logs

So don't look   :D
Title: Re: httpBL
Post by: EL34 on December 06, 2021, 02:59:53 PM
hey thanks, Dumb reply

You have to go there to empty out the data base entries

What do you do, just let the data base expand endlessly?
Title: Re: httpBL
Post by: landyvlad on December 06, 2021, 04:39:41 PM
It's actually not a dumb reply.

1. It's not good practice to prevent any kind of error from logging to the error log. That's what its for.' Telling it not to log errors could have unintended consequences where important errors could be missed.

2. You can prune the error logs periodically. And yes you can let it build up for ages if you want, it takes very little space.

But you know, do what you want to do just don't come whinging when it all goes horribly wrong :P


/grumpy hat off
Title: Re: httpBL
Post by: EL34 on December 07, 2021, 10:29:45 AM
Thanks, but I'll take my chances since the logs are totally useless
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on December 09, 2021, 09:10:34 AM
The amount of logging this mod does, shouldn't really affect most forums much - and what I did when I used this was I just made it a routine to go and empty it every once in a blue moon. Sure, probably could cut down the amount of logs kept or automate cleaning them, but that would be up to the mod author who doesn't seem to be around.

Now, I don't want anyone continuing this discussion further - Thank you.
Title: Re: httpBL
Post by: Steve on December 10, 2021, 08:59:24 AM
Quote from: Aleksi "Lex" Kilpinen on December 09, 2021, 09:10:34 AMNow, I don't want anyone continuing this discussion further - Thank you.
I've removed the off-topic responses (including mine).
Title: Re: httpBL
Post by: _Jojo_ on March 08, 2022, 01:02:52 PM
Now that SMF 2.1 is officially out, has anyone looked yet making this mod compatible with 2.1? Together with Snoopy's other Stop Spammer mod (which is being worked on), this is one of the most valuable spam prevention mods for SMF, as far as I'm concerned.
Title: Re: httpBL
Post by: landyvlad on March 09, 2022, 05:29:17 AM
If you'd been following that other thread there are issues around licenses etc, the same applies to this mod I believe (same author)

Title: Re: httpBL
Post by: SD-X on April 14, 2022, 03:23:01 PM
Quote from: _Jojo_ on March 08, 2022, 01:02:52 PMNow that SMF 2.1 is officially out, has anyone looked yet making this mod compatible with 2.1? Together with Snoopy's other Stop Spammer mod (which is being worked on), this is one of the most valuable spam prevention mods for SMF, as far as I'm concerned.
This!

Quote from: landyvlad on March 09, 2022, 05:29:17 AMIf you'd been following that other thread there are issues around licenses etc, the same applies to this mod I believe (same author)
From what I've seen so far, that only applied to the other mod. The original authors are still in charge of this one, and don't appear to be active right now.
Title: Re: httpBL Error 8
Post by: Sea Mac on May 04, 2022, 07:33:16 PM
I totally depend on this MOD, so when I suddenly found a whole bunch (> 100K) of errors in my error log ... I checked to see if I had made any recent changes to it's settings. Nope ... all those database errors (Error 8 ) in my main Error logs wanted to blame httpBL ... turns out it's NOT really httpBL at fault!

I figured out the answer for version 2.0.19 on a Linux Shared Sever running cPanel 100.0.12 . YMMV - but I suggest you try this first.
I apparently caused all of my SMF Forums ... all 3 of them ... to start throwing the database errors when I switched the Version of PHP, in my PHP Selector (in cPanel) UP to PHP Version 7.2

Yesterday I switched my Version of PHP back DOWN to PHP version 5.4 - and Every Error in my Error log quit accumulating at that moment. I cleared the error log and NO Errors have occurred in over 24 hours!!!

A forum with httpBL installed simply isn't compatible with the newer/higher versions of PHP!!!
(I'm guessing anything above Version 6 will cause errors to happen ... I KNOW that PHP 7.2 "Breaks" it.)


IF you find you're getting LOTS of database errors just try this quick check before your start pulling hair and gnashing teeth: Switch your Version of PHP down to 5.4 (and then 'apply' the setting) ... then hurry back to your forum and clear your main error log ... AND SEE if the Errors start pouring in again at once.

It LOOKS as if httpBL still works PERFECTLY under PHP 5.4 - but I had Trouble BIG Time (Times 3) when I "upgraded" my PHP version to 7.2 !!! That's ALL it Was ... version of PHP was TOO New ... when I deliberately set it back to an OLD Version of PHP ALL of the Errors in my forums error logs QUIT Piling Up!

And it took me a month of hair pulling and teeth gnashing to get around to trying this "Fix" ... I tried everything.

I even hand Edited the code in line 680 as recommended in This Comment (https://www.simplemachines.org/community/index.php?msg=4030729) ... nothing worked until I tried switching to one of the lowest versions of PHP still supported by 2.0.19 and then "No Problems Since".

(It DOES still Have my manual edit on line 680.)
Quote from: riou on September 09, 2019, 08:43:37 PM
Quote from: shadav on September 09, 2019, 03:00:18 PMI tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();


Believe the fix to this was changing that line to

$ip = httpBL_look_for_empty_ip($ip);

The mod was never updated to fix this and I think maybe the other issue that has existed for a bit in the 2.0 line

Try editing this line of code as shown ... AND Then set your PHP Version down to PHP 5.4 ... this worked for me when nothing ELSE Did!

If you gave this MOD Up because it quit working for you suddenly ... your server Might Have had an UPGRADE to a Higher Version of PHP by your HOSTING Company without them warning you about it ... go check WHICH Version of PHP you Have running NOW: and Roll it BACK to PHP 5.4 IF You Can. Then See if you Still have a "problem" with it.
Title: Re: httpBL Error 8
Post by: Sea Mac on May 04, 2022, 08:22:50 PM
Quote from: Kindred on September 09, 2019, 03:31:36 PMI don't think this mod has been updated for php 7.2

but, then again, SMF itself does not currently support php 7.2


SMF 2.0.19 DOES Support PHP 7.2 ... Now: two years later. In 2021 ... finally.

But I can confirm that the httpBL mod has not been updated for PHP 7.2 since you posted that ... and in fact it DOESN'T Appear to work correctly on PHP 7.2 ... I have had a LOT of recent trouble with it.

SMF 2.0.19 Still supports PHP 5.3 ... and so I had very good results rolling my server's versions of PHP back all the way to PHP 5.4 . Since I tried the PHP 'version reversion': everything has been running smoothly, without any errors, in all 3 forums.

If you have a problem with mod httpBL working poorly - or not at all - please check which version of PHP your server is running. I made this simple oversight mistake, MYSELF: and only recently realized what the problem was. It's easy to overlook. See if PHP 5.4 "Fixes" your problems?
Title: Re: httpBL
Post by: landyvlad on May 04, 2022, 09:01:10 PM
OK so I was having the same problem as posted above

so I

1. Rolled back to PHP 7.0
2. Applied the line 680 fix.

Quote from: riou on September 09, 2019, 08:43:37 PM
Quote from: shadav on September 09, 2019, 03:00:18 PMI tried testing my forum on my phone but I get an error and can't log in

Too few arguments to function httpBL_look_for_empty_ip(), 0 passed in /sources/httpBL_Subs.php on line 680 and exactly 1 expected
on line 680
$ip = httpBL_look_for_empty_ip();


Believe the fix to this was changing that line to

$ip = httpBL_look_for_empty_ip($ip);



Fingers crossed this will sort it.