Simple Machines Community Forum

Customizing SMF => Modifications and Packages => Topic started by: snoopy_virtual on February 17, 2010, 03:55:54 PM

Title: httpBL
Post by: snoopy_virtual on February 17, 2010, 03:55:54 PM
Link to Mod (http://custom.simplemachines.org/mods/index.php?mod=2155)

MOD httpBL v2.5.1
=============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.5.1
  • Release:
28th December 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Findonesian.gif&hash=8738103e20159c99fe95ab0d4a3ce8e7) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Ffrench.gif&hash=8648511da1b13c940ab4ff5c0f56a367) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fdutch.gif&hash=eb0dc9ca560e87433a6f1b09e84f1031)
  • Compatible With:
SMF 1.1.1 - 1.1.21
SMF 2 RC2 - SMF 2.0.10
         
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fstar.gif&hash=428f9cd8ede0da680e62a3586601a0fa)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fstar.gif&hash=428f9cd8ede0da680e62a3586601a0fa)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fstar.gif&hash=428f9cd8ede0da680e62a3586601a0fa)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fstar.gif&hash=428f9cd8ede0da680e62a3586601a0fa)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fstar.gif&hash=428f9cd8ede0da680e62a3586601a0fa) (http://www.simplemachines.org/community/index.php?action=post;topic=366399.0)
Comment this Mod (http://www.simplemachines.org/community/index.php?action=post;topic=366399.0)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Fmodtitlebar.png&hash=10c11acb72b0953e972e81a1fd37351a)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Fmodtitlebar.png&hash=10c11acb72b0953e972e81a1fd37351a)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Fmodtitlebar.png&hash=10c11acb72b0953e972e81a1fd37351a) (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
My MODs (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbbc%2Fimg.gif&hash=20c8ac7908d0af38afd9e16495e5a500)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbbc%2Fimg.gif&hash=20c8ac7908d0af38afd9e16495e5a500)(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbbc%2Fimg.gif&hash=20c8ac7908d0af38afd9e16495e5a500) (http://custom.simplemachines.org/mods/index.php?mod=2155)
Images (http://custom.simplemachines.org/mods/index.php?mod=2155)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fimages%2Fonline-peq.png&hash=352d0e0f2e8849cbde90d70c930942c8) (http://www.snoopyvirtualstudio.com/contact.php)
         
Contact Snoopy via Skype (http://www.snoopyvirtualstudio.com/contact.php)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fmystatus.skype.com%2Fbigclassic%2Fsnoopy_virtual_studio&hash=8261e2062537eaee17de002331336523)
I don't mind at all answering PMs,
but really like more to talk,
and using a microphone can sort
any problem a lot faster.
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fimages%2Fbtn_donate_LG_en_USD.png&hash=67055c62adff58787c71fdcee38d85d9) (https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=WF3C2X98ET272) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fimages%2Fbtn_donate_LG_en_EUR.png&hash=7e36a49e7dde7617994e20a5d2f1d2aa) (https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=5VD4E8A9KHXGL)
Help support Snoopy's MODs

  • Tutorial (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbuttons%2Freply.gif&hash=f32406bc716c15c3ec751e16a8b4b440) (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english)

  • Change Log (#post_changelog)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbuttons%2Freply.gif&hash=f32406bc716c15c3ec751e16a8b4b440) (#post_changelog)

  • Road Map (#post_roadmap)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FThemes%2Fdefault%2Fimages%2Fbuttons%2Freply.gif&hash=f32406bc716c15c3ec751e16a8b4b440) (#post_roadmap)(Before you ask for a new feature or report a bug
check if it's already in the cue waiting to be done)
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Frtfm.gif&hash=7b0a64b6a5a4ff7ea4819ddb08b7b37c)

Features:




Installation:

IMPORTANT:
Before you install this mod I will recommend you
to read this TUTORIAL (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english)

Anyway here is a quick summary:






If you need help installing this mod or you want to see more information about it,
visit the support thread for this mod. (http://www.simplemachines.org/community/index.php?topic=366399.0)

Thanks to Project Honey Pot (http://www.projecthoneypot.org/?rf=62759) for your DB and APIs.

Thanks to praseodym (http://drupal.org/project/httpbl) for the idea.
His mod is for Drupal, but I have adapted some of his functions to work with SMF as well.

Thanks to butchs (http://www.simplemachines.org/community/index.php?action=profile;u=77887), Wizzlefits (http://www.simplemachines.org/community/index.php?action=profile;u=241838) and the rest of the people in SMF forums
for the new ideas and helping me debugging the mod.

Thanks to Marcin Krol and X3mE (http://www.simplemachines.org/community/index.php?action=profile;u=154415) for writing the functions in the Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
and to ahrasis (http://www.simplemachines.org/community/index.php?action=profile;u=51815) for making nicer the icons I'm using for the addon_OS_Browser_httpBL

==========================

Quote
Languages for the admin section (normal & utf-8)
Translation completed:
  • English
  • English_british
  • Spanish_es
  • Spanish_latin

  • Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)

Missing the lines added from v2.5:
  • French by Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Languages for the warning page
Translation completed:
  • English-Spanish

  • English-Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)
  • French-English by shaitanfr (http://www.simplemachines.org/community/index.php?action=profile;u=151244) and Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Missing the lines added from v2.4:
  • English-Dutch by Vandaahl (http://www.simplemachines.org/community/index.php?action=profile;u=88822)

   
Quote
Legend
  • Included in MOD package
  • Included in language_full.zip and translation complete
  • Included in language_full.zip but translation incomplete

Code: [Select]
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <strong>VERY</strong> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';

// View log page
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <strong>VERY</strong> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <strong>"Show extra information"</strong>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hiding'] = 'Wrote on a hiding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Never be checked by mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'If this permission is enabled, all the members in this group will be able to enter always the forum without been checked by mod httpBL, even if their computer is controlled by a trojan spammer robot.<br />---<br />Enable it only if you know exactly what you are doing.';
$txt['httpBL_last_act_too_high'] = 'Last activity too long ago. Allowed to pass';
$txt['httpBL_threat_too_low'] = 'Threat Level too low. Allowed to pass';
$txt['httpBL_enable_sub'] = 'With this check-box checked the mod is ON. With the check-box unchecked the mod is OFF.';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.';
$txt['httpBL_mod_no_connect_2'] = 'If the problem persists ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL is ON but it is not up-to-date.';
$txt['httpBL_mod_new_version_2'] = 'There is a new version of this mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Please update it here whenever you can</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL is OFF.';
$txt['OS_Browser_Compatible'] = 'compatible';
$txt['OS_Browser_OS'] = 'Operating System';
$txt['OS_Browser_Unknown'] = 'Unknown';
$txt['OS_Browser_Browser'] = 'Browser';
$txt['httpBL_cache_length'] = 'Minutes to keep the data in the cache';
$txt['httpBL_cache_length_sub'] = 'Every time the mod checks an IP saves the data in the cache (if it\'s enabled) and in the visitor\'s session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won\'t check it again, but it will use the data stored in the cache and/or session.';
$txt['httpBL_view_os_whosonline'] = 'View OS & Browser data in "Who\'s Online" page';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Settings';
$txt['httpBL_honeyPot_link_sub'] = 'After you have installed a Honey Pot in your server, write here the link to it. It will be something like:<br /><strong>http://www.yourwebsite.com/yourhoneypot.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Please notice Project Honey Pot is not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_viewlog'] = 'Spammers Log';
$txt['httpBL_viewlogpass'] = 'Humans Log';
$txt['httpBL_viewlogerror'] = 'Errors Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots. Plus all the people detected as spammers in the database but with a threat level lower than the "Threat level considered bad" you have in your settings, so they were not stopped at all.';
$txt['httpBL_info_email_desc'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <strong>warning.php</strong>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <strong>info@yourwebsite.com</strong> the first word is <strong>info</strong>, the second one <strong>yourwebsite</strong>, and the third one <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL uses the functions inside "Mod OS & Browser Detection" to display in the logs the operating system and the browser used by all the visits stored in those logs. If you want to see also in your "Who\'s Online" page, the operating system and the browser used by all your visitors, check this check-box. Of course, to be able to see them, in the logs and in your "Who\'s Online" page, you need to have installed either <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> or the small <a href="http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0" target="_blank">addon to see OS & Browser in httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
$httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
$httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'General Settings';
$txt['httpBL_general_settings_desc'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server and a http:BL API key from Project Honey Pot. If you haven\'t got them you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for a Honey Pot, install it in your server and then ask them for your http:BL API key.';
$txt['httpBL_info_email'] = 'Your email address';
$txt['httpBL_internal_settings'] = 'Internal Settings';
$txt['httpBL_internal_settings_desc'] = 'These are the internal settings to control the way mod httpBL works. We wouldn\'t recommend you to change them until you know the way every change will affect the mod.';
$txt['httpBL_extra_settings'] = 'Extra Settings';
$txt['httpBL_extra_settings_desc'] = 'Other settings you may like to change.';
$txt['httpBL_warning_settings'] = 'Warning Page Settings';
$txt['httpBL_warning_settings_desc'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br />That\'s the way it is going to appear to the not too dangerous ones. With a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (without captcha) use this link instead: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br />If you want to change its design or translate that page to other languages and you don\'t know how, or if you have any other question about the MOD, you will find useful information in the <a href="'. $httpBL_help_link. '">httpBL HELP section</a>.';
$txt['httpBL_use_two_languages'] = 'Use 2 languages on the warning page';
$txt['httpBL_use_two_languages_sub'] = 'By default the warning page is in 2 different languages: English and Spanish, so all your possible visitors can understand what it says. If you leave this check-box empty it will use only English instead.';
$txt['httpBL_horizontal_separator'] = 'Horizontal separator for the warning page';
$txt['httpBL_horizontal_separator_sub'] = 'The default horizontal separator for each block inside the warning page is &lt;hr /&gt; (horizontal grey line) but you can change it to any other thing you want using HTML language.<br />
For example &lt;br /&gt; will give you just a blank line.<br />
Or for example you can put here any horizontal picture you like just writing:<br />
&lt;img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" /&gt;<br />
(Replace the link inside the src="" with the actual path to your picture).';
$txt['httpBL_log_clear_this_log'] = 'Clear this log';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Spammers Log?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Humans Log?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Are you sure you want to delete all the entries in the MOD httpBL Errors Log?';

// Help
$txt['httpBL_helping'] = 'Help';
$txt['httpBL_helping_description'] = 'I would recommend you to read this page carefully even if you don\'t need help with mod httpBL.';
$txt['httpBL_online_title'] = 'Online help';
$txt['httpBL_online_body'] = '<p>There are a lot of ways you can ask for help, but the best one is to ask me directly any doubt you may have, so we can talk about it and sort the problem without losing any time. I don\'t mind to answer questions through forums, emails, PMs, etc, but for me it\'s a lot easier to see what is the problem and find the solution when I can talk about it using a microphone. And also I think this is a lot faster and more effective way to sort problems.<p>
<p>I am connected around 10 hours every day using the programs <strong>"Skype"</strong>, <strong>"YIM"</strong> (Yahoo Messenger) and <strong>"MSN"</strong> (Live Messenger). I have also created a system in my server to write down what I am doing at every moment and have added a piece of code to the mod to read that info from my server (the piece you can see just next to these lines) so you can see if I am available or not.</p>
<p>If you have installed as well the program Skype, the process cannot be any easier. All you have to do is wait until I am available and click on the "Online" button. That will open automatically the program Skype in your computer and will start a conversation between us.</p>
<p>If you prefer to use YIM or MSN instead of Skype or if you haven\'t got a microphone, the button is not going to work automatically. In that case the button is going to be useful for you only to know if I am available or not, but to contact me you will need to add me first inside the program you use, like any other of your contacts. My ID inside those 3 programs is this one:</p>
<ul>
<li>Skype and YIM : <strong>snoopy_virtual_studio</strong></li>
<li>MSN : <strong>snoopy_virtual_studio@hotmail.com</strong></li>
</ul>
<p><strong>NOTICE:</strong> Don\'t use my hotmail address to send me emails, as I almost never read them. If you need to send me an email use this other address instead: <a href="mailto:info@snoopyvirtualstudio.com">info@snoopyvirtualstudio.com</a></p>
<p><strong>WARNING:</strong> There are a lot of languages in the world I can understand even if it\'s only a little of it, but the only 2 I am really fluent with are English and Spanish. If you cannot speak any of those 2 languages you can call me if you want, but I cannot promise we will be able to understand each other.</p>
<p><strong>ANOTHER WARNING:</strong> Before you start asking questions it would be a good idea to do a quick search using the links you can see further down, to see if somebody else have already had the same problem and it has already been sorted. The main reason why I have created this "Online Help" system is to save time and it would make no sense at all if I end up answering hundreds of times the same questions every day.</p>';
$txt['httpBL_help_1_title'] = 'Other ways to ask for help';
$txt['httpBL_help_1_body'] = '<p>Of course, even if I personally prefer the "Online Help" system, there will be times when it will be impossible to use it. Either because you live too far away from me and we are never online at the same time, or because you don\'t like the instant messenger programs, or because you need help when I am too busy with other projects and cannot be connected, or whatever other reason. In any of these cases you can find and/or ask for help using a lot of different ways:</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english" target="_blank">Tutorial explaining how the mod works, how to install it and how to configure it properly</a></strong></li>
</ul>
<p>Every time I update the mod I try to update the tutorial as well, but of course that depends on the amount of free time I have at any given moment, so sometimes you will see the tutorial a little out of date with the actual performance of the mod. But I hope some day I will find time to update the tutorial properly. Besides I have been planing to add to the tutorial also a <strong>"FAQ"</strong> section with all the questions that people have been asking me over time and to add also some other useful sections. It won\'t be a bad idea to check from time to time if there is something new there.</p>
<ul>
<li><strong><a href="http://www.simplemachines.org/community/index.php?topic=366399.0" target="_blank">Official mod\'s support thread</a></strong></li>
</ul>
<p>Full of very interesting questions and answers about the mod and other topics related to the protection against spammers. It is also the place to report any bugs you may find in the mod or to ask for new features you would like to see in future versions.</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0;language=english" target="_blank">The section dedicated to this mod inside my personal forum</a></strong></li>
</ul>
<p>My personal forum is dedicated to sort any kind of problems anybody may have inside a lot of different IT fields. Inside it there is a section dedicated to mod httpBL, where you can see (among other things) how you can install as well this mod on other web sites made with PHP but without SMF.</p>';
$txt['httpBL_help_2_title'] = 'How you can help us';
$txt['httpBL_help_2_body'] = '<p>This mod is <strong>"Free Source"</strong> and that means it\'s a team work where all of us help each other. So it\'s not only about others solving your problems, but you should also ask yourself in what ways you can help all the people who use it. Depending on your skills and free time, the different ways you can help are these ones:</p>
<ul>
<li><strong>Donations</strong></li>
</ul>
<p>If this mod have helped you out, donations are a great way of saying "Thanks!". Furthermore, the months when donations reach an acceptable level, I don\'t have to spend so many hours looking for customers to make other types of work and I can devote more time to what really matters: The various free software projects which I collaborate with.</p>
<ul>
<li><strong>Reporting bugs</strong></li>
</ul>
<p>Whenever you see that the mod is behaving in a way that is not expected, you should report the bug in the appropriate forum. If you also have enough programming knowledge to find where is the failure and propose a solution, the better, but even if you have no idea of where the fault is, the mere fact of reporting it is helpful, because it will allow someone with more experience to know that the bug exists and to dedicate some time to solve it, which will make the mod work even better.</p>
<ul>
<li><strong>Answering questions in the forum</strong></li>
</ul>
<p>If you\'ve been using this mod for some time and have some practice with it, you\'ll see at times that someone asks a question in the forum that you know the answer. If you answer that question it will save me some time and allow me to concentrate on more important problems.</p>
<ul>
<li><strong>Helping with the development of this mod</strong></li>
</ul>
<p>If you have enough knowledge of PHP and some free time you can help solving mod bugs and/or developing future versions. To do this I have opened a <strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=36.0;language=english" target="_blank">sub-forum inside my personal forum</a></strong> where you are welcome if you are interested in the subject.</p>
<ul>
<li><strong>More</strong></li>
</ul>
<p>Any other ideas you can think of to help us is welcome.</p>';
$txt['httpBL_about_title'] = 'About MOD httpBL';
$txt['httpBL_about_body'] = '<p>Mod httpBL was started in 2009 by me, J. C. Redondo "Snoopy", from <strong><a href="http://www.snoopyvirtualstudio.com/index.php?language=english" target="_blank">Snoopy Virtual Studio</a></strong>, based on ideas from Project Honey Pot message board, mainly <strong><a href="http://www.projecthoneypot.org/board/read.php?f=10&i=1&t=1" target="_blank">from this thread</a></strong> and also from the <strong><a href="http://drupal.org/project/httpBL" target="_blank">Drupal http:BL MOD made by praseodym</a></strong>.</p>
<p>Of course, Drupal code is very different from SMF code, so since the beginning I had to change it a lot. Furthermore, since I started it, I\'ve been modifying it a lot more and adding new features, as I have been having new ideas or they have been suggested to me by other people in SMF forum, so in the current version there is very little left from the original work, but all this would not have been possible without that initial work.</p>
<p>Since version 2.4 of October 2010, this mod also uses the functions created by <strong>Marcin Krol</strong> and modified by <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">X3mE</a></strong> in his mod <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">OS & Browser Detection</a></strong> to detect the Operating System and Browser of potential spammers.</p>
<p>This program, as most of my work, is free software (at least the parts I have done). You may redistribute it and/or modify it for your own projects anyway you want. Just mention where you got it from, to give me the credit I deserve for my efforts. Anyway if you are going to make any money with it, I will be very grateful if you consider donating me a small percentage of your profit.</p>';
// MOD httpBL END

The only file a human visitor may ever see is the file warning.php
telling him that his IP has been hijacked by a spammer and telling him what
to do in this case, so apart from the above lines you need to translate
this file if your visitors speak another language.

As all my websites are normally visited from people who speak either english or spanish,
I have done this file warning.php in both these 2 languages,
so if your visitors speak (let's say) either english or german,
you will only need to replace the spanish part with the same thing in german.

I welcome new translations here (http://www.simplemachines.org/community/index.php?topic=366399.0)

==========================

Características:




Instalación:

IMPORTANTE:
Antes de instalar este mod te recomendaría que
te leyeras este TUTORIAL (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2)

De todas formas aqui va un breve sumario:






En caso de que necesites ayuda con alguno de estos pasos o que quieras ver
mas información al respecto, visita el hilo de soporte de este mod (en inglés) (http://www.simplemachines.org/community/index.php?topic=366399.0).

Y si no hablas inglés, visita el hilo de soporte de este mod en nuestro idioma. (http://www.simplemachines.org/community/index.php?topic=414747.0)

==========================

Change Log:

Quote


Version 2.5.1 (http://www.simplemachines.org/community/index.php?topic=366399.msg2893690#msg2893690) - 28th December 2010
  *Changed the design of the help page. It was not displaying properly with some Themes
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4 or 2.5
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using


Version 2.5 (http://www.simplemachines.org/community/index.php?topic=366399.msg2893599#msg2893599) - 27th December 2010
  +Added a help section
  +Added the page index at the bottom of the log pages too (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2828764#msg2828764)
  *Changed again the function get_real_IP() (See here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=362.0)
  +Added a new variable to the config page to see 2 languages or just one in the warning page
  *Changed the config page to make it easier to understand
  +Added a new button to the log pages to delete the entries of just one log (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2875367#msg2875367)
  !Sorted the bug Undefined index: REQUEST_URI (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2804696#msg2804696)
  !Sorted the bug TEXT column can't get default values (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2842435#msg2842435)
  !Sorted the bug about log pages displaying wrongly (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2857270#msg2857270)
  !corrected a few typos (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2814818#msg2814818) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2890848#msg2890848)
  *Changed 10 lines and added 78 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using


Version 2.4 (http://www.simplemachines.org/community/index.php?topic=366399.msg2804564#msg2804564) - 2nd October 2010
  +Added a new system so now you can decide what group of members you don't
want to be scanned never by the mod
  !Sorted the bug in RC3 we talked about in the support forum. (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2783223#msg2783223) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2784316#msg2784316)
  *Small change in the template file to make the mod compatible with SimplePortal
for people using SMF 1.1.11 (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2775518#msg2775518)
  !Sorted a bug inside the logs (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2764797#msg2764797)
  *Changed the design of the page warning.php as requested by giveaway365.com
(here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2525796#msg2525796) and discussed in some other places in the support forum
  !Sorted the bug "Undefined index: response" reported so many
times (for example here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621)
  +Added a system to check if the mod is ON, if it is up-to-date and if the
connexion with HoneyPot's DB is OK
  +Added 2 columns in view-log for "Operating System" and "Browser" using the
Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  +Added OS & Browser Detection to the "Who's Online" page
  +Added a checkbox to the config page to decide if you want to view OS & Browser
data in "Who's Online" page
If you want to see these last 3 features you need either to:
  • Download and install Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  • Download and install my small addon to see OS & Browser in httpBL (http://custom.simplemachines.org/mods/index.php?mod=2155)
  +Added cache values to session so it works if cookies and cache are off
  *Changed completely the system to store and retrieve data from cache and/or session
  +Added a value to the config page to set the amount of minutes to keep the data
in the cache and/or session
  *Replaced my function httpBL_look_for_empty_ip() for the function
httpBL_get_real_ip_address() made by butchs (here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1547#msg1547)
  *Changed 2 lines and added 20 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
unless you are not using the default Theme and you have the file
Who.template.php inside the folder of the particular Theme
you are using
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using


Version 2.3.4 (http://www.simplemachines.org/community/index.php?topic=366399.msg2524928#msg2524928) - 5th March 2010
  !Fixed error reported by giveaway365.com (here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2523130#msg2523130) thanks to a suggestion from
butchs
  !Fixed error reported by A.SK (here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2523379#msg2523379)
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x


Version 2.3.3 (http://www.simplemachines.org/community/index.php?topic=366399.msg2522331#msg2522331) - 3rd March 2010
  !Fixed errors reported by giveaway365.com (here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2520543#msg2520543)
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x


Version 2.3.2 (http://www.simplemachines.org/community/index.php?topic=366399.msg2520327#msg2520327) - 2nd March 2010
  !Bug about human members not displaying in RC2, reported by butchs (here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2520174#msg2520174)
  !Bug affecting all versions of SMF about admin beeing logged every visit
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
  ?This time everybody should update as one of the bugs affect SMF 1.1.x as well


Version 2.3.1 (http://www.simplemachines.org/community/index.php?topic=366399.msg2520124#msg2520124) - 1st March 2010
  !Sorted a bug for SMF 2.0 RC2, reported by butchs (here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1354#msg1354)
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
  ?No even need to update if you are using SMF 1.1.x
The bug was only in the SMF 2.0 RC2 part of the mod


Version 2.3 (http://www.simplemachines.org/community/index.php?topic=366399.msg2519735#msg2519735) - 1st March 2010
  !The mod now never checks the admin (bug reported by Exsharaen (http://www.simplemachines.org/community/index.php?topic=366399.msg2506339#msg2506339))
  +Added a value in config page for "threat level very very high"
  +Added a captcha in "warning.php"
  • If the threat level is below the "high level" the visitor pass
  • If the threat level is between the "high level" and the "very very high level"
    the captcha appears
  • If the threat level is higher than the "very very high level" it's stopped and
    doesn't see the captcha
  +Added a cookie valid for 24h. If the visitor sees the captcha
and proves is human, gets the cookie
  +Added a value in config page for "cookie lenght"
  +Added a counter with the number of spammers stopped by the mod
  +Added a a button in the view-log page to hide or show the legend
  +Added a a button in the view-log page to change quickly from
"normal view" to "see all the extra info"
  *View-log page now separated in 3 different ones:
  • Spammers stopped
  • Humans allowed in
  • Internal errors
  +Added a column in view-log for "username" with link to member profile
  +Added some more info in "see all the extra info" mode
  *Changed all the language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x


Version 2.2 (http://www.simplemachines.org/community/index.php?topic=366399.0) - 17th February 2010
  +Added cached values if cache is enabled to reduce time
  +Added more methods to find the visitor's IP
  !Sorted issue with servers not using Mysql
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x


Version 2.1 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 15th February 2010
  +Added compatibility with SMF 2.0 RC2
  +Added a color system in the view-log page to see threat
level of each IP stopped by the mod
  +Added an option to see the view-log page with only important
information or with all the extra data
  +Added some lines to the language files for the new features
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.0


Version 2.0 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 11th February 2010
  -Eliminated compatibility with other programs, making it now exclusive for SMF
  +Added a powerful install script which now does everything for you with just one click
  +Added an easy-to-use configuration interface to control the mod
  -Eliminated the text file log, too difficult to find and read
  +Added a log table in the database
  +Added a view-log interface to see the information stored in it
  ?Unistall old version and install new one
  ?Need to edit manually 2 small things in index.template.php
if you are not using the default one


Version 1.0 (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpbl) - 17th August 2009
  oInitial release
  oCan be installed in any PHP page, not only SMF
  oCan block any spammer from viewing your site
  oIt checks IP in Project Honey Pot DB
  oIf match, the visitor is redirected to the "warning.php" page
  oKeeps a log of "IPs stopped" in a text file in your server
  oCompatible with any PHP program, so it's compatible with all SMF versions


Quote
Legend
oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

==========================

Road Map:

Quote
Things to do in the near future: (27th December 2010)

   !Sort a few bugs found in the forum.
 
   *I need to finish the tutorial with the instructions on
how to use it.
 
   +I need to write a FAQ with some things they are
already asking too many times.
 
Quote
Legend
*To be Changed
+To be Added
-To be Eliminated
!Bug to be Fixed

Quote
Things to do in the future whenever I have time
because they are not too urgent just now:


   +When your mod is not up-to-date, display which one is
the version you have currently installed and which one
is the updated version (requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2895273#msg2895273)
 
   +Add an option to decide (when you are displaying only 1 languag
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 04:13:11 PM
While we were waiting for the mod being approved we were already trying to improve it in my site, so we are going to continue  here the conversation we had there.

If you don't know what we are talking about, check previous post in:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0
Title: Re: httpBL
Post by: Wizzlefits on February 17, 2010, 04:30:30 PM
Congrats Snoopy!!!  ;D ;D ;D ;D ;D

And anyone reading this...
GET THIS MOD!!! It is freaking AWESOME!

And don't forget to pick up Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547)
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 04:43:07 PM
Thanks Wizzlefits

And continuing what we were saying in my site, don't forget to tell me if with this new version 2.2 you still get anybody with "No IP"

I am just installing anyway CrawlTrack so I can do a few more tests myself about that.
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 05:17:57 PM
Snoopy, my last post (and attached image) in your site was with v2.2 installed (sorry, I thought I said that).
Title: Re: httpBL
Post by: butchs on February 17, 2010, 05:29:21 PM
I had a 500 error with the old version.  Glad you fixed it?  Will advise if I ever see it again.

This mod is a must have.  Even if you do not have a spam problem this will cut back on spammer bandwidth!
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 05:41:34 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Code: [Select]
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396when try going to warning.php
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 05:43:56 PM
@madfitz

You mean the one I just attached here?

When I saw it was still coming with the error "No reverse IP" I thought you still had version 2.1

I hadn't realized the IP now is not blank. It has now the word "unknown" and of course the function httpBL_reverse_ip() cannot reverse a word.

But I see it's still coming every half hour.

I am going to continue searching all the pages I know to see if I find any more information on the subject to see what can cause this problem.

In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Apart from that, now that we are in a site visited for a lot more people than mine, maybe somebody else can give us more ideas.

======================

@butchs

What version gave you error 500 the 2.1?
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 05:46:25 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Code: [Select]
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396when try going to warning.php

What picture?

Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 05:50:44 PM
I am not sure if it that error is normal. See picture.

I am also having another error.
Code: [Select]
Fatal error: Call to undefined function getmobileproperties() in /home/user/public_html/forum.com/Sources/Load.php on line 1396when try going to warning.php

What picture?

Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Oops, forget to add the picture. Edited.
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 06:05:31 PM
I don't see any error in the picture. The only thing I see in your httpBL log is the sentence:

(There is no entries in the MOD httpBL log)

And this actually means there is no entries in the log, so you haven't catched yet any spammer.

I have installed it already in 6 forums, and in some of them it's catching only 1 a day, but in other ones it's catching a spammer every 2 or 3 hours.

So wait a few hours and try again to see the log.

========================

The another problem is more worrying.

As I was saying getmobileproperties() doesn't belong to this mod and I haven't seen it before in SMF.

Anybody knows it?

The name sounds really funny to me. Like a hack or something.
Title: Re: httpBL
Post by: ~DS~ on February 17, 2010, 06:10:48 PM
I don't see any error in the picture. The only thing I see in your httpBL log is the sentence:

(There is no entries in the MOD httpBL log)

And this actually means there is no entries in the log, so you haven't catch yet any spammer.

I have installed it already in 6 forums, and in some of them it's catching only 1 a day, but in other ones it's catching a spammer every 2 or 3 hours.

So wait a few hours and try again to see the log.

========================

The another problem is more worrying.

As I was saying getmobileproperties() doesn't belong to this mod and I haven't seen it before in SMF.

Anybody knows it?

The name sounds really funny to me. Like a hack or something.
Sorry it was a iPhone mod, SMF4iPhone.
I removed it, now the  warning.php works.
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 06:15:46 PM
In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Trying this now. What php file would you place the crawltrack tag?
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 06:22:08 PM
In the mean time, why don't you give a try to the program Wizzlefits was talking about:

http://www.crawltrack.net

It's open source and maybe it will give you more information to see what is going on inside your site every half hour.

Trying this now. What php file would you place the crawltrack tag?

I haven't installed it yet because I never install a program without reading all the documentation and (if it's open source like this one) looking a little inside the code (I even do that sometimes with the other ones as well  ;D ) and I have been too busy today to finish with that, but I have already seen the answer to that.

Go to:

http://www.crawltrack.net/doccms.php

And scroll down to SMF   ;)
Title: Re: httpBL
Post by: madfitz on February 17, 2010, 06:28:13 PM
... but I have already seen the answer to that.

Go to:

http://www.crawltrack.net/doccms.php

And scroll down to SMF   ;)

That will teach me to read the instructions :)
Title: Re: httpBL
Post by: butchs on February 17, 2010, 06:34:50 PM
Yes 2.1.  So far I have not seen it in 2.2.  ;)
Title: Re: httpBL
Post by: butchs on February 17, 2010, 06:46:46 PM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 07:16:36 PM
Yes 2.1.  So far I have not seen it in 2.2.  ;)

Weird

From v2.1 to v2.2 I have changed these 3 things:

  1.- I have used the cache functions so now if you have cache enabled in your forum, everytime the mod do a dnslookup of an IP, it store the data in the cache for 120 seconds. This will make pages with lots of visitors load faster, but it won't affect at all to normal sites. And of course it won't affect you if you haven't cache enabled.

  2.- In version v2.1 I was using plain Mysql to display the page warning.php instead of the SMF functions db_query() or $smcFunc['db_query'] and I had put some default values just in case something went wrong. So the people using SqlLite or PostgreSQL were seeing in their warning.php always the default values.

I have found a way to sort that in v2.2 so everybody now should see in the page warning.php the values they put in the settings and not the default ones. By the way, everybody should edit the file httpBL_Subs.php to change my default values for theirs, just in case something goes wrong anyway with the db, but it's not too important. I will explain that better for normal users when I have time to continue the tutorial, so that can wait for now. (Advanced users can do it now).

Anyway this change (even if you are not using Mysql) only affects to the page warning.php, so I don't think it has anything to do with your error 500 either.

  3.- In version v2.1 I was using only $_SERVER['REMOTE_ADDR'] to find out the visitor's IP so we can check it out in the spammers db. Version v2.2 is using a lot more methods. See full list here:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=309.msg1292#msg1292

I don't think this change can have anything to do also with error 500

Of course the problem is error 500 is too generic. It can be almost anything.

Any of the 3 changes were affecting you?

Was there any more information with the error 500? Normally no, so I suppose we will need to wait to see if it comes back again.

Cheers.
Title: Re: httpBL
Post by: butchs on February 17, 2010, 07:26:55 PM
I am guessing that the updates in number 3.  When it happened I had several spammers get rejected.  Spammer rejection is slow at this moment.  Then again, it could be some of the things me a user were doing to test a program on the forum.  We will see in a day or so...  I really am not sure...    ???
Title: Re: httpBL
Post by: snoopy_virtual on February 17, 2010, 08:14:30 PM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Dismal Shadow if you tell Fabius85 about this problem tell him as well that the page warning.php is using SSI.php to load all the SMF functions. He will understand what that means and can help him understand where is the problem.

Anyway, as butchs was saying maybe you were just using an old version of smf4iphone. Try if there is any update.
Title: Re: httpBL
Post by: lc62003 on February 17, 2010, 08:59:07 PM
I see you plan to provide better instructions....that would be great! 

So...please pardon my noobiness.....where do you install the honey pot script?  In the root folder or something like root/forum folder? 
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 08:39:28 AM
Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, I'll look around first :)

Anyway, just in case there's any Indonesian who want to use it...

Code: [Select]
$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Periksa pengaturan MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL API salah. Periksa pengaturan MOD httpBL Anda.';
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP tiap pengunjung, apakah sudah ada dalam basis data projecthoneypot.
Jika ada, mod ini mengarahkan pengunjung ke halaman warning.php dan mencegah akses ke forum.<br />
Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa parameter.';

$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/Matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API Anda keliru. Silakan periksa dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memasang Honey Pot
pada server Anda. Jika Anda belum mendapatkannya, kunjungi
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>,
unduh dan pasang di server Anda. Setelahnya, tuliskan tautan ke Honey Pot tersebut.
Tautan tersebut mungkin seperti ini:<br /><b>http://www.situssaya.com/honeypotsaya.php</b>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki kunci API 
http:BL dari Project Honey Pot. Jika Anda belum memilikinya, kunjungi
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>,
daftar dan dapatkan kunci Anda, lalu tulis di sini. Harap diingat, mereka tidak akan memberikan kunci API jika
Anda belum memasang sebuah Honey Pot, jadi sebaiknya pasang dulu.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci untuk tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat oleh spammer.
Tulis sesuatu yang cukup menarik bagi spammer untuk mengekliknya, jangan sesuatu yang menyeramkan.
Jika Anda tidak tahu harus menulis apa, biarkan kosong. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika ada masalah dan
untuk memberi tahu pengunjung yang kurang beruntung memiliki IP yang dianggap sebagai spammer
dan tidak tahu cara keluar dari halaman <b>warning.php</b>, jadi mereka dapat meminta bantuan Anda.
Isikan dengan alamat email yang valid. Alamat ini dipecah dalam 3 kata sehingga tidak dapat dilihat robot.
Contoh, jika alamat email Anda adalah <b>info@situssaya.com</b>, kata pertama adalah <b>info</b>,
kata kedua adalah <b>situssaya</b>, dan kata ketiga adalah <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda tuliskan. Anda tidak dapat mengosongkan salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari untuk menganggap sebuah IP baik-baik saja';
$txt['httpBL_bad_last_activity_sub'] = 'Jika suatu IP pernah digunakan oleh spammer, namun tidak ada yang salah
sejak sejumlah hari berlalu pada pilihan ini, kita anggap tidak berbahaya lagi
dan izinkan pengunjung masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberi setiap IP tingkat ancaman yang berubah tiap hari,
tergantung apa yang IP ini lakukan dan sudah berapa hari berlalu sejak saat itu.
Semua IP dengan tingkat ancaman lebih tinggi dari angka yang Anda berikan tidak dapat masuk.
Tidak disarankan untuk mengganti 2 nilai terakhir sampai Anda tahu cara kerja mod ini.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan pada log';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menandai pilihan ini, Anda akan melihat semua informasi
pada log, namun mungkin informasinya terlalu banyak dan Anda kehilangan fokus.
Sesekali lebih baik melihat hanya hal yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" dengan
pengaturan ini (halaman yang akan dilihat pengunjung dengan IP dianggap berbahaya)
klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan
tidak tahu caranya, silakan minta bantuan di forum dukungan (hanya dalam bahasa Inggris):';

$txt['httpBL_viewlog'] = 'Log MOD httpBL';
$txt['httpBL_viewlog_description'] = 'Setiap kali MOD httpBL menghentikan spammer atau
mendeteksi kesalahan internal menambah sesuatu ke log, Anda bisa melihatnya di sini.';
$txt['httpBL_log_no_entries'] = 'Tidak ada data pada log MOD httpBL';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'T.A.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - Tingkat ancaman IP ini di basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = Aktivitas Buruk Terakhir - Jumlah hari berlalu sejak IP ini
melakukan sesuatu yang buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen - Robot yang mencari alamat-alamat email untuk dikirimi spam.';
$txt['httpBL_log_comment'] = 'S.K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis ke blog dan forum, biasanya penuh dengan
tautan ke situs yang dipromosikan oleh spammer.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_user_agent'] = 'Peramban yang digunakan IP ini';
$txt['httpBL_log_error_message'] = 'Pesan Galat';
$txt['httpBL_log_no_error'] = 'Tidak ada galat';
$txt['httpBL_log_remove_all_confirm'] = 'Anda yakin ingin menghapus semua data log MOD httpBL?';
$txt['httpBL_log_remove_selected_confirm'] = 'Anda yakin ingin menghapus semua data log MOD httpBL terpilih?';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman berbahaya';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat berbahaya';
$txt['httpBL_threat_colors'] = 'Arti warna:';

And again a typo:

Quote
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen
doing domething wrong.';
something?

Anyway, since I haven't installed it yet, I don't know if my translation will break the page layout. I'll install an SMF offline and test my translation, but I need to take a dinner now :D

Thanks :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 08:51:50 AM
Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, ...


This is more urgent, so I answer this first:

Re-start your router until you get a different IP and try again my site

I will answer the rest later.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:02:00 AM
I see you plan to provide better instructions....that would be great! 

So...please pardon my noobiness.....where do you install the honey pot script?  In the root folder or something like root/forum folder?

I'm writing just now an extensive tutorial in English and Spanish. It's not finished yet, but I'm on it just now, so I suppose it will be finished in a few hours, and that question is already answered there.

You can find it (the part it's done at least) here:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 09:19:37 AM
Cool!  Thanks!  BTW, great mod.  I have a half dozen sites to install.... ;D
Title: Re: httpBL
Post by: Fabius85 on February 18, 2010, 09:24:36 AM
Also, the function getmobileproperties() doesn't belong to this mod. I don't even know it.

Sounds like smf4iphone.  But in the last version I wrote, the "getmobileproperties" function was installed at the end of the load.php file and should be found so I believe he is running an older version.  Since I do not have a mobile device and have absolutely no means of supporting the mod, I gave it to "Fabius85", I am sure he can help you if you move this question to the correct thread.

Dismal Shadow if you tell Fabius85 about this problem tell him as well that the page warning.php is using SSI.php to load all the SMF functions. He will understand what that means and can help him understand where is the problem.

Anyway, as butchs was saying maybe you were just using an old version of smf4iphone. Try if there is any update.
he was just using the older version of the mod, no matters with last update (as butchs said) ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:32:42 AM
@ Exsharaen

Thanks for the translation. That was quick.  ;)

I will start a full language package (as we do with mod Stop Spammer) as soon as I finish the tutorial.

And again a typo:

Quote
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen
doing domething wrong.';
something?

Yes, it's a typo.

I suppose I wrote that when I finished with the coffee and started with the beer.  ;D

I will correct that in the next version, but I don't recommend nobody changing it in their Modifications.english.php file now, because if you change even one character in your files, whenever I do the next version, the installer is going to complain and throw an error message, and it won't update properly.

======================

Going back to this problem:

Actually I'd like to use this mod, but considering that today I am blocked from your site and I recall I was blocked some years ago, ...


This is more urgent, so I answer this first:

Re-start your router until you get a different IP and try again my site

I will answer the rest later.

This is a normal issue when you have a dynamic IP (as almost all of us have).

I have this problem sometimes, as normally, when I re-start my router I get a different IP, so sometimes I get an IP that is in the spammers DB and cannot enter my own site, so I just re-start the router again and that's it.

Anyway sometimes the IP doesn't change just re-starting the router and you need to leave the router off for a few minutes. Just check it has actually changed.

Of course, if after trying with some different IPs still you are blocked then the problem is you have a trojan and your computer is part of a botnet, but I suppose you must have good anti-virus, anti-trojans, etc.

Another thing you can do is go to http://www.projecthoneypot.org and check your IP to see why it's in the database.

projecthoneypot => IP data => Lookup IP => enter the IP you want to check

It gives you not only all the information about what have been done from that IP but also from IPs in your neighbourhood.

Even, once you are a member and have installed at least one honey pot, you have access to more pages inside their site and you can ask them to add your IP to the "white list".

But I don't do that any more, as they usually need a day to add you that list and it's a lot faster re-starting the router.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 09:35:39 AM
Cool!  Thanks!  BTW, great mod.  I have a half dozen sites to install.... ;D

If you are installing it in some different sites (as I have done) you can use the same API key for all of them, but it's a lot better if you install a honey pot for each one of them, as the mod works faster if the honey pot is in the same domain as the forum.
Title: Re: httpBL
Post by: butchs on February 18, 2010, 09:39:38 AM
My caught spammer log is getting long.  Does it automatically trim it's self or goes forever?
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 10:03:09 AM
My caught spammer log is getting long.  Does it automatically trim it's self or goes forever?

No, it's not automatic. You need to delete them manually if you want to.

Won't be a bad idea to add that in the next version, but just now I'm leaving them to grow in all my forums, as I want to study the entries later.

Remember what I said somewhere about not being sure yet about the best Settings.

When you install it the "Threat level considered bad" is set to 10, but I have change that manually in all my forums to just 1 to stop everybody in the DB and see the difference.

On top of that if a friend tell you he was trying to enter your forum and couldn't, knowing the date and the time, you can see what IP he was using and study in projecthoneypot what was wrong with that IP, and you won't be able to do that if you have deleted that entry.

Anyway I will consider adding that to the next version. Leaving the data in the log for x days.

Even adding an option to the settings for automatic trim or not and for how many days you want to keep the data.
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 12:05:45 PM
Well I can confirm that I have an antivirus and antispyware plus a firewall always turned on in a strict mode (I monitor any ingoing and outgoing network activities), and yes I have dynamic IP. The latest one, 125.164.136.108, is confirmed to be suspicious (FYI the first one I tried today to be blocked was 110 something, I forgot to note it down) although it might be obsolete.

Anyway, by translating I recall there's an option to set number of days to consider an IP being "good" again? Maybe I can alter that setting further and see which setting fits better...

Just call me lazy, but in fact I do feel lazy to restart the router everytime I am blocked, esp. that it's a wireless one, it's not in the same room as I'm using the Internet, and someone might be using it at the same time I am blocked, bla bla bla :P but I'll try again some time later (in fact I am really curious about your site :D)

For now, consider I am a little bit unlucky :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 12:55:12 PM
---
Just call me lazy,
...

OK, if you say so, I call you lazy.  ;D

---
The latest one, 125.164.136.108, is confirmed to be suspicious
...
For now, consider I am a little bit unlucky
...

You are really unlucky. I have been checking out that IP an the threat level is just 1  :D

OK. I have changed again the "Threat level considered bad" in my site up to 5.

Now you can pass. At least until you re-start your router and get a worst IP  :D
Title: Re: httpBL
Post by: Exsharaen on February 18, 2010, 01:33:10 PM
---
Just call me lazy,
...
OK. I have changed again the "Threat level considered bad" in my site up to 5.

Now you can pass. At least until you re-start your router and get a worst IP  :D

Thanks, I'm there now, although now I forget what I should search there :P I assume the support forum for your mod is here?

Don't mind me though, just reset the threat level. I don't want spammers to get in there just because of me :)

That reminds me, what is the highest setting for threat level? You said you lowered your site to 5, but I recall somewhere the threat level 1 will block everyone. Does "everyone" here refer to "everyone in the PHPot DB" or literally "everyone"?

I'll try to activate the mod tomorrow and see if I am blocked :P by the way, isn't there any exception for admins to not be blocked?

Thanks :)

PS: I hesitate to register at your forum after reading the TOS; I might not be so active, although somehow I am interested there :)
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 01:52:16 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:06:34 PM
...
That reminds me, what is the highest setting for threat level? You said you lowered your site to 5, but I recall somewhere the threat level 1 will block everyone. Does "everyone" here refer to "everyone in the PHPot DB" or literally "everyone"?
...

Level 1 blocks everyone in the PHPot DB

Take a look at this:

http://www.projecthoneypot.org/threat_info.php

The highest I have seen so far in my logs is 73 but I am not sure how high it can go.

I have realized putting it down to 1 is too much. In PHPot page they say 10 is a safe enough number, but I wanted to experiment with different values to see what happen.

...
by the way, isn't there any exception for admins to not be blocked?
...

My god, Am I stupid or what?

I never thought about that. I need to put it in the next version ASAP

...
I hesitate to register at your forum after reading the TOS
...

I need to change that TOS. It was because 3 years ago we were having some people just looking for a laugh and we were fed up with them, but you are welcome, of course.
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:08:04 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D

What shoutbox mod are you using?
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 02:15:17 PM
OK, I have a question....hopefully about an interesting scenario.  One of my sites has a shoutbox.  Apparently the spam bot was already working the site when I installed the honey pot mod.  So in the MOD log it's showing the bot attempting to hit the shoutbox every thirty seconds or so....has been for 16 hours or more.  Needless to say the list is getting lengthy.  I've tried turning off the shoutbox, banning the IP, but nothing is making it go away.  Picture leaving the browser open and continually hitting the 'shout' button...since no further action is taken the page isn't refreshed to make the changes take effect.  Can you think of any way to make it go away?   :D

What shoutbox mod are you using?


Simple Portal.   :)
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 02:21:37 PM
@lc62003

Try uninstalling my mod, wait for a few minutes, check that the bot IP is still banned and then install the mod again.

Maybe will work.
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 02:46:38 PM
No dice.  Perhaps it will give up in a few days.   :-\
Title: Re: httpBL
Post by: snoopy_virtual on February 18, 2010, 03:05:09 PM
I am not sure with Simple Portal, but can you uninstall just the shoutbox without uninstalling the full Simple Portal?

If you can, try uninstalling both the shoutbox and my mod, waiting for a while and install them again.
Title: Re: httpBL
Post by: butchs on February 18, 2010, 09:56:10 PM
Won't be a bad idea to add that in the next version, but just now I'm leaving them to grow in all my forums, as I want to study the entries later.

There is an idea.  Create statistics?  Take all the IPS from the same host and gather them together. The the admin can go to his cpanel and block the addresses.

For example I am getting a bunch of spammers from "Amsterdam NL" and "FDCservers.net  in Chicago IL".  It would be nice to see all the offending IP's from these two spammers then I can block all of the possible addresses from both of them.  Just an idea...  ;)
Title: Re: httpBL
Post by: butchs on February 18, 2010, 10:03:03 PM
No dice.  Perhaps it will give up in a few days.   :-\

If you have access to cpanel ban the IP of the bot.  Or call your host and ask them to ban the IP of the bot.
Title: Re: httpBL
Post by: lc62003 on February 18, 2010, 10:12:52 PM

If you have access to cpanel ban the IP of the bot.  Or call your host and ask them to ban the IP of the bot.


IP ban was the first thing I did.  But since it was sitting there with the page 'open' and trying to hit the shoutbox, there was no new action to cause the ban to work.  Picture this:  if you're viewing a page, and it changes, you won't see any of those changes until you either refresh or move to another page.  But until that action happens you're still looking at the same old thing.  Does that make sense? 
Title: Re: httpBL
Post by: snoopy_virtual on February 19, 2010, 04:16:45 AM
Yes, That's why I was saying a possible solution will be if you can uninstall just the shoutbox.

That way the page will disappear and the bot will have nothing to hold on to.

But I have never used Simple Portal and I don't know if you can do that without uninstalling the full mod.
Title: Re: httpBL
Post by: lc62003 on February 19, 2010, 08:37:50 AM
Yes, That's why I was saying a possible solution will be if you can uninstall just the shoutbox.

That way the page will disappear and the bot will have nothing to hold on to.




Uninstall would have no effect if the page is never refreshed.   ;)  The SP shoutbox is just a block on the page.  I uninstalled both the MOD and the shoutbox, but they still existed within his page view if that makes sense.   Let's say you put a simple html page on a server.  Someone opens that page in a browser but never navigates away from it.  You take that page off the server within 5 minutes.  The page still exists in the browser indefinitely so long as they don't close the browser, refresh, or follow a link.  Posting a shout in the shoutbox does not refresh the page, nor does it take you to a new one. 

Apparently this was one of those '24 hour' bugs as it stopped 24 hours to the minute.  It actually did attempt to enter the forum, at which time the MOD caught it and he was gone (a new action!!!).   8)

I'm probably doing a poor job explaining what was observed.  I'm not bringing this up to be confrontational at all, just thought it may be a behavior not seen without the use of this mod and it may be diagnostic in prevention.   ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 19, 2010, 08:53:42 AM
...
I'm not bringing this up to be confrontational at all, just thought it may be a behavior not seen without the use of this mod and it may be diagnostic in prevention.   ;)

Yes, it's a new behaviour I had never seen before, and yes I interesting to be diagnostic, but I gather from your answer it's already gone.

A pity it was not in one of my forums to do a few more tests with it. I love when this things happen, because you can learn a lot about the way they work.  ;D
Title: Re: httpBL
Post by: lc62003 on February 19, 2010, 08:24:17 PM
OK, even with a full ban on the IP, no action in 24 hrs, now it's back!   :-\
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 05:51:17 AM
OK, even with a full ban on the IP, no action in 24 hrs, now it's back!   :-\

With all the answers in this post and some googleing on my own and all the information I am getting via PM (thanks butchs, you are saving me lots of hours of googleing) I'm doing a new version of the mod.

Hopefully this problem will be sorted with the new version.

When I release it (don't know yet when, but maybe tomorrow or even later today) try it and tell me what happen.

In the mean time why don't you try to add a link inside your shoutbox to my site? http://www.snoopyvirtualstudio.com/

Robots tend to follow all the links they see too attack as many pages as possible and I would love to study this bast*** better.

If you don't want to break the design of your shoutbox you can put it hidden, so only robots can see it.

For example like this:

Code: [Select]
<div style="display: none;"><a href="http://www.snoopyvirtualstudio.com/">anything</a></div>
Title: Re: httpBL
Post by: lc62003 on February 20, 2010, 08:48:50 AM
OK, I'll try the link.  This thing (or is it things?) is/are coming from 4 IPs.  Overnight I have 22 pages in the log.   ::)


Maybe this will help in some way:

Today at 08:38:42 am     216.104.15.134     30     4     Yes         Yes     /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672991;xml     
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:37:29 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672931;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:37:24 am    216.104.15.142    30    18    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672901;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:53 am    216.104.15.142    30    18    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672811;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:53 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672751;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:35:28 am    216.104.15.130    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672781;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:34:14 am    216.104.15.130    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672721;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:33:54 am    216.104.15.134    30    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672691;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Today at 08:32:46 am    216.104.15.138    31    4    Yes       Yes    /forum/index.php?action=portal;sa=shoutbox;shoutbox_id=5;time=1266672661;xml    
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)    No error
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 10:33:18 AM
One thing for sure:

All those IPs are from S. Francisco California.

Maybe a botnet (a lot of computers with a trojan working from inside them) or maybe servers (with or without the owner knowledge)

I can see they use Windows NT 5.1 (and that's not normal for PC, but servers) and Internet Explorer (MSIE) 6.0

One way or another they are taking too much of your server time. I suppose this must be making your site slower, so until I investigate it a little more I have thought about another solution for you.

Stop them completely with "htaccess"

Look inside your root folder (the folder just above /forum/ - Normally it's called /public_html/ or /www/) see if you can find there a file called ".htaccess" (note the "dot" before the word htaccess)

The file ".htaccess" affects not only every file inside the folder where it is, but every file in every folder inside that one.

That's why I told you to use the one in your root folder, but if you want to protect only the forum it's up to you.

Anyway, look if there is a ".htaccess" already there.

If it is, open it with note-pad and add at the end of it these lines:

Code: [Select]
order allow,deny
allow from all
deny from 216.104.15.134
deny from 216.104.15.142

I have put only 2 IPs. Add all the rest yourself.

You don't need to finish every line with nothing, and you don't need to put anything also at the end of the file. Just as I have written it there.

Then save the file and FTP it to your server.

If there is no ".htaccess" already there, just create one. Open with note-pad a new text document. Put inside it the above lines (no need for anything special at the beginning either. Just the lines)

Save it, rename it .htaccess (remember the dot at the beginning) and FTP it.

More info:

http://vortexmind.net/2006-02-26-apache-htaccess-tweaking-tutorial/

I will continue looking for more information on those IPs.

A pity we cannot yet send an electric shock via internet.  ;D
Title: Re: httpBL
Post by: butchs on February 20, 2010, 12:13:48 PM
Hey lc62003, why not look up the IP information and get the host name.  Call the host and complain.  Have the host force them to stop!  8)


You can call:
They are Trend Micro inc:  TRENDMICRO.COM 
OrgName:    TREND MICRO INCORPORATED
OrgID:      TREND-7
Address:    10101 N. De Anza Blvd,
City:       Cupertino
StateProv:  CA
PostalCode: 95014
Country:    US

NetRange:   216.104.0.0 - 216.104.31.255
CIDR:       216.104.0.0/19
OriginAS:   AS16880,  AS36421
NetName:    NET-TRENDMICRO-COM
NetHandle:  NET-216-104-0-0-1
Parent:     NET-216-0-0-0-0
NetType:    Direct Assignment
NameServer: TMNS5.TRENDMICRO.COM
NameServer: TMNS6.TRENDMICRO.COM
Comment:   
RegDate:    2007-03-01
Updated:    2009-05-06

RAbuseHandle: TCH55-ARIN
RAbuseName:   Chou, Tai-Li
RAbusePhone:  +1-408-863-6403
RAbuseEmail:  terry_chou@trendmicro.com

RNOCHandle: YCH21-ARIN
RNOCName:   Chang, Yulin
RNOCPhone:  +1-408-850-1012
RNOCEmail:  yulin_chang@trendmicro.com

RTechHandle: YCH21-ARIN
RTechName:   Chang, Yulin
RTechPhone:  +1-408-850-1012
RTechEmail:  yulin_chang@trendmicro.com

RTechHandle: WWA18-ARIN
RTechName:   Wang, Wen-Chi
RTechPhone:  +1-408-863-6408
RTechEmail:  alex_wang@trendmicro.com

OrgTechHandle: YCH21-ARIN
OrgTechName:   Chang, Yulin
OrgTechPhone:  +1-408-850-1012
OrgTechEmail:  yulin_chang@trendmicro.com


Call and or email Alex, Yulin & Terry, ask for the IT department.  If the ask why tell them why.  I believe either they have an employee who is bothering you or they were hacked!

Report the abuse.  I have done it before and it works.   Get them back!!!    8)

Title: Re: httpBL
Post by: lc62003 on February 20, 2010, 12:18:04 PM
Now that's a heck of an idea!  Thanks!  An interesting thing regarding the IP location....everywhere I've checked resulted in a different location.  Try Honey Pot, and a couple of others.  HP says Spring, TX.   ;D


And now to (another) downside of shared servers......my server doesn't allow .files, so no .htaccess.    :-[  Or if it does I don't know how to do it.   :-\
Title: Re: httpBL
Post by: butchs on February 20, 2010, 12:31:20 PM
Use this whois to search the IP's in USA:  http://www.networksolutions.com/whois/

Make sure you select the IP address button.
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:33:50 PM
My server is shared and I can do that and a lot more.

But then again, my hosting company is the best.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:39:25 PM
Use this whois to search the IP's in USA:  http://www.networksolutions.com/whois/

Make sure you select the IP address button.

That whois is a lot better than the one I was using.

Filed for future whois searches.

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on February 20, 2010, 12:42:17 PM
BTW, to find the country and even the city an IP is coming from I normally use:

http://www.geobytes.com/IpLocator.htm?GetLocation

If it fails I try others, but usually is always right.
Title: Re: httpBL
Post by: butchs on February 21, 2010, 07:37:02 PM
I heard that some people that were really mad at this sorta stuff too further action.  They would look up his property on the real-estate databases and send him a picture of his house as a reminder that they were not messing around.  Not that I know how to do that or know anyone who has done it.   ???
Title: Re: httpBL
Post by: julieo on February 22, 2010, 03:04:28 AM
Sorry for newbie question...I'm amazed I've gotten this far. My forum is hosted on hostmonster.

I read and followed your tutorial but still confused. Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL but don't know PHP and can't figure out what to do with the BL access key. You mention index.template.php on SMF mods page but can't find it anywhere. I use 1stPage for my web editor and have looked at the source but don't can't tell what I am supposed to change for my honeypot and BL access key from the comments in it.
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 04:43:28 AM
...
Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL
...

If you have already mod httpBL installed, just go to the settings page. (See pictures attached)

Fill all the fields, enable the mod and save.

Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.

==================

BTW, I want to answer here a lot of messages I got, so I don't need to answer them one by one:

There was a mistake in my site yesterday (as I am changing the mod doing the new version and I was testing it on my site) and nobody was able to enter. Almost everybody was redirected to my warning page.

The problem was I couldn't sort it because just when I was doing it we had in Spain the worst storm I have seen in my life and I have been with no electricity, no telephone, etc for ages.

Just got power back a few minutes ago.

That's also the reason why I couldn't continue with the new version, the tutorial, etc.

Sorry.

===============

PS: If I ever hear somebody again saying the weather is not changing and it's all an invention of us anarchist hippies people I'm going to get really mad. (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Ftickedoff.gif&hash=29af6220654e308093f50bfa4638303a)
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 04:47:01 AM
...
Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.
...

Anybody who already knows how to do it:

Can any of you explain it to julieo?

I have too many things to do now that I have electricity again (before it goes off again).
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 06:43:02 AM
I heard that some people that were really mad at this sorta stuff too further action.  They would look up his property on the real-estate databases and send him a picture of his house as a reminder that they were not messing around.  Not that I know how to do that or know anyone who has done it.   ???

I have no idea too how to do something like that, and I swear I will never do something like that again.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 08:09:59 AM
...
I can see they use Windows NT 5.1 (and that's not normal for PC, but servers)
...

Sorry, that's a mistake.

Windows NT 5.1 actually means Windows XP, and that's very normal for PCs
Title: Re: httpBL
Post by: snoopy_virtual on February 22, 2010, 09:27:39 AM
Sorry for newbie question...I'm amazed I've gotten this far. My forum is hosted on hostmonster.

I read and followed your tutorial but still confused. Registered at Honeypot. Got Honeypot, keyword and BL access key. Installed httpBL but don't know PHP and can't figure out what to do with the BL access key. You mention index.template.php on SMF mods page but can't find it anywhere. I use 1stPage for my web editor and have looked at the source but don't can't tell what I am supposed to change for my honeypot and BL access key from the comments in it.

I answered you a few hours ago this:

If you have already mod httpBL installed, just go to the settings page. (See pictures attached)

Fill all the fields, enable the mod and save.

Forget for now the file index.template.php The mod works better if you do the changes there, but without that it works as well and it's too long to explain.

You can do that when I finish the tutorial.

As I see that the new version of the mod is going to take me longer that I was expecting and at least one of the changes you should do is an important one, I have updated the tutorial explaining that step.

Read it:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2

And tell me if everything goes ok for you.

If there is anything you don't understand, tell me as well.

BTW, you didn't tell me what versions of SMF and the mod you are using.

Everything in the tutorial is assuming you are using SMF 1.1.11 and the mod httpBL 2.2

For SMF 2.0 RC2 it's a lot easier.
Title: Re: httpBL
Post by: julieo on February 24, 2010, 12:01:32 AM
Thanks for the pictures. I did not see the MOD httpBL link on the side of the Admin panel and kept going into the Package area to find the settings.  Your pictures told me what to do...thanks again.  I can wait for you to finish your tutorial before I try the index changes.
Title: Re: httpBL
Post by: snoopy_virtual on February 24, 2010, 07:13:04 AM
Thanks for the pictures. I did not see the MOD httpBL link on the side of the Admin panel and kept going into the Package area to find the settings.  Your pictures told me what to do...thanks again.  I can wait for you to finish your tutorial before I try the index changes.

The first change, the one I just wrote in the tutorial is very important, because without the links to your honey pot in all the pages the mod doesn't work properly.

You should do it ASAP and wait for the next version to do the rest.
Title: Re: httpBL
Post by: snoopy_virtual on February 24, 2010, 10:52:05 AM
I have just opened a section in my forum "For Developers Only" with the latest development file and all the old ones.

I'm getting a lot of suggestions via PM and I thought if we discuss all these kind of things in an open forum instead of via PM and we get more brains working together, we will work faster:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.0

Please if you are not a developer and you don't know PHP code don't try to use the files there. Use the latest stable version instead.
Title: Re: httpBL
Post by: butchs on February 25, 2010, 02:10:40 AM
You may regret inviting me....   I am a hack, not a developer!  I use text editor and I do not take courses on programming...  :o
Title: Re: httpBL
Post by: coyoteboy on February 25, 2010, 04:25:41 AM
Just to double-check on this, this works solely from IP address - i.e google/yahoo etc crawlers will not be affected as they should not be in the list of spammers?
Title: Re: httpBL
Post by: aussieherps on February 25, 2010, 04:29:10 AM
Have got to step three using 1.1.11 BTW and it tells me to link as many pages to it from my site.
Very new at this stuff and got stuckat the congrats page from http://mysite/honeypot/***.com
Where do I put html codes so they work properly?
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 05:52:47 AM
Just to double-check on this, this works solely from IP address - i.e google/yahoo etc crawlers will not be affected as they should not be in the list of spammers?

Exactly. Legal crawlers are all white listed and they are not affected. There are actually thousands of them and the guys at Project Honey Pot update the list daily to add new good crawlers.
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 05:56:23 AM
Have got to step three using 1.1.11 BTW and it tells me to link as many pages to it from my site.
Very new at this stuff and got stuckat the congrats page from http://mysite/honeypot/***.com
Where do I put html codes so they work properly?

When you install the mod using the Packages Manager from your Admin area (as any other mod) all this html codes are done automatically.

The only thing you need to do manually is a little change in your index.template.php if you are not using the default Theme, but that's also in the manual.
Title: Re: httpBL
Post by: aussieherps on February 25, 2010, 06:59:28 AM
All good now thank you very much.
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2010, 07:16:50 AM
All good now thank you very much.

You're welcome.  ;)
Title: Re: httpBL
Post by: butchs on February 25, 2010, 10:35:27 PM
Those spammers are really hitting your httpBL hard at my forum.  I am seeing 20-30 hits from the same bot.  WOW!
Title: Re: httpBL
Post by: lc62003 on February 25, 2010, 10:45:07 PM
Those spammers are really hitting your httpBL hard at my forum.  I am seeing 20-30 hits from the same bot.  WOW!


x2!!


In case the info is useful to you Snoopy.....

The same bot(s) hitting my forum have a pattern.  There are four IPs, but they do the same thing during the same period of time.  They hit the shoutbox for 24 hours, then off 24, then back again.  Just like clockwork.  At roughly 8 pm EST tomorrow evening I expect to see it/them again.   :o
Title: Re: httpBL
Post by: butchs on February 25, 2010, 10:50:28 PM
Most of mine use the same IP addres.  I decided that I will add honeypot code the the warning file to make them pay for the evil deed!   8)
Title: Re: httpBL
Post by: giveaway365.com on February 26, 2010, 02:29:41 AM
Snoopy Sir,
I installed your mod and its very nice...

Thank you so much for this wonderful mod.
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2010, 04:54:37 AM
In case the info is useful to you Snoopy.....

The same bot(s) hitting my forum have a pattern.  There are four IPs, but they do the same thing during the same period of time.  They hit the shoutbox for 24 hours, then off 24, then back again.  Just like clockwork.  At roughly 8 pm EST tomorrow evening I expect to see it/them again.   :o

Looks like a small botnet. That means a guy who had controlled a few computers and have exactly the same trojan in all of them.

Most of mine use the same IP addres.  I decided that I will add honeypot code the the warning file to make them pay for the evil deed!   8)

That's already done since version 1.0

Read the code carefully and you will see it just before the close body tag.

Snoopy Sir,
I installed your mod and its very nice...

Thank you so much for this wonderful mod.

You're welcome.
Title: Re: httpBL
Post by: giveaway365.com on February 26, 2010, 09:34:04 AM
Dear Snoopy Sir,
There are 3 things which I wanted to ask you for this mod.
1. After installation of this mod, is there any thing else to be done like submiting suspicious behaviour data ? or every thing is done automatically?

2. I have dynamic IP. Some IPs in my range are getting classified under suspicious IPs and I am not able to use my website as a admin. Is there any way to overcome this? Can I disable the catching of suspicious IPs?

3. Even if I am classified under suspicious IPs , I am still allowed to browse my website. Is that normal? It happens when I do refresh or use back button and try again. Does that mean that I have not installed the mod properly?
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 05:24:55 AM
1.- Every thing is done automatically.

2.- I'm working on that and will be sorted in next version.

3.- You must have installed it wrong. If your IP is suspicious you cannot (with this version) see the web site at all.

In next version, the admin will be always allowed in and also if the IP is not too dangerous (less than level 30) they will see a captcha to prove they are human and be able to pass. But with this version that's not possible yet.
Title: Re: httpBL
Post by: GJSchaller on February 27, 2010, 10:33:00 AM
Thank you for all your hard work - you've saved me from pulling out what little hair I have left...  :o

A suggestion - on the Log page, it lists the IP addresses that are detected / blocked.  When one of my users noted that he was getting blocked (School connection, there must have been a bot in his school that flagged the whole network), I had to dig to figure out which IP was his.  I would like to suggest adding a column to the log of users associated with a given IP address, so that a quick visual scan will tell an Admin who may be blacklisted, that can later be excepted.

I know you're working on the exception part now, which is very nice.  Hopefully, including a list of users on the "short" log will make this even more useful.

Both myself and my forum users thank you!
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 11:10:13 AM
Thank you for all your hard work - you've saved me from pulling out what little hair I have left...  :o

A suggestion - on the Log page, it lists the IP addresses that are detected / blocked.  When one of my users noted that he was getting blocked (School connection, there must have been a bot in his school that flagged the whole network), I had to dig to figure out which IP was his.  I would like to suggest adding a column to the log of users associated with a given IP address, so that a quick visual scan will tell an Admin who may be blacklisted, that can later be excepted.

I know you're working on the exception part now, which is very nice.  Hopefully, including a list of users on the "short" log will make this even more useful.

Both myself and my forum users thank you!

You are welcome. I understand very well your feelings. I started doing all this work for myself, as I'm fed-up with the spammers in my forums and I realized with mod Stop Spammer (which of course I have also installed in all of them) on its own was not enough and I was pulling out my hair as well.  :D

Then, once the first version was ready, I decided to share it with everybody because I have always thought the more brains trying to sort a problem together the faster you find the solution.  ;)

Please notice, by default, the Log page is sorted by Date (newest ones first), but you can sort it by any column you want just clicking on the name of that column.

Clicking again the same column will change the order ("from smallest to highest" => "from highest to smallest")

So, if you want to find for example any given IP, just click on the "IP" column and you will see the entries for that particular IP all together.

Also, all the IPs are links to the "Track IP" page, so clicking on the actual IP number will show you which user has it, errors from that IP, etc.

Anyway I'm changing a little the Log page in the new version, adding a few more columns etc. I hope you will like it when it's finished.  ;)
Title: Re: httpBL
Post by: GJSchaller on February 27, 2010, 11:18:11 AM
Yes, I was able to hunt down the IP needed - it was more of the idea of a quick look at the log would show "Hey, I blocked 42 spammers, and Tom... I should let Tom know and / or correct that." ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 27, 2010, 11:34:07 AM
Yes, one of the new columns I'm adding is the username. Of course, for a visitor the value there will be "Guest". And that column will be also "sortable".

Also I'm separating the log into 3 pages, with different things in each one, so it's easier to read and find the important info, but as I'm still working on it I think I should explain all that when it's done, because maybe I tell you one thing now and then I decide to do it different later after I see it working on an actual forum.  :D
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 01:59:04 PM
MOD httpBL v2.3
============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3
  • Release:
1st March 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I haven't finished all the things I had planned for this new version, but, as a few of them are really very important I have decided to release it the way it is just now and leave the rest of them for a future version.

This is the change log where you can see all the changes and new features:

Quote
Version 1.0 (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpbl) - 17th August 2009
  oInitial release
  oCan be installed in any PHP page, not only SMF
  oCan block any spammer from viewing your site
  oIt checks IP in Project Honey Pot DB
  oIf match, the visitor is redirected to the "warning.php" page
  oKeeps a log of "IPs stopped" in a text file in your server
  oCompatible with any PHP program, so it's compatible with all SMF versions
Version 2.0 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 11th February 2010
  -Eliminated compatibility with other programs, making it now exclusive for SMF
  +Added a powerful install script which now does everything for you with just one click
  +Added an easy-to-use configuration interface to control the mod
  -Eliminated the text file log, too difficult to find and read
  +Added a log table in the database
  +Added a view-log interface to see the information stored in it
  ?Unistall old version and install new one
  ?Need to edit manually 2 small things in index.template.php
if you are not using the default one
Version 2.1 (http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&board=30.0) - 15th February 2010
  +Added compatibility with SMF 2.0 RC2
  +Added a color system in the view-log page to see threat l
evel of each IP stopped by the mod
  +Added an option to see the view-log page with only important
information or with all the extra data
  +Added some lines to the language files for the new features
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.0
Version 2.2 (http://www.simplemachines.org/community/index.php?topic=366399.0) - 17th February 2010
  +Added cached values if cache is enabled to reduce time
  +Added more methods to find the visitor's IP
  !Sorted issue with servers not using Mysql
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
Version 2.3 - 1st March 2010
  !The mod now never checks the admin (bug reported by Exsharaen (http://www.simplemachines.org/community/index.php?topic=366399.msg2506339#msg2506339))
  +Added a value in config page for "threat level very very high"
  +Added a captcha in "warning.php"
  • If the threat level is below the "high level" the visitor pass
  • If the threat level is between the "high level" and the "very very high level"
    the captcha appears
  • If the threat level is higher than the "very very high level" it's stopped and
    doesn't see the captcha
  +Added a cookie valid for 24h. If the visitor sees the captcha
and proves is human, gets the cookie
  +Added a value in config page for "cookie lenght"
  +Added a counter with the number of spammers stopped by the mod
  +Added a a button in the view-log page to hide or show the legend
  +Added a a button in the view-log page to change quickly from
"normal view" to "see all the extra info"
  *View-log page now separated in 3 different ones:
  • Spammers stopped
  • Humans allowed in
  • Internal errors
  +Added a column in view-log for "username" with link to member profile
  +Added some more info in "see all the extra info" mode
  *Changed all the language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
Quote
Legend
oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

I would like to explain a little more all the new features, but I think it's better if you just try this new version and see them for yourself while I concentrate in finishing the tutorial, as most of this new features are already self-explained as you are using them, and ask me here if you don't understand something.

Hopefully, by the time you find something you don't understand it will be already answered in the tutorial.

==========================

This is the list of things I had also planned for this version but I haven't had time yet to implement:

Quote
Things to do in the near future: (1st March 2010)

   *I need to finish the tutorial with the couple of small
things you need to edit in the file index.template.php
and the instruccions on how to use it.
 
   +I need to add an option in the config page ASAP
to decide what groups of members you don't
want to be checked never by the mod.
 
   +I need to add an option in the config page asking you
if you want the data to be deleted automatically from
the log after X days or not and how many days you
want to keep the data in the log.
 
   +When the mod finds an error it writes it in the log table.
It should also email the admin if the error is an important one.
 
   +I need to write a FAQ with some things I already know
they are going to start asking.
 
Quote
Legend
*To be Changed
+To be Added
-To be Eliminated
!Bug to be Fixed

As I was saying the first one I'm going to concentrate now is in finishing the tutorial.

Enjoy the new version.

Cheers (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 04:28:09 PM
What does response[raw] mean?   :)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 04:51:28 PM
What does response[raw] mean?   :)

It's the raw response from PHPot before processing it to take the values for the threat level, the number of days since last bad action, etc. You can see more information here:

http://www.projecthoneypot.org/httpbl_api.php

Normally it has no use once you have process it and extract all the info (that's why I have put it inside the "extra" stuff) but if there is an error is good to have it there just in case.

Cheers. (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 05:02:10 PM
Thanks snoopy!  This mod looks even better than before.   8)  Great work!
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 05:31:31 PM
You're welcome.

BTW, the new log system can do nothing with all the entries already in the log. Just now you should have almost all of them in the "Spammers log" and just a few (if any) in the "Errors log".

But all the new entries from mow on should go like that:

- The mod is supposed to stop only dangerous spammers, so all the new entries with red colors should go to the "Spammers log".

- The mod is supposed as well to let pass as many humans as possible, so all the new entries with light colors (less dangerous) should go to the "Humans log".

- It should be very few or no entries in the "Errors log".

If anybody see too many red entries in the "Humans" or too many light entries in the "Spammers" or too many errors, there is something wrong, so please tell me so we can see what's wrong.



Another BTW, I have set all my forums like that:

Bad days => 90
Bad level => 1
Very bad level => 30
Cookie => 24h

I'm studying their logs and everything seems fine, but if any of you tries different values and sees they work better please let us know.
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 09:09:46 PM
MOD httpBL v2.3.1
==============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.1
  • Release:
1st March 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

Well, that was quick.

I just released version 2.3 a few hours ago and butchs have already discovered a bug in it. We have sorted it together in a minute and here is the new version without it.

Luckily, this bug only affected at SMF 2 RC2. It didn't affect at all to SMF 1.1.x and anyway we have found it so quickly that only 3 people had already downloaded version 2.3

I know 2 of them have been lc62003 and butchs himself, and lc62003 uses SMF 1.1.11 so he has no problem.

I don't know who is the another person who downloaded it, but if it's you and you are reading this, if you use SMF 2 RC2 you need to update. If you use SMF 1.1.x it's exactly the same if you update or not. You won't see any difference.

Sorry for any inconvenience anyway.
Title: Re: httpBL
Post by: lc62003 on March 01, 2010, 09:38:21 PM
Actually....I am using 2.0 RC2 on 5 sites!   ;D  Thanks for pointing it out....I'll do the switch right away.   8)
Title: Re: httpBL
Post by: butchs on March 01, 2010, 10:19:57 PM
I have 2RC2 and I found another bug with the human test.   I would not recommend that you install this version on a production site until we hash out the 2RC specific bugs.
 :o
Title: Re: httpBL
Post by: Exsharaen on March 01, 2010, 11:07:48 PM
Well, now I can install this mod and not be blocked by my "unlucky IPs" :D As soon as I have more time I will play around with the settings and translate the missing lines (and warning.php as well). Anyway, I love the captcha option in warning.php so unlucky visitors (like me used to be :D) can pass validate themselves as... human :)

Thanks snoopy, you are the best ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 11:36:15 PM
Well, now I can install this mod and not be blocked by my "unlucky IPs" :D As soon as I have more time I will play around with the settings and translate the missing lines (and warning.php as well). Anyway, I love the captcha option in warning.php so unlucky visitors (like me used to be :D) can pass validate themselves as... human :)

Thanks snoopy, you are the best ;)

You are welcome.

Anyway, not only the missing lines. I have changed a lot of the old ones as well. Sorry  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 01, 2010, 11:41:18 PM
I have 2RC2 and I found another bug with the human test.   I would not recommend that you install this version on a production site until we hash out the 2RC specific bugs.
 :o

butchs is right. Be careful with that version if you have RC2

Is no problem with SMF 1.1.11, but with RC2 I'm not fully sure.

I only have a test forum with RC2 (the rest use 1.1.11) and it works for me OK in all of them, but in butchs forum is not working.

For those of you with RC2 it would be better to stay with version 2.2 until we test it a little more.

Of course if any of you is brave enough and want to try it (I mean on a test forum, not a production one) tell us what happen.
Title: Re: httpBL
Post by: lc62003 on March 02, 2010, 12:39:57 AM
Well.....now that it is on 4 RC2 active sites.....I don't see anything wrong, however I don't know what to look for either.   ;D  It's stopped several bots on all the sites.   :)  Is the human thing the issue? 
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 01:09:31 AM
Yes and no.

No with all humans. It's no problem if they are guests, but as soon as a member of your forum gets caught your log system stop working.

It's a problem when the log tries to write the link to the profile page of that member.

But as I said only in RC2
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 02:46:59 AM
MOD httpBL v2.3.2
==============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.2
  • Release:
2nd March 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I hope this time is the good one.

I have found were was the bug reported by butchs about the forum members not displaying properly in the "Humans Log" in SMF 2 RC2

The bad news is, as I was looking for that mistake, doing some more tests sending my forums all possible IP values, etc,  I have found another bug which affects all SMF versions.

When I have enter my forum (as admin) but with a fake IP, (with a bad number in PHPot DB) trying to see what will happen in that case, the mod had let me in (as expected) but has put in the log every page I have visited like I was being stopped. The mod shouldn't had done that, as I was not being stopped, I was entering with no problem.

The good news is I have found both mistakes and I have sorted them in this new version 2.3.2 so now everybody need to update, either using SMF 1.1.11 or SMF 2.0 RC2

I hope we don't find any more bugs for a while  ;D
Title: Re: httpBL
Post by: giveaway365.com on March 02, 2010, 04:20:22 AM
i uninstall old version and install new? i have 2.2 right now.
I think its the same mistake which I told you 2 - 3 days ago...
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 08:38:27 AM
I went to remove the old verison from my SMF 1.1.11 - the option to remove it is not listed.  It looks like I'll need to manually update it from 2.3 to 2.3.2 - is there anything special I need to do, or can I just write over the older files?
Title: Re: httpBL
Post by: giveaway365.com on March 02, 2010, 09:48:39 AM
In the new version I get the below error:
8: Undefined index: search_engine
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Subs.php
Line: 611
Line:611 =    if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')


8: Undefined variable: key
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Config.php
Line: 137
Line: 137 = if (!empty($_POST['httpBL_honeyPot_key']) && (preg_match('/[^a-z]/', $key) || strlen($_POST['httpBL_honeyPot_key']) != 12))
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 10:59:27 AM
i uninstall old version and install new? i have 2.2 right now.
I think its the same mistake which I told you 2 - 3 days ago...

The new version is not 2.2 but 2.3.2

Please double check what version you have or contact me when you finish work through Skype and we look at it together.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:07:41 AM
I went to remove the old verison from my SMF 1.1.11 - the option to remove it is not listed.  It looks like I'll need to manually update it from 2.3 to 2.3.2 - is there anything special I need to do, or can I just write over the older files?

If you want to update from 2.3 to 2.3.2 manually it's very easy, but it it's from 2.2 to 2.3.2 it's completely different.

Please double check exactly what version is the old one you are updating from so I can give yo the exact instructions.

2.2 was the version I released the 17th of February, but 2.3 is the version I released just yesterday.
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 11:23:13 AM
I have 2.3 installed already.  As soon as I saw the update last night, I danced about in joy, then installed it. ;)  You did an EXCELLENT job, thank you!

So 2.3 is installed, I just can't remove it to install 2.3.2.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:28:52 AM
In the new version I get the below error:
8: Undefined index: search_engine
File: /home/content/x/x/x/xxx/html/Sources/httpBL_Subs.php
Line: 611
Line:611 =    if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')

I see.

I will sort this in a future version, but it's not very urgent.

Anyway you can sort it yourself manually:

Open your httpBL_Subs.php and find the line:

Code: [Select]
if (!$values['search_engine'] && $values['ip'] != '127.1.80.1')

Should be around line 611 more or less  ;)

Change it to:

Code: [Select]
if ((!isset($values['search_engine']) || $values['search_engine'] == 0 || $values['search_engine'] == '') && $values['ip'] != '127.1.80.1')
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 11:39:55 AM
I have 2.3 installed already.  As soon as I saw the update last night, I danced about in joy, then installed it. ;)  You did an EXCELLENT job, thank you!

So 2.3 is installed, I just can't remove it to install 2.3.2.

I see, it was you.

I new just 3 people had downloaded version 2.3 yesterday and I already new 2 of them.  ;)

OK, then it's very easy.

Upload just the new files httpBL_Config.php and httpBL_Subs.php into your Sources folder.

Then, also inside that folder look for your Load.php file and look for the lines:

Code: [Select]
// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0 && !$user_info['is_admin']) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}

Change them to:

Code: [Select]
// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}

And that's it
Title: Re: httpBL
Post by: the epic winner on March 02, 2010, 12:36:10 PM
Hi, I tried installing this, but when I do, the following appears on my webpage.

Code: [Select]
/ MOD httpBL START // General $txt['httpBL_title'] = 'MOD httpBL'; $txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.'; $txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.'; $txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: '; // Config page $txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.
Here you can turn the mod on and off and change some of its parameters.'; $txt['httpBL_config'] = 'MOD httpBL settings'; $txt['httpBL_enable'] = 'Enable/Disable MOD httpBL'; $txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.'; $txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot'; $txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to www.projecthoneypot.org to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:
http://www.yourwebsite.com/yourhoneypot.php'; $txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key'; $txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to www.projecthoneypot.org to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.'; $txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link'; $txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.'; $txt['httpBL_info_email_1'] = 'First word of your email'; $txt['httpBL_info_email_2'] = 'Second word of your email'; $txt['httpBL_info_email_3'] = 'Third word of your email'; $txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page warning.php, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is info@yourwebsite.com the first word is info, the second one yourwebsite, and the third one com.'; $txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.'; $txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP'; $txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.'; $txt['httpBL_bad_threat'] = 'Threat level considered bad'; $txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.'; $txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad'; $txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.'; $txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human'; $txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.'; $txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.'; $txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered VERY bad.'; $txt['httpBL_viewlog_extra'] = 'View extra information in the log'; $txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.'; $txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:'; $txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the official support forum or try to find more information reading the tutorial.'; // View log page $txt['httpBL_viewlog'] = 'httpBL Spammers Log'; $txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered VERY bad or because they saw the captcha and couldn\'t prove they were humans.'; $txt['httpBL_viewlogpass'] = 'httpBL Humans Log'; $txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.'; $txt['httpBL_viewlogerror'] = 'httpBL Errors Log'; $txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button "Show extra information".'; $txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.'; $txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.'; $txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.'; $txt['httpBL_viewlog_extra'] = 'Show extra information'; $txt['httpBL_viewlog_normal'] = 'Hide extra information'; $txt['httpBL_log_show_legend'] = 'Show legend'; $txt['httpBL_log_hide_legend'] = 'Hide legend'; $txt['httpBL_pages'] = 'Pages'; $txt['httpBL_log_date'] = 'Date'; $txt['httpBL_log_ip'] = 'IP'; $txt['httpBL_log_threat'] = 'Th. L.'; $txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.'; $txt['httpBL_log_activity'] = 'L. B. A.'; $txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.'; $txt['httpBL_log_suspicious'] = 'S.'; $txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.'; $txt['httpBL_log_harvester'] = 'H.'; $txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.'; $txt['httpBL_log_comment'] = 'C.'; $txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.'; $txt['httpBL_log_url'] = 'Page'; $txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.'; $txt['httpBL_log_user_agent'] = 'Browser'; $txt['httpBL_log_error_message'] = 'Message'; $txt['httpBL_yes'] = 'Yes'; $txt['httpBL_threat_colors'] = 'Meaning of colors:'; $txt['httpBL_threat_low'] = 'Low threat'; $txt['httpBL_threat_medium'] = 'Medium threat'; $txt['httpBL_threat_high'] = 'High threat'; $txt['httpBL_threat_very_high'] = 'Very high threat'; $txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.'; $txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?'; // Errors $txt['httpBL_log_no_error'] = 'No error'; $txt['httpBL_no_errorNumber'] = 'There is no error number'; $txt['httpBL_no_defined'] = 'No defined yet'; $txt['httpBL_answers_captcha'] = 'Answers on the captcha'; $txt['httpBL_answer_captcha'] = 'Answer on the captcha'; $txt['httpBL_good'] = 'Good'; $txt['httpBL_bad'] = 'Bad'; $txt['httpBL_empty_ip'] = 'Empty IP'; $txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place'; $txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha'; $txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass'; $txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass'; $txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass'; $txt['httpBL_unknown'] = 'unknown'; // MOD httpBL END

Why is it appearing on the webpage and not being executed? I'm using the latest version of SMF.
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 12:58:46 PM
When you say you are using the latest version of SMF which one you mean, 1.1.11 or 2.0?

When you installed it with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote

Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?
Title: Re: httpBL
Post by: snoopy_virtual on March 02, 2010, 05:36:00 PM
Some people are still reporting errors in this version 2.3.2.

I don't think these errors are too important, as they just appears inside your "Forum Error Log" but they are not making the mod stop working or SMF crashing or something like that.

Anyway they are errors and need to be fixed, so I'm looking into it and I hope they will be fixed soon, but in the mean time I have uploaded again the old version 2.2 so if you see any of those errors you can go back to version 2.2 (if you want) and wait until I sort this issue or continue with version 2.3.2 and report here the particular errors you see to help me finding them.

Thanks, and sorry for any inconvenience.

Snoopy



@the epic winner

I asked you a few questions 7 hours ago trying to help you installing the mod and I can see you haven't answered yet.

Have you already managed to install the mod or you haven't answered because you haven't seen the questions yet?
Title: Re: httpBL
Post by: GJSchaller on March 02, 2010, 06:50:33 PM
I'm good to go - thank you!
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 12:26:30 AM
Snoopy sir,
Can you upload your latest version in yr private servers so that we can test it.
I will completely remove httpbl and reinstall it from your server and check it.
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 07:38:39 AM
Snoopy sir,
Can you upload your latest version in yr private servers so that we can test it.
I will completely remove httpbl and reinstall it from your server and check it.

It is there. I always put there everything I do so other developers can help me inside mi section "For Developers Only":

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314

If you are going to test it read first the explanation:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1374#msg1374

Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 09:10:19 AM
there seems some problem i get internal error 500 on yr website
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 09:25:52 AM
there seems some problem i get internal error 500 on yr website

It must be something wrong from your computer.

I have been all day opening my site to do tests and butchs and me have been also writing what we find inside the developer's forum.

Last answer there from butchs was just a minute ago.
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 10:03:19 AM
500 - Internal Server Error
This is a temporary server error.
Please try to reload the webpage later.If you are the webmaster of this site please log in to Cpanel and check the Error Logs. You will find the exact reason for this error there.

Common reasons for this error are:

•Incorrect file/directory permissions: Above 755. In order files to be processed by the webserver, their permissions have to be equal or below 755. You can update file permissions with a FTP client or through cPanel's File Manager.
•Incorrect Apache directives inside .htaccess file. Make sure you have not specified unsupported directives inside the local .htaccess file. Such include PHP settings and Apache module settings.
Resources: Tutorials  Video Tutorials  Web hosting FAQ  Joomla templates  WordPress themes  Web hosting forum  Website Design
Quick links: eCommerce hosting  Joomla hosting  Magento hosting  phpBB hosting  WordPress hosting  cPanel hosting  FTP hosting  Flash hosting Copyright © 2009 SiteGround.com Inc
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 10:41:21 AM
ok i got to go in yr site...
i have not tested 2.3.3

but i tried the code u gave below.... but the error of line 611 and 137 still exists..

should I try 2.3.3 from yr server?
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 10:53:37 AM
ok i got to go in yr site...
i have not tested 2.3.3

but i tried the code u gave below.... but the error of line 611 and 137 still exists..

should I try 2.3.3 from yr server?

No

It has a big mistake and that's why you got the 500 error

I'm doing a new developers version

But to talk about developers versions, please do it in the proper forum, not here.
Title: Re: httpBL
Post by: giveaway365.com on March 03, 2010, 11:39:12 AM
ok,,, I have installed yr 2.3.2 version as it is available on smf server,,,, ket us know once you have yr developer version ready ! or pm me when it is ready to test
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 11:55:05 AM
ok,,, I have installed yr 2.3.2 version as it is available on smf server,,,, ket us know once you have yr developer version ready ! or pm me when it is ready to test

All the info about the developers versions is in the developers mod.

I am updating it every 5 minutes or so (everytime I do something new) so you can read it there.
Title: Re: httpBL
Post by: butchs on March 03, 2010, 02:53:33 PM
Snoopy does not sleep.   :o
Title: Re: httpBL
Post by: snoopy_virtual on March 03, 2010, 05:06:59 PM
MOD httpBL v2.3.3
=============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.3
  • Release:
3rd March 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

I had already that version finished a few hours ago, but I haven't released it until I have done a lot of tests in 2 of my forums (one with SMF 1.1.11 and the another one with SMF 2 RC2) and all the tests came OK, because I didn't wanted more surprises.

So I think this version will be the last one for a while and I can concentrate now in finishing the tutorial.

Of course, if any of you see any other error tell me and I will look at it.
Title: Re: httpBL
Post by: giveaway365.com on March 04, 2010, 11:58:11 AM
Sir,
the two file did not get copied in source directory and one in theme default directory.
This error in 2.3.3 version
 Apply Filter: Only show the error messages of this URL  http://www.giveaway365.com/index.php?action=packages;sa=install2;package=httpBL_v2_3_3.zip
Apply Filter: Only show the errors with the same message
2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory
File: /home/content/XXX/html/Packages/temp/install_1.php
Line: 91

I had to manually upload them in their respective directory and chmod to 644
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2010, 12:33:33 PM
Quote
the two file did not get copied in source directory and one in theme default directory.
...
I had to manually upload them in their respective directory and chmod to 644

I have already installed this new version in all my forums and in all of them the files were copied properly and with the correct chmod permissions.

But of course it any of you have the same problem this is the right solution, upload them manually.  ;)

I will add that to the tutorial and the FAQ as soon as I arrive to that part.

Quote
This error in 2.3.3 version
...
2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory

This is not an error in the mod, but in the SMF packages manager. As soon as I have time I need to check if this error has been already reported to SMF and (if not) report it myself.

You can see more info here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1396#msg1396
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 04, 2010, 04:12:46 PM
while installing got error

Add Before     ./Themes/default/index.template.php     Test failed

near </body> tag.
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2010, 04:37:53 PM
while installing got error

Add Before     ./Themes/default/index.template.php     Test failed

near </body> tag.

It means somehow you have modified your default index.template.php and you haven't got the original one.

I suppose it must be because of any other mod you have installed.

In that case you will need to do that modification manually.

Please read how to do that in the tutorial:

http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2

If there is anything there you don't understand, tell me and I will try to explain it a little better here.

Anyway, in order to make the mod work properly, you only need to do that modification in the index.template.php file of the Theme you actually use, so if you are not using the default theme but another one, you can forget the default one if you want and do the modification only in the Theme you are using.
Title: Re: httpBL
Post by: giveaway365.com on March 04, 2010, 11:38:35 PM
index.template.php   seriously has a problem.... it is not getting rectified. I tried lot of combinations to let smf install it but ended up uploading index.template.php  manually only.

But apart from this this mod seems to be more stable.
I think now httpbl in combination with stopspammer is best solution !
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2010, 08:46:55 AM
index.template.php   seriously has a problem.... it is not getting rectified. I tried lot of combinations to let smf install it but ended up uploading index.template.php  manually only.

Contact me via Skype when you finish work.

I would like to see what kind of index.template.php you have.
Title: Re: httpBL
Post by: snoopy_virtual on March 05, 2010, 05:22:53 PM
MOD httpBL v2.3.4
=============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.3.4
  • Release:
5th March 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2

When trying to see what was the problem in A.SK installation I discovered a big mistake on version 2.3.3

It would install more or less without a problem if you already had any other version of the mod installed before, but it was impossible to install it new.

At least not in SMF 2 RC2, but maybe this was also why GJSchaller had problems installing it.

So I have sorted that big mistake.



At the same time I tried a suggestion from butchs to sort the problem about

Code: [Select]
2: chmod() [<a href='function.chmod'>function.chmod</a>]: No such file or directory

reported by giveaway365.com.

As I said a few times, this is not a very important issue, but, as I had to do a new version anyway, I tried butchs suggestion and it works.

This time, as I was installing it I got no errors at all.



Anyway, as both errors are only at installation time, there is no real need to update if you have version 2.3.3 and it's working properly.
Title: Re: httpBL
Post by: giveaway365.com on March 05, 2010, 10:40:10 PM
the 2.3.4 version worked without any problem.
there are some main difference between 2.3.3 and 2.3.4 in index.template.php file

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';
these to lines are new in 2.3.4 in index.template.php

and the codes were after the </body> tag in 2.3.3 and in 2.3.4 they are before the </body> tag.

Also i want to know if  a new version of package is available.... in the pakage manager of smf 1.1.11 it still shows a green icon saying the latest version is install where the latest version actually has already released. I think it happens in all mods. It seems some bug in smf.
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 06, 2010, 04:03:08 AM
Working wonderfully.

Marked almost 2 pages of spammers so far.

Great work Snoopy.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 06:07:39 AM
the 2.3.4 version worked without any problem.

Glad to hear it.  ;)

there are some main difference between 2.3.3 and 2.3.4 in index.template.php file

if ($context['current_action'] == 'httpBL')
$current_action = 'admin';
these to lines are new in 2.3.4 in index.template.php

These 2 lines had been there from version 2.0

The only differences between version 2.3.3 and 2.3.4 are at installation time. 2.3.3 was not creating the table in the database properly, so if you already had the mod installed before there was no problem, because even if you uninstall a mod, the changes it has done on the database stay there unless you undo them manually. So if you had the mod before, the database was already OK, but if you were installing it as a new mod it wouldn't install.

There are no differences at all between 2.3.3 and 2.3.4 inside the index.template.php

and the codes were after the </body> tag in 2.3.3 and in 2.3.4 they are before the </body> tag.

All the things inside a web page are always before the </body> tag. Once you close the body you cannot write anything.

That's why I told you yesterday I wanted to see your index.template.php as I knew there was something really wrong with it, but it seems it's ok now.  ;)

Working wonderfully.
Marked almost 2 pages of spammers so far.
Great work Snoopy.

Thank you. Did you read my PM?
Title: Re: httpBL
Post by: butchs on March 06, 2010, 08:05:57 AM
I finally installed the latest version on-line.  I have been watching my spammer log and comparing it with the visitor log in my cpanel.  I have seen several bots visit that have a rating above my "Threat level considered VERY bad" (ie 30) bounce all over the place in a flurry of defiance, never touch my honeypot and then hit the warning.php page after a lengthy visit.

Here is part of my Cpanel latest visitor log (same as attached latest_visitors.jpg):
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fimg.photobucket.com%2Falbums%2Fv471%2FJdotMiller%2FLatest_visitors.jpg&hash=b3802d2fb76d42d9a78b3a15723ecf7d)

Here is the httpBL spammers log (same as attached Spammer_log.jpg):
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fimg.photobucket.com%2Falbums%2Fv471%2FJdotMiller%2FSpammer_log.jpg&hash=3bf2e72c2bc7d0a1ffa5b8cd86b9ffa3)

Why is it taking so long?  Does the software track their IP in the log and status in SMF cache then and direct them to the appropriate screen ASAP EVERY time?  What happens when they come back?



Second question.  If a bot comes bye and answers the warning question. Before the cookie time expires their status with project honeypot increases above the high level you configured, will they get kicked off the site or will we have to wait until the cookie expires for them to get the boot?
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 08:32:47 AM
I think both are the more important questions anybody had asked until now. They have been actually the core of all my worries since I started doing the mod and also the things I have been watching and thinking and that is why I have done the log system so complicated, because I want to see all that kind of things.

I was planning to talk about all that, either in the tutorial or the FAQ, and I think I will explain it more there, but as they are so important, here I can give you a quick answer.

1.- That's because of the cache.

When I turn cache off I see bots coming, hitting a few pages in a row (very few seconds between them) and go away. All these pages are shown in both logs (cPanel and the mod)

They may comeback again a couple of hours later and again hit a few pages, etc.

Try to turn cache off for a few hours and you will see the difference.

With cache on, the mod only checks them once every 2 minutes. The first page they hit is shown in the mod log, but the rest of the hits just re-direct them to the warning page without even giving them the option to prove they are human and without putting it in the log to save bandwidth and space.

At least that's the way I have design the mod. I will take your screenshots and analyze them carefully to see if that's what's happening.

Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003

The bot he's having hits for 24h non-stop (every few seconds) and then goes away for 24h and then comes back again, etc.

If he changes the value for the cache from 2 minutes to 24h he will get only one entry of this bot in the log every 48 h



Quote
Why is it taking so long?

What is taking so long? Don't understand what you mean there.



Anyway let me think a little more about it and I will continue with the next question and more about the first one.
Title: Re: httpBL
Post by: butchs on March 06, 2010, 08:42:22 AM
Catching the bad bot seems to take some time.  O:)

Why not use the database you already made to dispose of repeat offenders?  When an IP comes you check the database, if they are bad send them to warning.  If they are not known check the honeypot.  Then make a auto delete after x amount of time to trim the database.
 :o
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 08:44:29 AM
Quote
I have seen several bots visit .... never touch my honeypot ...

If they touch your honey pot or not you are not going to see it.

Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

With all that information they built the threat level for that IP and that's what you get everytime it's analyzed by the mod.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 09:00:07 AM
Catching the bad bot seems to take some time.  O:)

Why not use the database you already made to dispose of repeat offenders?  When an IP comes you check the database, if they are bad send them to warning.  If they are not known check the honeypot.  Then make a auto delete after x amount of time to trim the database.
 :o

That's the system of white, grey and black lists I was talking here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=297.msg1230#msg1230

I explained there why I don't like it and that's why I am using the system with cache, cookies and session instead.

Of course it's another option and I could do a test version of the mod with that system and see the difference. Another one for the list of "TTDOOTTWIHT", but some how I don't think it will be better.

If the mod, everytime a bot arrives need to read the log table and delete the entries older than 2 minutes you will loose your logs. I will need another table to do that, and that will take even longer.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 09:33:46 AM
Quote
Second question.  If a bot comes bye ... Before the cookie time expires ...

Before anything else here is a fact very few people take into account:

Spam-bots don't use normal browsers as Firefox, Internet Explorer, Opera, etc. They use special ones (different for every bot) and all of them (at least all the ones I know of) don't have cookies, javascript, etc

For example, a human using Internet Explorer with Windows OS, have the program IE installed on his hard disk. Everytime IE opens a page which send a cookie, it store that cookie inside the hard disk in "Documents and settings", etc.

A spam-bot is a program the spammers send to crawl the net gathering information, writing spam messages, etc, but it is jumping from one server to another and running on that servers, it's not running on any computer, and usually it doesn't use a browser installed on any computer, but it's built-in inside the bot itself, so it has no hard disk to store the cookie if you give it one.

Of course, I can be mistaken, but this is what I have understood after reading hundreds of pages about it. If any of you find information saying the opposite give me a link.

One good thing about the bots not having javascript activated is you can hide your email address using javascript and they won't see it.

Of course, as they cannot understand everything on the pages they are, but they just look for keywords, you can hide your email using simpler ways.

For example a spam-bot harvester is looking for any @ written on a page. Everytime it finds one, it take the word where the @ is in and put it in its database to use it later.

For example if I write here this:

you.idiot@leave.me.alone.com

I bet you in less than 5 minutes that address will get an email selling viagra or something (unless the guys here in SMF are already using my mod)  ;D

Good thing that address is not mine (I hope it doesn't even exists)  :P

More information about how to hide your email address in public forums, blogs etc here:

http://www.projecthoneypot.org/how_to_avoid_spambots.php

It actually has 6 pages and all of them are very interesting.I will recommend everybody to read them carefully.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 10:24:08 AM
Sorry, after so much talking my throat was dry and needed a break. (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf) Slange var

Continue:



Quote
Second question.  If a bot comes bye and answers the warning question. ...

I haven't seen yet a bot answering the questions in the warning page.

If you ever see one doing it please tell me ASAP, because then I will need to change the way the warning page is done.

That's why I have changed the way the log display the error message.

In version 2.2 and earlier, almost all of them were always "No error" and it will display something different only if there has been an internal error inside the mod.

From version 2.3 I don't call that column "error message" any more, but just "message", because if there is an internal error it will display which one, but if there is no error it will give you a lot of information about what happened with that IP.

For example it can tells you "Threat Level too high. Didn't show the captcha" or "0 Answers on the captcha" or "3 Answers on the captcha - 2 Good - 1 Bad" etc etc. There are a lot of possibilities.

The way the warning page is designed, all the spammers need to be either "Th. L. too high" or "0 Answers".

If a spammer can give even 1 good answer something is wrong.

And also, the way it's done, all the humans need to be either "2 Good - 0 Bad" or "2 Good - 1 Bad"

A human giving 2 or 3 bad answers means either it's somebody checking the warning page or something is very wrong.

I suppose anybody with enough knowledge to turn a computer on and move a mouse must know how much is 2 + 2

[mental-note]
Talk with any blind friend to check if the special browsers they use can read my warning page properly.
[/mental-note]
Title: Re: httpBL
Post by: butchs on March 06, 2010, 10:29:48 AM
[Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

Every page change hit shows up in my cpanel visitor log including honey pot hits.  Yesterday I saw a banned IP get a error message and actually hit my honeypot.  This is why I wonder about the page hits.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 10:33:19 AM
Now that I have explained all these points I can actually answer your question very easy:

Quote
Second question.  If a bot comes bye and answers the warning question. Before the cookie time expires their status with project honeypot increases above the high level you configured, will they get kicked off the site or will we have to wait until the cookie expires for them to get the boot?

If a human (not a bot because they don't have cookies) answers the 2 questions OK they get a cookie for as long as you set in the config page (default 24h) and they are not checked again AT ALL within PHPot database until the cookie expires.
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:41:03 AM
Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

In this warning page ... it seems that our website has a virus and good real user dont return...

So instead of writing so much about the virus and torgan horses , we just welcome them with our logo and below our logo a simple captcha .
Other conditions remain same like if the level is above 50 dont even show captcha etc etc.
Title: Re: httpBL
Post by: lc62003 on March 06, 2010, 10:45:44 AM


Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003



Is this hard coded, or is there something I'm missing.  If this is coded I can go in and change it to see what happens....right now is the 24hrs on for the bot.   :)
Title: Re: httpBL
Post by: Sudhakar Arjunan on March 06, 2010, 10:49:26 AM
Hi Snoopy,

Good work, read the pm already.

And so far, Spammers stopped by MOD httpBL: 1198

Nice work . keep the good work.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 11:08:00 AM
[Everytime they hit the honey pot they send a signal to PHPot and everything they do inside it is recorded in their logs, not in yours.

Every page change hit shows up in my cpanel visitor log including honey pot hits.  Yesterday I saw a banned IP get a error message and actually hit my honeypot.  This is why I wonder about the page hits.

Very interesting, so then you can actually check the hits in your honey pot.

I will check my cPanel log looking for that then. I haven't thought about it.

Anyway, think a minute about the way the bots actually crawl the net:

Everytime they enter a new web page they do the things they are programmed for. For example a harvester looks for @, a comment spammer looks for forms with input fields where it can write their spam messages or for links to "register here" to try and register an account in the forum, etc.

But all the bots have one thing in common. They need to store links to other pages to visit them when they finish their work inside the page they are in.

As far as I know, the way they do it is looking for links in all the pages they visit and storing them on a list in their DB. Their "List Of Pages To Visit In The Near Future".

Then the actual flow of events everytime they enter a new page is:

- Look for links inside the page

- Store them in the "LOPTVITNF" I suppose they won't store duplicates, so I think it's no point to put for example 3 links to your HP inside every page.

- Look for damage to do in this page Depending on the kind of bot it is.

- Do as much damage as possible

- Job finished. Visit next page on the list Don't know either if they do that in order or just take one at random. I suppose in order.

So suppose a bad bot have already 10 of your pages on its list (collected from other sites linking to yours it has visited before).

It will try to hit that 10 pages one after the other.

If the mod is working properly the 10 times it will see only the warning page so the only link it will collect from your site is the link to your honey pot. It won't collect any of the pages your page is linking to.

BTW. That's another good thing about the Project Honey Pot. The more people having it on their sites the less possibilities of bots crawling the net. Once a bot arrives to a dead end (a site with no outgoing links) if its "LOPTVITNF" is empty it has nowhere to go.

But, if the bot I was talking before visiting your site, have your honey pot in its list, it doesn't matter if it doesn't visit it today (maybe because it's at the bottom of a very long list) but it will end up visiting it one day.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 12:14:59 PM
Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

Every bot I know can pass any captcha actually in the net very easily.

There is no one captcha just now that a normal bot cannot pass.

Please read this:

Quote from: Snoopy link=http://www.snoopyvirtualstudio.com/foro/index.php?topic=297.msg1230#msg1230 date=1267473850
It doesn't matter what captcha you put on a site. The robots always pass them without a problem and they are only a pain for the humans.

I have tested a program which can even pass the more complicated captchas I have found (and I have seen a lot of them).

That's why my captcha is so ridiculous, because I want everything as easy as possible for any human visitor. The main point is not the captcha, but all the empty fields I have put inside the form (some of them hidden and other visible). The robot will concentrate on passing the captcha, but I have never seen a spammer not writing on every form field it sees. And that's how I catch them. Human cannot write on hiding fields.

Anyway, of course, this is only a theory. But now I have this new version installed on a few forums I will study the logs and will be able to see if it's right or not.

Quote
In this warning page ... it seems that our website has a virus and good real user dont return...

I spent almost a month to write that warning page. Studying every word, changing them to see if the effect was different, showing it to friends to see their reaction to it, etc.

If you can find a better way of saying all the things that need to be said on this page please let me know and I will change it.

The way the page is just know states very clear "YOUR computer has been doing bad things YOU may have a trojan etc."

It doesn't says at all "OUR site has been doing bad things WE may have a trojan etc."

If anybody reads the opposite it means they cannot read properly.

Quote
... instead of writing so much about the virus and torgan horses, we just welcome them with our logo ...

I thought that was clear in the tutorial:

99% of the visits to your warning page are spam-bots, so the less information on that page they can actually use, the better.

Some of the humans visiting your warning page will be only because an un-lucky dynamic IP, but not too many. Most of them will be because actually they have a trojan and you need to warn them so they can phone a computer tech and clean it.

I love working playing the piano, designing web sites and writing programs, but very few customers actually phone me to do this things. Most of the people phoning me every day is because their computer is not working properly, it's too slow and it's doing funny things and the conversation is always the same:

Me - "It looks like you have a virus"
Customer - "Impossible. I use a brilliant anti-virus"
M - "OK, what anti-virus you use"
C - "This one"
M - "OK, I suppose you update it every day"
C - "Oh. Do you need to update the anti-virus?"
M - [another one] "Mmmm... When was the last time you updated Windows?" [ I already know the answer ]
C - "Oh. Do you need to update that as well? I thought, having automatic updates on ..."
M - "OK, let's see. What anti-trojan you use?"
C - "What was that sorry?"
M - "Doesn't matter. Let me update your system and your anti-virus, install a good updated anti-trojan and clean your system.

As I was saying I love to do more artistic and creative jobs, but as I need to eat, that's what I'm doing all day long.

And every computer I clean I find a minimum of a hundred different trojans, keyloggers, etc etc.

Just check inside google looking for "bot-nets" and you will see how bad is the problem and how many computers are just now zombie-computers working for a bot-net.



Anyway if you are too worried about loosing customers, check your logs and see if you need to change the values in your config page.

For example, if you are getting too many humans with a threat level of 6, 7, or something like it, you can change the settings like this:

From 0 to 10 - let them pass
From 10 to 30 - show the warning page
More than 30 - stop them completely

It's up to you to set the levels to your particular case.

But please remember when I say humans I mean people with 2 good, 0 bad answers. Even 1 bad answer is normal, but too many entries with 2 or 3 bad answers is not normal. Tell me if this ever happens



And of course, if you find a better way to explain the things in the warning page please tell me. I would love this page to be smaller and say the same things with less words, but cannot find a way to do it.
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 12:58:42 PM

Wouldn't be a bad idea though to add this value to the config page also. I have it in 2 minutes now because all the bots in my forums are hitting like that, but this could be a nice improvement for lc62003


Is this hard coded, or is there something I'm missing.  If this is coded I can go in and change it to see what happens....right now is the 24hrs on for the bot.   :)

It's a different thing. You are talking about the cookie for 24h the humans get when they prove they are humans.

BTW, if a friend calls you and say they are answering right the 2 questions and still cannot pass, tell them to turn the cookies on. For next version I'm working on a system that will work even if you haven't got cookies activated, but that's not implemented yet.

The bots haven't got cookies, so if your site is very busy and every bot hits an average of 10 pages in a row, if you need to connect to PHPot database to check their IP 10 times for every one of them, you are loosing too much band-width and server resources, so I had to look for another way to store the values of the response from PHPot database inside your server itself. Not in the visitor computer (as the cookies).

That's what the cache is for.

To have the cache activated you need to go first inside SMF to:

Admin => Server Settings => Caching

In SMF 1.x you will see there that, to be able to activate it, you need to have in your server one of these programs installed and working:

    *  APC
    * eAccelerator
    * Turck MMCache
    * Memcached
    * Zend Platform/Performance Suite (Not Zend Optimizer)

So you will need to ask first your hosting provider which one of those you have (if any) and the instructions on what settings you need to write on the SMF caching page.

For SMF 2 you don't need to have anything special on your server. It works better if you have one of those, but they are using a new system that works even without any of them. Also, by default, SMF 2 has already the "Caching Level " set to "Level 1 Caching (recommended)".

Just go there and check it's on.

For the next version I'm planning to copy their new SMF 2 caching system into my mod for SMF 1.x as well, but that's not done yet. It's only a plan just now.

And yes, the duration of the cache is hard coded and by default SMF have it set at 2 minutes.



Now you know what is the cache, look for it and see if you can turn it on.

In the mean time I'm going to have a break while I think an easy way you could change this value if you need to.

I have been writing here all day long.

The good thing is now in the tutorial, instead of explaining it again I just need to put a lot of links to all this. (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2F2funny.gif&hash=7d2ac996241058da0d31a6048acfd3cc)
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 01:00:41 PM
Hi Snoopy,

Good work, read the pm already.

And so far, Spammers stopped by MOD httpBL: 1198

Nice work . keep the good work.

WOW, 1198 just in one day?

And thanks, I will continue doing my best.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 06, 2010, 02:25:43 PM
@ lc62003

Let's finish the talk about the cache.

First thing you need to know:

As I said, in SMF the default value for the cache is 2 minutes, but they work in seconds here, so the actual default number is 120. If you don't say how many seconds you want it uses the default 120, so if you write: cache_put_data( whatever ) or you write cache_put_data( whatever, 120 ) it's exactly the same.

As I didn't thought about this when I was doing it, I didn't wrote any number, so that's why the mod is using the default.

Now, if you want to change it to 24h you need to write at the end the comma and the number 60 x 60 x 24, that is, the number 86400

So, first of all activate the cache in your Server Settings.

Then, open the file Sources/httpBL_Subs.php and look for the line:

Code: [Select]
$response = cache_get_data('httpBL-response-' . $ip2);

Change it to:

Code: [Select]
$response = cache_get_data('httpBL-response-' . $ip2, 86400);

The line:

Code: [Select]
cache_put_data('httpBL-response-' . $ip2, 'ok');

Change it to:

Code: [Select]
cache_put_data('httpBL-response-' . $ip2, 'ok', 86400);

And the line:

Code: [Select]
cache_put_data('httpBL-response-' . $ip2, $values);

Change it to:

Code: [Select]
cache_put_data('httpBL-response-' . $ip2, $values, 86400);

Save, upload the file and check if everything is OK.

If you want to experiment with other values, tell me how it goes. Just remember it's in seconds.
Title: Re: httpBL
Post by: lc62003 on March 06, 2010, 03:05:28 PM
Cool!  I may work on that tonight.  It's certainly worth experimentation.  Thanks Snoopy!   8)
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:14:08 PM
Spammers stopped by MOD httpBL: 2090
Title: Re: httpBL
Post by: giveaway365.com on March 06, 2010, 10:25:29 PM
sir, is this 2 minute bug anything related to the screenshot I have attached?
Should I make changes or you will update it in new version?
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 12:57:22 AM
Have upgraded to 2.0rc2 and the httpbl v2.3.1 and there is no /options like originally on the 1.1.11 smf version when I go to the members area.
Any help.
Re-installed scripts and the httpbl mod and still nothing.
Any help.
Title: Re: httpBL
Post by: butchs on March 07, 2010, 04:11:53 AM
httpBL_v2_3_4 is the version you should use.
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 05:02:32 AM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.
Title: Re: httpBL
Post by: snoopy_virtual on March 07, 2010, 07:26:57 AM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.

Let me see:

If I understood correct you haven't installed SMF 2 RC2 like a new forum, but you have upgraded your old SMF 1.1.11 to 2 RC2 and in the old forum you have already installed a version of the mod.

Is that correct? and if so, What version of the mod you had before?



If this is correct, let me do another question:

Did you uninstall all the mods you had in your 1.1.11 forum (as you should) before you upgraded your forum to RC2?



If the answer is yes, another question more:

When you installed httpBL 2.3.4 in your new RC2 forum with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote

Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?



Depending on the answers of these 4 questions I will tell you what you need to do now to have the mod working properly.
Title: Re: httpBL
Post by: snoopy_virtual on March 07, 2010, 07:48:52 AM
sir, is this 2 minute bug anything related to the screenshot I have attached?
Should I make changes or you will update it in new version?

First thing, it's not a bug at all. You can sort that just activating the cache in your forum.

The problem lc62003 has is completely different and anyway it won't work without cache activated first, so you shouldn't touch your files at all.

Of course, if you cannot activate the cache in your forum you will need to wait for the next version I'm doing.

What I am going to add to the new version is a solution for the people (like myself for example) that cannot activate the cache in SMF 1.1.11 because we don't have in our servers any of the programs needed.

In SMF 2 RC2 you don't need to have any special programs for that, so you can always have cache activated if you want.

Of course you could tell me that a solution will be to upgrade the forums from 1.1.11 to 2 RC2 as it seems aussieherps has done, but WHATEVER YOU DO, DON'T EVEN THINK ABOUT DOING THAT.

SMF 2 is still a beta version (that's what RC means) and it's not stable. It's only for test forums and you should never under no circumstances at all use it for a production site. As SMF says very clearly on their download page.
Title: Re: httpBL
Post by: aussieherps on March 07, 2010, 08:29:54 PM
Have just installed v 2.3.4 but still don't see any report buttons or any check IP buttons like in the 1.1.11smf version.
No color coding on the members to say they are OK or anything.

Let me see:

If I understood correct you haven't installed SMF 2 RC2 like a new forum, but you have upgraded your old SMF 1.1.11 to 2 RC2 and in the old forum you have already installed a version of the mod.

Is that correct? and if so, What version of the mod you had before?



If this is correct, let me do another question:

Did you uninstall all the mods you had in your 1.1.11 forum (as you should) before you upgraded your forum to RC2?



If the answer is yes, another question more:

When you installed httpBL 2.3.4 in your new RC2 forum with your Package manager what exact message you saw on the screen?

Was it saying something like this:

Quote

Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
...
etc
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Skipping file
...
etc

With all the lines ending either in "Test successful" or "Skipping file" and none of them ending in "Error whatever"?



Depending on the answers of these 4 questions I will tell you what you need to do now to have the mod working properly.
Yes to all of the questions.
2.3.4 was installed after your last post to my question.
2.3.1 was uninstalled first and then I re-installed the honeypot mod on the server aswell.
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 09:48:55 AM
@aussieherps

First of all there is something I didn't understand on your first question. When you said:

Quote
... don't see any report buttons or any check IP buttons ...

What buttons are you talking about? Are you sure you are talking about mod httpBL and you are not confusing it with my other mod Stop Spammer?

Mod Stop Spammer has buttons to check and report members, but mod httpBL don't, as it does it automatically.

Yes to all of the questions.
2.3.4 was installed after your last post to my question.
2.3.1 was uninstalled first and then I re-installed the honeypot mod on the server aswell.

It seems when you upgraded from 1.1.11 to RC2 something went wrong and you still have part of your forum using 1.1.11 files or parts of your database have still the 1.1.11 form, completely different than the 2.0 form.

As I thought that was going to be your answer and I already suspected that was the problem, I have been checking, since you asked it yesterday, the SMF downloads section, looking for a package to upgrade a forum from 1.1.11 to 2.0 and there is not one done yet.

Can you tell me which one have you used?

The differences between 1.1.11 and 2.0 inside the database are too big to try and do it manually. So I suppose as soon as they finish the definitive stable version for 2.0 they will do an upgrade package so all of us will be able to move our forums to the new version, but as 2.0 is still in beta versions only suitable for test forums and nobody knows yet how it will be the final stable version, they haven't done yet this upgrade package. Beta versions change too much between one and the next and they change too often so it's no point to do an upgrade package from 1.x to 2.0 until 2.0 becomes stable.



Solutions:

The solution I would recommend is to take the security copy of all the files and the database you should have from your old forum and leave everything the way it was before.

If you didn't make a security copy before upgrading or you don't want to use that solution there is only another possible solution I can see:

Imaging you have your forum now installed for example in http://www.whatever.com/oldforum

Create a new folder in your server with a different name. For example "newforum".

Install in this new folder SMF 2 RC2 from scratch, with the original full new installation package from SMF, so you will have now another forum in http://www.whatever.com/newforum

To be sure this new forum doesn't touch any of the database tables in the old forum and the new installation is fully perfect, it would be better if you use a different database to install it, but you can also use if you want the same database just changing the prefix used for all the tables.

I mean: During installation, when you are asked for the database details you need to write a prefix for all the tables and, if you don't change it, the installer will use the default, that is: "smf_" so when you are installing this new forum be sure to write here something different to the one you used for the old forum. Something like "newsmf_" for example.

Another thing you need to be sure is you are using for this new forum a template compatible with SMF 2 as all the templates for SMF 1.x are not compatible at all with SMF 2

Once this new forum is installed, add here all your mods from scratch as well, and when you check everything is perfect here, ask all your members to register again in this new forum and leave the old forum just on "read only" mode. I mean, close all the posts so nobody can write there anything else.

This way everybody will continue talking in the new forum but you will still have your old forum there so everybody will be able to check old posts and see where the arguments where coming from.

A good idea will be to copy as well the important posts from the old forum to the new one, but that will be too much work for you, so I will suggest you can ask your members to copy themselves their own posts.

This way, as soon as all the important things from the old forum are already in the new one you can delete completely the old forum and forget about it.



Good luck and tell me if any of this is any use to you or if you still has a problem with it.

And, if everything goes OK, tell me as well, as I'm curious now and would like to know how all this ends up.
Title: Re: httpBL
Post by: Wizzlefits on March 08, 2010, 10:41:14 PM
For those that would like a bit of a visual aid, or map of how Mod httpBL and Mod Stop Spammer work, then see the attached file.

Before anyone asks.
No I didn't include the path from the bot trap links (those hidden links pointing to your Honey Pot trap page).
Simply because once installed, well...you can forget about that part of the mod. It doesn't need watching, tweaking or anything else.
Okay...so I forgot that part till just now.  :-[

But really...the bot links, just direct nasty bots to your Honey Pot page which has only one way out, and rest assured...it's not back to your site.  ;)

K! Intermission is over! Back to work!  ::)
Title: Re: httpBL
Post by: aussieherps on March 08, 2010, 10:47:45 PM
Thanks Snoopy it wouldn't work as the members have already been asked to rejoin when moving from phpbb to smf forum.
Lost a few good members that way.
If the site was older and a bit bigger it would work but its still in its growth stage.
Didn't realise there was so much difference in the tables and databases. I'm still a noob at this coding stuff.
It could have been the stop spammer mod I was thinking of.
Upgrade was a complete install of smf2.0rc2 and uploaded database so that members and posts were not lost so that is the problem and I will just have to wait until the stable version is released.

Thanks again for your help.
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 10:48:35 PM
Very nice job Wizzle.

I'm going to use it for the tutorial.

Keep the good work.

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: snoopy_virtual on March 08, 2010, 11:12:36 PM
Thanks Snoopy it wouldn't work as the members have already been asked to rejoin when moving from phpbb to smf forum.
...
Didn't realise there was so much difference in the tables and databases.
...

The problem you have now is not only this mod, but a lot of other things aren't going to work properly.

Why don't you try to explain your problem and ask for help on the specific support forum for 2.0?

http://www.simplemachines.org/community/index.php?board=147.0

I suppose in that forum they may have seen things like that happening a few times already and may be they can give you a full list of the changes you need to do manually to the DB.

I will need to have 2 DBs in front of me (one 1.x and the other 2.0) to see all.

One important for sure is inside the table smf_members (or whatever prefix you have). Inside there the column for the usernames of each member is called "memberName" in SMF 1.x but now in 2.0 they called it "member_name" so you need to go inside your DB (using phpMyadmin for example) and change that manually.

Good luck.
Title: Re: httpBL
Post by: aussieherps on March 09, 2010, 04:54:27 AM
Not enough experience to do that myself and will have to wait until I see my brother.
He is a programmer in lots af languages and knows php quite well.
Problem is he is a 2.5 hr drive from me.
Title: Re: httpBL
Post by: snoopy_virtual on March 09, 2010, 05:51:58 AM
Not enough experience to do that myself and will have to wait until I see my brother.
He is a programmer in lots af languages and knows php quite well.
Problem is he is a 2.5 hr drive from me.

When you see your brother tell him to contact me via Skype. If he's a programmer I can explain him in 2 minutes exactly what he need to do.

After that he will need to get tons of coffee and patience, because it's a long and boring job, but it can be done. And you better get it done, as nobody knows when SMF 2 is going to be stable. Can be a month or can be a year.

In the mean time I'm going to try to do a better search for an automatic script to do that job. As I told you the other day, I did a quick search in SMF downloads page and couldn't find any, but maybe somebody somewhere else has one already done. Who knows.

All the google specialists reading this: Do you think you could help here?
Title: Re: httpBL
Post by: Wizzlefits on March 10, 2010, 09:24:27 AM
Was wondering why I keep getting this log entry. It doesn't show on every hit, just every 3 or 4 blocked IP's.
And it's always the exact same entry. (3 Answers on the captcha
2 Good - 1 Bad )
As you can see by the time stamp, it's from the IP at the top.
Thanks!
Title: Re: httpBL
Post by: snoopy_virtual on March 10, 2010, 10:03:58 AM
Was wondering why I keep getting this log entry. It doesn't show on every hit, just every 3 or 4 blocked IP's.
And it's always the exact same entry. (3 Answers on the captcha
2 Good - 1 Bad )
As you can see by the time stamp, it's from the IP at the top.
Thanks!

Looks really weird. I mean the fact that in that entries all the values have changed to "1".

Almost all the entries I have are either "0 Answers" or "2 Good 0 Bad". The only entries with bad answers I got in my logs are the ones I have done on purpose when testing the mod and giving bad answers to see what happens. But all of them always keep the values of every column unchanged.

It can be either a mistake in my code or the mod interacting with other mod you may have.

One way or the other I would like to take a closer look into that to see why it's happening. Contact me through Skype or Yahoo whenever you have a minute and we'll talk about it.
Title: Re: httpBL
Post by: giveaway365.com on March 15, 2010, 03:28:49 AM
Snoppy Sir,
gradually.. I have disabled stopspammer and going more strict with httpbl...

what would be ideal settings for httpbl?
Number of days to consider good an IP: 7?
Threat level considered bad:10?
Threat level considered VERY bad:20?
Hours until an IP needs to prove again it's human:24?

Suggestion:
Can you include the default recommended value also near the description in the next version.



Title: Re: httpBL
Post by: snoopy_virtual on March 15, 2010, 04:33:55 PM
I am not very sure yet about which ones would be the best settings. That's why I haven't put yet any recommended ones nowhere.

I was hopping here in this forum we could talk about that comparing the experiences of all the people using the mod, so we could find which ones are best.

The settings I am using in all my forums are:

Number of days to consider good an IP: 90
Threat level considered bad: 1
Threat level considered VERY bad: 30
Hours until an IP needs to prove again it's human: 24

These settings seem to work OK for me, but as I say, maybe yours are better. I don't really know.

If any of you is using different settings could you please tell us which ones and how are they working for you?
Title: Re: httpBL
Post by: giveaway365.com on March 16, 2010, 07:06:58 AM
As soon as I tried to pause stop spammer.... I got spammers in my forum !

Hence both Httpbl & stop spammers need to be installed.

Httpbl settings are :
90,20,30
And with stop spammer:
tick all except username.
Title: Re: httpBL
Post by: snoopy_virtual on March 16, 2010, 11:23:50 AM
I agree: You need both mods working together. In fact I designed mod httpBL thinking always in the best way to stop the spammers that the other mod (Stop Spammer) cannot detect and vice-versa.

Still I think a "Threat level considered bad" as high as 20 is far too high. You are letting pass too many bad guys without even checking if they are humans or not.

Maybe the number I use there (1) is far too low and the best setting will be something in between. In fact, in Project Honey Pot they recommend to set that value to 10.

Please remember that the threat level scale is not linear but logarithmic. This means that to go for example from threat level 10 to threat level 11 you don't add something, but multiply it by something.

So the difference between let's say level 5 and level 6 is very small, but the difference between level 25 and level 26 is very high. And the higher you go up that scale the higher the differences between one level and the next.

You can see how they explain it in Project Honey Pot manual:

Quote
From http://www.projecthoneypot.org/threat_info.php

The Threat Rating is a logarithmic score -- much like the Richter's scale for measuring earthquakes. A Threat Rating of 25 can be interpreted as the equivalent of sending 100 spam messages to a honey pot trap.
Threat Rating   IP that is as threatening as one that has sent
25                     100 spam messages
50                     10,000 spam messages
75                     1,000,000 spam messages

Of course the best settings for each particular forum also depend on the kind of visitors it gets and the kind of forum it is.

For example, my forum is a free service where we get people from all over the world with computer problems and sort these problems for free, so I don't want to let anybody in without proving first at least they are humans if their IP have a threat level even as small as 1.

But your forum is a business where you want to attract customers and don't scare them too much with warning messages, so it's OK for you to let everybody in with a level less than 20 without even proving if they are humans or not, because this way you get more customers happy and this compensate the fact that sometime you get a bad robot mixed with them.



Anyway I have been thinking about another one of your suggestions:

Snoppy Sir,
I have a suggestion.....
Instead of having this warning page, can we use a decent captcha which is available freely and user can put his logo and the captcha only to proceed.

In this warning page ... it seems that our website has a virus and good real user dont return...

So instead of writing so much about the virus and torgan horses , we just welcome them with our logo and below our logo a simple captcha .
Other conditions remain same like if the level is above 50 dont even show captcha etc etc.

When you suggested that I thought it was a bad idea, but after considering it more carefully I think you may have a point there.

The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

Adding everybody's logo to the top of the warning page will do no harm if robots see it (they cannot get any information from there) but will be less scary for humans.

So for the next version I will try to design a new warning page with the option of inserting your logo at the top, with less scary colors and maybe even with a CSS file where it will be easy to change the colors if you want to make it more similar to your own forum design.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 01:13:40 AM
Dear Snoppy Sir,
Thanks for the information... it helps a lot. I have changed it to 10 & 25 now.
Lets see...
and thanks for relooking my suggestion...
There is no point to explain any one the reason behind solving a capcha. If they are good.. they will not see the capcha and if they are bad they have to solve the capcha. If they are very Bad they cannot see a capcha and cannot move ahead.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 08:16:32 AM
Snoppy sir,
Can I use Akismet Spam Protection Mod (http://mods.simplemachines.org/index.php?mod=544) along with httpbl & Stop Spammer?
Title: Re: httpBL
Post by: butchs on March 17, 2010, 08:30:47 AM
The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

I am not sure if I like the unprotected (without defined('SMF') check) warning.php file.  Now the bots are poking fun at it.  Repeatedly I have seen them first sniff it then move on to other places.  I prefer to see them denied access to the page unless they are specifically sent there.

This bot was not in the httpBL log but did meet an untimely end when Bad Behavior (http://community.smfhelper.info/index.php/topic,5121.msg47285.html#msg47285) caught it.
 8)
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 10:39:51 AM
this means httpbl mod is not effective at all?
snoppy sir, i also want to point out that as soon as I only depended on httpbl and disabled stopspammer I got 20 comment spammers in my forum.... I had to instantly start the stop spammer and also had to depend on various Ban Triggers of smf to get it normal.

My current httpbl settings are 90,7,25
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 01:38:06 PM
...
I am not sure if I like the unprotected (without defined('SMF') check) warning.php file.
...

I told you already twice the code inside warning.php do the defined('SMF') check

How can I write code using SMF functions without checking first if SMF is defined or not? It would be impossible.

Please read in the manual how SSI works.
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 01:39:55 PM
Snoppy sir,
Can I use Akismet Spam Protection Mod (http://mods.simplemachines.org/index.php?mod=544) along with httpbl & Stop Spammer?

I haven't try that one myself, so I don't know.

I would like to know though, so if you try it before I have time to do it myself, please tell me.
Title: Re: httpBL
Post by: giveaway365.com on March 17, 2010, 01:46:52 PM
I installed it ... installation went without problem. but it had many errors in the error log. hence I uninstalled it.
Title: Re: httpBL
Post by: butchs on March 17, 2010, 03:48:48 PM
this means httpbl mod is not effective at all?

NO! 8)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 04:09:29 PM
this means httpbl mod is not effective at all?

NO! 8)

Agree. Not at all.

For example. I have a test forum where there are no real members. Only the 3 admins (me and 2 of my colleagues) are real, the rest of the members and all the posts in that forum are all fakes we (the admins) create to test different things.

As this forum is not important at all (only a test one) sometimes we turn off all anti-spammers security to see what happen, and the results we get are these:

With BOTH mod StopSpammer and mod httpBL OFF we get around 100 spammers a day.

With ONLY mod StopSpammer ON we get around 40 spammers a day.

With ONLY mod httpBL ON we get around 20 spammers a day.

With BOTH mod StopSpammer and mod httpBL ON we get some days just 1 spammer and some days none at all.
Title: Re: httpBL
Post by: butchs on March 17, 2010, 05:25:40 PM
No means I disagree with qiveaways comment.  That means I believe that your version of httpBL is effective.  One of the best out there. 

Please do not run off on a tangent putting words in my mouth.  YOU KNOW THAT I BELIEVE THAT HTTPBL IS EFFECTIVE! Why else would I have helped you?   >:(
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 05:42:39 PM
When I said:

this means httpbl mod is not effective at all?

NO! 8)

Agree. Not at all.

I meant: "I agree with you butchs"  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 05:56:32 PM
The rest was an example for giveaway of a test I have done and anybody can repeat if they want.

Of course I wouldn't recommend nobody to try that test on an important forum. Only on test forums.  ;D
Title: Re: httpBL
Post by: Wizzlefits on March 17, 2010, 05:59:23 PM
Okay butches & snoopy!
You boys play nice or I'll get the beer powered fire hose out! I know how you hate that cheap beer. ;)
Anyway...
The way I designed the warning page is too scary and humans may think they are in the wrong site, because the design have nothing to do with the rest of your site.

This is very true. It scared the heck out of me the first I loaded it. But, Just to keep it simple and put the unlucky human at ease, I'm changing mine to something like this...
Quote
Sorry!
But you have been blocked you from viewing ', $context['forum_name'], '

Bet you're wondering what the heck is going on, right?
Well... in a nut shell, the IP address your computer is using has been listed as a bad boy. And since we like to provide a safe environment for our members, we check every IP to keep the rif raf out.
Now there is a chance that you are a real person and have been unlucky enough to get assigned a bad IP. More on how to fix that further down the page.
But for now, here's what we're going to do to prove that you are a real person and not a silly robot.

Below you will see a very simple math problem. All you have to do is put the correct answer in the "top box only " and click send.
HOLD ON!
There's a catch! You have to do this 2 times. Because a robot can get lucky once, but not twice. "wink wink"
Okay...go for it! We'll see you in a sec.
yada yada...

Yes it's a bit goofy, but it's not like head crab is going to turn them into a zombie.  :o

Oh, giveaway365.com
Since installing httBL and Stop Spammer....
Not a single bot has been able to post. Even went so far as turning on instant registration and turning off the smf visual verification.

Just my penny & a half. (can't afford the full 2 cents)
Title: Re: httpBL
Post by: butchs on March 17, 2010, 06:18:19 PM
Okay butches & snoopy!
You boys play nice or I'll get the beer powered fire hose out! I know how you hate that cheap beer. ;)
Anyway...

Ha ha...  You should see us over at Snoop's place.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 06:20:01 PM
...
You boys play nice or I'll get the beer powered fire hose out!
...

 * Snoopy gets out the water proof suit just in case

...
I'm changing mine to something like this
...

Something like that was my idea. Something more friendly and less scary.

We can do something:

Lets design each of us a different warning page and put them all here. We can see them all and take the best ideas of each one.
Title: Re: httpBL
Post by: snoopy_virtual on March 17, 2010, 06:29:47 PM
@Wizzlefits

If you want to use the variable $context['forum_name'] inside the language strings you need to declare it global first, so if you want your warning page to work you need to change the line:

Code: [Select]
global $modSettings, $user_info, $txt, $boardurl;

For this one:

Code: [Select]
global $modSettings, $user_info, $txt, $boardurl, $context;
Title: Re: httpBL
Post by: Wizzlefits on March 17, 2010, 07:00:46 PM
@Wizzlefits

If you want to use the variable $context['forum_name'] inside the language strings you need to declare it global first, so if you want your warning page to work you need to change the line:

Code: [Select]
global $modSettings, $user_info, $txt, $boardurl;

For this one:

Code: [Select]
global $modSettings, $user_info, $txt, $boardurl, $context;
Yeper!
Otherwise it return an undefined (yada yada) error. I think, something like that, yea that the one. LOL!!
Title: Re: httpBL
Post by: giveaway365.com on March 18, 2010, 01:18:16 AM
I have full confidence in snoppy sir. He will make a nice warning page !
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2010, 01:43:46 AM
I have full confidence in snoppy sir. He will make a nice warning page !
Agreed!  :)
But until snoopy & butchs stop poking each other with sharp sticks. (just kidding! I know the sticks are not sharp)
here's my "can't hit the side of a barn" shot at the warning.php.
Oh, it's only in english! Sorry.


Removed hard coded site name (should display your own site name) & tweaked css
Title: Re: httpBL
Post by: butchs on March 18, 2010, 10:40:53 AM
Do not confuse our creative process with bickering.  Instead bath in the spam free waters that we are helping to create as we are but two mad programmers who are heck :o  bent to rid all SMF forums of spammery.
 :)
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2010, 05:30:35 PM
Do not confuse our creative process with bickering.  Instead bath in the spam free waters that we are helping to create as we are but two mad programmers who are heck :o  bent to rid all SMF forums of spammery.
 :)
LOL!
Your bickering.....errr I mean "creative process" is interesting, not to mention fun to watch!  ;)
So ya'll just keep them "process" flowing! I'm learning a lot.  :D
Title: Re: httpBL
Post by: giveaway365.com on March 21, 2010, 07:24:15 AM
I am sure that creative thinkers are going to make a very very nice warning page now ! We have not disturbed them since last 100 hours !
Title: Re: httpBL
Post by: giveaway365.com on March 23, 2010, 01:09:44 AM
Sir,
I have made a warning page... Its a bit personalise for my website...
Test it here : http://www.giveaway365.com/warning.php

Have a look at it...
Please note : All visitors are advice not to use this file for production as its just for testing. It may have bugs and errors.
Title: Re: httpBL
Post by: rich357 on April 04, 2010, 11:49:42 PM
error message:
8: Undefined index: REQUEST_URI
C:\Inetpub\vhosts\example.com\httpdocs\forums\Sources\httpBL_Subs.php
478

What's with this error?

I reinstalled the entire forum, then reinstalled the mod. So far, nothing tells me the mod is even working.
I dont see the magnifying glass thing besides the names.

What am I missing?

Yes I have the API key from honeypot.


Title: Re: httpBL
Post by: mane16 on April 14, 2010, 03:17:02 PM
Snoopy, I have a problem with the mod instalation, I upload the package into smf, but when I´ll go to install it, it says ERROR in the 4th line (4.     Executar Modificación     ./Themes/default/index.template.php     Prueba fallida), and i don´t know why..., anyway, if someone has the same problem, and is already solve, maybe could tell me how to solve..., if is in spanish lenguage, better, but if is in english, is all right anyway ^^
thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2010, 06:13:11 AM
Snoopy, I have a problem with the mod instalation, I upload the package into smf, but when I´ll go to install it, it says ERROR in the 4th line (4.     Executar Modificación     ./Themes/default/index.template.php     Prueba fallida), and i don´t know why..., anyway, if someone has the same problem, and is already solve, maybe could tell me how to solve..., if is in spanish lenguage, better, but if is in english, is all right anyway ^^
thanks

I already answered you that question in Spanish here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=328.0  ;)

Salú
Title: Re: httpBL
Post by: flapjack on April 16, 2010, 12:28:22 PM
unfortunatley, until a whitelist system is added, I am saying goodbye to this mod. too many false positives, too much hassle for users everytime go through the warning message.
Title: Re: httpBL
Post by: Wizzlefits on April 24, 2010, 11:25:19 AM
Just noticed something interesting.
2 spammers just got past httpBL by brute force.
They tried to register 2 times per second until it let them pass. 1 hit the page 8 times, the other hit 6 times.

StopSpammer caught them on the back side.  ;D
Title: Re: httpBL
Post by: giveaway365.com on April 28, 2010, 12:45:19 AM
the logic is simple.
httpbl takes time to identify because of formalities and stopspammer works on inputs of people like you and me !
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 09:01:26 AM
the logic is simple.
httpbl takes time to identify because of formalities and stopspammer works on inputs of people like you and me !
Not sure what you mean by formalities.
Mod httpBL checks the IP of everyone that hits the site.
Stop Spammer checks (depending on how one has it set) email, user name and IP of the registration info.

In my case, the bot was hitting the registration page url directly on every request. httpBL stopped most of the requests, but my guess is, and it's only a guess, that due to a slight delay between my server and the project honeypot server the bot was able to submit the info.

BTW,
Some auto post software does not use a browser to do its job. Which means it doesn't have to wait for images, java etc to load and thus can hit a page, submit the info and be gone very very fast.
Title: Re: httpBL
Post by: Arantor on April 28, 2010, 09:04:42 AM
It's down to what is actually done by the other site. Stop Forum Spam / Stop Spammer don't actually do that much in terms of authenticating the submissions; Motoko-chan (former project manager here) once submitted his own IP to SFS (as used by SS) to prove that it doesn't validate it, it just takes submissions.

I don't know what the honeypot site does, but I'm guessing it does more than just accepting user submissions.
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 10:19:36 AM
If I'm not mistaken, honeypot is basically the same as SFS. (talking about blocking, not trapping spammers)
It returns info on the IP in question, but it's up to the requesting site (your forum) to block or let pass.
They both are just black lists to one degree or another.

While playing with my honeypot trap page.. I submitted my IP to their database.  It's still listed, but it's white listed.  :P
Title: Re: httpBL
Post by: Arantor on April 28, 2010, 10:23:51 AM
Actually, not quite the same. It's insanely easy to get an IP blacklisted on SFS but much harder to do on honeypot.
Title: Re: httpBL
Post by: Wizzlefits on April 28, 2010, 10:35:26 AM
Actually, not quite the same. It's insanely easy to get an IP blacklisted on SFS but much harder to do on honeypot.

LOL!
You do have a point there!
At least you can easily remove your IP from SFS. Yep! did that too. ::)
Title: Re: httpBL
Post by: snoopy_virtual on May 01, 2010, 02:54:07 PM
Arantor is right, it's very difficult to get your IP black-listed in PHP (Project Honey Pot).

In SFS you just submit an IP without giving any explanation and they don't even check if it's right or not, but in PHP if you submit an IP you need to explain what this IP has been doing and why you are submitting it, and the points (Threat Level) it will get will depend on the kind of actions you tell them it's been doing, the amount of people reporting that IP, etc. And anyway they don't accept everything you say about an IP if they cannot confirm it's true.

They trust a lot more the results sent from the Honey Pots pages, because all the links to these Honey Pots are hiding, so humans never get inside them and the spambots are kind enough to report themselves from them.

Actually if you get spammers inside your forum (anybody who has passed all your security barriers) you will need to report them to PHP only if you are sure they are humans. If they are robots they will end up reporting themselves.

On the other hand, if your IP gets ever black-listed in PHP it's very easy to get it white-listed. Just log into PHP's site. As soon as the site recognizes you as a member of the project you will see a link to white-list your IP.



I find a lot more interesting what Wizzlefits said a few days ago about a couple of spambots passing httpBL by brute force.

We need to talk about it to see how they managed, because that shouldn't happen.
Title: Re: httpBL
Post by: butchs on May 01, 2010, 05:06:46 PM
I can see the brute force pass bye happen because it takes a little time to look up each ip.  Add a cache buffer and that will be the end of that.  Yea, yea, I know what you are going to say.   ;)
Title: Re: httpBL
Post by: Wizzlefits on May 01, 2010, 06:58:13 PM
I can see the brute force pass bye happen because it takes a little time to look up each ip.  Add a cache buffer and that will be the end of that.  Yea, yea, I know what you are going to say.   ;)

Have to agree, cache the ip for 5 min. would do it.

Or
add a delay of 5 seconds between registration requests from the same IP.
Title: Re: httpBL
Post by: kaamaru on May 09, 2010, 01:03:21 PM
If the honey post server goes down, would my site still function?
Title: Re: httpBL
Post by: Arantor on May 09, 2010, 01:04:39 PM
Sure it will. Just with one less measure of protection.
Title: Re: httpBL
Post by: giveaway365.com on May 10, 2010, 02:06:22 AM
which is that "with one less measure of protection."?
Title: Re: httpBL
Post by: Arantor on May 10, 2010, 05:56:06 AM
If the honey pot site goes down, your site says up, and that includes any other measures of anti spam you have.
Title: Re: httpBL
Post by: kaamaru on May 10, 2010, 02:37:17 PM
OK, awesome. Do any of you know when honey pot will be back online? I need to get an API.
Title: Re: httpBL
Post by: Wizzlefits on May 10, 2010, 04:21:42 PM
Figured they would be back up by now. It's been a week since the new hard drive was installed.
Title: Re: httpBL
Post by: Wizzlefits on May 10, 2010, 04:28:04 PM
O...
Even though the honey pot site is down, it's only the front end of the site. They are still tracking spammers and httpBL is working just fine.
Title: Re: httpBL
Post by: Sea Mac on May 17, 2010, 09:11:51 PM
Thank you for this MOD!

I got a honeypot (I got 2   actually) and tried Installing this Mod.

At install time it   showed all "Test Successful" or "File Skipped" so I installed it.

My   site quit working. http://thetruthabouthemp.com/hempity/index.php (http://thetruthabouthemp.com/hempity/index.php)

Quote
Template Parse Error!        There was a problem loading the /Themes/default/languages/Modifications.english-utf8.php   template or language file.  Please check the syntax and try again -   remember, single quotes (') often have to be escaped with a   slash (\).  To see more specific error information from PHP,   try accessing   the file directly (http://thetruthabouthemp.com/hempity/Themes/default/languages/Modifications.english-utf8.php).

You may want to try to refresh this page (http://www.simplemachines.org/community/javascript:location.reload%28%29;) or use the   default theme (http://thetruthabouthemp.com/hempity/index.php?theme=1). 

Code: [Select]
214: $txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
215: $txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
216: $txt['httpBL_info_email_1'] = 'First word of your email';
217: $txt['httpBL_info_email_2'] = 'Second word of your email';
218: $txt['httpBL_info_email_3'] = 'Third word of your email';
219: $txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>info@yourwebsite.com</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
220: $txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
221: $txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
222: $txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
223: $txt[httpBL_bad_threat
224:
225:
What Happened?

It looks as if I'm going to have to reinstall the WHOLE SMF Forum!
Title: Re: httpBL
Post by: snoopy_virtual on May 18, 2010, 07:34:04 AM
You don't need to reinstall SMF. Just edit the file giving you the problem:

Navigate to the folder /Themes/default/languages/ and look for the file Modifications.english-utf8.php

At the end of the file you should have exactly this:

Code: [Select]
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_config'] = 'MOD httpBL settings';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>info@yourwebsite.com</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <b>VERY</b> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';
$txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:';
$txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a> or try to find more information <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">reading the tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <b>VERY</b> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <b>"Show extra information"</b>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';
// MOD httpBL END

If you have something different you will get an error.

By the way: Very nice site you have  ;)
Title: Re: httpBL
Post by: esoteric on June 01, 2010, 09:11:10 AM
Hi, first time mod installer here and I've done the honeypot thing, got the congrats screen and I have an api key. I installed httpBL successfully and it shows up in my admin package place as being installed. I then had to manually edit my theme index.template.php file and thought I'd done that ok, but when I go back to admin page I don't have the Mod httpBL link under my members menu as in the picture. I do however have quite a big space, as if it's made room for the link.

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fi418.photobucket.com%2Falbums%2Fpp269%2Fesotericbydesign%2FindexhttpBL.png&hash=aae8685460fa7fda6bfbc51c56c10cab)

Here's the stuff I already had in my index.template.php file:

Quote
   // The following will be used to let the user know that some AJAX process is running
   echo '
   <div id="ajax_in_progress" style="display: none;', $context['browser']['is_ie'] && !$context['browser']['is_ie7'] ? 'position: absolute;' : '', '">', $txt['ajax_in_progress'], '</div>';

echo '
</body>
</html>';
}

And after inserting the bit of code:

Quote
// The following will be used to let the user know that some AJAX process is running
   echo '
   <div id="ajax_in_progress" style="display: none;', $context['browser']['is_ie'] && !$context['browser']['is_ie7'] ? 'position: absolute;' : '', '">', $txt['ajax_in_progress'], '</div>';

echo '
';

   /*****************
   ** httpBL START **
   *****************/
   global $sourcedir, $modSettings;
   if ($modSettings['httpBL_enable'])
   {
      require_once($sourcedir . '/httpBL_Subs.php');
      $honeyLink = httpBL_honeylink($modSettings['httpBL_honeyPot_link'], $modSettings['httpBL_honeyPot_word']);
      echo $honeyLink;
   }
   /*****************
   **  httpBL END  **
   *****************/
   
    echo '
</body>
</html>';
}

I'm sorry if I'm missing something glaringly obvious.  I really worry that I've bitten off more than I can chew here so please be kind.
Title: Re: httpBL
Post by: butchs on June 01, 2010, 10:13:48 AM
I wonder if it is there and you just need to reset your cache?  Go to Forum Maintenance => Empty the file cache and see if that helps?
 :o
Title: Re: httpBL
Post by: Exsharaen on June 03, 2010, 01:30:45 PM
I wonder why SMF doesn't notify me of updates while I'm monitoring for updates... should update ASAP and retranslate then...
Title: Re: httpBL
Post by: esoteric on June 09, 2010, 09:44:50 AM
I wonder if it is there and you just need to reset your cache?  Go to Forum Maintenance => Empty the file cache and see if that helps?
 :o

Thanks for the reply butchs, unfortunately i don't see an option to empty any cache from within Forum Maintenance.
I have these options though:

GENERAL MAINTENANCE
*Optimize all tables to improve performance.
*Check all files against current versions.
*Find and repair any errors.
*Recount all forum totals and statistics.
*Empty out unimportant logs.
*Convert HTML-entities to UTF-8 characters

REMOVE OLD POSTS
*Remove all topics not posted in for x days
Title: Re: httpBL
Post by: Arantor on June 09, 2010, 10:26:15 AM
esoteric: Might have been useful to say you're using 1.1.11...
Title: Re: httpBL
Post by: Wizzlefits on June 09, 2010, 08:55:51 PM
esoteric...

Open up Sources/Subs.php and look for...
Code: [Select]
if (allowedTo('admin_forum'))
$context['admin_areas']['members']['areas']['httpBL'] = '<a href="' . $scripturl . '?action=httpBL">' . $txt['httpBL_title'] . '</a>';

if it's  not there, which it most likley isn't..., then find
Code: [Select]
if (allowedTo('manage_bans'))
$context['admin_areas']['members']['areas']['ban_members'] = '<a href="' . $scripturl . '?action=ban">' . $txt['ban_title'] . '</a>';
and add the first bit of code below it. That should fix the missing link.
Title: Re: httpBL
Post by: codysan on June 18, 2010, 12:27:22 AM
Hi Snoop . . . thanks for the MOD . . .

I have a question . . . what happens if a spammer gets through?
I had an individual register today and post spam to one of my boards.
I removed the post, banned the spammer and deleted his (her) account.

Is there a way I can report this IP or add the address, myself, to the spammer database?

Thanks . . .
Title: Re: httpBL
Post by: Wizzlefits on June 18, 2010, 03:34:54 PM
codysan,
You should use Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547) along side httBL.
What one doesn't catch, the other will. Plus with Stop Spammer, you can report the offender.
Title: Re: httpBL
Post by: codysan on June 18, 2010, 06:20:46 PM
Thanks, Snoop . . .

Appreciate the help!!
Title: Re: httpBL
Post by: shaitanfr on July 01, 2010, 03:43:26 PM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.
Title: Re: httpBL
Post by: shaitanfr on July 01, 2010, 04:51:03 PM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.


More Info: I can browse your forum. The différence: My domain is managed in IPV6.
I have déactivated IPv6 on my Domain, I should Waiting 24 hours and I will retry.

I can confirm that all my members In IPv6 are redirected to the Warning Page.
Title: Re: httpBL
Post by: snoopy_virtual on July 04, 2010, 08:22:25 AM
This awesome mod is not compatible IPV6. I m frustated :)

People in IPV6 (me too) are directly redirected to the warning page.


More Info: I can browse your forum. The différence: My domain is managed in IPV6.
I have déactivated IPv6 on my Domain, I should Waiting 24 hours and I will retry.

I can confirm that all my members In IPv6 are redirected to the Warning Page.

Unluckily I cannot experiment with that to sort it, because all my domains and my computers use IPv4 instead of IPv6

I don't even really know how IPv6 works and the differences between both systems.

I will write it in my "List Of Things To Do" but I can't promise anything.

Anybody there with more experience with IPv6 who could give me a hand with it?
Title: Re: httpBL
Post by: butchs on July 04, 2010, 10:26:46 AM
They have been trying to implement that for many years.  For fun I found a few links:

http://stackoverflow.com/questions/444966/working-with-ipv6-addresses-in-php
http://phpro.org/tutorials/Filtering-Data-with-PHP.html#9
http://www.weberdev.com/get_example-3921.html


Just in case you get adventuresome.
:o
Title: Re: httpBL
Post by: shaitanfr on July 04, 2010, 03:53:59 PM
Thank you.

Now it's ok for me, I don't need IPV6.

Other problem, I have error code in the warning page:

Code: [Select]
"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"
On line 127
Code: [Select]
$response = $_SESSION['response'];
replaced by:

Code: [Select]
if (isset($_SESSION['response'])) $response = $_SESSION['response'];
Ok now. But I have others errors on the second page.
(no php knowlege, my members helped me  ::) )

My warning page: http://passion-xbmc.org/warning.php

Smf 1.1.11

French translation.

Code: [Select]
$txt['httpBL_warn_title_1'] = 'Attention';
$txt['httpBL_warn_head_1'] = '<span class="red">Attention</span><br />Votre accès au site Passion-Xbmc a été bloqué, non sans raisons.';
$txt['httpBL_warn_infected_1'] = 'La cause la plus probable de ce blocage est que votre ordinateur, ou un ordinateur sur votre réseau local, a été <b>infecté par un virus, cheval de Troie ou ver</b>. Les ordinateurs infectés sont utilisés à l\'insu de leurs propriétaires par des criminels, pour attaquer de différentes façon des sites tels que celui que vous essayez de visiter.';
$txt['httpBL_warn_dinamic_IP_1'] = 'Si votre IP est dynamique et non pas fixe, celle ci change à chaque fois que vour redémarrez votre routeur. Peut être le problème est il seulement que vous utilisez aujourd\'hui une IP qui a servie récemment à un ordinateur infecté. Aussi vous pouvez tenter de redémarrer votre routeur et revenir ensuite sur ce site afin de vérifier si l\'accès s\'y fait alors normalement.';
$txt['httpBL_warn_technician_1_1'] = 'Dans tous les cas, nous vous recommandons de vérifier ou faire vérifier par un technicien que votre ordinateur n\'est pas infecté. Le site <b>www.projecthoneypot.org</b> référence votre IP';
$txt['httpBL_warn_technician_2_1'] = 'sur sa liste noire, vous pourrez le vérifier aisément et obtenir plus de détails.';
$txt['httpBL_warn_info_1'] = 'Pour plus d\'informations, n\'hésitez pas à contacter:';
$txt['httpBL_warn_at_1'] = 'at';
$txt['httpBL_warn_dot_1'] = 'dot';
$txt['httpBL_warn_hurry_1'] = 'Vous trouverez des explications détaillées à la suite de ces lignes que nous vous engageons vivement à lire, dans votre intérêt. Toutefois, si vous êtes pressés, vous pouvez accéder immédiatement au site, mais sachez qu\'il est probable que votre ordinateur est infecté. Nous allons vous poser deux fois de suite des questions faciles sous une forme telle qu\'un robot ne saurait y répondre. Répondez à la question ci dessous (juste le nombre) pour prouver que vous n\'êtes pas un robot et cliquez sur le bouton <b>"Envoyer"</b>:';
$txt['httpBL_warn_send_1'] = 'Envoyer';
$txt['httpBL_warn_blank_1'] = 'Ne mettez rien dans ce champ.<br />Saisissez la réponse dans la première case.';
$txt['httpBL_warn_wrong_answer_1'] = 'Peut être nos explications étaient elles confuses ou avez vous frappé la mauvaise touche par mégarde. On reprends :) Ci dessous, deux cases, il ne faut mettre la réponse que dans la première, la somme du calcul simple ci dessous. Ne mettez rien dans la seconde case.';
$txt['httpBL_warn_good_answer_1'] = 'Votre réponse était la bonne, mais un robot, bien que ne comprenant pas la question, pourrait aussi avoir donné la bonne en entrant des chiffres aléatoirement. Un deuxième et dernier test est une contre mesure efficace autant que nécessaire. Saisissez à nouveau la bonne réponse et cliquez sur: <b>Envoyer</b>';

Thank you for this awesome Mod.

( I have 80 mod installed, this one without crying and like a charm with package manager).  ;)

Sorry for my poor English.

Edit:

Others errors fixed:

Code: [Select]
$_SESSION['response']['errorNumber'] = $_SESSION['response']['errorNumber'] + 10;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);

Replaced by:

Code: [Select]
if (isset($_SESSION['response']['errorNumber']))
{
$_SESSION['response']['errorNumber'] = $_SESSION['response']['errorNumber'] + 10;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);
}

Search

Code: [Select]
$_SESSION['response']['errorNumber']++;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);

Replace by:

Code: [Select]
if (isset($_SESSION['response']['errorNumber']))
{
$_SESSION['response']['errorNumber']++;
httpBL_update_log($response['ID'], 1, $_SESSION['response']['errorNumber']);
}

3 errors remaining:

Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 209

Notice: Undefined index: errorNumber in /home/shaitan/www/passion-xbmc/warning.php on line 209

Notice: Undefined index: ID in /home/shaitan/www/passion-xbmc/warning.php on line 211

Will be fixed tomorrow
Title: Re: httpBL
Post by: pviagem on July 05, 2010, 06:36:55 PM
This looks a really great MOD but I’m having a problem no enable it.

I’m using SMF 1.1.11 and httpBL 2.3.4 and on a 1st look everything seems ok, but in fact I can’t enable the MOD. On the httpBL settings I can add and save data in all fields except the Enable/Disable MOD httpBL one. The check box is unclickable.

Thanks for any comment or help.
Title: Re: httpBL
Post by: shaitanfr on July 05, 2010, 06:52:38 PM
pviagem:

You should complet all fields.
Title: Re: httpBL
Post by: pviagem on July 05, 2010, 07:04:36 PM
pviagem:

You should complet all fields.

Great! Thanks a lot.
Title: Re: httpBL
Post by: snoopy_virtual on July 06, 2010, 07:05:45 AM
...
Now it's ok for me, I don't need IPV6.
...

Glad to hear it.

It means I'm not in a hurry now to make it compatible with IPv6. Anyway we will need to do it someday, as IPv6 is the future of the web.




...

Code: [Select]
"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"
On line 127
Code: [Select]
$response = $_SESSION['response'];
replaced by:

Code: [Select]
if (isset($_SESSION['response'])) $response = $_SESSION['response'];
Ok now. But I have others errors on the second page.
(no php knowlege, my members helped me  ::) )

...

Others errors fixed:

...

3 errors remaining:

Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 209

Notice: Undefined index: errorNumber in /home/shaitan/www/passion-xbmc/warning.php on line 209

Notice: Undefined index: ID in /home/shaitan/www/passion-xbmc/warning.php on line 211

Will be fixed tomorrow

You are not fixing the errors. You are making them worst.

If the response is not set in $_SESSION there is something wrong somewhere else, because you really need the response if you want the page warning.php to work.

What you are doing is something like: "If the response is not set, forget about it".

Let me think about it for a while to see if I find why you get that error.

In the mean time I suggest you leave your page warning the way it was.



Thanks for the French translation.

Really appreciate that.
Title: Re: httpBL
Post by: snoopy_virtual on July 06, 2010, 09:42:58 AM

...

Code: [Select]
"Notice: Undefined index: response in /home/shaitan/www/passion-xbmc/warning.php  on line 127"
etc etc


You are not fixing the errors. You are making them worst.

If the response is not set in $_SESSION there is something wrong somewhere else, because you really need the response if you want the page warning.php to work.

What you are doing is something like: "If the response is not set, forget about it".

Let me think about it for a while to see if I find why you get that error.

In the mean time I suggest you leave your page warning the way it was.

OK, I have been thinking about this problem for a while and I think I know now why you get these errors:

The warning.php page is supposed to work when somebody have a bad IP and is redirected here through the mod.

When that happen they already have a "response" inside their "$_SESSION", so there are no errors. (Shouldn't be at least)

You are getting the errors because you are going to the page warning.php directly to see how it looks like, without passing first through the mod, so you haven't got a "response" inside your "$_SESSION".

The way you are modifying the page warning.php you are not going to have any errors when you visit it to see how it looks like, but (if you are not careful) maybe it's not going to work properly when a spammer arrives to it.

I will sort this in the next version so you never get an error visiting the page warning.php in any case. Either when you are redirected there automatically or when you are just viewing the page to see how it looks like.

In the mean time I think it would be better if you leave the page the way it was and just ignore any errors you may get when you just visit it.
Title: Re: httpBL
Post by: shaitanfr on July 06, 2010, 09:50:41 AM
Thank you for these explanations very clear, I will follow your recommendations.
Title: Re: httpBL
Post by: kaamaru on July 07, 2010, 06:17:35 AM
Many of my members view the site on there phones using 3G. Lodes of spammers use ips from carries like tmobile and AT&T so some of my members get blocked from the site. How can I disable HTTBL for mobile carriers?
Title: Re: httpBL
Post by: snoopy_virtual on July 07, 2010, 09:32:54 AM
Many of my members view the site on there phones using 3G. Lodes of spammers use ips from carries like tmobile and AT&T so some of my members get blocked from the site. How can I disable HTTBL for mobile carriers?

I am not an expert on 3G mobile phones because I don't use them so, if anybody more expert than me in this matter sees I'm not right here, please tell me.

A quick search on any security web page will tell you that there are already thousands of viruses and trojans for mobile phones but almost nobody uses anti-viruses in their phones, so a very big percentage of all the mobiles in the world are already infected.

So when you said:

Quote
Lodes of spammers use ips from carries like tmobile and AT&T

That's not exactly true. You should have said instead:

Quote
A lot of phones from tmobile and AT&T are already infected with trojans sending spam all over the world.

As far as I know, it doesn't matter if somebody is viewing your site from a computer or from a mobile. In any case the IP is always unique. So the problem is not if they are viewing your site using one method or other but if their IP is from a spammer or not.

I think you should try and find out the threat level your member's IPs have and then adjust the "Threat level considered bad" and the "Threat level considered VERY bad" so most of them haven't got any problem.

Anyway you should consider as a possibility that maybe if your members are stopped by mod httpBL is because they have a trojan inside their mobiles, so instead of you changing anything in your site, they should try to clean them.
Title: Re: httpBL
Post by: FragaCampos on July 07, 2010, 11:55:40 AM
I just installed this mod after almost 2 years with a honeypot installed in my forum and i must say this to snoopy_virtual:
I have 45 mods installed and this one is surely one of the best. Installed flawlessly and i didn't even had to edit the index.template of my theme. Absolutely awesome. And the mod's configuration... how brilliant is that?
I have Stop Spammer installed since a long time ago and i must congratulate you for all the work, patience and support you've done here. I can't even think about all the hours you lost here to give us this free and absolutely must have software. Thanks a lot mate.

Best regards,
FragaCampos.

PS: Hope i'm not being misleading when i say "i didn't even had to edit the index.template", because i read your great tutorial and followed the instructions to edit the index.template ;)
Title: Re: httpBL
Post by: snoopy_virtual on July 08, 2010, 07:15:03 AM
Thank you FragaCampos.

Really appreciate your opinion.   ;)
Title: Re: httpBL
Post by: Kakers on July 08, 2010, 06:14:17 PM
I've used SMF for about 3 years now and I do prefer it over the other forums out there, the only downside is hearing about and experiencing the amount of spam/bots that the 1.1.11 SMF forums gets hit with. Currently I administrate two SMF boards and both were getting around 1 spam bot a day sign up, even with admin approval set up it becomes tiresome quickly. I have tried other mods like 'Are you Human?' and if I'm honest, it didn't make any difference to the levels of spam at all. It had progressed and gotten to the point where I had to banned the IPs for all the ISPs in 4 different countries via that .htaccess file!

I will admit I was a bit dubious about setting up this mod at first as I had only taken a quick glance at it while I was at work. I like many others were just looking for a quick fix and didn't really want to go through all the hassle of setting up accounts on sites and uploading files. I AM SO GLAD I DID!!! After 12 hours of having it installed I have not had any spam accounts sign up and even seen that there have been 6 bots or suspicious IPs that have been denied access to the forums. Now that I have set it up once doing it for the other forum should be quick and simple. I am going to see how it runs for the next few days and if all is well, I might be able to unblock those 4 countries. (Russia, Germany, Korea & China .... Not that I expect any of them will visit my site... but you never know).

I don't normally write reviews and such but... thank you for this Mod, It has made my life easier! ;)
Title: Re: httpBL
Post by: snoopy_virtual on July 09, 2010, 05:40:24 AM
Thanks for your kind words Kakers.

As I also administer a few forums and had the same problems with spam (that's the reason why I did this mod in the first place) I'm going to give you a couple of advises:

If you are installing the mod in a few different forums, you can use the same API key for all of them, so you don't need to register another account with "Project Honey Pot", but the mod works a little faster if the honey pot is installed in the same domain as the forum, so it's better if you install a different honey pot inside each forum. It's just a little more work, but it's worth the hassle.

I will recommend you as well to install in every forum my other mod StopSpammer:

http://custom.simplemachines.org/mods/index.php?mod=1547

Both mods are complementary and you will see a big difference when using both at the same time.

Each one uses a different database to see if they are spammers and uses a completely different method to check it.

Also mod StopSpammer is a lot easier to install than mod httpBL  ;D
Title: Re: httpBL
Post by: Kakers on July 09, 2010, 02:33:31 PM
Thanks for the advice, I will also try that mod.

I currently have the honeypot sat in the root '/' of my html directory where our wordpress blog sits. (I have now installed Bad Behaviour on our WP blog to use the honey pot!)  ;D The SMF forums are in a sub-directory '/forums/' The site normally gets about 6k hits a day, 1k unqiue hits. The forums get visited less then that however and having installed the WP and SMF mods I haven't noticed any decrease in speed. For this site I own the domain name but not the hosting.

The other forums are hosted on my domain/hosting so I will be creating a seperate hot pot for that one which will sit in the '/forums/' directory purely because the main page is html  ::)
Title: Re: httpBL
Post by: shaitanfr on July 11, 2010, 11:25:27 AM
Something strange. I was contacted by a member who is blocked by httpBL. But his IP is not in the projecthonepot database. In my logs I can see his IP with S - Low Threat.
I chek and found others IP in the same configuration, blocked but not referenced on the database.




Title: Re: httpBL
Post by: snoopy_virtual on July 12, 2010, 07:07:10 AM
Something strange. I was contacted by a member who is blocked by httpBL. But his IP is not in the projecthonepot database. In my logs I can see his IP with S - Low Threat.
I chek and found others IP in the same configuration, blocked but not referenced on the database.

It looks like an error somewhere.

Can you tell me one of the IPs and all the info you can see in your log about it (including the "extra info")?

I would like to investigate the issue.
Title: Re: httpBL
Post by: shaitanfr on July 12, 2010, 02:58:35 PM
Yep,

For example:

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fpassion-xbmc.org%2Ffichiers_multimedia%2Fupploadimages%2Fimages%2F1278961073-ip.jpg&hash=18ce95ef4a9fd1572165b4415cde641b)

Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 08:13:22 AM
I don't really know how the web site in "Project Honey Pot" works. All I know is what I have read on their site and what I have seen while using their API to create this mod, so most of what I am going to tell you here is just guessing, but anyway I think it's a good guess.

As far as I know, the database with all the spammers information (the database used by the mod to check if an IP is spammer) is a dynamic one, changing every hour with all the information received from all the Honey Pots around the world. It's also a very big database and it has a lot of information. Not only about "Harvesters" and "Comment Spammers" but also about a lot of other "Suspicious" behaviours which the program cannot identify just now.

If you read their API manual: http://www.projecthoneypot.org/httpbl_api.php you can see they are working on it and in they have reserved some other values of the response from the database for future use, but I think they will identify only really dangerous behaviour and will leave as just "Suspicious" any kind of behaviour not too dangerous.

As I said this database is dynamic. All the process is fully automatic and it's hosted in a few mirror servers, so it's always on-line. (At least I have never seen this database off-line in the last 2 years).

As you can see, when the mod checked the IP 84.97.153.127 inside this database it got the response 127.29.3.1

The first number (127) just means that the response is correct.

The next number (29) is the number of days since this IP was last seen doing something wrong.

The next number (3) is the threat level of this IP. A very low number really. In Honey Pot's site they say a few times any IP with a threat level less than 10 is not really dangerous at all.

The last number (1) means this IP has not been seen doing "Harvesting" or "Commenting" work yet, and it's only "Suspicious".

You can also see that when, whoever was trying to see your site from this IP, was redirected to your "warning" page didn't give any answers to the captcha questions.

That means that either it was a trojan robot working inside the computer with that IP (one who doesn't know how to answer captcha questions) or it was a human who was very scared when he read he may have a virus and just closed the web page because he didn't know what else he should do.



On the other hand, when you check an IP inside Honey Pot's site you are using a completely different database. You are using the database which keeps Honey Pot's web site on.

This is not a fully automatic database and the information it has is very different from the first database. It doesn't get all the input automatically from the Honey Pots around the world, but also from comments the site users leave about different IPs.

Some things anyway come from the Honey Pots automatically. Mainly the actions done by "Harvesters", "Comment Spammers", etc, but here it has different information than the first database. Instead of just "numbers" about how many times an IP did something wrong, how many days ago, etc it has "text" information. For example from a "Comment Spammer" it tells you what kind of posts it writes in the forums, what links to malicious sites, etc

But a big difference is that this database only has "Proven facts", not just "Suspicious actions", so when you check the IP 84.97.153.127 here and you get nothing, it means that IP has been doing only something suspicious, but nothing really dangerous that can prove it is a spammer.

That is why it has only a 3 in the threat level.



As I said at the beginning all this is only guessing. It would be better if we ask this question in their own forum:

http://www.projecthoneypot.org/board/

The problem is that forum has very few movement. I have asked a few questions myself there and only a couple of them have been answered.
Title: Re: httpBL
Post by: shaitanfr on July 14, 2010, 08:41:25 AM
Ok, I understand. It's frustrating for me not to speak better English to respond.

Quote
You can also see that when, whoever was trying to see your site from this IP, was redirected to your "warning" page didn't give any answers to the captcha questions.

I have an explanation:

In my sign you can see the link to "Cine-Passion". A free service that I host and used by different media center solutions. (thousands users every days)  So these are the machines and programs that connect to this service, this explains why there are no answers to the captcha.

It is a real problem for me to continue to use httpBL.
In fact I've never had problems with spam. I installed several anti-spam mods and although my sections are mostly accessible to guests in more than two years, only one spammer has managed to post spam, Xrumor the famous, and he could not save links in the message.

I also installed StopSpammer just before httpBL. I scanned my base member, only one spamer was registered, the email address left no doubt he is a spammer.
To conclude, I installed httpBL because I found it's a very great system, beautiful, but because of the nature the service that my site offers, I do not think I can continue to use it.

I hope you anderstand my answer :)
Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 11:43:19 AM
Don't worry about your English. I understand you very well.  ;)

So, your problem is a lot of your visitors are robots coming from different media centre solutions, but these robots are not spammers.

Well, the httpBL system normally recognizes this kind of robots and let them pass.

The problem is they haven't got inside their database all the "legal" robots in the world. Only the more important ones.

At least, the robots from the main software companies (Google, Microsoft, Yahoo, etc) are always recognized, because the owners of these robots have told everybody about them so we know what they do and how to recognize them.

But if a robot is not recognized (because it's not in the database) it will always get a very low threat level (less than 10) if it's not doing something really bad.

For example, as you can see, this 2 you got only have a threat level of 3.

I can assure you, if an IP get a threat level of 40 or more, it is for sure a very dangerous spammer. Remember the threat level is not a linear scale, but a logarithmic one.

What I think you should do is to check your logs to see what is the threat level of all the IPs stopped by the mod with only "Suspicious" on, with no "Harvesters" or "Comment Spammers", and change your configuration to let pass all this robots and stop only the really dangerous.

A good configuration (good for almost everybody) will be to put the "Threat level considered bad" up to 10 and the "Threat level considered VERY bad" to 30.

This way everybody with a threat level less than 10 will pass.
With a treat level between 10 and 30 will see the captcha.
More than 30 will be stopped.

But as I say, it's up to you to see your logs to decide the best numbers for your site.

These numbers cannot be always the same for every web site. That's the reason why I put in the last version all this log system and all these different numbers in the configuration that were not there in earlier versions.
Title: Re: httpBL
Post by: shaitanfr on July 14, 2010, 12:24:45 PM
But yes, it is the solution !

Quote
But as I say, it's up to you to see your logs to decide the best numbers for your site.


I looked at my logs and only one service user has a score of 14 is the maximum. I can see its user agent and its activity that tell me that it's software.
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fpassion-xbmc.org%2Ffichiers_multimedia%2Fupploadimages%2Fimages%2F1279124553-14.jpg&hash=f79e7a7c58556c22ad1ddafbc12c661d)

( We ask the developers that their software return a user agent with requests )

All others have a score between 3 and 4
So here, I just have to adjust accordingly.
Again merci Monsieur.   :)
Title: Re: httpBL
Post by: snoopy_virtual on July 14, 2010, 03:05:08 PM
Il n'y a pas problème  ;)
Title: Re: httpBL
Post by: Saint_Frater on August 17, 2010, 08:03:48 AM
I don't know if there is any french translation; here is my contribution:

Code: [Select]
// MOD httpBL START - Translation by Frater
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Mauvaise URL honeyPot. V&eacute;rifiez votre configuration MOD httpBL.';
$txt['httpBL_honeyPot_key_error'] = 'Maivaise cl&eacute; http:BL API. V&eacute;rifiez votre configuration MOD httpBL.';
$txt['httpBL_honeyPot_key_error_2'] = 'Echec de Connection. Cela veut dire que soit votre cl&eacute; http:BL API est incorrect ou qu\'il y a probl&egrave;me avec votre configuration DNS.';
$txt['httpBL_caught'] = 'Spammers bloqu&eacute; par MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'Le MOD httpBL v&eacute;rifie l\'adresse IP de chaque visiteur pour savoir si celle-ci est d&eacute;j&agrave; dans la base de donn&eacute;es projecthoneypot. Si c\'est le cas, la modication redirige ceux-ci vers la page warning.php interdisant l\'acc&egrave;s au forum.<br />Ici vous pouvez activer ou d&eacute;sactiver la modification et changer quelques un de ses param&egrave;tres.';
$txt['httpBL_config'] = 'Param&egrave;tre MOD httpBL';
$txt['httpBL_enable'] = 'Activer/D&eacute;sactiver MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'La cl&eacute; API que vous avez &eacute;crite est mauvaise. V&eacute;rifiez soigneusement celle-ci et essayez &agrave; nouveau.';
$txt['httpBL_honeyPot_link'] = 'URL vers votre Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'Si vous d&eacute;sirez utiliser httpBL, vous devez avoir un Honey Pot install&eacute; sur votre serveur. Si vous n\'en avez pas, vous devez allez sur <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> pour en cr&eacute;er un et l\'installer sur votre serveur. Apr&egrave;s cela, inscrire l\'URL de ce honeypot ici. Cela peut &ecirc;tre quelque chose comme:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Votre cl&eacute; Honey Pot http:BL API';
$txt['httpBL_honeyPot_key_sub'] = 'Si vous d&eacute;sirez utiliser httpBL vous devez avoir aussi une cl&eacute; http:BL API r&eacute;&ccedil;ue du Project Honey Pot. Si vous n\'en avez pas rendez-vous a l\'URL <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> pour vous enregistrer et en obtenir une que vous inscrirez ici. Veuillez noter que vous ne recevrez pas de cl&eacute; si vous n\'avez pas installer votre Honey Pot, il vaut mieux commencer par cela.';
$txt['httpBL_honeyPot_word'] = 'Mot cl&eacute; de votre URL Honey Pot';
$txt['httpBL_honeyPot_word_sub'] = 'Ce mot cl&eacute; est le seul mot dans votre URL Honey Pot que les spammers verons. Ecrivez quelque chose qui va les attirer et les faire cliquer dessus et pas quelques choses qui va les effrayer. Si vous ne pouvez pas trouver de bon mot, laissez ce champ vide, httpBL va le choisir pour vous.';
$txt['httpBL_info_email_1'] = 'Premier mot de votre email';
$txt['httpBL_info_email_2'] = 'Second mot de votre email';
$txt['httpBL_info_email_3'] = 'Troisi&egrave;me mot de votre email';
$txt['httpBL_info_email_sub'] = ' httpBL a besoin de votre adresse address pour vous informer en cas de probl&egrave;me et aussi d\'afficher celle-ci aux malheureux humains qui on une adresse IP consid&eacute;rer comme spammer et qui ne savent pas comment sortir de la page <b>warning.php</b>, ainsi ils peuvent vous demander de l\'aide. Donc cette adresse doit &ecirc;tre valide. Nous l\'avons s&eacute;parer en 3 mots afin que les robots ne puissent pas la voir. Par exemple, si votre adresse est <b>info@yourwebsite.com</b> le premier mot est <b>info</b>, le second est <b>yourwebsite</b>, et le troisi&egrave;me est <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'V&eacute;rifiez l\'adresse email que vous avez &eacute;crit. Vous ne pouvez pas laisser les champs vide.';
$txt['httpBL_bad_last_activity'] = 'Nombre de jours pour examiner une bonne IP';
$txt['httpBL_bad_last_activity_sub'] = 'Si une adresse IP a &eacute;t&eacute; consid&eacute;rer comme appartenant &agrave; un spammeur avant, mais que personne n\'a vu quelque chose de suspect depuis au moins ce nombre de jours, nous pouvons consid&egrave;re la requete comme non dangereuse et laisser le visiteur passer.';
$txt['httpBL_bad_threat'] = 'Niveau de menace consid&eacute;r&eacute; comme mauvais';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot donne &agrave; toutes les adresses IP un niveau de menace qui &eacute;volue chaque jour en fonction de ce que l\'adresse IP fait et depuis combien de jours il l\'a fait. Chaque IP avec un niveau de menace inf&eacute;rieur au nombre que vous mettez ici passera sans m&ecirc;me &ecirc;tre v&eacute;rifi&eacute;.';
$txt['httpBL_very_bad_threat'] = 'Niveau de menace consid&eacute;r&eacute; comme TRES mauvais';
$txt['httpBL_very_bad_threat_sub'] = 'Tout IP avec un niveau de menace plus grande que le nombre que vous mettez ici seront bloqu&eacute;. Les adresses IP avec un niveau de menace entre les deux nombres auront un "captcha" et, s\'ils prouvent qu\'ils sont bien des &ecirc;tres humains, il leur sera accord&eacute; un laissez-passer pour quelques heures.';
$txt['httpBL_cookie_length'] = 'Nombre d\'heures avant de devoir prouver &agrave; nouveau que le visiteur est humain';
$txt['httpBL_cookie_length_sub'] = 'Comme les adresses IP changent tr&egrave;s souvent, lorsque les visiteurs voient les "captcha" et qu\'ils prouvent qu\'ils sont humains, ils sont autoris&eacute;s uniquement pour ce nombre d\'heures. Apr&egrave;s ce temps, il se peut que l\'adresse IP soit attribu&eacute;e a une autre ordinateur. Nous ne vous conseillons pas de modifier ces 4 derni&egrave;res valeurs jusqu\'&agrave; ce que vous connaissez la fa&ccedil;on dont fonctionne httpBL.';
$txt['httpBL_no_negative_here'] = 'Le nombre de jours et le niveau de menace ne peuvent pas &ecirc;tre des nombres n&eacute;gatifs ou 0.';
$txt['httpBL_no_higher_than'] = 'Le niveau de menace per&ccedil;u comme mauvais ne peut pas &ecirc;tre plus &eacute;lev&eacute; que le niveau de la menace consid&eacute;r&eacute; <b>tr&egrave;s</b> mauvais.';
$txt['httpBL_viewlog_extra'] = 'Voir des informations suppl&eacute;mentaires dans le log';
$txt['httpBL_viewlog_extra_sub'] = 'Si vous activ&eacute; cette option, vous allez voir toutes les informations dans le journal, mais c\'est peut-&ecirc;tre un peu trop et vous risquez de vous y perdre. Parfois, il vaut mieux ne voir que les choses importantes.';
$txt['httpBL_config_sub_1'] = 'Si vous voulez voir le look de votre "warning.php page" avec ces param&egrave;tres (la page vers laquelle sera redirig&eacute;e toute personne avec une IP consid&eacute;r&eacute;e comme dangereuse ), appuyez sur cette URL:';
$txt['httpBL_config_sub_2'] = 'Si vous voulez changer de design ou la traduction de cette page et vous ne s \'avez pas comment faire, ou si vous avez toute autre question sur le httpBL, vous pouvez demander de l\'aide dans le <a href = "http://www.simplemachines.org/community/index.php?topic=366399" target = "_blank">Forum de support officiel</a> ou d\'essayer de trouver plus d\'informations dans <a href = "http:// www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2 "target =" _blank ">le tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Chaque fois que httpBL bloque un spammeur ou d&eacute;tecte une erreur interne, il ajoute une entr&eacute;e &agrave; ce journal, vous pouvez le consulter ici. Voici est la liste des spammeurs arr&ecirc;t&eacute; par le httpBL soit parce que leur niveau de menace est plus &eacute;lev&eacute; que le niveau de menace consid&eacute;r&eacute;e comme <b>tr&egrave;s</ b> ou mauvaise parce qu\'il voyait les "captcha" et qu\'ils n\'ont pas prouver qu\'ils &eacute;taient des humains.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'Ceci est la liste des humains bloqu&eacute; par httpBL, mais autoris&eacute;s apr&egrave;s qu\'ils aient prouv&eacute; qu\'ils n\'&eacute;taient pas des robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'Ceci est la liste des erreurs internes d&eacute;tect&eacute;es par httpBL en essayant de v&eacute;rifier une adresse IP. Selon l\'erreur, certains d\'entre eux ont &eacute;t&eacute; bloqu&eacute;s et d\'autres peuvent avoir &eacute;t&eacute; autoris&eacute;s &agrave; passer. Pour voir tous les d&eacute;tails, vous devez appuyer sur le bouton <b>"Plus d\'informations"</ b>.';
$txt['httpBL_log_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL spammeurs Log. Soit vous n\'avez pas encore surpris de spammeur ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_logpass_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL Humans Log. Soit personne n\'a prouv&eacute; qu\'il &eacute;tait humain ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_logerror_no_entries'] = 'Il n\'y a pas d\'enregistrements dans le httpBL Errors Log. Soit aucune erreur ne s\'est pr&eacute;sent&eacute;e ou bien vous avez effac&eacute; toutes les entr&eacute;es.';
$txt['httpBL_viewlog_extra'] = 'Plus d\'informations';
$txt['httpBL_viewlog_normal'] = 'Moins d\'informations';
$txt['httpBL_log_show_legend'] = 'Afficher la l&eacute;gende';
$txt['httpBL_log_hide_legend'] = 'Cacher la l&eacute;gende';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Niv. M.';
$txt['httpBL_log_threat_long'] = 'Niveau de Menace - Le niveau de menace de l\'adresse IP dans la base de donn&eacute;es project Honey Pot.';
$txt['httpBL_log_activity'] = 'D. M. A.';
$txt['httpBL_log_activity_long'] = 'Derni&egrave;re Mauvaise Action - Le nombre de jours &eacute;coul&eacute;s depuis cette adresse IP a &eacute;t&eacute; vu faire quelque chose de mal.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspect -  Juste suspect&eacute; d\'&ecirc;tre un spammeur.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - Un robot qui navigue &agrave; la recherche d\'adresses e-mail pour les utiliser plus tard pour envoyer du spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Spammer de Commentaires - Un robot qui post sur des blogs et des forums. Ces postes sont g&eacute;n&eacute;ralement plein de liens vers des sites promue par les spammeurs.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'La page que l\'adresse IP visitait quand httpBL expulser le visiteur';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Oui';
$txt['httpBL_threat_colors'] = 'Signification des couleurs:';
$txt['httpBL_threat_low'] = 'Menace faible';
$txt['httpBL_threat_medium'] = 'Menace moyenne';
$txt['httpBL_threat_high'] = 'Menace forte';
$txt['httpBL_threat_very_high'] = 'Menace tr&egrave;s &eacute;lev&eacute;e';
$txt['httpBL_log_remove_all_confirm'] = 'Etes-vous certains de vouloir supprimer tout les enregistrements httpBL Log? - Cette action aura effet sur l\'ensemble des logs, pas seulement sur celui de cette section.';
$txt['httpBL_log_remove_selected_confirm'] = 'Etes-vous s&ugrave;r de vouloir supprimer tout les enregistrements du journalh ttpBL s&eacute;lectionn&eacute;?';

// Errors
$txt['httpBL_log_no_error'] = 'Aucune erreur';
$txt['httpBL_no_errorNumber'] = 'Il n\'ya pas de num&eacute;ro d\'erreur';
$txt['httpBL_no_defined'] = 'Pas encore d&eacute;fini';
$txt['httpBL_answers_captcha'] = 'R&eacute;ponses sur le captcha';
$txt['httpBL_answer_captcha'] = 'R&eacute;ponse sur le captcha';
$txt['httpBL_good'] = 'Bonne';
$txt['httpBL_bad'] = 'Mauvaise';
$txt['httpBL_empty_ip'] = 'IP vide';
$txt['httpBL_wrote_hidding'] = 'a &eacute;crit sur un espace cach&eacute;';
$txt['httpBL_no_show_captcha'] = 'Niv. M. trop &eacute;lev&eacute;. Nous n\'avons pas affich&eacute; de "captcha"';
$txt['httpBL_no_reverse_ip'] = 'Impossible de v&eacute;rifier. l\'IP n\'est pas normal. Authoris&eacute;e &agrave; passer';
$txt['httpBL_log_key_error'] = 'Impossible de v&eacute;rifier &agrave; cause d\'une erreur de cl&eacute; API. Authoris&eacute;e &agrave; passer';
$txt['httpBL_no_127'] = 'Impossible de v&eacute;rifier. La response[brute] ne commence pas par 127. Authoris&eacute;e &agrave; passer';
$txt['httpBL_unknown'] = 'inconnu';
// MOD httpBL END
Title: Re: httpBL
Post by: snoopy_virtual on August 17, 2010, 12:06:26 PM
I should have talked about this already inside the tutorial, so anybody trying to translate this mod will have it a little easier, but it seems I never find the right time to do it.

OK, I will try to give a quick explanation here and I will put it more clear in the tutorial whenever I can:

To translate this mod completely there are actually 2 different things which need to be translated:


What you (Saint_Frater) have translated just now is the first part. The sentences inside the /Themes/default/languages/Modifications.whatever_language_it_is.php which control all the sentences inside the "Admin" => "MOD httpBL" => "Configuration", "Logs", etc.

As I said, only admins can see this, so it will help any French admin who want to configurate properly this mod but doesn't speak good english, and no, it wasn't translated yet to French, so thanks a lot for the contribution.

The second part, the sentences inside the warning page, had already been translated to French by shaitanfr (see here: http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621 ) so actually French is the first language this mod has been fully translated already.

Thanks again to both of you (shaitanfr and Saint_Frater).

Keep the good work.  ;)
Title: Re: httpBL
Post by: Saint_Frater on August 18, 2010, 06:52:30 AM
no problem

as this mod is very useful, I think it should be usable to everyone, he speaks English or not ...
Title: Re: httpBL
Post by: Trishah on August 18, 2010, 08:33:16 PM
I have a member who wants to login to our forum from work at Yankee Stadium but HoneyPot keeps blocking him.  He can login from from home.  I've read through everything I can find and went to PHP site and tried to find info there about how I can wither whitelist his work IP on there or just for my website but I can't find the answer.  The IP address is:  12.71.69.114

How do I "white list" him?
Title: Re: httpBL
Post by: mjmfighter on August 19, 2010, 09:46:45 AM
Hey,

First off, great mod.  Blocked a couple of spammers already.  but i have a problem with the warning page.  This shows up at the top of the warning page when viewed

Code: [Select]
array( 'tag' => 'random', 'type' => 'unparsed_content', 'content' => '$1', 'validate' => create_function('&$tag, &$data, $disabled', ' $data = strtr($data, array(\'
\' => \'\')); $data = random_bbcode($data); '), ), array( 'tag' => 'random', 'type' => 'unparsed_equals_content', 'content' => '$1', 'disallow_children' => array('email', 'ftp', 'url', 'iurl'), 'disabled_after' => ' ($1)', 'validate' => create_function('&$tag, &$data, $disabled', ' $data[1] = strtr($data[1], array(\'
\' => \'\')); $data[0] = random_bbcode($data); '), ),

How can i fix this?
Title: Re: httpBL
Post by: snoopy_virtual on August 19, 2010, 09:55:10 AM
I have a member who wants to login to our forum from work at Yankee Stadium but HoneyPot keeps blocking him.  He can login from from home.  I've read through everything I can find and went to PHP site and tried to find info there about how I can wither whitelist his work IP on there or just for my website but I can't find the answer.  The IP address is:  12.71.69.114

How do I "white list" him?

Hi Trishah,

To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

Normally, every time I need to send them an email, they answer me pretty soon.

Anyway, if you check exactly why this IP is black listed (see here: http://www.projecthoneypot.org/ip_12.71.69.114 ) you will see that somebody has been sending emails selling viagra from that IP, so if this is the address of your friend's work, I will suggest it would be better to inform the guy in charge of computer security there.

I suppose, if that's the IP of Yankee Stadium, they must have somebody responsible for computer security.

It looks like either one of the computers inside the stadium is infected with a trojan sending that emails or one of the workers is using one of the computers to make some extra money.
Title: Re: httpBL
Post by: snoopy_virtual on August 19, 2010, 09:59:02 AM
Hey,

First off, great mod.  Blocked a couple of spammers already.  but i have a problem with the warning page.  This shows up at the top of the warning page when viewed

Code: [Select]
array( 'tag' => 'random', 'type' => 'unparsed_content', 'content' => '$1', 'validate' => create_function('&$tag, &$data, $disabled', ' $data = strtr($data, array(\'
\' => \'\')); $data = random_bbcode($data); '), ), array( 'tag' => 'random', 'type' => 'unparsed_equals_content', 'content' => '$1', 'disallow_children' => array('email', 'ftp', 'url', 'iurl'), 'disabled_after' => ' ($1)', 'validate' => create_function('&$tag, &$data, $disabled', ' $data[1] = strtr($data[1], array(\'
\' => \'\')); $data[0] = random_bbcode($data); '), ),

How can i fix this?

Hi mjmfighter,

There is nothing inside the warning page I did with any connexion with that array there.

Have you modified the original warning page somehow?

What version of SMF and what version of the mod are you using?

Can you give me a link to your warning page so I can look at it myself?
Title: Re: httpBL
Post by: mjmfighter on August 19, 2010, 12:55:12 PM
i am using SMF 2.0 RC3 and have not modified the page in any way.

here is the link to my warning page http://cnkgaming.com/site/warning.php
Title: Re: httpBL
Post by: snoopy_virtual on August 20, 2010, 09:00:59 AM
i am using SMF 2.0 RC3 and have not modified the page in any way.

here is the link to my warning page http://cnkgaming.com/site/warning.php

I think I have found the problem.

When I tried to see your warning page I saw the error message you said, but you didn't gave me the full message.

Apart from those lines about arrays you were talking about, there is another line more, with the real error message:

Code: [Select]
<b>Notice</b>:  SSI.php was unable to load a session!
This may cause problems with logout and other functions - please make sure SSI.php is included before
*anything* else in all your scripts! in
<b>/usr/www/*****/public/site/SSI.php</b> on line <b>172</b>

This means your warning page cannot work properly because it cannot find the file SSI.php or because you have a SSI file corrupted.

The file SSI.php is an important part of SMF and it has to be always in the same folder as the index.php of your forum (in your case the folder /usr/www/*****/public/site/ ) and without this file this mod is not going to work properly.

Please make sure you uploaded to your server that file to the proper folder when you were installing SMF. If you didn't (or just in case you uploaded a corrupted one) take a fresh copy of SMF 2.0 RC3 from here: http://download.simplemachines.org/

You will find inside the file SSI.php you need and you will be able to check if you have any other important files missing.

After you do that, check if you can see now your warning page properly and if the mod is working and tell us.

You can check if the mod is working just activating it, waiting a few hours and checking the mod logs. Depending on how many visitors you have, in some forums the mod stop one spammer every 24 hours, but in most forums the mod normally stop one spammer every hour or even every few minutes.
Title: Re: httpBL
Post by: mjmfighter on August 20, 2010, 06:49:00 PM
I have uploaded the default SSI.php file, and the error is still there, but i do not see the code that you saw anymore. 

Edit:
I found the problem, one of the mods installed something wrong into the subs.php file.  all fixed.  thanks for your help
Title: Re: httpBL
Post by: snoopy_virtual on August 21, 2010, 05:46:56 AM
I have uploaded the default SSI.php file, and the error is still there, but i do not see the code that you saw anymore. 

Edit:
I found the problem, one of the mods installed something wrong into the subs.php file.  all fixed.  thanks for your help

Glad to hear it.

Let me know if you get any more problems.  ;)
Title: Re: httpBL
Post by: allotments4all on August 29, 2010, 07:35:13 AM
Hi,

Bit of a puzzler this, hopefully easily cleared up.

Installed the mod yesterday, all looks good apart from one thing.

I've set the 'Threat level considered bad' to 10, and checked in the db and it has been set, but I'm still getting entries like these on the Spammers log

Today at 12:16:44 78.147.8.138 3 38 Yes

the threat level of this entry is 3.

Is this users / IP blocked or not?

Thanks

Dan
Title: Re: httpBL
Post by: snoopy_virtual on August 30, 2010, 08:42:44 AM
Hi,

Bit of a puzzler this, hopefully easily cleared up.

Installed the mod yesterday, all looks good apart from one thing.

I've set the 'Threat level considered bad' to 10, and checked in the db and it has been set, but I'm still getting entries like these on the Spammers log

Today at 12:16:44 78.147.8.138 3 38 Yes

the threat level of this entry is 3.

Is this users / IP blocked or not?

Thanks

Dan

No, that IP has not been blocked.

The log writes down every IP inside Honeypot's database. If they are blocked or not depends on the level you set in your configuration, but you can see in your log all of them, so you can decide if you are letting pass too many or blocking too many.

Anyway, I just realized I have a mistake here:

In this case, if you see the "extra info" you will see it says "0 answers in the captcha", and it should say instead: "Threat level too low. Didn't see the captcha" or something like that.

My mistake, because when I was building the logs I have always the 'Threat level considered bad' down to 1 so I forgot to consider this possibility.

I have put this in my list of "bugs to sort in future versions" (whenever I have time to do another version).

Thanks for pointing out this bug.

It's not a serious bug, because the mod is working as expected, but the log is not too clear in these cases and it can lead people to confusion.
Title: Re: httpBL
Post by: thing2 on September 01, 2010, 05:16:35 PM
I've had the mod loaded for about a month now but have noticed that its blocking valid members who just happen to be using an IP assigned to them from a range.  Is there anyway of the mod checking to see that they are already a valid member who just happen to have been assigned a dodgy IP, if not valid then send them off to the warning page?

Also the valid members who have been caught are saying that they are entering the information required but then nothing happens for them.  I've checked our email and nothing has been coming thru to allow us to allow them access.  Are we missing something?  I've read the instructions and couldn't see anything there to help me with this.

And last question.  We have a member who uses a dongle on her laptop when she's at home and this is not letting her in at all.  If there was a way of adding an IP in that you know is ok, because I'm sure that the dongle would have a static IP

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on September 02, 2010, 08:25:44 AM
I've had the mod loaded for about a month now but have noticed that its blocking valid members who just happen to be using an IP assigned to them from a range.  Is there anyway of the mod checking to see that they are already a valid member who just happen to have been assigned a dodgy IP, if not valid then send them off to the warning page?

We have discussed this a few times and I already added it long ago to our list of "Things to do in the near future":

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fdescargas%2FMOD-httpBL%2Froad_map.jpg&hash=395755ad68fae109c7bdc090afb41562)
http://custom.simplemachines.org/mods/index.php?mod=2155#post_roadmap (http://custom.simplemachines.org/mods/index.php?mod=2155#post_roadmap)

So this feature will be available on the next version of the mod. (Whenever I have time to finish it).

Just now, unfortunately, there is no way of doing this yet and the only thing you can do (as I have also explained a few times already) is to check your logs to see the threat level these users have and change your configuration accordingly so most of them can access your site.

Check for example the problem shaitanfr had a month ago:

http://www.simplemachines.org/community/index.php?topic=366399.msg2698116#msg2698116

And read all the conversation we had about it, from reply #244 to reply #250.

=========================================================

Also the valid members who have been caught are saying that they are entering the information required but then nothing happens for them.  I've checked our email and nothing has been coming thru to allow us to allow them access.  Are we missing something?  I've read the instructions and couldn't see anything there to help me with this.

That's not normal. You must have installed it wrong somehow.

I have the mod installed in a few different forums and I check this every now and then and it always works properly for me.

What I do to check it is to force my computer to get a bad IP (one in HoneyPot's database) and visit one of my forums to see what happens.

When I do that, I'm always re-directed to the "warning" page, and when I tell that page that 2 + 2 equals 4 and 3 + 4 equals 7 (or whatever questions I get) I'm always allowed inside the forum no problem.

If you want me to check your forum, contact me through Skype whenever you see I'm online and I will check your installation and your warning page to see why it's not working properly.

I have Skype connected more or less 10 hours every day sorting problems for my customers and I don't mind to stop working for a while to sort a problem somebody have with any of my mods.

And don't worry about money. I only charge the customers. Whenever I sort a problem somebody has with any of my mods I always do it for free.  ;)

=========================================================

And last question.  We have a member who uses a dongle on her laptop when she's at home and this is not letting her in at all.  If there was a way of adding an IP in that you know is ok, because I'm sure that the dongle would have a static IP

If a laptop have a static IP and this IP is black-listed in HoneyPot's database then you can be 100% sure there is a trojan inside that laptop sending spam (and who knows what else it's doing). (Assuming, of course your friend is not sending herself spam on purpose). So the first thing that laptop owner should do is to clean the laptop.

If she doesn't know how to do that or if she has already tried and she cannot find the trojan she should contact a good specialist to do that. Sometimes the viruses (at least the new ones created lately) are very good at hiding themselves and it's not easy at all to find them even with the best anti-virus and anti-trojan programs in the market.

Of course one of the best specialist about this I know is myself.   8)

Remember what I said a minute ago about me sorting computer problems 10 hours a day? That's one of the main problems I sort every day. Using Skype and TeamViewer I can access any computer in the world and kill all the viruses inside it.

So if your friend doesn't know any other specialist (or if she just want the best) tell her to contact me and I will sort that out.

Of course, as I said before, I charge my customers and this kind of work will fall into that category, so I would need to charge her for my work, but tell her not to worry too much about it though: My fees are pretty cheap. :)

=========================================================

After her laptop is clean, it's very easy to get an IP "white-listed" inside HoneyPot's database and we have discussed it here many times too.

Check for example the instructions I gave a couple of weeks ago to the guy with the computer inside the Yankee Stadium:

http://www.simplemachines.org/community/index.php?topic=366399.msg2751909#msg2751909

But whatever you do, don't try to white-list the IP before that laptop is fully cleaned. If you get that IP white-listed and the trojan is still inside it sending spam, the IP will be black-listed again in a few hours and it will be a lot more difficult to white-list it back again a second time.

(By the way, I wonder what happened with that computer inside Yankee Stadium. After I told them what to do nobody have contacted me back telling me if everything went OK or what.)  >:(

=========================================================

[edited on 5-sep-2010 to correct some spelling mistakes]
Title: Re: httpBL
Post by: Propbndr on September 05, 2010, 06:33:33 AM
I have tried several times to install this mod and keep getting the following error message:

Quote
!!
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

I am using SMF Version 1.1.11, default theme.  Any ideas where to start looking for the cause?
Title: Re: httpBL
Post by: snoopy_virtual on September 05, 2010, 06:48:27 AM
I have tried several times to install this mod and keep getting the following error message:

Quote
!!
Error in Package Installation
At least one error was encountered during a test installation of this package. It is strongly recommended that you do not continue with installation unless you know what you are doing, and have made a backup very recently. This error may be caused by a conflict between the package you're trying to install and another package you have already installed, an error in the package, a package which requires another package that you don't have installed yet, or a package designed for another version of SMF.

I am using SMF Version 1.1.11, default theme.  Any ideas where to start looking for the cause?

When you get an error message like that one, you also get underneath a list of all the files the package has, telling you which ones are ok and which one is giving you the error.

I need to know exactly which one is the file causing the error to see why you are getting it.
Title: Re: httpBL
Post by: Propbndr on September 05, 2010, 04:27:48 PM
Sorry, did not see the list.  Here it is:

Quote
Installing this package will perform the following actions:
   Type    Action    Description
1.    Execute Modification    ./Sources/Load.php    Test successful
2.    Execute Modification    ./Sources/Subs.php    Test successful
3.    Execute Modification    ./index.php    Test successful
4.    Execute Modification    ./Themes/default/index.template.php    Test failed
5.    Execute Modification    ./Themes/default/languages/Modifications.english.php    Test successful
6.    Execute Modification    ./Themes/default/languages/Modifications.english-utf8.php    Test successful
7.    Execute Modification    ./Themes/default/languages/Modifications.english_british.php    Skipping file
8.    Execute Modification    ./Themes/default/languages/Modifications.english_british-utf8.php    Test successful
9.    Execute Modification    ./Themes/default/languages/Modifications.spanish.php    Skipping file
10.    Execute Modification    ./Themes/default/languages/Modifications.spanish-utf8.php    Skipping file
11.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es.php    Skipping file
12.    Execute Modification    ./Themes/default/languages/Modifications.spanish_es-utf8.php    Test successful
13.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin.php    Skipping file
14.    Execute Modification    ./Themes/default/languages/Modifications.spanish_latin-utf8.php    Test successful
15.    Extract File    ./Sources/httpBL_Subs.php    
16.    Extract File    ./Sources/httpBL_Config.php    
17.    Extract File    ./Themes/default/httpBL.template.php    
18.    Extract File    ./Themes/default/httpBL_css.css    
19.    Extract File    ./warning.php    
20.    Execute Code    install_1.php

It appears that the Index.Template.php failed the test, what ever that is.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 07:18:05 AM
I explained inside the tutorial how to do the changes to the file index.template.php but I suppose it wasn't very clear.

The quickest way to sort this would be if I see your index.template.php myself.

Look for that file inside your /Themes/default/ folder and send it to me by email:

info [at] snoopyvirtualstudio [dot] com

I will check it to see why it's giving you error and I will sort it.
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 07:47:47 AM
Sent index.template.php to you via email.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 09:10:32 AM
I see the error.

You have installed "Simple Portal", and the way I have done the mod, it's not compatible with Simple Portal.

Sorry, my mistake. I have already write it down in my list of changes I need to do in the next version so this mod will be compatible with Simple Portal as soon as I finish the next version, because there are a lot of people using it. It's estrange though nobody told me before about it.

In the mean time it's very easy to make them compatibles. You just need to edit manually the file index.template.php and then ignore the error message telling you the test failed when trying to change that file.

=====================================

To edit that file manually you need to do 2 different changes.

Inside the tutorial I only explained the first one because it's the only important one and I can see you have already done that change yourself.

The second change is not so important, because it's only something "aesthetic" and it only affects the look of the mod, but not the way it works.

I didn't talked too much about this second change inside the tutorial because, before I had the tutorial finished, I started doing a new version for the mod and I thought it would be better to finish first the new version and then finish the tutorial with the new things in it.

Anyway, with all the problems I had lately in my personal life, it seems this new version is going to take me longer than I thought, so I'm going to explain it here just in case anybody has the same problem:

This second change needed is not too complicated. You just need to look (inside the file index.template.php) for the function:

Code: [Select]
function template_menu()

Inside that function look for the lines:

Code: [Select]
// Work out where we currently are.
$current_action = 'home';

And underneath them add these 2 lines:

Code: [Select]
if ($context['current_action'] == 'httpBL')
$current_action = 'admin';

The problem is, when you install Simple Portal it changes the lines saying:

Code: [Select]
// Work out where we currently are.
$current_action = 'home';

To:

Code: [Select]
// Work out where we currently are.
global $modSettings;
$current_action = $modSettings['sp_portal_mode'] == 3 && empty($context['standalone']) && empty($context['disable_sp']) ? 'forum' : 'home';

So my mod cannot find the original lines and give you the error.

The solution is very easy. Just add my 2 lines somewhere underneath the lines you have just now but before the function finish.

For example, a good place will be to look for these other lines:

Code: [Select]
// Are we using right-to-left orientation?
if ($context['right_to_left'])
{
$first = 'last';
$last = 'first';
}
else
{
$first = 'first';
$last = 'last';
}

And write my 2 lines just above these ones.

As you can see I have already done myself this change in your file and I have sent it back to you by email.

=====================================

Once you have the file index.template.php edited manually, upload it back to your forum and try to install the mod again.

You will get again the error telling you the installation script cannot do the changes required to the file index.template.php, because they have been done manually, but (if you don't see any more errors and this is the only one) just ignore it and continue with the installation.

After you finish with the installation check if everything is working as expected and let me know either if everything it's OK or if it isn't.
Title: Re: httpBL
Post by: shaitanfr on September 06, 2010, 09:16:25 AM
Sorry, my mistake. I have already write it down in my list of changes I need to do in the next version so this mod will be compatible with Simple Portal as soon as I finish the next version, because there are a lot of people using it. It's estrange though nobody told me before about it.


I use SP but even if I do not remember, I have certainly done manually install .....
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 09:35:08 AM
THANK YOU SNOOPY!  I uploaded the index file.  The mod installed just as you described, no errors seen after install.  I hope it reduces the number of bogus registrations to my forum.  Thanks for the really fast response.
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 09:40:40 AM
I use SP but even if I do not remember, I have certainly done manually install .....

Doing the installation manually they are perfectly compatibles.

The error only appears when you try to install the mod automatically, and this is what I need to change, because for most people it's always better (and easier) to install the mod using the "Packages Manager", and not everybody knows enough code to edit this kind of files manually.

THANK YOU SNOOPY!  I uploaded the index file.  The mod installed just as you described, no errors seen after install.  I hope it reduces the number of bogus registrations to my forum.  Thanks for the really fast response.

Thank you for telling me about this bug. If you hadn't tell me I wouldn't have known I needed to sort it.

And yes, it reduces the number of bogus registrations considerably, but anyway it's better if you install as well my other mod StopSpammer:

http://custom.simplemachines.org/mods/index.php?mod=1547

With both mods installed you will see a big difference.
Title: Re: httpBL
Post by: Propbndr on September 06, 2010, 10:26:39 AM
SMF was installed by my ISP so I had nothing to do with its setup or location.  I installed simple portal as a easy way of giving my site a non-forum style portal.   I installed Stop Spammer before I tried to install httpbl.  It installed without any problems.  Thank you again.   :)

DEATH TO ALL SPAMMERS!  >:(
Title: Re: httpBL
Post by: Vandaahl on September 06, 2010, 07:18:42 PM
I have a problem with warning.php on my SMF 2 RC3 install. When I open warning.php all I see is a blank page, so there's something going wrong there. The file is in the root of my forum, along with SSI.php. The httpBL mod seems to be working fine otherwise, but I can't open warning.php. What could be wrong? I tried replacing it with a fresh copy of the file, but that didn't work...
Title: Re: httpBL
Post by: snoopy_virtual on September 06, 2010, 08:53:13 PM
I have a problem with warning.php on my SMF 2 RC3 install. When I open warning.php all I see is a blank page, so there's something going wrong there. The file is in the root of my forum, along with SSI.php. The httpBL mod seems to be working fine otherwise, but I can't open warning.php. What could be wrong? I tried replacing it with a fresh copy of the file, but that didn't work...

Even if the mod seems to be working fine we should try to sort this problem, because any human visitor (no spammer) with a bad IP will be redirected to that page and will see just a blank page with no information at all and won't know what to do.

I have been checking your site and I can see you have a lot of mods installed in it. I don't know if any of them could be interacting with this one.

Anyway it's the first time I see this thing happening (a blank page when trying to see the warning page), so just now I have no idea if the error can be caused by any of the other mods you have or if it may be because something else.

I will continue thinking about it to see if I get any ideas about what can be happening, but I think it would be a lot faster if you contact me through Skype so we can talk about it and sort it together.
Title: Re: httpBL
Post by: Wizzlefits on September 07, 2010, 01:16:59 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php
Code: [Select]
  error_reporting(E_ALL);

it should look like this...

Code: [Select]
<?php
  error_reporting
(E_ALL); 
/**********************************************************************************
* warning.php 
Now call the page in your browser, it "should" show you an error.  Should I say!
If it still shows a blank page then it's down to the the "echo" trick.
Might be wrong, but I really think Snoopy is correct that one of your mods is effecting it. Might even be one that was uninstalled and left behind a line or two.

@Snoopy
warning.php gives me this error... 2 different sites, totally different mods.
Undefined index:  response in /warning.php on line 128
Which is..
$response = $_SESSION['response'];
Remark it out... no errors... but......?

Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 06:33:13 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php
Code: [Select]
  error_reporting(E_ALL);

it should look like this...

Code: [Select]
<?php
  error_reporting
(E_ALL); 
/**********************************************************************************
* warning.php 
Now call the page in your browser, it "should" show you an error.  Should I say!
If it still shows a blank page then it's down to the the "echo" trick.
Might be wrong, but I really think Snoopy is correct that one of your mods is effecting it. Might even be one that was uninstalled and left behind a line or two.

error_reporting(E_ALL); doesn't show any errors unfortunately.

I just tried the echo trick (good idea!), and the script stops right after it loads SSI.php. I tried a vanilla copy of SSI (I have a small modification in my SSI), but it did not solve the problem.

snoopy_virtual, I sent you a personal message btw.
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 06:38:23 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php
Code: [Select]
  error_reporting(E_ALL);

etc...

Wizzlefits is right. That's one of the first things I want to do as soon as Vandaahl contact me, so we can have an idea about where is the error. Anyway, I would like to look first (using phpinfo) inside the server properties to see what else (apart from the error_reporting) has been turn off in that server and how is everything in there.

The possibilities are too many (for example the state of the globals can also affect the mod, as you are going to understand if you continue reading) and that's why I suggested it was better if we look at them together while talking through Skype.

Even better. We can make an appointment. Look for a day and time suitable for the 3 of us (I mean Vandaahl, Wizzlefits and myself) and connect to Skype the 3 of us at the same time to look at it.

As they say, 6 eyes see more than 2.

And of course, anybody else interested in this problem will be welcome. As far as I know there is no limit on how many people can join a multi-conference in Skype.

@Snoopy
warning.php gives me this error... 2 different sites, totally different mods.
Undefined index:  response in /warning.php on line 128
Which is..
$response = $_SESSION['response'];
Remark it out... no errors... but......?

shaitanfr already asked that here:

http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621

I gave him a quick answer then:

http://www.simplemachines.org/community/index.php?topic=366399.msg2692346#msg2692346

But I can explain it a little more:

When you are NOT just "visiting" the warning page (to check the design or something like that) but you have been re-directed to the warning page by the mod itself, the process your IP follows is this one:

First of all the mod try to find your IP and it sends it to PHP (Project Honey Pot) to see if there is any information in there, using the function httpBL_dnslookup().

All the "response" from PHP is then stored in an array called $response.

If there is no information in the DB about that IP, $response has only one value: The boolean value "FALSE", but if there is any information there, $response is a big array with a lot of values in it.

Next the mod checks some of the values of $response. If it is FALSE or if the threat level is too low, etc, the mod just doesn't do anything else and SMF continue loading as always.

But if the mod decide your IP is a bad one and re-directs you to the warning page, the first thing it does is to stop loading SMF and start a brand new script, so all the variables SMF had created until that point are lost.

But we don't want to loose all the values in $response, so before re-directing you anywhere, the mod store all those values inside the server using one of the GLOBAL variables available there. In this case inside $_SESSION['response'].

Then, as soon as you are already inside the warning page, the script need to read the values inside the global $_SESSION to restore the array $response and use it.

Maybe now you can understand better what I told shaitanfr here:

...

The warning.php page is supposed to work when somebody have a bad IP and is redirected here through the mod.

When that happen they already have a "response" inside their "$_SESSION", so there are no errors. (Shouldn't be at least)

You are getting the errors because you are going to the page warning.php directly to see how it looks like, without passing first through the mod, so you haven't got a "response" inside your "$_SESSION".

The way you are modifying the page warning.php you are not going to have any errors when you visit it to see how it looks like, but (if you are not careful) maybe it's not going to work properly when a spammer arrives to it.

I will sort this in the next version so you never get an error visiting the page warning.php in any case. Either when you are redirected there automatically or when you are just viewing the page to see how it looks like.

In the mean time I think it would be better if you leave the page the way it was and just ignore any errors you may get when you just visit it.
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 06:48:08 AM
@Vandaahl
Just for grins & giggles...
Put the following just below <?php
in your warning.php
Code: [Select]
  error_reporting(E_ALL);

etc...

Wizzlefits is right. That's one of the first things I want to do as soon as Vandaahl contact me, so we can have an idea about where is the error. Anyway, I would like to look first (using phpinfo) inside the server properties to see what else (apart from the error_reporting) has been turn off in that server and how is everything in there.

The possibilities are too many (for example the state of the globals can also affect the mod, as you are going to understand if you continue reading) and that's why I suggested it was better if we look at them together while talking through Skype.

Even better. We can make an appointment. Look for a day and time suitable for the 3 of us (I mean Vandaahl, Wizzlefits and myself) and connect to Skype the 3 of us at the same time to look at it.

As they say, 6 eyes see more than 2.

And of course, anybody else interested in this problem will be welcome. As far as I know there is no limit on how many people can join a multi-conference in Skype.

I think it is really cool that you offer support like this! Do you have a MSN account? I would prefer that over Skype.

Regarding my warning.php issue: I'm pretty sure it must be a mod conflict, because I have a copy of my site running locally and it does not work there either. But it HAS worked locally, because I remember testing warning.php and it worked fine. But now it doesn't.
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 06:59:00 AM
snoopy_virtual, I sent you a personal message btw.

Message answered.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on September 07, 2010, 09:44:37 AM
Problem half sorted.

We have been (Vandaahl and me) checking his site and we have found the problem was inside his SSI.php file, more or less around line 150:

Code: [Select]
// Load the current or SSI theme. (just use $ssi_theme = id_theme;)
loadTheme(isset($ssi_theme) ? (int) $ssi_theme : 0);

After adding a lot of "echo" statements and deleting some lines to see what happen, we discovered that as soon as we arrived to that line the page crashed and stopped.

It means any of the mods Vandaahl has in his site has modified the function loadTheme somehow.

We haven't found what mod can be doing this, but as we don't need any SMF theme for the warning page we have changed those lines for these ones:

Code: [Select]
// Load the current or SSI theme. (just use $ssi_theme = id_theme;)
// Only if we are not coming from the httpBL_warning page
if (!$httpBL_warning) {
    loadTheme(isset($ssi_theme) ? (int) $ssi_theme : 0);
}

And now his warning page works as expected.

Still I would like to know what mod is causing this, to find a more permanent solution and make this mod also compatible with the one causing the problem, but the function loadTheme(), defined inside the file /Sources/Load.php has more than 400 lines, so it would take too long to compare the original one with the modified one to find why it's crashing.

Any ideas?
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 12:01:52 PM
I will start checking which MOD it could be when I have some extra time. I think I can narrow the list of mods down to maybe 2 or 3, because that's how many mods I installed AFTER I installed httpBL (which was working correctly up to that point). I will report back here soon.
Title: Re: httpBL
Post by: Vandaahl on September 07, 2010, 01:38:22 PM
I made a Dutch translation of Warning.php:

/*******************
*  Set 2 - Dutch *
*******************/
$txt['httpBL_warn_title_2'] = 'Waarschuwing';
$txt['httpBL_warn_head_2'] = '<span class="red">WAARSCHUWING!</span><br />Je computer is mogelijk betrokken bij schadelijk online gedrag.';
$txt['httpBL_warn_infected_2'] = 'Dit komt waarschijnlijk doordat je computer, of een andere computer binnen je lokale netwerk, <b>besmet is met een virus, trojan of worm</b>. Besmette computers worden door criminelen gebruikt, zonder dat hun eigenaar daar erg in heeft, om spam mee te verzenden en websites zoals deze aan te vallen.';
$txt['httpBL_warn_dinamic_IP_2'] = 'Als je gebruik maakt van een dynamisch IP adres (het type dat iedere keer verandert zodra je je computer opnieuw opstart) is het probleem mogelijk dat je een IP gebruikt dat eerder werd toegeschreven aan een besmette computer. Daarom kun je proberen je computer te herstarten en deze website opnieuw te openen om te kijken of je hem nu wel normaal kunt benaderen.';
$txt['httpBL_warn_technician_1_2'] = 'Om te testen of je computer besmet is met een virus en om deze te verwijderen, raden we je aan om zo snel mogelijk een computer technicus te contacteren en hem te vragen om <b>www.projecthoneypot.org</b> te bezoeken en daar je IP adres te controleren:';
$txt['httpBL_warn_technician_2_2'] = 'om te zien zien wat er fout ging.';
$txt['httpBL_warn_info_2'] = 'Voor meer informatie, neem contact op met:';
$txt['httpBL_warn_at_2'] = 'at';
$txt['httpBL_warn_dot_2'] = 'punt';
$txt['httpBL_warn_hurry_2'] = 'Als je nu geen tijd hebt om je computer of IP adres te controleren, of je vermoedt een vals alarm, dan kun je onze website tijdelijk bereiken. We stellen hieronder 2 vragen die spam robots niet kunnen beantwoorden, maar echte bezoekers wel. Vul aub alleen de eerste vraag in om te bewijzen dat je geen robot bent en druk op de <b>"Verstuur"</b> knop:';
$txt['httpBL_warn_send_2'] = 'Verstuur';
$txt['httpBL_warn_blank_2'] = 'Laat dit veld leeg.<br />Typ het antwoord in het bovenstaande invoerveld.';
$txt['httpBL_warn_wrong_answer_2'] = 'Misschien hebben we het verkeerd uitgelegd of het je op de verkeerde knop gedrukt. Hier zie je twee verschillende rijen. In de eerste rij zie je een eenvoudige rekensom, een leeg veld en een "Verstuur" knop. In dat eerste lege veld moet je het antwoord (cijfer) invullen en op de knop klikken. Het veld op de tweede rij moet je leeg laten.';
$txt['httpBL_warn_good_answer_2'] = 'Je antwoord was correct, maar let wel dat een robot, zelfs als hij de vraag niet begrijpt, het juiste antwoord zou kunnen invullen door willekeurige cijfers te proberen. Natuurlijk is het vrijwel onmogelijk om het juiste antwoord 2 keer achter elkaar te raden, dus, als je het niet erg vindt, beantwoordt aub deze laatste vraag en druk nogmaals op de <b>"Verstuur"</b> knop:';
Title: Re: httpBL
Post by: Propbndr on September 08, 2010, 06:40:12 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.
Title: Re: httpBL
Post by: Vandaahl on September 08, 2010, 07:21:25 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.

You check the checkbox to enable the mod. Is that really hard to understand?
Title: Re: httpBL
Post by: snoopy_virtual on September 08, 2010, 08:15:00 AM
OK, a simple question (I hope).  How do you tell if httpbl is enabled?  There is a check box in the httpbl admin panel that says enable/disable.  Currently it is empty.  I have filled in the other information but did nothing with the check box in fear of disabling the mod.

You check the checkbox to enable the mod. Is that really hard to understand?

Yes, with the checkbox checked the mod is ON. With the checkbox unchecked the mod is OFF.

Anyway I suppose Propbndr was not asking something so obvious. His question actually is "How do you tell if httpbl is enabled?"

The problem here is you don't see any difference at all in your forum with the mod enable or disable, so it's not easy to tell if the mod is working properly or not.

Of course there are differences, so you can find out if the mod is working.

There are some ways to check if the mod is working, but the easiest way is to enable the mod, wait a couple of hours and then check the mod's log.

Depending on the traffic your site has and a few other things, the mod stop at least one spammer every hour or every couple of hours.

Of course that's not a fix rule. In some of my forums, some days I see the mod has stopped only 5 spammers, and other days has stopped a hundred, but I haven't seen yet a forum where the mod didn't stop a spammer after 24 hours working.
Title: Re: httpBL
Post by: snoopy_virtual on September 08, 2010, 08:20:56 AM
I made a Dutch translation of Warning.php:

Thanks a lot mate.

Now the mod has already been translated to a few different languages, so I will start a "language pack" as soon as I can so anybody interested can find them all in one place.
Title: Re: httpBL
Post by: Propbndr on September 08, 2010, 10:01:27 AM
You are right Snoopy, I was asking how you could tell if it was enabled.  Some mods enable themselves when they are loaded.  Others, like this one, require action by the admin.

Thanks, Snoopy. 
Title: Re: httpBL
Post by: Vandaahl on September 13, 2010, 08:46:51 AM
I am having an issue with httpBL.template.php. When I view the httpBL Spammers log, and I go to page 2 for example, then the upper part of the admin area disappears, because the page index URL's are not correct. The URL should be index.php?action=admin;area=httpBL;sa=viewlog;sort=date;desc;start=30, but in my case it is index.php?action=httpBL;area=httpBL;sa=viewlog;sort=date;desc;start=30 (I highlighted the wrong part).

It seems like $context['page_index'] is not properly set, is that correct?
Title: Re: httpBL
Post by: snoopy_virtual on September 13, 2010, 09:16:57 AM
I am having an issue with httpBL.template.php. When I view the httpBL Spammers log, and I go to page 2 for example, then the upper part of the admin area disappears, because the page index URL's are not correct. The URL should be index.php?action=admin;area=httpBL;sa=viewlog;sort=date;desc;start=30, but in my case it is index.php?action=httpBL;area=httpBL;sa=viewlog;sort=date;desc;start=30 (I highlighted the wrong part).

It seems like $context['page_index'] is not properly set, is that correct?

The correct link should be:

action=httpBL;sa=viewlog;sort=date;desc;start=30

whithout any area=whatever

The mod httpBL has its own action defined (independent of the rest of actions you can do with SMF) and inside the mod there are only a few sub-actions (sa) defined (config, viewlog, etc) but no areas at all.

If you have anything different there is something wrong somewhere, but I cannot imaging where.

If the problem persists contact me through Skype and we check it out.
Title: Re: httpBL
Post by: Vandaahl on September 13, 2010, 10:18:18 AM
The correct link should be:

action=httpBL;sa=viewlog;sort=date;desc;start=30

Oh really? Hmm... The reason I thought action=admin should be there, is because without action=admin a few missing index errors show up in my log when I browse the httpBL spam log.

I will go through the installation files to see if anything went wrong there.
Title: Re: httpBL
Post by: Wizzlefits on September 13, 2010, 08:34:20 PM
Snoopy
SMF 1.1.11 uses...
action=httpBL;sa=yada yada

SMF 2.0 RC3 uses...
action=admin;area=httpBL;sa=yada yada

Vandaahl is using 2.0 RC3  ;)
Title: Re: httpBL
Post by: Wizzlefits on September 13, 2010, 09:03:43 PM
Vandaahl,
Ya know, it looks like "maybe" when the mod installed, something went haywire and it installed the 1.1.11 version. Although I don't think 1.1.11 would even work on 2.0 RC3. But what do I know! lol!

Just tried the URL from 1.1.11 in 2.0 RC3 and it WORKED!
Well, it has the same problem as your having, missing part of the admin page.
Sooooo.....
Make sure that you have /Sources/httpBL_2_Config.php
and not /Sources/httpBL_Config.php


That was a dumb idea! ::)
Unless.... :-X
Title: Re: httpBL
Post by: Vandaahl on September 14, 2010, 07:41:55 AM
Vandaahl,
Ya know, it looks like "maybe" when the mod installed, something went haywire and it installed the 1.1.11 version. Although I don't think 1.1.11 would even work on 2.0 RC3. But what do I know! lol!

Just tried the URL from 1.1.11 in 2.0 RC3 and it WORKED!
Well, it has the same problem as your having, missing part of the admin page.
Sooooo.....
Make sure that you have /Sources/httpBL_2_Config.php
and not /Sources/httpBL_Config.php


That was a dumb idea! ::)
Unless.... :-X

Hi Wizzlefits, thank you for thinking along here! Yes, I forgot to mention I am using SMF 2, sorry about that. I checked the installation files, and it looks like it installed the correct version of httpBL, including httpBL_2_Config.php.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2010, 09:38:36 AM
Sorry. I thought Vandaahl was using SMF 1.1.11, so yesterday I only checked that part.

I have just checked it on my SMF 2.0 RC3 forum and I have the same problem, so it means there is a bug in that part of the mod.

I will sort that as soon as I can.
Title: Re: httpBL
Post by: snoopy_virtual on September 14, 2010, 09:57:52 AM
OK, I have sorted it.

I will include this in the next version I'm doing. In the mean time, any of you with SMF 2.0 (RC2 or RC3) download the file attached httpBL_2_Config.zip, unzip it to extract the file httpBL_2_Config.php and put it inside your Sources folder instead of the one you must have there.

That will sort the bug Vandaahl was talking about.
Title: Re: httpBL
Post by: Wizzlefits on September 14, 2010, 10:24:28 AM
OK, I have sorted it.

I will include this in the next version I'm doing. In the mean time, any of you with SMF 2.0 (RC2 or RC3) download the file attached httpBL_2_Config.zip, unzip it to extract the file httpBL_2_Config.php and put it inside your Sources folder instead of the one you must have there.

That will sort the bug Vandaahl was talking about.
Dangit Snoopy!
You sorted it to fast! 8)
I was just 8 minutes to slow.  :P
Code: [Select]
array httpBL_ViewLog()
- show a list of logged access attempts by spammers and internal errors from MOD httpBL.
- is accessed by ?action=admin;area=httpBL;sa=viewlog.
              -  ?action=admin;area=httpBL;sa=viewlogpass.
              -  ?action=admin;area=httpBL;sa=viewlogerror.

Should have waited to get more coffee! LOL!
Title: Re: httpBL
Post by: Vandaahl on September 14, 2010, 10:32:14 AM
Thank you Snoopy, problem solved!
Title: Re: httpBL
Post by: Ryan2320 on September 18, 2010, 12:27:00 PM
Can you replace the captcha and use recaptcha for this mod? or would that be too complicated?

Ryan

Title: Re: httpBL
Post by: snoopy_virtual on September 18, 2010, 03:46:11 PM
Can you replace the captcha and use recaptcha for this mod? or would that be too complicated?

Ryan

I have explained this many times, but anyway, OK. Here we go again:

It doesn't matter at all what kind of captcha system you use.

I can assure you the kind of robot programs the spammers use now-a-days can pass all of them.

I have seen them working and I have tried all the captchas in the world. None of them can stop a good spammer robot.

With this in mind, when I created this mod I decided it was a lot better to use a captcha system as simple as possible, because I don't want to stop humans. I want to stop only spammer robots.

If I put a very complicated captcha system (as recaptcha for example) that won't stop at all spammer robots. It will only stop humans with no enough knowledge to understand what they are supposed to do.

Instead I decided to work from a completely new point of view.

The way a human being sees the warning page is completely different to the way a robot sees it.

A human being sees an explanation of what is happening, a very simple maths operation (like for example "How much is 2 + 2?") and an empty space with a note saying "Please leave this blank".

But a robot (apart from all that) sees as well a lot more empty spaces (hidden for humans) with no signs at all saying if they are suppose to leave them blank or not.

The main idea here is that it doesn't matter how thick a human can be. All of them know that 2 + 2 equals 4 and all of them understand they are not suppose to write on a blank space with the notice "Please leave this blank".

But a spammer robot, designed to write as many viagra links as possible, cannot resist the temptation to write all over the place.

So far I haven't seen yet a robot understanding the question "How much is 2 + 2?", but even if they understand it and give the right answer, it won't matter too much, because all of them always write something inside the blank space and inside the blank spaces hidden to humans, and that's when the mod catch them.

Of course I suppose some time somebody will invent a new kind of spammer robot clever enough to pass my mod, and then we will need to think on a new system to catch them, but that hasn't happen yet.
Title: Re: httpBL
Post by: Ryan2320 on September 18, 2010, 07:19:43 PM
snoopy I do appreciate your time for repling to my post..

Sorry if was a repeated question..

Thanks so much of this MOD, as it is working great so far..I just had the idea for the recaptcha and don't know that most bots can pass those things... that's interesting..

Thanks again,
Ryan
Title: Re: httpBL
Post by: snoopy_virtual on September 19, 2010, 08:42:13 AM
If you have ever used programs as for example Cryptload or JDownloader you can see some of the techniques used to pass captchas.

Spammer robots use a different approach, even more sophisticated.
Title: Re: httpBL
Post by: Gaming4JC on September 20, 2010, 11:28:37 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(
Title: Re: httpBL
Post by: thing2 on September 21, 2010, 04:45:19 AM
Hi there, sorry for the very, very late reply to your reply.  I'd been away and of course its been quite a mission to get thru everything was I got back.

I've had one of my mods caught and he was kind enough to give me the attached, which shows what he gets when he answers the question:

le to run the query faster! if (empty($db_persist)) $memcached = memcache_connect($server[0], empty($server[1]) ? 11211 : $server[1]); else $memcached = memcache_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]); if (!$memcached && $level > 0) get_memcached_server($level - 1); } ?>
Warning: Cannot modify header information - headers already sent by (output started at /home/dgeek/public_html/forum/Sources/Load.php:2720) in /home/dgeek/public_html/forum/Sources/httpBL_Subs.php on line 125

Warning: Cannot modify header information - headers already sent by (output started at /home/dgeek/public_html/forum/Sources/Load.php:2720) in /home/dgeek/public_html/forum/warning.php on line 190

Now in answer to your questions:

1. I think I installed the mod correctly and have not changed the coding in anyway, even though I've been asked to change it so our normal users would like to see it looking more like the site.

I'm not sure how to get my PC to get a bad IP and my PC at home is a work one that has been setup for me to access the network at work for on-call/after hours emergencies.  I do have access to Skype but only on my phone, so if you want that info I'll PM it to you and we can go thru all the settings, setup, etc.

2. Seems the issue with the Dongle user has cleared itself up i.e. hasn't had any bad activity in the past 60 days.

And lastly, this mod has been a godsend.  Its not picking up all but its keeping probably the worst of them at bay which has made our Admin lives a lot easier.

Thanks

Thing2
Title: Re: httpBL
Post by: Vandaahl on September 21, 2010, 08:19:15 AM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 09:33:57 AM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.

I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 09:44:46 AM
I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Both 1.1.11 and 2.0RC3 will "should" CHMOD the Packages folder and create/delete the temp folder during the install process.
At least they do on my box.

Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 09:58:13 AM
...
I've had one of my mods caught and he was kind enough to give me the attached, which shows what he gets when he answers the question:

le to run the query faster! if (empty($db_persist)) $memcached = memcache_connect($server[0], empty($server[1]) ? 11211 : $server[1]); else $memcached = memcache_pconnect($server[0], empty($server[1]) ? 11211 : $server[1]); if (!$memcached && $level > 0) get_memcached_server($level - 1); } ?>

etc ..

It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

...
Now in answer to your questions:

1. I think I installed the mod correctly and have not changed the coding in anyway, even though I've been asked to change it so our normal users would like to see it looking more like the site.
...

I am actually working (at last) on the new version of the mod, and that's one of the things I am doing, so hopefully that will be sorted soon.

Anyway your "normal users" are not supposed to see the warning page never. Ideally only spammer robots are supposed to be redirected to that page.

...
I'm not sure how to get my PC to get a bad IP and my PC at home is a work one that has been setup ... etc

That's not something easy at all if you are not a developer with some good knowledge of coding.

...
I do have access to Skype but only on my phone, so if you want that info I'll PM it to you and we can go thru all the settings, setup, etc.

I suggested Skype because calls are free between computers. If you contact me from your phone it will cost you something (I suppose). It would be better if you install Skype on your computer and use the same user and password you already have in your phone.

But I have as well MSN, Yahoo and some other messengers we can use to talk. Just PM me and let me know which one you prefer.
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 10:02:19 AM
I was answering exactly the same when I saw Vandaahl has already told you that.

One small question anyway: What SMF version you are using?
Both 1.1.11 and 2.0RC3 will "should" CHMOD the Packages folder and create/delete the temp folder during the install process.
At least they do on my box.

Yes, but I wanted to redirect him to the proper support forum were they normally sort this kind of issues, as apparently there are a lot of people with it and it has nothing to do with any mod. Is a SMF general issue.

BTW, Did you read my PM in my forum?
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 11:00:02 AM
Yes, but I wanted to redirect him to the proper support forum were they normally sort this kind of issues, as apparently there are a lot of people with it and it has nothing to do with any mod. Is a SMF general issue.
Didn't think it was a mod prob. But... :-X
Quote
BTW, Did you read my PM in my forum?

Responded!  :)
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 01:31:17 PM
Quote
BTW, Did you read my PM in my forum?

Responded!  :)

Where? I don't see any answers.
Title: Re: httpBL
Post by: Wizzlefits on September 21, 2010, 01:46:19 PM
Where? I don't see any answers.

Not looking very hard!  ;)
Title: Re: httpBL
Post by: Sea Mac on September 21, 2010, 02:42:36 PM
You don't need to reinstall SMF. Just edit the file giving you the problem:

Navigate to the folder /Themes/default/languages/ and look for the file Modifications.english-utf8.php

At the end of the file you should have exactly this:

Code: [Select]
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Wrong honeyPot link. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error'] = 'Wrong http:BL API key. Check your MOD httpBL configuration.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connection failed. This either means that your http:BL API key is incorrect or that there is a problem in your DNS system.';
$txt['httpBL_caught'] = 'Spammers stopped by MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'The MOD httpBL checks every visitor\'s IP to see if it\'s already in projecthoneypot\'s DB. If this is true the mod redirects them to the warning.php page denying them access to the forum.<br />Here you can turn the mod on and off and change some of its parameters.';
$txt['httpBL_config'] = 'MOD httpBL settings';
$txt['httpBL_enable'] = 'Enable/Disable MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'The API key you have written is wrong. Check it out carefully and try again.';
$txt['httpBL_honeyPot_link'] = 'Link to your Honey Pot';
$txt['httpBL_honeyPot_link_sub'] = 'If you want to use MOD httpBL you must have a Honey Pot installed in your server. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to ask for one and install it in your server. After that, write here the link to that Honey Pot. It will be something like:<br /><b>http://www.yourwebsite.com/yourhoneypot.php</b>';
$txt['httpBL_honeyPot_key'] = 'Your Honey Pot http:BL API key';
$txt['httpBL_honeyPot_key_sub'] = 'If you want to use MOD httpBL you must have as well a http:BL API key from Project Honey Pot. If you haven\'t got one you need to go first to <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> to sign up for one and write it here. Please notice they are not going to give you one if you haven\'t installed a Honey Pot, so you better do that first.';
$txt['httpBL_honeyPot_word'] = 'Keyword of your Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'This is the only word in your Honey Pot link the spammers are going to see. Write something to attract them and make them click on it and not anything scary for them. If you cannot find out a good word just leave it blank. The mod will choose one for you.';
$txt['httpBL_info_email_1'] = 'First word of your email';
$txt['httpBL_info_email_2'] = 'Second word of your email';
$txt['httpBL_info_email_3'] = 'Third word of your email';
$txt['httpBL_info_email_sub'] = 'The mod needs your email address to tell you if there are any problems and to show it to the human beings unlucky enough to have an IP considered as spammer and not knowing how to get out of the page <b>warning.php</b>, so they can ask you for help. Then, it has to be a valid email address. We have split it into 3 words so the robots cannot see it. For example, if your address is <b>info@yourwebsite.com</b> the first word is <b>info</b>, the second one <b>yourwebsite</b>, and the third one <b>com</b>.';
$txt['httpBL_enable_bad_email'] = 'Check the email address you have written. You cannot leave blank any of the 3 words.';
$txt['httpBL_bad_last_activity'] = 'Number of days to consider good an IP';
$txt['httpBL_bad_last_activity_sub'] = 'If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don\'t consider it dangerous now and we leave the visitor pass.';
$txt['httpBL_bad_threat'] = 'Threat level considered bad';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.';
$txt['httpBL_very_bad_threat'] = 'Threat level considered VERY bad';
$txt['httpBL_very_bad_threat_sub'] = 'Every IP with a threat level greater than the number you put here won\'t be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.';
$txt['httpBL_cookie_length'] = 'Hours until an IP needs to prove again it\'s human';
$txt['httpBL_cookie_length_sub'] = 'As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that the IP may be coming from a different computer. We wouldn\'t recommend you to change these last 4 values until you know the way the mod works.';
$txt['httpBL_no_negative_here'] = 'The number of days and the threat level cannot be negative numbers or 0.';
$txt['httpBL_no_higher_than'] = 'The threat level considered bad cannot be higher than the threat level considered <b>VERY</b> bad.';
$txt['httpBL_viewlog_extra'] = 'View extra information in the log';
$txt['httpBL_viewlog_extra_sub'] = 'If you tick this options you are going to see all the information in the log, but maybe it\'s too much and you will loose perspective. Sometimes it\'s better to see only the important things.';
$txt['httpBL_config_sub_1'] = 'If you want to see the look of your "warning.php" page with this settings (the page everybody with an IP considered dangerous is going to be redirected) press this link:';
$txt['httpBL_config_sub_2'] = 'If you want to change its design or translate that page and you don\'t know how, or if you have any other question about the MOD, you can ask for help in the <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">official support forum</a> or try to find more information <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">reading the tutorial</a>.';

// View log page
$txt['httpBL_viewlog'] = 'httpBL Spammers Log';
$txt['httpBL_viewlog_description'] = 'Every time the MOD httpBL stops a spammer or detects an internal error adds an entry to this log you can see here. This is the list of spammers stopped by the mod either because their threat level was higher than the threat level considered <b>VERY</b> bad or because they saw the captcha and couldn\'t prove they were humans.';
$txt['httpBL_viewlogpass'] = 'httpBL Humans Log';
$txt['httpBL_viewlogpass_description'] = 'This is the list of the humans stopped by the mod but allowed in after they have proved they were not robots.';
$txt['httpBL_viewlogerror'] = 'httpBL Errors Log';
$txt['httpBL_viewlogerror_description'] = 'This is the list of the internal errors detected by the mod when trying to check an IP. Depending on the error, some of them may have been stopped and others may have been allowed in. To see all the information here you need to press the button <b>"Show extra information"</b>.';
$txt['httpBL_log_no_entries'] = 'There are no entries in the MOD httpBL Spammers Log. Either you haven\'t caught any spammer yet or you have erased all the entries.';
$txt['httpBL_logpass_no_entries'] = 'There are no entries in the MOD httpBL Humans Log. Either nobody have proved to be human yet or you have erased all the entries.';
$txt['httpBL_logerror_no_entries'] = 'There are no entries in the MOD httpBL Errors Log. Either you haven\'t got any errors yet or you have erased all the entries.';
$txt['httpBL_viewlog_extra'] = 'Show extra information';
$txt['httpBL_viewlog_normal'] = 'Hide extra information';
$txt['httpBL_log_show_legend'] = 'Show legend';
$txt['httpBL_log_hide_legend'] = 'Hide legend';
$txt['httpBL_pages'] = 'Pages';
$txt['httpBL_log_date'] = 'Date';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Th. L.';
$txt['httpBL_log_threat_long'] = 'Threat Level - The threat level of this IP in Project Honey Pot database.';
$txt['httpBL_log_activity'] = 'L. B. A.';
$txt['httpBL_log_activity_long'] = 'Last Bad Activity - The number of days since this IP was seen doing something wrong.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Suspicious - Just suspicious of being a spammer.';
$txt['httpBL_log_harvester'] = 'H.';
$txt['httpBL_log_harvester_long'] = 'Harvester - A robot that surfs the internet looking for email addresses to use them later to send spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Comment Spammer - A robot that post to blogs and forums. These posts typically are full of links to sites being promoted by the spammers.';
$txt['httpBL_log_url'] = 'Page';
$txt['httpBL_log_url_long'] = 'The page this IP was visiting when it was detected and expelled by the mod.';
$txt['httpBL_log_user_agent'] = 'Browser';
$txt['httpBL_log_error_message'] = 'Message';
$txt['httpBL_yes'] = 'Yes';
$txt['httpBL_threat_colors'] = 'Meaning of colors:';
$txt['httpBL_threat_low'] = 'Low threat';
$txt['httpBL_threat_medium'] = 'Medium threat';
$txt['httpBL_threat_high'] = 'High threat';
$txt['httpBL_threat_very_high'] = 'Very high threat';
$txt['httpBL_log_remove_all_confirm'] = 'Are you sure you want to delete all MOD httpBL log entries? - Please notice this action will delete not only the entries in this section, but ALL THE ENTRIES IN THE LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Are you sure you want to delete all selected MOD httpBL log entries?';

// Errors
$txt['httpBL_log_no_error'] = 'No error';
$txt['httpBL_no_errorNumber'] = 'There is no error number';
$txt['httpBL_no_defined'] = 'No defined yet';
$txt['httpBL_answers_captcha'] = 'Answers on the captcha';
$txt['httpBL_answer_captcha'] = 'Answer on the captcha';
$txt['httpBL_good'] = 'Good';
$txt['httpBL_bad'] = 'Bad';
$txt['httpBL_empty_ip'] = 'Empty IP';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Th. L. too high. Didn\'t show the captcha';
$txt['httpBL_no_reverse_ip'] = 'Cannot check. IP not normal. Allowed to pass';
$txt['httpBL_log_key_error'] = 'Cannot check due to API key error. Allowed to pass';
$txt['httpBL_no_127'] = 'Cannot check. response[raw] doesn\'t start by 127. Allowed to pass';
$txt['httpBL_unknown'] = 'unknown';
// MOD httpBL END

If you have something different you will get an error.

By the way: Very nice site you have  ;)
Sorry I didn't get back to you on this, Snoopy ....

It turns out that your wonderful MOD had nothing to do with the death of my site. All unbeknown by me I had RUN out of Server Space and only a piece of the MOD got uploaded. I got more space and re-uploaded my WHOLE Forum and restored the database backup. The only thing that got it unscrambled was converting the Forum Database to UTF-8 ... all totally unrelated to your MOD.

So, Months later, let me thank you again for saving a half dozen forums (that I Know of). I installed this MOD (And the Re-Captcha, and Stop Forum Spam MODs) on all my SMF forums and the Spam attacks stopped that very hour!

In 4 months your MOD has stopped 5,210 plus spammers on just my Software Santa (http://softwaresanta.com/) forum alone!

Your MOD is the Key Player in the SMF Protection Scheme I've Published: http://thetruthabouthemp.com/hempity/index.php/topic,383.msg839.html#msg839 (http://thetruthabouthemp.com/hempity/index.php/topic,383.msg839.html#msg839)
And every SMF forum Admin I've told about these MODs has thanked me for the info.

http://softwaresanta.com/smf/index.php?topic=2720.0 (http://softwaresanta.com/smf/index.php?topic=2720.0) I made a point of placing the link to your httpBL MOD near the top ....
8) ;D
Title: Re: httpBL
Post by: Gaming4JC on September 21, 2010, 02:51:43 PM
Hey all,
I just tried to install the plugin but everytime I do I get this error:
"You cannot download or install new packages because the Packages directory or one of the files in it are not writable!"
I recursively set all files and folders included "Packages" to 0777. No luck... any ideas?  :(

Check with ftp if you have a folder called 'temp' in your packages folder. If not, make it, and CHMOD it to 777.

Thanks! Worked perfectly. And so simple too... lol  ;D

Edit: Just noticed you had asked my version. My SMF Version is 2.0 RC3, so far no problems. :)
Title: Re: httpBL
Post by: snoopy_virtual on September 21, 2010, 08:46:15 PM
Sorry I didn't get back to you on this, Snoopy ....

It turns out that your wonderful MOD had nothing to do with the death of my site.

etc etc

Your MOD is the Key Player in the SMF Protection Scheme I've Published:

etc etc

I made a point of placing the link to your httpBL MOD near the top ....

Sad to hear about the death of the wonderful site you had. I really loved it, because it was about the smoking thingy I normally use to concentrate when I'm designing a web site.  ;D

Anyway I have seen in your new site http://thetruthabouthemp.com you are using the same icon and it's talking about the same subject. The old site is dead. Long life the new one!

I have been reading what you say in there and in the other site http://softwaresanta.com about this mod and I really appreciate it. Not for me, but for the cause. You are spreading the word and helping in the big fight to make internet as free as possible. Open Source is the real thing. We created internet and it's ours. They cannot win. They have money, but we have the code, and we are "Legion". A lot of us. All over the world.

That's the reason why I use and write code for Linux, SMF, etc.

A pity you live so many miles away, but maybe one day I will visit your country or you will visit mine, and then we will have a few beers and smoke some good stuff together.

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)   (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fweed.gif&hash=d2dfb694c288fca9292d0dbcbf9a6606)

And, of course, any problems with code, just let me know.
Title: Re: httpBL
Post by: Sea Mac on September 22, 2010, 12:19:19 AM
Thank you!

That site didn't die: it just relocated to http://thetruthabouthemp.org/
It is every bit as nice as you remember. The Arcade works, too!  Your MOD has already protected it from thousands of attacks.

And I would be honored to share a pipe of Medicine with you one day. It is only illegal because of Richard Nixon's lies, and his hatred of the people he perceived as using it. He did the Exact Opposite of what his hand picked Shafer Commission (http://thetruthabouthemp.com/hempity/index.php/topic,45.0.html) recommended.

Yes: It is part of my mission to spread the word about Open Source. You do good work coding, and my job is finding the best Open Source (Or FREE) projects and sharing them.

Actually, I made my little list at Software Santa as a reference for ME. I do IT work for self, and many friends, and often need one of these resources or programs - I just couldn't keep track of all of the thousands of useful things without making an ever growing list. I have nothing for sale there, no need to advertise, and definitely don't wish to list malware for my future use.   
8) ;D    And I don't care if other people poke through my personal list and find treasure for themselves.

The MOD you coded here IS Treasure! I'm pleased to Use it AND post about it there. And I get to thank you for it.
Title: Re: httpBL
Post by: thing2 on September 23, 2010, 05:01:17 AM
It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

Ooops sorry about that, its RC 2.0 I think - our site's down at the moment due to a hosting issue.

Will get back to you when I try the above and on all the other stuff.

Thanks

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on September 23, 2010, 05:45:16 AM
It looks like you have a problem with memcache in your server.

Check with your host to see why memcache is not working and, in the mean time, deactivate it in you SMF configuration. The way to do that is different depending on the SMF version you are using and I think you forgot to tell us which one you have.

Ooops sorry about that, its RC 2.0 I think - our site's down at the moment due to a hosting issue.

Will get back to you when I try the above and on all the other stuff.

Thanks

Thing2

In SMF 1.x you need Memcached or any other kind of cache system in your server to be able to activate SMF caching, but in SMF 2.0 you don't need it at all, because SMF 2.0 has its own internal cache system already implemented inside it.

I am actually working on a system to implement the same kind of internal cache system for SMF 1.x (because that's what I use in almost all my forums) but it's not finished yet.

Anyway, as your forum is SMF 2.0 you don't have the same problem I have. The only thing you need to do is activate the internal SMF caching system and deactivate Memcache.

To do that, as soon as your site if on-line again, navigate to:

Admin => Configuration => Server Settings => Caching

Set the "Caching Level" at "Level Caching 1" and leave empty the "Memcache settings".

Or, if you can, contact your host to ask them if Memcached is activated in your server and (if it is) which ones are exactly the Memcache settings you need to use here, but as I said, you don't really need it. The cache will work a little faster with Memcache but only a little more, and I don't think the difference is worth the hassle.
Title: Re: httpBL
Post by: thing2 on September 23, 2010, 11:12:32 PM
The server is back up again, was getting a little worried  :(

I had a look and we are already at Level 1 and the memcache settings are blank.  I did notice in the text above this that right at the bottom in red it says: "SMF has not been able to detect a compatible accelerator on your server."  I wonder if this could be the issue?

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on September 24, 2010, 10:35:57 AM
The server is back up again, was getting a little worried  :(

I had a look and we are already at Level 1 and the memcache settings are blank.  I did notice in the text above this that right at the bottom in red it says: "SMF has not been able to detect a compatible accelerator on your server."  I wonder if this could be the issue?

Thing2

I don't understand it.

In SMF 1.x you definitely need a compatible accelerator to be able to activate SMF cache, but in SMF 2.0 you don't need it.

At least (as far as I know) you don't need it if you want Level 1

Have you tried to search the SMF 2.0 support forum to see if anybody else has a similar problem? (or to ask them for help with the cache system)

Maybe after all there is something wrong with your SMF installation.
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 04:43:55 AM
MOD httpBL v2.4
============


  • Author:
snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
  • Version:
2.4
  • Release:
2nd October 2010
  • Languages:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
  • Compatible With:
SMF 1.1.1 - 1.1.11
SMF 2 RC2 - RC3

After so many months busy with other things, I had found finally some time to work for a while in this mod.

I have sorted all the bugs we have been talking about lately here in this thread, I have implemented most of the features requested here as well and I have developed some ideas from my own.

The full list of all the changes in this new version is:

Quote
Version 2.4 - 2nd October 2010
  +Added a new system so now you can decide what group of members you don't
want to be scanned never by the mod
  !Sorted the bug in RC3 we talked about in the support forum. (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2783223#msg2783223) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2784316#msg2784316)
  *Small change in the template file to make the mod compatible with SimplePortal
for people using SMF 1.1.11 (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2775518#msg2775518)
  !Sorted a bug inside the logs (See here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2764797#msg2764797)
  *Changed the design of the page warning.php as requested by giveaway365.com
(here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2525796#msg2525796) and discussed in some other places in the support forum
  !Sorted the bug "Undefined index: response" reported so many
times (for example here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621)
  +Added a system to check if the mod is ON, if it is up-to-date and if the
connexion with HoneyPot's DB is OK
  +Added 2 columns in view-log for "Operative System" and "Browser" using the
Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  +Added OS & Browser Detection to the "Who's Online" page
  +Added a checkbox to the config page to decide if you want to view OS & Browser
data in "Who's Online" page
If you want to see these last 3 features you need either to:
  • Download and install Mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515)
  • Download and install my small addon to see OS & Browser in httpBL (http://custom.simplemachines.org/mods/index.php?mod=2155)
  +Added cache values to session so it works if cookies and cache are off
  *Changed completely the system to store and retrieve data from cache and/or session
  +Added a value to the config page to set the amount of minutes to keep the data
in the cache and/or session
  *Replaced my function httpBL_look_for_empty_ip() for the function
httpBL_get_real_ip_address() made by butchs (here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=314.msg1547#msg1547)
  *Changed 2 lines and added 20 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.x
unless you are not using the default Theme and you have the file
Who.template.php inside the folder of the particular Theme
you are using
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using
Quote
Legend
oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

There are too many changes to explain all of them here in detail just now, so I suppose it would be better if you read the explanations I wrote already in my own site.

As you know, in my personal forum I have a section for "Programming - Coding", and inside there I have a section for this MOD httpBL: http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0

Inside that section there is a thread called "For Developers Only" where I write always all the changes I do to the mod and also other developers-programmers give me a hand sorting bugs, testing new features, talking about new ideas, etc.

During the last 10 days I have been implementing all the new features inside this new version and I have published in that thread 3 different "developer" versions of this mod, talking about them with Wizzlefits and butchs, testing them, etc.

So it's better if you read the explanations I wrote in that thread for the 3 "developer" versions:


You can also read the rest of the conversation we had there about these new versions. Some parts maybe are too techy, but even if you don't know too much code you can get the idea.

After that, if you have any questions (or if you find a bug) tell us here.

===============

I want also to say to the guys who already had translated this mod to different languages "I'm very sorry about this": I have changed 2 lines and added 20 new ones in the languages files, so now all the translations are not completed.

It's more work for everybody, but I hope you will enjoy the new features and will think that it was worth the effort.  ;)

Cheers (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: EL34xyz on October 02, 2010, 09:31:10 AM
Hi Snoop
I just installed 2.4
I see this error in my forum error log file
I xxx'd out the important info

8: Undefined index: REQUEST_URI
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 721

The mod installed without any errors
It accepted my api key and honey pot page url

At the top of the admin mod page it says this
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 10:22:10 AM
Hi Snoop
I just installed 2.4
I see this error in my forum error log file
I xxx'd out the important info

8: Undefined index: REQUEST_URI
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 721

Interesting...

So it means sometimes in certain circumstances the global $_SERVER['REQUEST_URI'] is not defined. I hadn't seen that before.

Maybe that's why sometimes we get some "unknown" values.

Luckily that bug is easy to sort (yes butchs, before you say anything the answer is obvious: Using your new function httpBL_get_env()) and maybe at the same time it's going to sort most of the "unknown" values (hope).

Anyway, as soon as I published this version I started thinking in a few things I would have liked to add as well to the mod but realized too late.

Now I have the excuse to do a minor update with this bug sorted plus the couple of things I have been thinking about.

Anyway I will wait for a while just in case somebody else find another bug.   8)

The mod installed without any errors
It accepted my api key and honey pot page url

At the top of the admin mod page it says this
Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect

Glad to hear it. Now just wait a couple of hours and take a look at the logs. You will see how the mod start catching bad guys pretty soon.   ;D
Title: Re: httpBL
Post by: EL34xyz on October 02, 2010, 03:32:56 PM
cool, thanks
I'll wait for an update on the mod

I hope it is soon because I have to reset the forum error log frequently
Every member is creating another one of the error messages
The forum error log becomes huge in a short time

Since I reset the error log this morning, there are six pages of errors

BTW, If you want me to test a patch before you release a new version, just say so
I can edit some variables or whatever to see if the fix works.
Title: Re: httpBL
Post by: snoopy_virtual on October 02, 2010, 04:00:36 PM
BTW, If you want me to test a patch before you release a new version, just say so
I can edit some variables or whatever to see if the fix works.

OK. Try this:

Inside the file httpBL_Subs.php in your Sources folder, around line 721, find this code:

Code: [Select]
$values['url'] = $_SERVER['REQUEST_URI'];
$values['user_agent'] = $_SERVER['HTTP_USER_AGENT'];

Replace it with:

Code: [Select]
$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');

I think that should sort tour problem.
Title: Re: httpBL
Post by: butchs on October 02, 2010, 05:11:50 PM
Luckily that bug is easy to sort (yes butchs, before you say anything the answer is obvious: Using your new function httpBL_get_env()) and maybe at the same time it's going to sort most of the "unknown" values (hope).

Sorry, I did not know you were going to release it so fast.  I was not done with the IP code and made comments at your site today.  With updates a few min ago.  I think todays post is the best but it may need some sorting and or movement of the REMOTE_ADDR.

My URI code is different.  I take in account the IIS variations.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 12:35:53 AM
Code: [Select]
Inside the file httpBL_Subs.php in your Sources folder, around line 721,

find this code:
$values['url'] = $_SERVER['REQUEST_URI'];
$values['user_agent'] = $_SERVER['HTTP_USER_AGENT'];

Replace it with:
$httpBL_url = httpBL_get_env('REQUEST_URI');
$values['url'] = $httpBL_url != '' ? $httpBL_url : '/';
$httpBL_user_agent = httpBL_get_env('HTTP_USER_AGENT');

Ok snoop
that seems to have worked
The forum error log does not report that error any more

btw, my forum is on a windows server if that makes any difference
Title: Re: httpBL
Post by: butchs on October 03, 2010, 09:10:51 AM
btw, my forum is on a windows server if that makes any difference

Are you using Internet Information Services (IIS) f/k/a Internet Information Server?  If so, it does make a difference.  I just gave sir snoopy some code that should work for it that he may like to test on your server.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 12:43:12 PM
I am not up on the server tech stuff.

But I have two servers for two different web sites that I rent from a web host
They are not Linux boxes.

Both are Windows servers because I still like to use some of the features of front page extentions for my html editor software, Web expressions 2.

I believe that both servers are both IIS, but how can I tell?
Title: Re: httpBL
Post by: butchs on October 03, 2010, 02:42:40 PM
I am not 100% sure if this test will work or not but here we go...

Take the attached and place it in your root directory.  Run it (ie.  "http://www.yourdomain.com/IIS_test.php").  Copy and paste the text from the top of your screen and post it here.

Do not forget to delete the file afterwards.
Title: Re: httpBL
Post by: EL34 on October 03, 2010, 07:05:24 PM
Here is what your php script says when accessed in a browser

Quote
You have IIS server

script has been deleted
Title: Re: httpBL
Post by: snoopy_virtual on October 03, 2010, 07:26:31 PM
Sorry

I was out for a while because I got a customer.

Luckily (for you, unfortunately for me) I got no more customers now, so I'm back.  ;D

@EL34: Apparently your problem with the error logs is sorted now. Leave this small change I told you for now (so you don't get any more error messages) until we finish the next version.

@butchs: I saw yesterday the things you wrote on my site, but was too busy to study them properly. I'm going to look at them now and will answer you there.
Title: Re: httpBL
Post by: butchs on October 03, 2010, 07:35:52 PM
Quote
You have IIS server

Thanks for checking.  That means there is a good chance my code works.  yay!  :)
Title: Re: httpBL
Post by: snoopy_virtual on October 03, 2010, 07:57:58 PM
Sorry, I did not know you were going to release it so fast.  I was not done with the IP code and made comments at your site today. 

I released it before we started talking about IPs, and when I released it I marked the checkbox "Send an email to the people using this mod".

You must have missed it or maybe you turned out the "notification" in your profile.

Title: Re: httpBL
Post by: EL34 on October 03, 2010, 08:45:58 PM
Thanks guys

I am leaving the code that snoop gave me in place for now

There has been no more errors in the forum error log since I changed the code.
Title: Re: httpBL
Post by: EL34 on October 04, 2010, 07:59:41 PM
Snoop,
I am editing the warning.php to only display english only
I am editing all the table and getting rid of the right side of the screen that currently has spanish text.
I noticed that there is a blank.gif inside a <td> </td>in all the tables.

Do I need to leave that gif there or can I get rid of it?
Wanted to check first in case it is important.

Also, just a FYI

Dynamic is spelled with a Y. Just a heads up.
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 09:32:11 AM
Snoop,
I am editing the warning.php to only display english only
I am editing all the table and getting rid of the right side of the screen that currently has spanish text.
I noticed that there is a blank.gif inside a <td> </td>in all the tables.

Do I need to leave that gif there or can I get rid of it?
Wanted to check first in case it is important.

Also, just a FYI

Dynamic is spelled with a Y. Just a heads up.

You only get English speaking visitors?

On my site I get visitors from all over the world, so I have put there by default the 2 more commonly spoken languages just in case. If anybody arrives to my site and cannot understand any of them, I'm sorry, but that's that languages I speak.

But of course it's up to you if you want to change it.

The <td> in the middle of both languages is there just to separate them, and it has a blank.gif inside with a width of 10 pixels to be sure both languages are properly separated. If you are going to erase one language you can erase that <td> as well.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 09:45:42 AM
Ok thanks, just wanted to check
It seemed strange to see a blank.gif there

Quote
You only get English speaking visitors?

Most of the spammers that give me grief are Russian or from eastern block countries, not Spain.

And yes I get visitors from all over the world, but the forum is in english.
There's no reason to have Spanish warning messages for french, or vietnamese guys and so they all just deal with english on my forum.

Besides, the warning screen was really crowded trying to lay out tables with side by side languages.
Technically, it would be better if they are human to ask them what languge they prefer to see their warning in and then load a set of variables based on that.

A robot does not care what the language is, so it would only apply to a real human.
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 10:01:58 AM
Most of the spammers that give me grief are Russian or from eastern block countries, not Spain.

The text in the warning page is not there for the sake of the spammers, but for the real human visitors. It's them who need to understand it.

Technically, it would be better if they are human to ask them what languge they prefer to see their warning in and then load a set of variables based on that.

I have been thinking about that a lot, but I cannot find a way to do it without adding some links to the warning page.

And remember that if you want your warning page to work properly you cannot have any link at all inside it.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 10:05:57 AM
Quote
The text in the warning page is not there for the sake of the spammers, but for the real human visitors.
It's them who need to understand it

Yes, of course
But what about mongolian's, they probably don't need to see Spanish warnings.  ;D
Title: Re: httpBL
Post by: butchs on October 05, 2010, 10:56:44 AM
You can have one language displayed.

Here is one way:
SMFs built in loadLanguage() (http://support.simplemachines.org/function_db/index.php?action=view_function;id=63) function can take care of that for members who are logged in.  Possibly others?  If you have two language files (english and spanish) they should load the correct language on a multi-language forum.

Something more elaborate:
If you want to do it for all languages you can inspect the incoming browser headers via the "Accept-Language" field for the visitors language and direct them to the correct language file via loadLanguage().
 
Any volunteers for the second one?  O:)
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 11:04:47 AM
Any human trying to visit my forum has to be able to read english because all the post are in english so non english warnings make no sense for my needs.
If they can't read english, they would not be able to read any of the post on my forum, so why bother.

Of course, having multiple language warnings may be of interest to other forum admins

Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:11:51 AM
You can have one language displayed.

Here is one way:
SMFs built in loadLanguage() (http://support.simplemachines.org/function_db/index.php?action=view_function;id=63) function can take care of that for members who are logged in.  Possibly others?  If you have two language files (english and spanish) they should load the correct language on a multi-language forum.

Something more elaborate:
If you want to do it for all languages you can inspect the incoming browser headers via the "Accept-Language" field for the visitors language and direct them to the correct language file via loadLanguage().
 
Any volunteers for the second one?  O:)

For members already logged in the more normal situation is you have already given them permission to over-pass the mod, so they won't never see the warning page anyway.

And about the second solution I'm not very happy with it because it can lead to ridiculous situations.

For example all my browsers always send in the headers that info saying my language is Spanish and sometimes if I want to see an English page I cannot do it if they are using this system.

For example Microsoft uses this system, so if I want to see any page inside www.microsoft.com I always see it in Spanish, doesn't matter what I try, and usually the translation is wrong, but I cannot see the original file in English unless I open it with a browser in a computer done completely in English.

Completely nuts. I have even sent an email to Microsoft telling them, but got no answer.
Title: Re: httpBL
Post by: butchs on October 05, 2010, 11:14:43 AM
MS will not bother with us low life's.  But you can one up MS by adding an button in the warning message to see the default ie English?
 8)
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:17:03 AM
MS will not bother with us low life's.  But you can one up MS by adding an button in the warning message to see the default ie English?
 8)

To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page
Title: Re: httpBL
Post by: snoopy_virtual on October 05, 2010, 11:19:04 AM
Any human trying to visit my forum has to be able to read english because all the post are in english so non english warnings make no sense for my needs.
If they can't read english, they would not be able to read any of the post on my forum, so why bother.

Of course, having multiple language warnings may be of interest to other forum admins

That's why I said it's up to you.

Even better, in the next version I can add a variable inside the warning page in case you want to display 2 languages or just one.

That will be more general and will fit most forum admins.
Title: Re: httpBL
Post by: EL34 on October 05, 2010, 11:26:17 AM
yes, ok, that sounds good
thanks
Title: Re: httpBL
Post by: butchs on October 05, 2010, 12:04:53 PM
To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page

Why not?  There is a honeypot link?

Besides it can be encoded in the page.
Title: Re: httpBL
Post by: snoopy_virtual on October 07, 2010, 09:08:12 AM
To do that I will need to add a link, and remember what I said about you cannot have any links at all in the warning page

Why not?  There is a honeypot link?

Besides it can be encoded in the page.

OMG butchs. After all this time you still don't know how my warning page works?
Title: Re: httpBL
Post by: butchs on October 07, 2010, 08:31:16 PM
I know, just have another point of view.
 O:)
Title: Re: httpBL Upgrade fails
Post by: Sea Mac on October 11, 2010, 01:36:22 AM
I tried updating all 4 of my SMF 1.1.11 forums to the latest version of httpBL and discovered that this MOD is not compatible with the SMF Arcade MOD ....  :(

http://www.smfarcade.info/ http://about.smfarcade.info/

I get this Error:  Type            Action                                             Description
1.     Execute Modification     ./Sources/ManagePermissions.php     Test failed

The 2 Forums that DID NOT have The Arcade MOD Installed upgraded to the latest version of httpBL without problem. This MOD is compatible with the AVEA 1.3a MOD / the Hide Info Center MOD / and the Re-Captcha MODs. The Arcade MOD was the only deal breaker. 

I also found a 1 word Typo in the English part of the Warning page.

Thanks again for all your good work! This is one of the more important SMF MODs! (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fsoftwaresanta.com%2Fshsmf%2FSmileys%2Fclassic%2Fbowing.gif&hash=be7b79d6bdf9023be62ef995064b48d9)
 
Title: Re: httpBL Upgrade fails
Post by: snoopy_virtual on October 11, 2010, 07:53:28 AM
I tried updating all 4 of my SMF 1.1.11 forums to the latest version of httpBL and discovered that this MOD is not compatible with the SMF Arcade MOD ....  :(
 


Try installing the file attached. It's exactly MOD httpBL 2.4 but with a small modification to make it compatible with SMF Arcade 2.0.18 (the latest version they have)

If it give you no problem tell me and I will add also that modification to future versions.

You will have a small problem here though. If you ever need to upgrade SMF Arcade you will need to remember to do this:


Always in that order.


I also found a 1 word Typo in the English part of the Warning page.
 


Cannot see it. Tell me where it is so I can correct it as well.

Thanks (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: EL34 on October 11, 2010, 08:58:45 AM
He is probably talking about the word "Dynamic" as I mentioned in one of my post above

You have it spelled dinamic in the text portion and also your variables are spelled dinamic
Of course the variable names are fine, they still work spelled any way you like
Title: Re: httpBL
Post by: snoopy_virtual on October 11, 2010, 12:46:38 PM
I see.

Yes, I remember you saying something about "dynamic" before, but I was too concentrated on something else and forgot completely.

OK, I will correct that in next version. Thanks.  ;)
Title: Re: httpBL
Post by: Sea Mac on October 11, 2010, 04:30:25 PM
That fixed it .... I think.
I Am using Arcade Version 2.0.16 instead of 2.0.18 - but it installed OK!
Thank You VERY Much!

But I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....

I cleared ALL the log entries after I installed the new version (in 2 forums - yesterday - and 2 more just now) and No Spammers have been caught since then in the Forums with a Custom Theme.

Why are my logs staying empty when I WAS getting hundreds of entries, per day, before this?

I worry this new version is not working in custom themed forums. 2.4 is Installed on all 4 forums now and no spammers are being blocked in the forums with a non-default theme now. (Or at least they are not being logged.)


Did I need to modify anything in my Custom Themed Forums to get the log entries back?
Title: Re: httpBL 2.4 and Who.template.php
Post by: Sea Mac on October 11, 2010, 09:36:38 PM
snoopy, is it your MOD, or the OS_Browser_Detection MOD, (Or both), that are incompatible with that old Who.template.php MOD? http://www.simplemachines.org/community/index.php?topic=19243.0

I still miss having each page sorted into Users/Guests/Spiders categories even though it is really cool to be able to see the OS & User Agent displayed for each IP ....

And I've only dabbled in php so far .... But I think they could just be interleaved or something ...

Thank You!
Title: Re: httpBL
Post by: Sea Mac on October 12, 2010, 04:10:27 AM
That fixed it .... I think.
I Am using Arcade Version 2.0.16 instead of 2.0.18 - but it installed OK!
Thank You VERY Much!

But I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....

I cleared ALL the log entries after I installed the new version (in 2 forums - yesterday - and 2 more just now) and No Spammers have been caught since then in the Forums with a Custom Theme.

Why are my logs staying empty when I WAS getting hundreds of entries, per day, before this?

I worry this new version is not working in custom themed forums. 2.4 is Installed on all 4 forums now and no spammers are being blocked in the forums with a non-default theme now. (Or at least they are not being logged.)


Did I need to modify anything in my Custom Themed Forums to get the log entries back?
Wait ....I think it is working again. I took a bunch of screen shots of confused Package Manager behavior ....

but now at least one of those forums has log entries again.

Maybe I am barking at ghosts ....
Title: Re: httpBL 2.4 and Who.template.php
Post by: snoopy_virtual on October 12, 2010, 12:03:22 PM
snoopy, is it your MOD, or the OS_Browser_Detection MOD, (Or both), that are incompatible with that old Who.template.php MOD?

I also have the page Who.template.php changed to see Users/Guests/Spiders separately in some of my forums so I know what are you talking about.

I cannot understand exactly where is the problem, because both mods OS_Browser_Detection and httpBL are compatible with the page Who.template.php I am using.

Maybe the problem is you have the file Who.template.php inside the folder of the particular Theme you are using. As you know, every time you install a mod all the modifications are done only to the files inside the default Theme folder. Every file inside your particular Theme folder need to be modified by hand.

If that's the case you need to modify manually the file Who.template.php inside the folder of your particular Theme.

Apparently you are using the old one did by Owdy ages ago. As far as I know, modd httpBL is also compatible with that old version, but there is an updated one you can find here:

http://www.simplemachines.org/community/index.php?topic=401980.0

If you are using this last one, I have attached here exactly the same file but with the modifications needed to see OS & Browser if you are using my mod. (Plus 3 more spiders added by me).

Anyway, if you are using any other Who.template.php the 2 modifications my mod try to do are these ones:

Almost at the top of the page, just after the file have opened the function template_main() and declared a few globals, you need to add:

Code: [Select]

// Include OS & Browser Detection if it's installed and enabled
global $sourcedir, $modSettings;
$os_browser_exists = FALSE;
if (file_exists($sourcedir.'/os_browser_detection.php') && $modSettings['httpBL_view_os_whosonline'])
{
require_once($sourcedir . '/os_browser_detection.php');
$os_browser_exists = TRUE;
}


And then later down the file you will find a place were the first <td> (where you print the name of the user) closes and the second <td> (where you print the time) start:

Code: [Select]
echo '
</td>
<td nowrap="nowrap">', $member['time'], '</td>

Just before this echo statement you need to add:

Code: [Select]

// OS & Browser Detection
// Parse the user agent only if OS & Browser Detection is installed and enabled
if ($os_browser_exists)
$os_browser_detected = parse_user_agent($member['query']['USER_AGENT']);
// Display only if allowed
if (allowedTo('view_os_browser') && $os_browser_exists){
if ($os_browser_detected['system'] || $os_browser_detected['browser']){ //Do not display if both are unknown
echo '<br />';
if ($os_browser_detected['system']) {
echo '
<b>', $txt['OS_Browser_OS'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['system_icon'], '.png" align="top" alt="', $os_browser_detected['system'], '" /> ', $os_browser_detected['system'], '<br />';
} else {
echo '
<b>', $txt['OS_Browser_OS'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'], '<br />';
}

if ($os_browser_detected['browser']) {
echo '
<b>', $txt['OS_Browser_Browser'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_', $os_browser_detected['browser_icon'], '.png" align="top" alt="', $os_browser_detected['browser'], '" /> ', $os_browser_detected['browser'];
} else {
echo '
<b>', $txt['OS_Browser_Browser'], ':</b>
<br /><img src="', $settings['default_images_url'], '/os_browser_detection/icon_unknown.png" align="top" alt="', $txt['OS_Browser_Unknown'], '" /> ', $txt['OS_Browser_Unknown'];
}

}
}
                   

As I said, if you are using the latest Who.template.php done by MoreBloodWine in the link I gave you, you only need to replace it with the file I have attached here.
Title: Re: httpBL
Post by: snoopy_virtual on October 12, 2010, 01:15:58 PM
I think I have another Problem. At least two of my forums aren't using the default theme and, in those forums, no Spammers have appeared in the Log since I installed it. The "Spammers stopped by MOD httpBL" number has not increased either, since then.  But the Old Version was working fine in these 2 forums ....
etc...

Wait ....I think it is working again.
etc...


I have just now 7 forums. 6 of them with SMF 1.1.11 and 1 with 2.0 RC3

All the 7 forums use a custom Theme. None of them use the default and the mod is working fine in them, so that's not the problem.

There is a big difference between the old version 2.3.7 and the new version 2.4

In the old version, every time you had a visitor, the mod checked their IP in the HoneyPot's database and (if it was a bad one) added it to the logs.

The problem is sometimes robots try to open a lot of your pages in a very quick row. That's very difficult for a human, but very easy for a robot. So sometimes you had in your logs a lot of entries, all of them from the same IP, with only a few seconds (or fractions of a second) between them.

That was not happening for the people with cache activated, because every time the mod detected a bad IP, apart from writing it in the logs, it also wrote the data in the cache. So if the same IP tried to open again another of your pages a few seconds later, the mod, instead of checking the data in the DB, checked it in the cache.

The problem is, every time the mod needs to check HoneyPot's DB, it needs to open a connexion from your server to HoneyPot's server, and if you need to do that too often it will slow down your forum too much.

In the new version 2.4 I have added a system to emulate the cache for everybody (using the session as well) so now it doesn't matter if you have cache activated or not.

If a robot try to open 100 of your pages in a quick row, the mod will only check the DB and write the data in the logs the first time.

The next 99 times the robot will be redirected to the warning page without needing to check the DB (because the data is already inside the cache and/or session). So now it works a lot faster and it's not slowing down the forums with a lot of visitors per second.

I have added in the mod's config page also a place so you can control how many minutes you want to keep the data in the cache and/or session. The default is 5 minutes. I'm not sure yet if that's the best number, but I think is a good one.

If you have erased all the entries you had in the logs before, we cannot check if that's what it's happening, but maybe you were having 100 entries a day but it was really only 1 spammer visiting 100 of your pages in a row.

Anyway you may have seen I have added also in this new version 2.4 a system to check if the mod is working properly. It is at the top of the mod's config page. If it is green every thing is OK. If it is red it will tell you what is the problem.
Title: Re: httpBL Who Template - Works perfectly!
Post by: Sea Mac on October 14, 2010, 05:32:17 PM
Thanks snoopy_virtual!

All 4 of my forums are working perfectly now with these 2 custom versions! I have one forum with Only 2 MODS (OS & Browser Detect and httpBL), and one that is all tricked out with lots of MODS, and those files on this and the previous page work perfectly in all of them!

I LOVE the look of my Who's online page (http://softwaresanta.com/smf/index.php?action=who)! It's eye candy now - That's really Cool!
(I'm sure that hurts a few people's eyes  8) )

Many, many thanks! (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fsoftwaresanta.com%2Fshsmf%2FSmileys%2Fclassic%2Fbowing.gif&hash=be7b79d6bdf9023be62ef995064b48d9) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fsoftwaresanta.com%2Fshsmf%2FSmileys%2Fclassic%2Fbeating.gif&hash=60bbda99194e3c6746faffd959739a1f)  (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fsoftwaresanta.com%2Fshsmf%2FSmileys%2Fclassic%2Fbeating.gif&hash=60bbda99194e3c6746faffd959739a1f)  (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fsoftwaresanta.com%2Fshsmf%2FSmileys%2Fclassic%2Fbeating.gif&hash=60bbda99194e3c6746faffd959739a1f)
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:15:05 PM
I have tried to install this mod on a 1.1.9 version of SMF, but seem to have a problem.  Though it seem to install ok, when it transfers you to the configuration page at the end of the install, all of the text seems to disappear.  The form fields are there, some being populated with information, but none of the labels telling what the field represents are visable.  Also, even though there is a space under Members for the link to the configuration page, there is nothing there text wise either.  And last but not least, the option bar above the form has the tabs visible, but no text or link in them either.  It's like the language file is missing or something that fills these fields.  I haven't a clue where to look or what to do.  I tried uninstalling and re-installing the mode, both appearing to work fine, but still no text.  I've attached an image showing what is there or should I say not there. ;D
 
Thanks for any advice
 
Jack
 
Update: I've uninstalled the mod again, upgraded to 1.1.11 and re-installed the mod, but have the same problem.
Title: Re: httpBL
Post by: Sea Mac on October 22, 2010, 06:31:21 PM
I had a crazy problem one time with missing text. I tried everything ....

I backed up my database first. Then I clicked the button in the Admin panel ---> Forum Maintenance ---->
Convert Forum and Database to UTF-8 and THAT Finally fixed it.

One Question: Is your forum/database already converted to UTF-8 or not?
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:35:13 PM
I'll have to look, I don't have a clue if I converted it or not.  I'll get back as soon as I check.
 
Jack
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 06:42:05 PM
Ok, I backed up my database, did the conversion all looks fine on the website.  So I uninstalled the mod again, and I reinstalled the mod again and still have the same problem, but thanks for the suggestion.
 
Any other thoughts?
 
Jack
Title: Re: httpBL
Post by: Sea Mac on October 22, 2010, 07:31:59 PM
How does the Default Theme look? Is It OK?

I suspect the problem is in your theme and not this MOD ...  :-X

I also suggest you download the SMF 1.1.11 Update package (Backing everything up, again, of course) and upload any changed files. Then run the update.php script.

I had crazy problems with a forum I installed 3 years ago. I faithfully installed each security/version update that appeared in the Admin Panel over the years. The crazy problems continued until one day an error popped up stating that I was using a 1.1.3 database (It was version 1.1.7 by then - years later) and said I needed to update the Database to the latest version!

Well, installing a version update from the admin center link DOES NOT Update the database! I still had the same version database that the forum install script had put in back in 2006! Yipe! Anyone that just updated one or more versions from the Admin Center link/Package Manager (the "2 Click" forum upgrade) SHOULD download the UPDATE 1.1.11 Package and FTP upload all the files in it to your forum. (Close the forum for maintenance first.)

Run the Update.php script to Update your forum database to database version 1.1.11 (Update your forum too.). Keeping up with version updates is Critical! But you need to update your database, too, and only the update.php script does that!

(I need to do that myself, I just realized ... Nuts! FOUR TIMES ....  :o )
Title: Re: httpBL
Post by: jrcarr on October 22, 2010, 08:32:12 PM
OK, when I switched to the default theme, all was well and I was able to complete the configuration and believe it is running now.  But, when I switch back to my custom theme, I have the same problem in the admin section.  I have done all upgrades, including running the upgrade.php, updating all the files from the upgrade package, yada, yada, yada.  The only thing I haven't done yet is to update the index.template.php file with the newest version adding my custom changes to it.  Is there any other template file that might need looking at?
 
Jack
Title: Re: httpBL
Post by: jrcarr on October 23, 2010, 12:28:04 AM
Ok, I got it working correctly.  It seems that I must have missed something in the tutorial about the language/modification.template.php needs to be moved to the language folder in the custom theme.
 
Thanks for all suggestions and help.
 
Jack
Title: Re: httpBL
Post by: snoopy_virtual on October 23, 2010, 04:18:43 AM
Hi Jack,

Sorry I didn't see you problem earlier. By the time I have seen it it seems it's already sorted.

This mod should work properly with SMF 1.1.9 but I have not tried it, so I'm not fully sure.

Anyway of course (as Sea Mac suggested) the best thing was to update SMF to the latest version. From 1.1.9 to 1.1.11 had been some important security updates and it was a risk to continue using the old version.

Also the problem is the tutorial is not finished yet (my fault) so the instructions there are not really clear. I hope I will have time to finish it some day. Luckily you managed to do it.

Anyway, it shouldn't be any language files on your custom Theme. All the language files should be in the default folder, that's why I never mentioned that in the tutorial. I need to remember to add that as well to the tutorial just in case somebody has the same problem.

If you get any more troubles let me know.
Title: Re: httpBL
Post by: EL34 on October 25, 2010, 06:20:23 AM
Hey Snoop,
Got a suggestion.

Please add the page index at the bottom of the log pages also.

I find myself looking at all the log entries and then having to go back up to the top of the page to click on the next page link.

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on October 25, 2010, 06:34:27 AM
I see what you mean. Yeah, good idea.

I will add it in the next version.
Title: Re: httpBL
Post by: EL34 on October 25, 2010, 07:15:50 AM
Thanks Snoop
Title: Upgrades
Post by: Lou69 on October 28, 2010, 12:02:26 AM
First, a long overdue

THANK YOU!!

for this wonderful mod. To date, 239 baddies have been trapped. Fantastic!!

My current version is 2.3.4 and I will upgrade to 2.4 soon. Will upgrading delete all honeypot date and trap counts? Anything special I need to do before the upgrade?

thanks

Lou

:)
Title: Re: Upgrades
Post by: snoopy_virtual on October 28, 2010, 08:22:53 AM
First, a long overdue

THANK YOU!!

for this wonderful mod. To date, 239 baddies have been trapped. Fantastic!!

You are welcome  ;)

My current version is 2.3.4 and I will upgrade to 2.4 soon. Will upgrading delete all honeypot date and trap counts?

Just un-install old version and install new one.

If you are using SMF 1.x it won't touch at all the info already in your DB.

If you are using SMF 2.0 there is a new option (when you are un-installing a mod) asking you if you want to erase as well from your DB all the data associated with this mod. Just leave that option un-marked and all the data you already have will be untouched as well.

Anything special I need to do before the upgrade?

The only thing really is to check the files inside your custom Theme (assuming you are not using the default one).

This mod (as all SMF mods) only change the files inside the default Theme so if you have any of the needed files in your custom Theme you need to do the required changes manually

In version 2.3.4 the mod was doing an important change inside the file index.template.php to display hiding links to your honey pot inside all your forum pages.

It doesn't matter what Theme you are using, you will always have an index.template.php inside it, so I suppose if you are not using the default (following the instructions on the tutorial) you have already made this change there.

The new version 2.4 do exactly the same change inside index.template.php so if you have already made that change leave it the way it is. Un-installing the old version will only erase that change from the default Theme, no from your custom Theme, so installing version 2.4 you won't need to do the same change again.

But version 2.4 also do a change inside the file Who.template.php (that's new from the old version). So you just need to check if you have this file inside your custom Theme.

It is not normal to have the file Who.template.php inside a custom Theme. Usually that file is only inside the default Theme, but if you have it, let me know and I will give you instructions to edit it manually.

============

Of course if in the middle of the un-installing / installing process you get any kind of error message, don't continue with the process. Copy the error message and let me know.

============

After upgrading check also your forum error log.

Not the mod httpBL log, but the forum one in Admin => Maintenance => Forum Error Log

If you are not using the default Theme you will see there 2 or 3 errors telling you "Required file not found" or something like that, because for a few seconds (in the middle of the process) your forum would have tried to display the hiding link to your honey pot and the required data was not there. (The few seconds just after you un-installed the old version and before you finished installing the new one).

Just erase these few errors and forget about them.

============

That's all really. Don't forget to check the new things in the mod config page. There are a few of them.

Don't forget also to add the new permission to the groups of your members you really trust and you don't want to be checked never by the mod.

To do that go to Admin => Members => Permissions => Permissions by Membergroup choose the group of members you trust and click on Modify. You will see there the new permission.

This is a kind of "white-list" system I have added to the mod (in case you missed the explanations I have written about it where-ever it was I wrote it).

By default this new permission is ON only for the group Administrator and is OFF for the rest of the groups.

============

Check also all the new info there is now in the mod logs.

If you have installed as well the mod OS & Browser Detection (http://custom.simplemachines.org/mods/index.php?mod=1515) (or if you install my small addon to see OS & Browser in httpBL) I think you will like it.

BTW, before you ask, you can install this mod (or my addon) whenever you want. Either before of after upgrading. It's exactly the same.

Also, if you don't want to install this it doesn't really matter. Mod httpBL will work exactly the same. The only difference is without it you will see less info in the logs.
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 09:50:16 AM
does the Humans Log shows all the users that were asked the varification question, or also those who passed without questioning?
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 10:06:19 AM
one more question if i may (i'm being bombarded with spam the last week, it's a nightmare):

i just got a "girl viagra sex" topic from 95.67.80.146. this ip has a 41 threat level, and the httpbl log shows it was blocked just a few hours ago. how come it got through now?

f.y.i., my settings are -
Number of days to consider good an IP - 10
Threat level considered bad - 23
Threat level considered VERY bad - 40
Minutes to keep the data in the cache - 120   
Hours until an IP needs to prove again it's human - 200

and one last question - is there a way to clear all visitors from a certain range or geographic location?
Title: Re: httpBL
Post by: snoopy_virtual on October 30, 2010, 12:20:18 PM
does the Humans Log shows all the users that were asked the varification question, or also those who passed without questioning?

Anybody allowed to pass without questioning is not in any log at all.

Inside the humans log is all the people who where questioned and answered properly, proving they were humans.


EDIT: That's not true. Please read answer #382 (http://www.simplemachines.org/community/index.php?topic=366399.msg2834700#msg2834700)

i just got a "girl viagra sex" topic from 95.67.80.146. this ip has a 41 threat level, and the httpbl log shows it was blocked just a few hours ago. how come it got through now?

I think it is because all your settings are wrong. Let's see them more detailed:

Number of days to consider good an IP - 10

That's definitely very wrong.

You are saying you consider that anybody who has not done anything wrong for the last 10 days is now for sure a good guy, so you let them in un-checked by the mod.

Well, suppose this viagra spammer, the first time it arrived to your forum, the last time it has done something wrong was 9 days and 20 hours before. That, for the mod, is the same as 9 days.

The mod checked that, saw that 9 is less than 10, so it checked the threat level, saw that it was 41, so stopped the bast***

Then 4 hours later it tried again. This time the last time it has done something wrong was already 10 days before, so the mod saw that 10 equals 10 and let it pass without checking any further.

You definitely need to change this setting. I have it setup to 90 in all my forums and wouldn't recommend anybody to change that number.

Threat level considered bad - 23

So you are saying that anybody with a threat level of 23 or less is a good guy and can enter your site un-checked.

You need to remember that the threat level is not a linear scale, but a logarithmic one. So somebody with a threat level of 20 is not 10 times worst that another one with a Th. L. of 10, but a lot worst than that.

To see this a little more clearly you can read what they said in Project Honey Pot when they invented this system:

http://www.projecthoneypot.org/threat_info.php

Of course it's up to you to set this number to anything you like, but I have it in my forums down to 10 in some of them and even 5 in others.

Threat level considered VERY bad - 40

So then, everybody with a Th.L. of 40 or less will see the captcha to prove they are human.

Well, remember what I said abut the TH.L. being a logarithmic scale. I consider that anybody with a Th.L. more than 30 is for sure a spammer, so I don't care if they are humans or robots. So I don't give them the chance in my forums to see the captcha and have this number down to 30 in all my forums.

Minutes to keep the data in the cache - 120

So if the mod checks an IP and finds no data about it you give that IP a "free pass" to do whatever they want in your site for 2 hours without being checked again.

I think that's too much.

The idea of the cache is to stop the logs growing too much when a robot try to see hundreds of your pages at the same time.

Remember a human has a limit in the amount of clicks per minute they can do in a web page. A human can open only a few pages per minute. But a robot hasn't got this limitation. They can open hundreds (even thousands) of pages per minute.

But remember also that the Th.L. system is also dynamic. It is changing every minute. So an IP with no data just now can have a very high Th.L. the next minute.

I have this number down to 5 minutes in my forums, but I have been thinking maybe that's even too high as well, so maybe I will change it to 1 or 2 minutes.


Hours until an IP needs to prove again it's human - 200

200 hours is a little more than 8 days.

So if somebody prove in your site to be a human, you give that IP again a "free pass" to do whatever they like in your site for more than 8 days without being checked again.

If that human guy was using a dynamic IP (as almost everybody in the world) theirs IP will be changing very often, every 2 or 3 days (sometimes dynamic IPs even change a few times on the same day) so it's almost sure that if somebody arrives to your site a few days later with that IP it will be from a completely different computer. Maybe spammer maybe not.

I have this down to 24 hours and again I think it's too high, so maybe I will put this down too in my forums.

and one last question - is there a way to clear all visitors from a certain range or geographic location?

No with this mod. You can do it with a lot more methods though. The easiest ones are using .htaccess or using SMF "Ban List".

I don't like it anyway. Having a lot of spammers from one country doesn't mean everybody in that country is a spammer.

For example almost half the spammers in my forums are from USA, almost the other half from Russia and a few more from India, Hong-Kong, Korea, etc.

But I have legal visitors, friends and even members from almost all that countries, so it will be a bad idea if I stopped everybody from any of these countries entering my sites.

==========

Of course, as I said, it's up to you what you do with your site.



==========
EDIT:
I just modified this post to sort some spelling mistakes.
Title: Re: httpBL
Post by: IdanC on October 30, 2010, 05:30:50 PM
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fimages.tribe.net%2Ftribe%2Fupload%2Fphoto%2Fd8f%2Fdb6%2Fd8fdb623-c3ef-41ea-ab42-cb6105a1b0bf&hash=1dcfcb0734d9329949ed7c5642b824d7)

this is by far the best answer i ever got in these forums!

a small donation shall be made soon to show my appreciation  :)
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 10:24:32 AM
this is by far the best answer i ever got in these forums!

a small donation shall be made soon to show my appreciation  :)

Well, thanks for your kind words. Actually, I always answer everybody as best as I can, but I think that's the first time somebody shows so much gratitude for one of my answers. I really appreciate that.

And by the way, when you talked about making a donation I just realized I forgot to add a "donate" button to the mod.

I have been so concentrate in making the mod working as best as possible that I really forgot about it completely.

I have just added the donate button, so you're ok now.  ;D
Title: Re: httpBL
Post by: IdanC on October 31, 2010, 11:17:35 AM
my pleasure!

i still feel unsecure about the settings: it's been 24 hrs with no viagras, but i'm afraid it's too strickt now - 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -

IP Th.L LBA
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes


ok, now i'm really confused - all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 12:41:20 PM
i still feel unsecure about the settings: it's been 24 hrs with no viagras, but i'm afraid it's too strickt now - 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -

IP Th.L LBA
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes
79.181.30.242 6 80 Yes
77.125.4.226 2 2 Yes


ok, now i'm really confused - all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.

Sorry, I had a mistake when I answered you to this. I was thinking about something different.

Let me see if I can explain this properly.

When I said:

Anybody allowed to pass without questioning is not in any log at all.

That's not true. I should have said instead:

Anybody with no data inside HoneyPot's DB ( Threat Level = 0 ) is not in any log at all.

And when I said:

Inside the humans log is all the people who where questioned and answered properly, proving they were humans.

I should have said:

Inside the humans log is all the people who where questioned and answered properly (proving they were humans) plus all the people that were not questioned at all because they had a Threat Level too low.

So all the entries in your Humans Log saying "Threat Level too low. Allowed to pass" are from visitors that were not questioned and never saw the warning page at all. They never noticed any difference and visited your forum undisturbed.

======

Another thing: I have been recommending everybody to install as well the anti-spam mods:


Do you have them?

======

Anyway, if you use Skype call me there and we can talk about it. I'm going to be connected all day and it would be an easier way to check everything in your forum and leave the settings proper.

Every forum is different and maybe the ideal settings for my forums are not ideal for yours.
Title: Re: httpBL
Post by: snoopy_virtual on October 31, 2010, 01:24:43 PM
- 10% of my users (around 40) went through the question page, and looking at the Humans log shows practicly no threat -
.....
 - all of the above came with the comment "Threat Level too low. Allowed to pass", does that mean they were'nt questioned? but still - google analytics shows 40 unique views for warning.php.

Before you start wondering about this and ask me about it I am going to answer you:

If google analytics says there has been 40 unique views for warning.php it means there has been 40 different IPs who have seen that page.

So 40 of your visitors have visited that page.

To check that inside the httpBL logs, you need to count all the different IPs inside the 3 logs who have visited that page.


So the total is 12, but google analytics says there has been 40. Why this difference?

The difference are all the web crawlers (spider searchers from Google, Yahoo, Bing, etc etc) visiting all the pages in the world all the time.

Mod httpBL recognize them as legal robots doing their work and never disturbs them, so they don't appear in any log doesn't matter how many times they visit your warning page.

Anyway, instead of google analytics I will recommend you to use CrawlTrack, from http://www.crawltrack.net/

It's a free program and it not only has a lot better statistics that any other similar program. It also protects your site from hackers, sql injections, etc, acting in fact as the best firewall I have seen so far. I have it installed in all my sites.
Title: Re: httpBL
Post by: IdanC on October 31, 2010, 04:33:29 PM
another wonderful answer, thank you so much!

you covered pretty much everything, if i'll come across anything new i'll be sure to share.

and about the other mods, Stop Spammer isn't much help for me (a simple verification question covers the registration problem), same goes for Anti-Spam Verification Questions.

i do use Anti-Spam Links (which is a bummer for all the guests wishing to post links), and BadBehavior, which doesn't seem to catch that many...
Title: Re: httpBL
Post by: SOC Caesar on November 01, 2010, 10:05:58 AM
Excellent mod, every forum should have it. Great work Snoopy  8)

SpectresOfConvoy[dot]net
Title: Re: httpBL
Post by: snoopy_virtual on November 01, 2010, 10:23:31 AM
Thanks.

My pleasure. (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.snoopyvirtualstudio.com%2Fforo%2FSmileys%2Fdefault%2Fasturiaspatriaquerida.gif&hash=2e94cd4b1eb4a6042e25c05c2bdfc4bf)
Title: Re: httpBL
Post by: snoopy_virtual on November 02, 2010, 11:16:50 AM
New SMF version 1.1.12 thoroughly checked for compatibility with mod httpBL version 2.4

No changes needed at all in this mod, so if you are going to update your forum to the latest stable version (as you should) you shouldn't have any problem:

Mod httpBL version 2.4 is fully compatible with SMF version 1.1.12

Of course, as always, before I say anything, I only checked it a hundred times instead of a thousand times (as I should) so I am only 99.99% sure of what I say. I may have made a mistake somewhere.   ;D

So if you have any problem updating SMF to the new version let me know and I will look into it.
Title: Re: httpBL
Post by: wlchase on November 04, 2010, 10:17:14 AM
This is probably obvious to everyone but me, but in the database, what is the time format? If I see log time "1269900272", what does that translate to?

TIA!

And thanks for a great mod!
Bill
Title: Re: httpBL
Post by: IdanC on November 04, 2010, 10:35:08 AM
This is probably obvious to everyone but me, but in the database, what is the time format?

it is, and it is this - http://www.epochconverter.com/.
Title: Re: httpBL
Post by: snoopy_virtual on November 04, 2010, 10:37:05 AM
This is probably obvious to everyone but me, but in the database, what is the time format? If I see log time "1269900272", what does that translate to?

Inside the database all the times are stored in Unix timestamp.

So that number you see there is the time measured in the number of seconds since the Unix Epoch (January 1 1970 00:00:00 GMT).

We do it this way so it's easy to check if a number is higher than other one, measure differences between 2 of them, etc.

Of course this number is only useful for programs but it's no practical for humans trying to see it, that's why inside the logs it is already formatted to the forum time.

If you check that same entry in the httpBL logs (instead of inside the DB) you will see it as something like:

Today at 01:37:50 AM

Or:

02 - November - 2010, 09:13:52 PM

Or something like that.

Also you need to take into consideration that inside the database, the timestamps are using the server time, but inside the httpBL logs they use the forum time.

If your server and your forum are in the same place it will be no difference, but for example I have a forum in Spain with the server in Texas, so they have 7 hours difference, so I have set that up inside the Admin => Configuration => Features and Options => Overall time offset
Title: Re: httpBL
Post by: wlchase on November 04, 2010, 11:44:32 AM
Thanks for the quick reply!

I wanted to know because I have 1500 pages of data in the logs I need to trim, going back to April, and doing via phpMyAdmin seems the best way, but I couldn't figure out the date string... I can now!

Bill
Title: Re: httpBL
Post by: IdanC on November 06, 2010, 06:22:54 PM
maybe it's just me, but trying to install the mod on rc4 got me this error -

BLOB/TEXT column 'user_agent' can't get default something something...

i fixed it by removing all the lines
'default' => ''
from text fields in install2.php.

Title: Re: httpBL
Post by: snoopy_virtual on November 07, 2010, 05:16:03 AM
You are absolutely right IdanC that is a big mistake I made.

The strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions.

I don't remember how many times I have installed this mod myself (more than 10 for sure) and have never seen it. I suppose that it depends on the error warning level you have on your server or something like that, but it is definitely a big error and I need to sort it ASAP.

In the mean time, before I publish a new version of the mod, any of you installing it new on any forum you should edit as well the package manually:


For those of you using SMF 1.x:


Code: [Select]
url text NOT NULL default '',
user_agent text NOT NULL default '',
error text NOT NULL default '',


Code: [Select]
url text NOT NULL,
user_agent text NOT NULL,
error text NOT NULL,

For those of you using SMF 2.x:


Code: [Select]
array (
'name' => 'url',
'type' => 'text',
'null' => '',
'default' => ''
),
array (
'name' => 'user_agent',
'type' => 'text',
'null' => '',
'default' => ''
),
array (
'name' => 'error',
'type' => 'text',
'null' => '',
'default' => ''
),


Code: [Select]
array (
'name' => 'url',
'type' => 'text',
'null' => ''
),
array (
'name' => 'user_agent',
'type' => 'text',
'null' => ''
),
array (
'name' => 'error',
'type' => 'text',
'null' => ''
),


Of course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database .
Title: Re: httpBL
Post by: EL34 on November 07, 2010, 06:47:42 AM
Quote
The strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions

That error did not come up for my install
My Forum is on a windows server
Not sure if that make a difference or not.


Quote
Of course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database

What table are you talking about Snoop?
Title: Re: httpBL
Post by: snoopy_virtual on November 08, 2010, 09:52:05 AM
Quote
The strange thing is nobody else noticed that error before. Everybody should have had that error when installing the mod, and not only in RC4, but in all SMF versions

That error did not come up for my install
My Forum is on a windows server
Not sure if that make a difference or not.

No, it doesn't make any difference if it's a windows or linux server. The error has been there all the time in all the servers, but nobody has seen it before because it depends on the error level you have set-up in your server.

Quote
Of course, if it is not a new installation but you already had the mod installed and you are upgrading it you don't need to do this, because you already have this table created on your database

What table are you talking about Snoop?

I'm talking about the table that keep on your database all the data for the httpBL logs. If you can see your httpBL logs it means that table has already been created and it's working properly, so you don't need to worry about that error at all.

As I said only people installing the mod fresh (as a new installation) need to worry about it, and anyway I think I will have the next version of the mod ready very soon, with this problem sorted in it, of course.
Title: Re: httpBL
Post by: Saint_Frater on November 08, 2010, 10:28:01 AM
Here is the Mod admin French's page:

modification.french.php
Code: [Select]
// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';
$txt['httpBL_cookie_length_sub'] = 'Comme les adresses IP changent tr&egrave;s souvent, lorsque les visiteurs voient les "captcha" et qu\'ils prouvent qu\'ils sont humains, ils sont autoris&eacute;s uniquement pour ce nombre d\'heures. Apr&egrave;s ce temps, il se peut que l\'adresse IP soit attribu&eacute;e a une autre ordinateur. Nous ne vous conseillons pas de modifier ces 5 derni&egrave;res valeurs jusqu\'&agrave; ce que vous connaissez la fa&ccedil;on dont fonctionne httpBL.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'httpBL Mod ne v&ecute;rifie pas ce groupe';
$txt['permissionhelp_httpBL_free_pass'] = 'Si cette permission est active, tout les membres du groupe ont un acc&egrave;s authoris&eacute; au site sans v&eacute;rification par httpBL, m&ecirc;me si le PC est sous le contr&ocirc;le d\'un trojan.<br />---<br />Activez cette option seulement si vous savez ce que vous faites.';
$txt['httpBL_last_act_too_high'] = 'La derni&egrave;re activit&eacute; remonte &acute; trop de temps. L\'acc&eagrave;s est authorisaeacute;';
$txt['httpBL_threat_too_low'] = 'Niveau de menace trop bas. L\'acc&eagrave;s est authorisaeacute;';
$txt['httpBL_enable_sub'] = 'Avec cette option s&eacute;lectionn&eacute;e, le Mod est actif. Si vous d&eacute;sactiv&eacute; l\'option; le mod sera inactif.';
$txt['httpBL_config_sub_3'] = 'Voici la pr&eacute;sentation pour les utilisateurs qui n\'ont pas trop l\'air dangereux. Avec un captcha, ainsi il peuvent prouver qu\'ils sont bien humains. Si vous d&eacute;sirez v&eacute;rifier ce qui sera pr&eacute;sent&eacute; aux visiteurs REELEMENT dangereux(sans captcha) utilisez plut&ocirc;t ce lien:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL is ON but there is no connection just now with HoneyPot. Please try later.';
$txt['httpBL_mod_no_connect_2'] = 'Si lez probl&egrave;me presistent, vous pouvez demander de l\'aide dans le <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum de suport officiel</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL est ACTIF, mais pas &agrave; jour.';
$txt['httpBL_mod_new_version_2'] = 'Il y a une nouvelle version de ce mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Veuillez mettre a jour d&egrave;s que possible</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL est ACTIF, il est &agrave; jour et la connection vers le HoneyPot est parfaite.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL est INACTIF.';
$txt['OS_Browser_Compatible'] = 'compatible';
$txt['OS_Browser_OS'] = 'Syst&egrave;me d\'exploitation';
$txt['OS_Browser_Unknown'] = 'Inconnu';
$txt['OS_Browser_Browser'] = 'Navigateur';
$txt['httpBL_cache_length'] = 'Dur&eacute;e de vie (en minutes) pour conserver les r&eacute;sultats dans le cache';
$txt['httpBL_cache_length_sub'] = 'Chaque fois que le mod v&eacute;rifier une IP, il sauve le r&eacute;sultat dans le cache (si celui-ci est activ&eacute;) et dans la session du visiteur pour le nombre de minutes donn&eacute;es ici. Si la m&ecirc;me IP se pr&eacute;sente a nouveau avant l\'expiration du d&eacute;lais que vous avez donn&eacute;, le mod ne va pas faire de v&eacute;rification, mais il utilisera le r&eacute;sultat stock&eacute; dans le cache et/ou la session.';
$txt['httpBL_view_os_whosonline'] = 'Voir les donn&eacute;es OS & Navigateur dans la page "Qui est en ligne"';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL utilise des fonctions de "Mod OS & Browser Detection" pour afficher dans le log les syst&egrave;me d\'exploitation et navigateur utilis&eacute; pour chaque visites stock&eacute;es das ces logs. Si vous d&eacute;sirez avoir ces informations (Syst&egrave;me d\'exploitation et navigateur) &eacute;galement dans la page "Qui est en ligne", activez cette option. Bien sur, pour pouvoir ls afficher correctement dans les logs et dans votre page "Qui est en ligne", vous devez avoir install&eacute; soit <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> ou la version \'l&eacute;g&egrave;re\' <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">addon to see OS & Browser in httpBL</a>.';


warning.php
Code: [Select]
/*******************
*  Set 1 - French *
*******************/
$txt['httpBL_warn_title_1'] = 'Attention';
$txt['httpBL_warn_denied_1'] = 'Acc&eagrave;s Refus&eacute;';
$txt['httpBL_warn_head_1'] = 'Notre programme anti-spam a d&eacute;tect&eacute; que vous &ecirc;tes un robot qui tente de poluer notre forum via du SPAM.';
$txt['httpBL_warn_infected_1'] = 'La cause la plus probable de ce blocage est que votre ordinateur, ou un ordinateur sur votre r&eacute;seau local, a &eacute;t&eacute; <b>infect&eacute; par un virus, cheval de Troie ou ver</b>. Les ordinateurs infect&eacute;s sont utilis&eacute;s &agrave; l\'insu de leurs propri&eacute;taires par des criminels, pour attaquer de diff&eacute;rentes façon des sites tels que celui que vous essayez de visiter.';
$txt['httpBL_warn_dinamic_IP_1'] = 'Si votre IP est dynamique et non pas fixe, celle ci change &agrave; chaque fois que vour red&eacute;marrez votre routeur. Peut &ecirc;tre le probl&eagrave;me est il seulement que vous utilisez aujourd\'hui une IP qui a servie r&eacute;cemment &agrave; un ordinateur infect&eacute;. Aussi vous pouvez tenter de red&eacute;marrer votre routeur et revenir ensuite sur ce site afin de v&eacute;rifier si l\'acc&eagrave;s s\'y fait alors normalement.';
$txt['httpBL_warn_technician_1_1'] = 'Dans tous les cas, nous vous recommandons de v&eacute;rifier ou faire v&eacute;rifier par un technicien que votre ordinateur n\'est pas infect&eacute; et demandez lui de visiter le site <b>www.projecthoneypot.org</b> pour y v&eacute;rifier les d&eacute;tails de votre IP:';
$txt['httpBL_warn_technician_2_1'] = 'et voir excatement ce qui y est indiqu&eacute;.';
$txt['httpBL_warn_info_1'] = 'Pour plus d\'informations, n\'h&eacute;sitez pas &agrave; contacter:';
$txt['httpBL_warn_at_1'] = 'at';
$txt['httpBL_warn_dot_1'] = 'dot';
$txt['httpBL_warn_hurry_1'] = 'Vous trouverez des explications d&eacute;taill&eacute;es ci-dessous. Toutefois, si vous &ecirc;tes press&eacute;s, vous pouvez acc&eacute;der imm&eacute;diatement au site, mais sachez qu\'il est possible que votre ordinateur soit infect&eacute;. Nous allons vous poser deux fois de suite des questions faciles sous une forme telle qu\'un robot ne saurait y r&eacute;pondre. R&eacute;pondez &agrave; la premi&eagrave;re question ci dessous (juste le nombre) pour prouver que vous n\'&ecirc;tes pas un robot et cliquez sur le bouton <b>"Envoyer"</b>:';
$txt['httpBL_warn_send_1'] = 'Envoyer';
$txt['httpBL_warn_blank_1'] = 'Ne mettez rien dans ce champ.<br />Saisissez la r&eacute;ponse dans la premi&eagrave;re case.';
$txt['httpBL_warn_wrong_1'] = 'Mauvais';
$txt['httpBL_warn_wrong_head_1'] = 'Mauvaise r&eacute;ponse.';
$txt['httpBL_warn_wrong_answer_1'] = 'Peut-&ecirc;tre n\'avons nous pas expliquer correctement ou peut-&ecirc;tre vous avez entr&eacute; une mauvaise r&eacute;ponse. Vous avez deux lignes diff&eacute;rentes. Dans la premi&eagrave;re vous une addition simple, un champs vide et un bouton "Envoyer". C\'est dans ce champs vide que vous devez &eacute;crire la r&eacute;ponse (juste des chiffres) et cliquer sur le bouton. Vous devez laisser le champs vide dans la seconde ligne.';
$txt['httpBL_warn_good_1'] = 'Bien';
$txt['httpBL_warn_good_head_1'] = 'R&eacute;ponse Correcte.';
$txt['httpBL_warn_good_answer_1'] = 'Votre r&eacute;ponse est bonne, mais veuillez noter qu\'un robot, m&ecirc;me si il n\'est pas capable de voir ou de comprendre la question, peut deviner la bonne r&eacute;ponse en essayant des chiffres au hasard. Bien sur il est impossible de donner deux fois la bonne r&eacute;ponse juste par chance donc, si vous le voulez bien, veuillez r&eacute;pondre une fois encore, et cliquer sur le bouton "Envoyer":';
Title: Re: httpBL
Post by: snoopy_virtual on November 08, 2010, 11:26:07 AM
Wonderful. Thanks Saint_Frater

Merci beaucoup.  ;)
Title: Re: httpBL
Post by: thing2 on November 10, 2010, 12:23:52 AM
Hi there

Have just installed the new update and everything seems to be working well, and its saying "Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect." which is always good to see.  I'm assuming that its now compatible with the cache on our server as there is now nothing telling me that its not working properly - yay.

In the Log you have said that we can decide what group of members we don't want to be scanned, which is a really great feature and thanks for putting it in.  Keep up the good work and thanks for the help that you gave me previous even though it couldn't be solved due to the incompatibility with our cache.

Thing2
Title: Re: httpBL
Post by: snoopy_virtual on November 10, 2010, 04:23:09 AM
Hi there

Have just installed the new update and everything seems to be working well, and its saying "Mod httpBL is ON, it is up-to-date and the connection with HoneyPot is perfect." which is always good to see.  I'm assuming that its now compatible with the cache on our server as there is now nothing telling me that its not working properly - yay.

In the Log you have said that we can decide what group of members we don't want to be scanned, which is a really great feature and thanks for putting it in.  Keep up the good work and thanks for the help that you gave me previous even though it couldn't be solved due to the incompatibility with our cache.

Thing2

It should be compatible now with your cache.

Leave the cache level to the recommended level 1 and leave the "Memcache settings" blank.

Check anyway your error logs. (Both the httpBL error log and your forum error log). If you see anything strange there let me know.
Title: Re: httpBL
Post by: BellGab.com on November 17, 2010, 06:28:36 AM
this is one of the most innovative and important mods i've installed in the time i've used SMF.  i hope it works as advertised, and i believe it will.  great work.
Title: Re: httpBL
Post by: IdanC on November 17, 2010, 11:32:32 AM
a small donation shall be made soon to show my appreciation  :)

excuse me for the lack of modesty, but i just wanted to prove i stand by my word, see transaction 4WF97435MB975280D  :)

keep up the good work!
Title: Re: httpBL
Post by: snoopy_virtual on November 18, 2010, 07:50:25 AM
a small donation shall be made soon to show my appreciation  :)

excuse me for the lack of modesty, but i just wanted to prove i stand by my word, see transaction 4WF97435MB975280D  :)

keep up the good work!

Thank you very much.

With more people thinking as you maybe I could forget about working on other projects and concentrate more on these anti-spam mods.

Really appreciated it.
Title: Re: httpBL
Post by: EL34 on November 21, 2010, 07:47:59 AM
Yo Snoop,
Found a bug this morning.

There were 5 pages to the spammers log
There were 2 pages of the humans log

Clicking on page 2 of the humans log sends me to the spammers log
I can't view page 2 of the humans log.
Screen shot attached

Title: Re: httpBL
Post by: snoopy_virtual on November 21, 2010, 08:47:29 AM
Yo Snoop,
Found a bug this morning.

There were 5 pages to the spammers log
There were 2 pages of the humans log

Clicking on page 2 of the humans log sends me to the spammers log
I can't view page 2 of the humans log.
Screen shot attached

I saw that bug a few weeks ago and it's already sorted in the next version I'm doing. In the mean time, before I finish testing and debugging this new version and I publish it, you can sort it manually:

========================

For SMF 1.x

Open the file /path/to/your/forum/Sources/httpBL_Config.php

Find the line:

Code: [Select]
$context['page_index'] = constructPageIndex($scripturl . '?action=httpBL;sa=viewlog;sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $entries_per_page);

Replace it with:

Code: [Select]
$context['page_index'] = constructPageIndex($scripturl . '?action=httpBL;sa=' . $context['sub_action'] . ';sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $entries_per_page);

========================

For SMF 2.x

Open the file /path/to/your/forum/Sources/httpBL_2_Config.php

Find the line:

Code: [Select]
$context['page_index'] = constructPageIndex($scripturl . '?action=admin;area=httpBL;sa=viewlog;sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $items_per_page);

Replace it with:

Code: [Select]
$context['page_index'] = constructPageIndex($scripturl . '?action=admin;area=httpBL;sa=' . $context['sub_action'] . ';sort=' . $context['sort'] . ($context['sort_direction'] == 'down' ? ';desc' : ''), $_REQUEST['start'], $num_log_entries, $items_per_page);
Title: Re: httpBL
Post by: EL34 on November 21, 2010, 05:11:47 PM
Thanks, I'll do the manual edit as per your post
Title: Re: httpBL
Post by: Lou69 on November 25, 2010, 02:36:15 PM
You got 25 clams coming your way Snoopy, thanks for the excellent mod. PM sent to you with confirmation number.

I just upgraded to RC4 and upgraded to your 2.4 httpBL mod as well. Made the two edits noted on the previous 2 or 3 pages and all went well. Your previous version of the honeypot trapped over 500 bad actors in maybe 8 or so weeks.

 :)

best regards,

Lou

Title: Re: httpBL
Post by: snoopy_virtual on November 25, 2010, 03:29:57 PM
Thanks for the donation Lou. Every little helps...

I see now what mod you were talking about, so you don't need to answer now my other PM lol
Title: Re: httpBL
Post by: Lou69 on November 25, 2010, 05:37:02 PM
.
.
You are very welcome.   :) 
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 07:52:27 AM
Was thinking, if I wanted to put 'Spammers stopped by MOD httpBL: 2395' and keep it updating on a custom HTML or PHP block. Is this possible?
If not its no biggy, just a thought  ;)
Title: Re: httpBL
Post by: EL34 on November 28, 2010, 09:13:25 AM
Sure, how I would do it is to use php to open the database table and grab the spammer count figure
Then you could post it on a web page.

I don't have any code handy, just wanted to say that it can be done.
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 02:03:56 PM
Was thinking, if I wanted to put 'Spammers stopped by MOD httpBL: 2395' and keep it updating on a custom HTML or PHP block. Is this possible?
If not its no biggy, just a thought  ;)

I have done it in my forum.

I was going to add this to the tutorial, but it seems I never find time to finish it, so I will explain it here. Check this:

http://www.snoopyvirtualstudio.com/foro/

At the top of the forum you can see a picture saying "Spammers Needed Urgently" if you see it in English or "Necesitamos Spammers Urgentemente" if you see it in Spanish.

Both in English or Spanish have a number at the bottom right corner where the amount of spammers caught is updated automatically.

To do this I have used this code:

Code: [Select]
  echo '
  <!-- BANNER -->
  <div align="center" style="background: #transparent;">
    <div style="position: relative; width: 700px; height: 185px; overflow: hidden;">
      <table width="100%" border="0" cellpadding="0" cellspacing="0">
        <tr>
          <td align="center" width="100%" valign="top">
            <a href="http://www.snoopyvirtualstudio.com/miel/" target="_blank"><img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></a></td>
        </tr>
      </table>
      <div style="position: relative; top: -35px; right: -289px; width: 95px; height: 17px; color: white; background: transparent; font-size: 15px; font-family: verdana, sans-serif; text-align: right; overflow: hidden;">
        <b>' . $modSettings['httpBL_count'] . '</b>
      </div>
    </div>
  </div>
  <!-- /BANNER -->';

Of course the actual code I use in my forum is a lot more complicated, because I count all the spammers caught by both mod httpBL and Stop Spammer, and not only in my forum, but in the 6 forums I administer, and also the output is slightly different if you are watching the page in English or Spanish.

I have reduced it there to give you only the English version and only with the spammers caught by mod httpBL in my main forum.

Feel free to copy the pictures if you like them and to copy and modify that code to whatever you want.

If you like the picture but want to modify the text, the background or whatever, here you have it in PhotoShop format:

http://www.snoopyvirtualstudio.com/descargas/MOD-httpBL/mod_A_S.psd.zip

Also, as you can see, my picture is a link to another of my forums. You should change the href="" to whatever you want or delete the link completely, replacing this:

Code: [Select]
          <td align="center" width="100%" valign="top">
            <a href="http://www.snoopyvirtualstudio.com/miel/" target="_blank"><img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></a></td>

With this:

Code: [Select]
          <td align="center" width="100%" valign="top">
            <img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" /></td>

Also, please, if you are going to use my picture, don't use the code exactly as it is there. It will take bandwidth from my server. Copy the picture, upload it to your server and replace:

Code: [Select]
            <img src="http://www.snoopyvirtualstudio.com/images/mod_A_S.english.png" title="" alt="warez forum" border="0" />

With:

Code: [Select]
            <img src="http://www.your.web.page.com/path/to/your/images/mod_A_S.english.png" title="whatever title you want" alt="whatever alt you want" border="0" />

====================

You also need to remember that the actual number of spammers caught is inside the variable:

$modSettings['httpBL_count']

So you can just use this number if you want to do the code completely different. No need to do any database query or anything like that.

====================

Whatever way you code this, you need to check that $modSettings has been declared global before you can use it, so if you are going to put this for example inside the file index.template.php inside the function template_main_above() you need to be sure inside the Theme you are using, the variable $modSettings is written inside all the globals at the beggining of the function.

If it's not, you need to add the line:

Code: [Select]
global $modSettings;

Just before whatever you put your code.

====================

I hope the explanation was clear enough.

Any doubts (as always) just ask.  ;)
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 02:21:21 PM
Thanks Snoopy, excellent info. Was looking at putting it in a portal block either html or php.
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 05:13:31 PM
In a portal as in TinyPortal or SimplePortal or any other portal published here in SMF as mod?

If the answer is yes you won't have any problem at all.

Just remember to declare $modSettings has global inside the block you are using (if it hasn't been already done there). And that's it.

If you are talking about a portal as Joomla, Mambo, Drupal, etc, it's a little more difficult but can be done as well using the SMF file SSI.php
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 05:15:46 PM
btw, you cannot do it HTML, it will need to be PHP, because you need to use the PHP variable $modSettings['httpBL_count'] which is the one with the number of spammers blocked inside it.
Title: Re: httpBL
Post by: SOC Caesar on November 28, 2010, 09:52:58 PM
Its with Simpleportal 2.3.3 and SMF 2.0RC4
Title: Re: httpBL
Post by: snoopy_virtual on November 28, 2010, 10:20:53 PM
When you have it done give me a link to see the result. I'm curious now.  ;)

And if you find any problem in the process tell me and I will give you a hand.
Title: Re: httpBL
Post by: SOC Caesar on November 30, 2010, 03:28:57 PM
Thanks it works, just need to make a graphic now. Link to forum also sent.
Many thanks
Title: Re: httpBL
Post by: societyofrobots on December 06, 2010, 07:14:05 PM
I noticed this bug I can't figure out . . . I'm using v2.4 with SMF 1.1.12.

First, I have "Number of days to consider good an IP" set to 40, so why is this user being triggered? Why does it say 65 days at 5pm, but 71 days for the other times? I have 'Hours until an IP needs to prove again it's human" set to 48 hours, so why is it repeatedly triggered?
Quote
Date      IP            Th. L. L. B. A.   S.   H.   C.   User    
Today at 03:47:02 PM   195.112.221.78   15   71   Yes         Aber   
Today at 05:00:43 PM   195.112.221.78   15   65   Yes         Aber   
Today at 05:42:23 PM   195.112.221.78   15   71   Yes         Aber   
Today at 06:17:37 PM   195.112.221.78   15   71   Yes         Aber   
Today at 06:34:32 PM   195.112.221.78   15   71   Yes         Aber

Second, if I click httpBL Humans Log, and then click on any page number, it'll incorrectly jump to that page number for httpBL Spammers Log instead.
Title: Re: httpBL
Post by: snoopy_virtual on December 07, 2010, 06:49:44 AM
I noticed this bug I can't figure out . . . I'm using v2.4 with SMF 1.1.12.

There are a lot of different questions there. Let me try to answer them one by one:

First, I have "Number of days to consider good an IP" set to 40, so why is this user being triggered?

All the entries from this user are inside the "Humans log". That means the user has not been bothered at all. He has never seen the warning page or noticed anything wrong.

The entries are logged anyway so you can see somebody has been in your forum with some data inside the spammers DB in Project Honey Pot, but the log is telling you that, as the "number of days..." was bigger than 40, the mod didn't stop the user.

Why does it say 65 days at 5pm, but 71 days for the other times?

Unfortunately, the connexion with Honey Pot's DB is not 100% perfect all the time, so every now and then there is a mistake like that.

You need to remember there are thousands of people using that DB every day. Only here in SMF the last count was more than 1500 forums using it, and there are mods using that DB for almost all other forums, CMS programs (Mambo, Drupal, Joomla, etc), Blogs, etc.

If too many people try to access the DB at the same time it is possible one of the answers is wrong. That's the reason why this mod never do anything too drastic (like banning a user forever or giving a "free pass" card to somebody forever) but always try to confirm if it's true we are dealing with a spammer or a good guy.

I have 'Hours until an IP needs to prove again it's human" set to 48 hours, so why is it repeatedly triggered?

The cookie you are talking about is only given to users who have actually proven they are human.

This only happens when they see the warning page and they answer the 2 questions to prove they are human. Anybody in your forum in that situation won't see the warning page again for 48 hours.

This user you have here in your logs has never seen the warning page, so he hasn't really proved he's human. You cannot be really sure if it's actually the human user who is visiting your forum or if it's a trojan inside his computer, acting as the user but without the user's knowledge.

When the mod cannot be sure if a visitor is human or robot, it puts the data in the cache, instead of giving a cookie to the visitor, so it will be checked again when the cache expires (default is 5 minutes) not when the cookie expires.

When something like that happens in my forums I contact as soon as possible the users (if I can) to let them know they may have a trojan in their computer.

When the users answer me saying they have checked the computer and there is no trojan there, I move them (if I really trust them) to one of the "trusted" member groups I have in my forums, so they won't be checked by the mod ever again.

You need to remember (from version 2.4 onwards) I have added a new permission you can set for all the member groups you really trust, so the mod won't check them. But you need also to remember that sometimes people cannot really recognize a trojan inside their computer.

I have friends who have told me they haven't got any viruses in their computers but, when I have checked their computers myself, I have found some. I trust those friends for anything else, but I don't "trust" them recognizing viruses or trojans.

Second, if I click httpBL Humans Log, and then click on any page number, it'll incorrectly jump to that page number for httpBL Spammers Log instead.

That bug was reported a couple of weeks ago here (http://www.simplemachines.org/community/index.php?topic=366399.msg2857270#msg2857270).

I have it already sorted in the next version I am doing for this mod. This new version should have been already published but, every time it's almost finished, I find something else I need to change or fix, so it's taking me longer than I thought.

In the mean time, before I finish this new version, you can patch it manually following these instructions:

http://www.simplemachines.org/community/index.php?topic=366399.msg2857312#msg2857312
Title: Re: httpBL
Post by: societyofrobots on December 07, 2010, 11:50:07 PM
best. reply. ever. :)
Title: Re: httpBL
Post by: EL34 on December 08, 2010, 03:56:35 PM
Snoop,
Just a suggestion on something  I would find useful.

I would like to reset the spammer log entries but keep the human logs.
I would like to keep an eye on some of the forum members that show up in the human log for a few days, but I don't really need 6 pages of spammer log entries.

As it is now, hitting the remove all button on either page, removes everything on both pages.

It would be nice if the remove all button (or a new button) only removed all entries on either the spammer or human log
Title: Re: httpBL
Post by: snoopy_virtual on December 08, 2010, 05:46:09 PM
Nice idea.

I will check it out. If I find an easy way to do that it will be in the next version.
Title: Re: httpBL
Post by: EL34 on December 08, 2010, 06:32:42 PM
Thanks snoop
Title: Re: httpBL
Post by: ms_ukyankee on December 09, 2010, 04:44:01 PM
This is a fabulous mod, thank you so much. I've searched for this but haven't found an answer, in the httpBL errors log, there is an entry that is confusing me.

Today at 01:29:28 PM 0:0:0:0:0:0:0:1      Guest
934
Unknown  Unknown  unknown  Cannot check. IP not normal. Allowed to pass 
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.12) Gecko/20101027 Ubuntu/10.04 (lucid) Firefox/3.6.12  /index.php?action=unread 

The IP address being bold, 0:0:0:0:0:0:0:1. If I understand correctly this is the IPv6 localhost address, if so I don't understand how it could be in a shared hosting environment?
Title: Re: httpBL
Post by: snoopy_virtual on December 12, 2010, 11:36:56 AM
@purplepaisley68:

There are 2 different matters to consider in your question:

First we have the problem of the people visiting our forums using already IPv6 instead of IPv4. I was trying for a while to make this mod compatible with IPv6. To do that I have been reading a lot of pages about IPv6. The more interesting one so far is:

http://en.wikipedia.org/wiki/IPv6 (and all the links inside it).

The problem is, to check a visitor's IP, the mod uses the database inside HoneyPot and there is no data yet in HoneyPot's DB about IPv6. It's all based only in IPv4. So I cannot make the mod compatible with IPv6 until HoneyPot change their DB.

In the mean time I only see 2 options:


So far I am using the second option because anyway almost every visitor is still using IPv4. I have seen very few IPv6 and all of them (so far) humans. I haven't seen yet any robot using IPv6.

Any visitor using IPv6 will pass undisturbed by the mod, but we will see all these entries in the error log, so we can study them and decide (if we see too many of them) if it's time to change the mod and start stopping them.

======================

That one you have here is obviously a human. If you check the user agent, you can see it's using Linux Ubuntu Lucid and there are no spammers robots (or trojans) at all written for that Operative System.

But we have the problem of the IP they are using. 0:0:0:0:0:0:0:1

I am not a big expert in IPv6 but (if I understood properly all I read about it) that IP is the same as 127.0.0.1 in IPv4: localhost.

So I am as puzzled about it as you are. How is it possible that a visitor in your forum is using the localhost address?

To get the answer maybe we should ask this question in a forum more specialized in IPv6 or here in SMF in another part were the big gurus can see it and give us an answer.

Remember the mod has nothing to do with the IP. It only has put it there in your log so you can study it, but it's using exactly the same method SMF is using to find the visitor's IP: It's using the SMF variable $user_info['ip']

When a visitor enter your forum SMF uses the more general method $_SERVER['REMOTE_ADDR'] to find the visitor's IP and then stores it inside the variable $user_info['ip'] and that's the one the mod uses to check HoneyPot's DB.

So if we are going to ask this question in a IPv6 specialized forum we should ask how is it possible that $_SERVER['REMOTE_ADDR'] returns a localhost value. And if we ask the question to a SMF guru it should be how is it possible that $user_info['ip'] has a localhost value.

I will try myself to find an answer. If you find it first please let me know.
Title: Re: httpBL
Post by: V@no on December 13, 2010, 08:40:44 PM
Hello.
The OS/Browser detection addon installs under the same ID as httpBL itself, this creates problem when one tries uninstall either - SMF shows that the other is uninstalled as well.
Title: Re: httpBL
Post by: snoopy_virtual on December 14, 2010, 07:05:16 AM
Hello.
The OS/Browser detection addon installs under the same ID as httpBL itself, this creates problem when one tries uninstall either - SMF shows that the other is uninstalled as well.

Sorry, I never thought of that possible problem.

I tried first to upload it with a different ID, but couldn't, as SMF doesn't allow 2 different files inside the same mod with 2 different IDs.

I thought also to publish this addon as a stand-alone mod (with its own ID) but couldn't also, because this is not really a stand-alone mod but it's a modification of another modification and SMF doesn't allow that either.

At the end I put it there with the same ID as mod httpBL, not realising that will give us problems when uninstalling one of them.

I don't really know what to do with it then. In the mean time (while I find a better solution) I have moved the addon to my own server, giving it the proper ID it should have.

From now on you can find it here:

http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0

=====================

Anyway you don't really need the package manager to uninstall the addon. The only thing this addon does is to copy the file os_browser_detection.php inside your /Sources/ folder and to copy a folder with all the possible OS & Browsers icons (the folder os_browser_detection) inside your /Themes/default/images/ folder.

So, to uninstall the addon you just need to delete the file /Sources/os_browser_detection.php and the folder /Themes/default/images/os_browser_detection/. After that you can delete the addon_OS_Browser_httpBL package from your mod's list.
Title: Re: httpBL
Post by: V@no on December 14, 2010, 07:10:35 PM
Thank you very much for this mod. So far this is the only mod that actually does the job done.
One thing is missing though, is the number of humans httpBL let through. It shows the log, but it doesn't tell how many of them in there...Having that number would be helpful to also show what is the percentage false positive it produces, aka how efficient it is. Also, in the human logs, does it log the same person twice?

Thank you.


So, to uninstall the addon you just need to delete the file /Sources/os_browser_detection.php and the folder /Themes/default/images/os_browser_detection/. After that you can delete the addon_OS_Browser_httpBL package from your mod's list.
Then perhaps that addon could be included in the package and at the install page (or right after) let user decide if they want also activate the addon? IMO would be less headache.
Title: Re: httpBL
Post by: snoopy_virtual on December 16, 2010, 07:05:46 AM
One thing is missing though, is the number of humans httpBL let through. It shows the log, but it doesn't tell how many of them in there...Having that number would be helpful to also show what is the percentage false positive it produces, aka how efficient it is.

Actually, when I started with the log, my idea was to do a lot more statistics, so we could see a lot more things, but I'm always finding a lot of urgent things to do first.

Maybe if one day I have more free time I will continue with the statistics and I will add not only the number you are talking about, but a lot more of them.

In the mean time there is an easy way to count them (if you don't delete any log entries) because there are exactly 30 entries per page.

Also, in the human logs, does it log the same person twice?

Yes.

The way it is just now, the mod writes an entry in the logs every time it finds an IP inside the Honey Pot's DB. It doesn't matter if that IP was already in the logs or not. If that IP is blocked it writes it in the first log, if it is allowed to pass it writes it in the second one and if there is an error it writes it in the 3rd one.

Actually, the names "Spammers Log" and "Humans Log" are not accurate. They should be called instead "Log of the IPs that has been blocked" and "Log of the IPs that has been allowed in". I have named them like that because ideally that is what the mod is supposed to do. Stop only the spammers and let through the non-spammers humans. And, of course, never have an error.

Most of the changes I have been doing to the mod since I started it has been to achieve that goal: Get all the bad guys in the first log, all the good ones in the second and get 0 errors.
Title: Re: httpBL
Post by: henrik1782 on December 16, 2010, 07:16:41 PM
Hi...

How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.
Title: Re: httpBL
Post by: teh_Krall on December 17, 2010, 01:17:29 AM
Hi...

How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.

You also registered on their site?

----

Just out of curiousness, what exactly is the worse case scenario if I let a spammer sign up when PHP said they were high risk?

I've let a few spammers on because they came up clean and didn't seem like spammers. The only think I've seen happen is either they put a link in their profile or make a spam post and leave. 
Title: Re: httpBL
Post by: henrik1782 on December 17, 2010, 10:41:03 AM
Yes I did register...

You can be right about spammers but you never know before its to late and the you may have to use some time to sort it out.
I have seen some suspecius use from some russian, korean and Chinese  IP adresses and I just don't want them to mess anything up.
Title: Re: httpBL
Post by: MCK on December 17, 2010, 02:52:18 PM
Great mod! Thank you very much!
Title: Re: httpBL
Post by: snoopy_virtual on December 17, 2010, 07:03:45 PM
How do I get the API Key for Honneypot. I installed the mod and wrote to then 4 days ago and I haven't hear nothing.

Did you read the tutorial (http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2) I wrote explaining it?

The rest of the tutorial is not finished yet, but that part is, and I thought it was very clear.

Just out of curiousness, what exactly is the worse case scenario if I let a spammer sign up when PHP said they were high risk?

Depending on what kind of robots they are, they normally register inside our forums for 2 main things:


I don't mind too much one of them writing a lot of "viagra links" inside a post. It will be a lot worst if they get the list of email addresses of all my members.

Of course it also depends on the way you have configured your forum, but in most forums visitors cannot see member's email addresses, but as soon as they register they can see them.

What I have done in all my forums is to create a special member-group called "Suspicious" with almost no power at all. The members inside that member-group cannot see other member's email address, they can publish only one post, they can send only one PM, etc.

When PHP tells me a guy is one of the bad ones, but I am not really sure, I let them to register, but put them inside the "Suspicious" group and send them a welcome PM. If one day one of them answers my PM normally or post something normal I will move them to a normal member-group, but that hasn't happened yet.

Great mod! Thank you very much!

You're welcome  ;)
Title: Re: httpBL
Post by: MCK on December 18, 2010, 11:25:26 AM
Honestly... More than 100 potential spammers declined by the mod in a day. I am happy! Thank you very much!
Title: Re: httpBL
Post by: teh_Krall on December 18, 2010, 12:19:32 PM
Depending on what kind of robots they are, they normally register inside our forums for 2 main things:

  • Write as much spam they can
  • Try to collect as many email addresses they can (to send them spam later)

I don't mind too much one of them writing a lot of "viagra links" inside a post. It will be a lot worst if they get the list of email addresses of all my members.

Of course it also depends on the way you have configured your forum, but in most forums visitors cannot see member's email addresses, but as soon as they register they can see them.

What I have done in all my forums is to create a special member-group called "Suspicious" with almost no power at all. The members inside that member-group cannot see other member's email address, they can publish only one post, they can send only one PM, etc.

When PHP tells me a guy is one of the bad ones, but I am not really sure, I let them to register, but put them inside the "Suspicious" group and send them a welcome PM. If one day one of them answers my PM normally or post something normal I will move them to a normal member-group, but that hasn't happened yet.

Thanks, as always you have a viewpoint I hadn't considered and that was email harvesting.

I will create a member group like that as some of the 'people' registering I can't quite tell if they are real or a spammer. Thanks again for your help and for supporting your mod in such an active way :)
Title: Re: httpBL
Post by: henrik1782 on December 19, 2010, 07:32:09 AM
Thanks Snoopy...

Read the toturial and everything is working!
Title: Re: httpBL
Post by: snoopy_virtual on December 19, 2010, 09:19:00 AM
Thanks, as always you have a viewpoint I hadn't considered and that was email harvesting.

I will create a member group like that as some of the 'people' registering I can't quite tell if they are real or a spammer. Thanks again for your help and for supporting your mod in such an active way :)

You are welcome. Anyway, both things are related. I normally have a lot of different viewpoints because I am very active supporting the mod, so I always get a lot of feedback from the people using it and benefit from everybody's suggestions.

For example the idea of creating this "Suspicious" group was not mine. Somebody else (don't remember who just now) suggested it when we were talking about another problem.  ;)

Thanks Snoopy...

Read the toturial and everything is working!

Glad to here it's OK now.
Title: Re: httpBL
Post by: Exsharaen on December 24, 2010, 12:32:56 PM
Hello snoopy, it's been a long time since my last reply :D this is the new Indonesian translation for httpBL (sorry, been too busy with my lectures):

Code: [Select]
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error_2'] = 'Koneksi gagal. Ini dapat berarti kunci API http:BL Anda tidak tepat atau ada masalah pada sistem DNS Anda.';
$txt['httpBL_caught'] = 'Spammer yang dihentikan MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP setiap pengunjung untuk memastikan apakah ada dalam basis data projecthoneypot. Jika ada, mod akan mengarahkan ulang pengunjung ke halaman warning.php, menolak akses ke forum.<br />Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa pengaturan.';
$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API yang Anda tuliskan salah. Periksa dengan teliti dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot yang terinstal di server Anda. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstalnya ke server Anda. Setelah itu, tuliskan di sini tautan ke Honey Pot tersebut, seperti berikut:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda juga harus memiliki sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>  untuk mendaftar dan mendapatkan kunci API, kemudian tuliskan di sini. Harap diperhatikan bahwa mereka tidak akan memberikan kunci API jika Anda tidak menginstal sebuah Honey Pot terlebih dahulu, jadi pastikan Anda sudah menginstalnya.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat spammer. Tuliskan sesuatu yang menarik spammer untuk mengekliknya, jangan sesuatu yang menakutkan. Jika Anda tidak mendapat ide sama sekali, kosongkan saja. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika terjadi masalah dan untuk menunjukkannya ke manusia yang kurang beruntung dengan memiliki IP yang dianggap sebagai spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, sehingga mereka dapat meminta bantuan Anda. Maka dari itu, ini harus berupa alamat email yang valid. Kita membaginya menjadi tiga kata agar robot tidak dapat membacanya. Sebagai contoh, jika alamat email Anda adalah <strong>info@situsanda.com</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda masukkan. Anda tidak dapat mengosongi salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari suatu IP dianggap baik';
$txt['httpBL_bad_last_activity_sub'] = 'Jika dulunya suatu IP adalah milik spammer, namun tidak ada yang melihatnya melakukan sesuatu yang salah sejak paling tidak sejumlah hari ini, kita menganggapnya tidak berbahaya lagi dan mengizinkannya masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberikan tingkat ancaman pada setiap IP yang berubah setiap hari, tergantung apa yang IP tersebut lakukan dan berapa hari yang lalu terjadinya. Setiap IP dengan tingkat ancaman yang lebih rendah dari angka yang Anda berikan di sini diizinkan masuk tanpa harus diperiksa.';
$txt['httpBL_very_bad_threat'] = 'Tingkat ancaman yang dianggap SANGAT buruk';
$txt['httpBL_very_bad_threat_sub'] = 'Setiap IP dengan tingkat ancaman yang lebih tinggi dari angka yang Anda berikan di sini tidak akan dapat masuk sama sekali. IP dengan tingkat ancaman di antara keduanya akan melihat captcha, dan jika dapat membuktikan dirinya manusia, ia diizinkan masuk selama beberapa jam.';
$txt['httpBL_cookie_length'] = 'Jam sampai sebuah IP harus membuktikan lagi bahwa dirinya manusia';
$txt['httpBL_no_negative_here'] = 'Jumlah hari dan tingkat ancaman tidak boleh negatif atau nol.';
$txt['httpBL_no_higher_than'] = 'Tingkat ancaman yang dianggap buruk tidak boleh lebih tinggi dari yang dianggap <strong>SANGAT</strong> buruk.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan di log';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menyalakan opsi ini, Anda akan melihat semua informasi di log, namun mungkin informasinya terlalu banyak dan Anda akan kehilangan fokus. Sesekali lebih baik hanya melihat yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" Anda dengan pengaturan ini (halaman yang akan dilihat siapa saja yang memiliki IP yang dianggap berbahaya), klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan terkait MOD ini, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> atau cobalah cari informasi tambahan dengan <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">membaca tutorial ini</a> <strong>(hanya dalam bahasa Inggris)</strong>.';

// View log page
$txt['httpBL_viewlog'] = 'Log Spammer httpBL';
$txt['httpBL_viewlog_description'] = 'Tiap kali MOD httpBL menghentikan spammer atau mendeteksi kesalahan internal, sebuah catatan akan ditambahkan di sini untuk Anda baca. Ini adalah daftar spammer yang dihentikan mod, baik karena tingkat ancaman mereka lebih tinggi dari tingkat ancaman yang dianggap <strong>SANGAT</strong> buruk, atau mereka tidak dapat membuktikan diri sebagai manusia saat melihat captcha.';
$txt['httpBL_viewlogpass'] = 'Log Manusia httpBL Humans';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan mod namun diizinkan masuk setelah dapat membuktikan diri bahwa mereka bukan robot.';
$txt['httpBL_viewlogerror'] = 'Log Kesalahan httpBL Errors';
$txt['httpBL_viewlogerror_description'] = 'Ini adalah daftar kesalahan internal yang terdeteksi saat memeriksa suatu IP. Tergantung kesalahannya, beberapa IP mungkin dihentikan dan lainnya mungkin diizinkan masuk. Untuk melihat seluruh informasi di sini, Anda harus mengeklik tombol <strong>"Tampilkan informasi tambahan"</strong>.';
$txt['httpBL_log_no_entries'] = 'Tidak ada catatan pada Log Spammer httpBL, baik karena Anda belum menangkap spammer sama sekali atau Anda telah menghapus semua catatan.';
$txt['httpBL_logpass_no_entries'] = 'Tidak ada catatan pada Log Manusia httpBL, baik karena tidak ada yang terbukti sebagai manusia atau Anda telah menghapus semua catatan.';
$txt['httpBL_logerror_no_entries'] = 'Tidak ada catatan pada Log Kesalahan httpBL, baik karena tidak ada kesalahan yang terjadi atau Anda telah menghapus semua catatan.';
$txt['httpBL_viewlog_extra'] = 'Tampilkan informasi tambahan';
$txt['httpBL_viewlog_normal'] = 'Sembunyikan informasi tambahan';
$txt['httpBL_log_show_legend'] = 'Tampilkan legenda';
$txt['httpBL_log_hide_legend'] = 'Sembunyikan legenda';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Tk. Anc.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - tingkat ancaman IP ini pada basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = 'Aktivitas Buruk Terakhir - jumlah hari sejak IP ini terlihat melakukan sesuatu buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen (Harvester) - Robot yang mencari alamat email untuk di-spam nantinya.';
$txt['httpBL_log_comment'] = 'K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis di blog dan forum. Tulisannya biasanya penuh dengan tautan ke situs yang dipromosikan robot ini.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_error_message'] = 'Pesan';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_threat_colors'] = 'Maksud warna:';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman tinggi';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat tinggi';
$txt['httpBL_log_remove_all_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan log httpBL? - Harap diperhatikan aksi ini tidak hanya menghapus seluruh entri pada bagian ini, namun SEMUA ENTRI PADA LOG.';
$txt['httpBL_log_remove_selected_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan log httpBL terpilih?';

// Errors
$txt['httpBL_log_no_error'] = 'Tidak ada kesalahan.';
$txt['httpBL_no_errorNumber'] = 'Tidak ada nomor kesalahan.';
$txt['httpBL_no_defined'] = 'Belum terdefinisi.';
$txt['httpBL_answers_captcha'] = 'Jawaban captcha';
$txt['httpBL_answer_captcha'] = 'Jawaban captcha';
$txt['httpBL_good'] = 'Baik';
$txt['httpBL_bad'] = 'Buruk';
$txt['httpBL_empty_ip'] = 'IP Kosong';
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';
$txt['httpBL_no_show_captcha'] = 'Tk. Anc. terlalu tinggi. Tidak menampilkan captcha.';
$txt['httpBL_no_reverse_ip'] = 'Tidak dapat memeriksa. IP tidak normal. Diizinkan masuk.';
$txt['httpBL_log_key_error'] = 'Tidak dapat memeriksa akibat kesalahan kunci API. Diizinkan masuk.';
$txt['httpBL_no_127'] = 'Tidak dapat memeriksa. response[raw] tidak dimulai dengan 127. Diizinkan masuk.';
$txt['httpBL_unknown'] = 'Tidak diketahui';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berganti, saat pengunjung melihat captcha dan terbukti sebagai manusia, mereka diizinkan masuk hanya selama sejumlah jam ini. Setelah itu, IP tersebut mungkin berasal dari komputer lain. Kami tidak menyarankan Anda mengganti lima nilai terakhir sampai Anda paham betul cara mod ini bekerja.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Tidak pernah diperiksa oleh mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Jika perizinan ini diaktifkan, seluruh anggota grup ini akan dapat selalu masuk tanpa diperiksa mod httpBL, sekalipun komputer mereka dikendalikan robot spammer (trojan).<br />---<br />Aktifkan hanya jika Anda tahu apa yang Anda perbuat.';
$txt['httpBL_last_act_too_high'] = 'Aktivitas terakhir sudah lama sekali. Diizinkan masuk.';
$txt['httpBL_threat_too_low'] = 'Tingkat Ancaman terlalu rendah. Diizinkan masuk.';
$txt['httpBL_enable_sub'] = 'Jika kotak cek ini bertanda, mod AKTIF. Jika tidak, mod ini MATI.';
$txt['httpBL_config_sub_3'] = 'Halaman inilah yang akan ditampilkan pada yang tidak terlalu berbahaya (dengan captcha, sehingga mereka dapat membuktikan diri sebagai manusia). Jika Anda ingin memeriksa yang akan tampil untuk yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL AKTIF namun ada masalah koneksi dengan HoneyPot. Silakan coba lagi nanti.';
$txt['httpBL_mod_no_connect_2'] = 'Jika masalah ini terus muncul, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> <strong>(hanya dalam bahasa Inggris)</strong>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL AKTIF namun bukan yang terbaru.';
$txt['httpBL_mod_new_version_2'] = 'Ada versi terbaru mod ini. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Silakan perbarui saat Anda sempat</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL AKTIF, terbaru, dan koneksi dengan HoneyPot sempurna.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL MATI.';
$txt['OS_Browser_Compatible'] = 'kompatibel';
$txt['OS_Browser_OS'] = 'Sistem Operasi';
$txt['OS_Browser_Unknown'] = 'Tidak diketahui';
$txt['OS_Browser_Browser'] = 'Peramban';
$txt['httpBL_cache_length'] = 'Lama menyimpan data di tembolok (dalam menit)';
$txt['httpBL_cache_length_sub'] = 'Tiap kali mod mengecek IP, ia akan menyimpan data pada tembolok (jika diaktifkan) dan pada sesi pengunjung selama jumlah menit yang Anda tuliskan di sini. Jika IP yang sama mengunjungi halaman Anda sebelum waktu ini, mod tidak akan memeriksanya, namun akan menggunakan data yang tersimpan pada tembolok dan/atau sesi.';
$txt['httpBL_view_os_whosonline'] = 'Lihat data peramban dan sistem operasi pada halaman "Pengguna Online"';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL menggunakan fungsi dari "Mod OS & Browser Detection" untuk menampilkan sistem operasi dan peramban yang digunakan seluruh pengunjung di catatan log. Jika Anda ingin melihat pula sistem operasi dan peramban yang digunakan pengunjung situs Anda pada halaman "Pengguna Online", tandai kotak ini. Tentu saja, agar dapat melihatnya (pada log maupun halaman "Pengguna Online"), Anda harus menginstal baik <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> atau <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">add-on kecil untuk melihat sistem operasi dan peramban pada httpBL</a>.';
// MOD httpBL END

A side note: I changed any <b> tag to <strong> tag to comply with XHTML standards. Anyway, some few typos:

Quote
$txt['httpBL_config_sub_3'] = 'That\'s the way it is going to appear to the not too dangerous ones. Whith a captcha, so they can prove if they are humans. If you want to check the way it is going to come out for the really VERY dangerous ones (whithout captcha) use this link instead:';

I think it should be with?

Quote
$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';

What do you mean by hidding? Do you mean hiding? I didn't translate that line :)

Quote
$txt['OS_Browser_OS'] = 'Operative System';

I think it should be operating, but it's just a matter of taste, isn't it? ;)

I also included the translated warning.php, along with some corrections to the typos, and in as few lines as possible so the layout is not screwed up. Hope it's useful for everyone.

Merry Christmas!
Title: Re: httpBL
Post by: snoopy_virtual on December 24, 2010, 03:04:03 PM
Hello snoopy, it's been a long time since my last reply :D this is the new Indonesian translation for httpBL (sorry, been too busy with my lectures):

Hi Exsharaen, pleased to see you here again.

I have bad news for you. I have been very busy during the last month doing the next version for this mod (2.5) and I have it almost ready. In fact this new version was almost finished a couple of weeks ago and it's not ready because all the problems I had lately with my other mod "Stop Spammer" and with the "SMF Spanish Translator's Team". But it seems that both these problems are a little more settled now, so I hope I will have time now to finish at last the new version in just a few days.

This new version 2.5 have a lot of changes and new features, so I have changed lots of language lines and have added also a lot of new ones. I have even changed too the warning page. You will see it as soon as I have it ready.

I suppose that will mean you will need to check again all the work you did here. Sorry. Anyway I have tried (as I did with the last version) to keep separate the lines changed and the new lines in this version, to make life easier for translators, but (even with that) there are a lot.

======================

Let's see the points you talk about here:

I changed any <b> tag to <strong> tag to comply with XHTML standards.

You are right. I saw that some time ago, but forgot to do it. I should change it as well, not only in all the language files, but also in the template file.

Whith a captcha, ...

I think it should be with?

Yes, I saw that one and it's already corrected in version 2.5

$txt['httpBL_wrote_hidding'] = 'Wrote on a hidding place';

What do you mean by hidding? Do you mean hiding? I didn't translate that line :)

It is a typo. It should be hiding. In that part is talking about the hiding fields I put in the captcha, only visible to robots. Anybody writing on those fields is not human for sure.

$txt['OS_Browser_OS'] = 'Operative System';

I think it should be operating, but it's just a matter of taste, isn't it? ;)

English is not my native language, so I am not sure about that. I am only sure as how we say it in Spanish. In English I have seen it always as Operative System but I suppose we could ask all the British and Americans around here. They should know.  ;)

======================

Thanks for your translation, and sorry again you will need to re-check it again in a few days.

And Merry Christmas to you too.  ;)
Title: Re: httpBL
Post by: Exsharaen on December 26, 2010, 01:21:52 AM
That's OK, I will gladly translate it again. Now you make me curious about the new version ;D
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 07:35:57 PM
MOD httpBL v2.5
============



Author:snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
Version:2.5
Release:27th December 2010
Languages:(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
Compatible With:SMF 1.1.1 - 1.1.12

SMF 2 RC2 - RC3 - RC4

Change Log:

Quote
Version 2.5 - 27th December 2010
  +Added a help section
  +Added the page index at the bottom of the log pages too (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2828764#msg2828764)
  *Changed again the function get_real_IP() (See here) (http://www.snoopyvirtualstudio.com/foro/index.php?topic=362.0)
  +Added a new variable to the config page to see 2 languages or just one in the warning page
  *Changed the config page to make it easier to understand
  +Added a new button to the log pages to delete the entries of just one log (as requested here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2875367#msg2875367)
  !Sorted the bug Undefined index: REQUEST_URI (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2804696#msg2804696)
  !Sorted the bug TEXT column can't get default values (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2842435#msg2842435)
  !Sorted the bug about log pages displaying wrongly (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2857270#msg2857270)
  !corrected a few typos (reported here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2814818#msg2814818) (and here) (http://www.simplemachines.org/community/index.php?topic=366399.msg2890848#msg2890848)
  *Changed 10 lines and added 78 new lines in language files
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using
Quote
Legend
oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

As you can see this new version has a lot of changes. I will try to update the tutorial as soon as possible to explain them there, but in the mean time if there is anything you don't understand just ask as always.
Title: Re: httpBL
Post by: Wizzlefits on December 27, 2010, 07:50:40 PM
SWEET!  ;D
You have been busy!
Oh, you forgot the "Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

The little tweak to SP has had an unexpected (good) effect.
Read the last pm & email me. LOL!!!
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 08:14:20 PM
What tweak to SP? I'm lost now.

EDIT: I get it. I thought you were talking about Simple Portal. lol

Almost everything are new features already requested here or bugs also reported here. The only really new thing from my own side has been the new "Help" section and the changes in the "Config" section.

Check them out. You are going to like them.

Oh, you forgot the "Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

I hope I haven't forgotten any more things lol
Title: Re: httpBL
Post by: butchs on December 27, 2010, 08:26:17 PM
No comment.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on December 27, 2010, 10:38:41 PM
"Link to Mod" (http://custom.simplemachines.org/mods/index.php?mod=2155)

MOD httpBL v2.5.1
=============


Author:snoopy_virtual (http://custom.simplemachines.org/mods/index.php?action=profile;u=68708)
Version:2.5.1
Release:28th December 2010
Languages:(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish.gif&hash=8ae56bf31900dff4f4e5b493c620cec1) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fenglish_british.gif&hash=71471095a389e0903138e39c062e544a) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish.gif&hash=211201b6ca4b9008951c0344e003dadd) (https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.simplemachines.org%2Fsite_images%2Flang%2Fspanish_latin.gif&hash=32aff235f51265556bb902c5cf9f88b9)
Compatible With:SMF 1.1.1 - 1.1.12
SMF 2 RC2 - RC3 - RC4

Change Log:

Quote
Version 2.5.1 - 28th December 2010
  *Changed the design of the help page. It was not displaying properly with some Themes
  ?Unistall old version and install new one
  ?No need to edit manually any template file if you are updating from version 2.4
  ?For new installations, as always, you need to edit manually the file index.template.php
if you are not using the default Theme and you will have to edit also the file
Who.template.php if you have it inside the folder of the particular Theme
you are using
Quote
Legend
oFeature
*Change
+Added
-Eliminated
!Bug Fixed
?How to Update

I had the new version 2.5 already installed in a few forums when suddenly I found out in one of them the new "Help" section was not displaying properly because of a mistake in the HTML design.

It's not a big deal, but it was very difficult to read it, so I have change the design.

If you see any other Themes where that new section is not displaying properly, let me know and I will see if I can do anything better there.

Luckily very few people had already installed the version 2.5 because now they will need to update again. Sorry.
Title: Re: httpBL
Post by: Gianni_T on December 28, 2010, 04:30:22 AM
Hi,
what's the exact procedure to update httpBL from 2.4 to 2.5.1?
Do I have to setup again all the module settings after the update?

Thanks in advance.
Title: Re: httpBL
Post by: Exsharaen on December 28, 2010, 10:44:02 AM
@Gianni_T: The settings are left intact; I uninstalled 2.4, installed 2.5.1 and they are back.

@snoopy: I wonder why I got this error when uninstalling httpBL 2.4 prior to update to 2.5.1:

Quote
Fatal error: require_once() [function.require]: Failed opening required '/my_forum_path/Sources/httpBL_Subs.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /my_forum_path/Sources/Load.php on line 524

I'll edit Load.php and see what's causing it.

EDIT:
This is weird, the httpBL codes are still there, the one that says

Code: [Select]
global $sourcedir, $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response && ((isset($response['last_activity']) && (int)$response['last_activity'] <= (int)$modSettings['httpBL_bad_last_activity'] && isset($response['threat']) && (int)$response['threat'] >= (int)$modSettings['httpBL_bad_threat'] && (int)$response['type'] != 0) || $response['ip'] == ''))
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}

Somehow my Load.php didn't revert back. I commented those lines and regained access, and found something silly: All previous httpBl installations were still there; I forgot to delete them :P deleting them causes some fatal errors at the end of every page (still says something about missing lines for httpBL), but they are gone once I installed 2.5.1.

I'll translate now for the missing lines (magically some lines are already translated ;D).

Thanks and have a nice day,

EDIT 2:

I am a little bit reluctant to translate the Help section, since it's heavily related to... you ;D I think translating it will lose some of its meaning, and people may assume you can speak in any language (even though when refering to other site only in English, I always give a little warning at the translated strings). Lest, if you still want me to translate this section, I will try to translate it appropriately, so people won't be disappointed after knowing you only speak English :)

This is my current translation, without the HELP section:

Code: [Select]
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Tautan honeyPot salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error'] = 'Kunci API http:BL salah. Harap periksa konfigurasi MOD httpBL Anda.';
$txt['httpBL_honeyPot_key_error_2'] = 'Koneksi gagal. Ini dapat berarti kunci API http:BL Anda tidak tepat atau ada masalah pada sistem DNS Anda.';
$txt['httpBL_caught'] = 'Spammer yang dihentikan MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'MOD httpBL memeriksa IP setiap pengunjung untuk memastikan apakah ada dalam basis data projecthoneypot. Jika ada, mod akan mengarahkan ulang pengunjung ke halaman warning.php, menolak akses ke forum.<br />Di sini Anda dapat menyalakan/mematikan mod dan mengganti beberapa pengaturan.';
$txt['httpBL_config'] = 'Pengaturan MOD httpBL';
$txt['httpBL_enable'] = 'Nyalakan/matikan MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Kunci API yang Anda tuliskan salah. Periksa dengan teliti dan coba lagi.';
$txt['httpBL_honeyPot_link'] = 'Tautan ke Honey Pot Anda';
$txt['httpBL_honeyPot_link_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot yang terinstal di server Anda. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstalnya ke server Anda. Setelah itu, tuliskan di sini tautan ke Honey Pot tersebut, seperti berikut:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key'] = 'Kunci API http:BL Honey Pot Anda';
$txt['httpBL_honeyPot_key_sub'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda juga harus memiliki sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>  untuk mendaftar dan mendapatkan kunci API, kemudian tuliskan di sini. Harap diperhatikan bahwa mereka tidak akan memberikan kunci API jika Anda tidak menginstal sebuah Honey Pot terlebih dahulu, jadi pastikan Anda sudah menginstalnya.';
$txt['httpBL_honeyPot_word'] = 'Kata kunci tautan Honey Pot Anda';
$txt['httpBL_honeyPot_word_sub'] = 'Ini adalah satu-satunya kata pada tautan Honey Pot Anda yang akan dilihat spammer. Tuliskan sesuatu yang menarik spammer untuk mengekliknya, jangan sesuatu yang menakutkan. Jika Anda tidak mendapat ide sama sekali, kosongkan saja. Mod ini akan memilihkan satu untuk Anda.';
$txt['httpBL_info_email_1'] = 'Kata pertama email Anda';
$txt['httpBL_info_email_2'] = 'Kata kedua email Anda';
$txt['httpBL_info_email_3'] = 'Kata ketiga email Anda';
$txt['httpBL_info_email_sub'] = 'Mod ini memerlukan alamat email Anda untuk memberi tahu Anda jika terjadi masalah dan untuk menunjukkannya ke manusia yang kurang beruntung dengan memiliki IP yang dianggap sebagai spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, sehingga mereka dapat meminta bantuan Anda. Maka dari itu, ini harus berupa alamat email yang valid. Kita membaginya menjadi tiga kata agar robot tidak dapat membacanya. Sebagai contoh, jika alamat email Anda adalah <strong>info@situsanda.com</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_enable_bad_email'] = 'Periksa alamat email yang Anda masukkan. Anda tidak dapat mengosongi salah satu dari ketiga kata.';
$txt['httpBL_bad_last_activity'] = 'Jumlah hari suatu IP dianggap baik';
$txt['httpBL_bad_last_activity_sub'] = 'Jika dulunya suatu IP adalah milik spammer, namun tidak ada yang melihatnya melakukan sesuatu yang salah sejak paling tidak sejumlah hari ini, kita menganggapnya tidak berbahaya lagi dan mengizinkannya masuk.';
$txt['httpBL_bad_threat'] = 'Tingkat ancaman yang dianggap buruk';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot memberikan tingkat ancaman pada setiap IP yang berubah setiap hari, tergantung apa yang IP tersebut lakukan dan berapa hari yang lalu terjadinya. Setiap IP dengan tingkat ancaman yang lebih rendah dari angka yang Anda berikan di sini diizinkan masuk tanpa harus diperiksa.';
$txt['httpBL_very_bad_threat'] = 'Tingkat ancaman yang dianggap SANGAT buruk';
$txt['httpBL_very_bad_threat_sub'] = 'Setiap IP dengan tingkat ancaman yang lebih tinggi dari angka yang Anda berikan di sini tidak akan dapat masuk sama sekali. IP dengan tingkat ancaman di antara keduanya akan melihat captcha, dan jika dapat membuktikan dirinya manusia, ia diizinkan masuk selama beberapa jam.';
$txt['httpBL_cookie_length'] = 'Jam sampai sebuah IP harus membuktikan lagi bahwa dirinya manusia';
$txt['httpBL_no_negative_here'] = 'Jumlah hari dan tingkat ancaman tidak boleh negatif atau nol.';
$txt['httpBL_no_higher_than'] = 'Tingkat ancaman yang dianggap buruk tidak boleh lebih tinggi dari yang dianggap <strong>SANGAT</strong> buruk.';
$txt['httpBL_viewlog_extra'] = 'Lihat informasi tambahan di catatan';
$txt['httpBL_viewlog_extra_sub'] = 'Jika Anda menyalakan opsi ini, Anda akan melihat semua informasi di catatan, namun mungkin informasinya terlalu banyak dan Anda akan kehilangan fokus. Sesekali lebih baik hanya melihat yang penting saja.';
$txt['httpBL_config_sub_1'] = 'Jika Anda ingin melihat halaman "warning.php" Anda dengan pengaturan ini (halaman yang akan dilihat siapa saja yang memiliki IP yang dianggap berbahaya), klik tautan ini:';
$txt['httpBL_config_sub_2'] = 'Jika Anda ingin mengganti desain atau menerjemahkan halaman tersebut dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan terkait MOD ini, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> atau cobalah cari informasi tambahan dengan <a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2" target="_blank">membaca tutorial ini</a> <strong>(hanya dalam bahasa Inggris)</strong>.';

// View log page
$txt['httpBL_viewlog'] = 'Catatan Spammer httpBL';
$txt['httpBL_viewlog_description'] = 'Tiap kali MOD httpBL menghentikan spammer atau mendeteksi kesalahan internal, sebuah catatan akan ditambahkan di sini untuk Anda baca. Ini adalah daftar spammer yang dihentikan mod, baik karena tingkat ancaman mereka lebih tinggi dari tingkat ancaman yang dianggap <strong>SANGAT</strong> buruk, atau mereka tidak dapat membuktikan diri sebagai manusia saat melihat captcha.';
$txt['httpBL_viewlogpass'] = 'Catatan Manusia httpBL';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan mod namun diizinkan masuk setelah dapat membuktikan diri bahwa mereka bukan robot.';
$txt['httpBL_viewlogerror'] = 'Catatan Kesalahan httpBL';
$txt['httpBL_viewlogerror_description'] = 'Ini adalah daftar kesalahan internal yang terdeteksi saat memeriksa suatu IP. Tergantung kesalahannya, beberapa IP mungkin dihentikan dan lainnya mungkin diizinkan masuk. Untuk melihat seluruh informasi di sini, Anda harus mengeklik tombol <strong>"Tampilkan informasi tambahan"</strong>.';
$txt['httpBL_log_no_entries'] = 'Tidak ada catatan pada Catatan Spammer httpBL, baik karena Anda belum menangkap spammer sama sekali atau Anda telah menghapus semua catatan.';
$txt['httpBL_logpass_no_entries'] = 'Tidak ada catatan pada Catatan Manusia httpBL, baik karena tidak ada yang terbukti sebagai manusia atau Anda telah menghapus semua catatan.';
$txt['httpBL_logerror_no_entries'] = 'Tidak ada catatan pada Catatan Kesalahan httpBL, baik karena tidak ada kesalahan yang terjadi atau Anda telah menghapus semua catatan.';
$txt['httpBL_viewlog_extra'] = 'Tampilkan informasi tambahan';
$txt['httpBL_viewlog_normal'] = 'Sembunyikan informasi tambahan';
$txt['httpBL_log_show_legend'] = 'Tampilkan legenda';
$txt['httpBL_log_hide_legend'] = 'Sembunyikan legenda';
$txt['httpBL_pages'] = 'Halaman';
$txt['httpBL_log_date'] = 'Tanggal';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'Tk. Anc.';
$txt['httpBL_log_threat_long'] = 'Tingkat Ancaman - tingkat ancaman IP ini pada basis data Project Honey Pot.';
$txt['httpBL_log_activity'] = 'A.B.T.';
$txt['httpBL_log_activity_long'] = 'Aktivitas Buruk Terakhir - jumlah hari sejak IP ini terlihat melakukan sesuatu buruk.';
$txt['httpBL_log_suspicious'] = 'M.';
$txt['httpBL_log_suspicious_long'] = 'Mencurigakan - Hanya dicurigai sebagai spammer.';
$txt['httpBL_log_harvester'] = 'P.';
$txt['httpBL_log_harvester_long'] = 'Pemanen (Harvester) - Robot yang mencari alamat email untuk di-spam nantinya.';
$txt['httpBL_log_comment'] = 'K.';
$txt['httpBL_log_comment_long'] = 'Spammer Komentar - Robot yang menulis di bcatatan dan forum. Tulisannya biasanya penuh dengan tautan ke situs yang dipromosikan robot ini.';
$txt['httpBL_log_url'] = 'Halaman';
$txt['httpBL_log_url_long'] = 'Halaman yang dikunjungi IP ini saat terdeteksi dan diusir oleh mod.';
$txt['httpBL_log_error_message'] = 'Pesan';
$txt['httpBL_yes'] = 'Ya';
$txt['httpBL_threat_colors'] = 'Maksud warna:';
$txt['httpBL_threat_low'] = 'Ancaman rendah';
$txt['httpBL_threat_medium'] = 'Ancaman sedang';
$txt['httpBL_threat_high'] = 'Ancaman tinggi';
$txt['httpBL_threat_very_high'] = 'Ancaman sangat tinggi';
$txt['httpBL_log_remove_all_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan httpBL? - Harap diperhatikan aksi ini tidak hanya menghapus seluruh entri pada bagian ini, namun SEMUA ENTRI PADA CATATAN.';
$txt['httpBL_log_remove_selected_confirm'] = 'Apakah Anda yakin ingin menghapus semua catatan httpBL terpilih?';

// Errors
$txt['httpBL_log_no_error'] = 'Tidak ada kesalahan.';
$txt['httpBL_no_errorNumber'] = 'Tidak ada nomor kesalahan.';
$txt['httpBL_no_defined'] = 'Belum terdefinisi.';
$txt['httpBL_answers_captcha'] = 'Jawaban captcha';
$txt['httpBL_answer_captcha'] = 'Jawaban captcha';
$txt['httpBL_good'] = 'Baik';
$txt['httpBL_bad'] = 'Buruk';
$txt['httpBL_empty_ip'] = 'IP Kosong';
$txt['httpBL_wrote_hiding'] = 'Ditulis di tempat tersembunyi';
$txt['httpBL_no_show_captcha'] = 'Tk. Anc. terlalu tinggi. Tidak menampilkan captcha.';
$txt['httpBL_no_reverse_ip'] = 'Tidak dapat memeriksa. IP tidak normal. Diizinkan masuk.';
$txt['httpBL_log_key_error'] = 'Tidak dapat memeriksa akibat kesalahan kunci API. Diizinkan masuk.';
$txt['httpBL_no_127'] = 'Tidak dapat memeriksa. response[raw] tidak dimulai dengan 127. Diizinkan masuk.';
$txt['httpBL_unknown'] = 'Tidak diketahui';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'Agen Pengguna';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berganti, saat pengunjung melihat captcha dan terbukti sebagai manusia, mereka diizinkan masuk hanya selama sejumlah jam ini. Setelah itu, IP tersebut mungkin berasal dari komputer lain. Kami tidak menyarankan Anda mengganti lima nilai terakhir sampai Anda paham betul cara mod ini bekerja.';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Tidak pernah diperiksa oleh mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Jika perizinan ini diaktifkan, seluruh anggota grup ini akan dapat selalu masuk tanpa diperiksa mod httpBL, sekalipun komputer mereka dikendalikan robot spammer (trojan).<br />---<br />Aktifkan hanya jika Anda tahu apa yang Anda perbuat.';
$txt['httpBL_last_act_too_high'] = 'Aktivitas terakhir sudah lama sekali. Diizinkan masuk.';
$txt['httpBL_threat_too_low'] = 'Tingkat Ancaman terlalu rendah. Diizinkan masuk.';
$txt['httpBL_enable_sub'] = 'Jika kotak cek ini bertanda, mod AKTIF. Jika tidak, mod ini MATI.';
$txt['httpBL_config_sub_3'] = 'Halaman inilah yang akan ditampilkan pada yang tidak terlalu berbahaya (dengan captcha, sehingga mereka dapat membuktikan diri sebagai manusia). Jika Anda ingin memeriksa yang akan tampil untuk yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini:';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL AKTIF namun ada masalah koneksi dengan HoneyPot. Silakan coba lagi nanti.';
$txt['httpBL_mod_no_connect_2'] = 'Jika masalah ini terus muncul, silakan minta bantuan di <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum dukungan resmi</a> <strong>(hanya dalam bahasa Inggris)</strong>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL AKTIF namun bukan yang terbaru.';
$txt['httpBL_mod_new_version_2'] = 'Ada versi terbaru mod ini. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Silakan perbarui saat Anda sempat</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL AKTIF, terbaru, dan koneksi dengan HoneyPot sempurna.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL MATI.';
$txt['OS_Browser_Compatible'] = 'kompatibel';
$txt['OS_Browser_OS'] = 'Sistem Operasi';
$txt['OS_Browser_Unknown'] = 'Tidak diketahui';
$txt['OS_Browser_Browser'] = 'Peramban';
$txt['httpBL_cache_length'] = 'Lama menyimpan data di tembolok (dalam menit)';
$txt['httpBL_cache_length_sub'] = 'Tiap kali mod mengecek IP, ia akan menyimpan data pada tembolok (jika diaktifkan) dan pada sesi pengunjung selama jumlah menit yang Anda tuliskan di sini. Jika IP yang sama mengunjungi halaman Anda sebelum waktu ini, mod tidak akan memeriksanya, namun akan menggunakan data yang tersimpan pada tembolok dan/atau sesi.';
$txt['httpBL_view_os_whosonline'] = 'Lihat data peramban dan sistem operasi pada halaman "Pengguna Online"';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Pengaturan';
$txt['httpBL_honeyPot_link_sub'] = 'Setelah menginstal Honey Pot di server Anda, tuliskan di sini tautannya, yang berbentuk seperti ini:<br /><strong>http://www.situsanda.com/honeypotanda.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Harap perhatikan bahwa Project Honey Pot tidak akan memberikan kunci jika Anda belum menginstal Honey Pot, jadi sebaiknya lakukan itu dulu.';
$txt['httpBL_viewlog'] = 'Catatan Spammer';
$txt['httpBL_viewlogpass'] = 'Catatan Manusia';
$txt['httpBL_viewlogerror'] = 'Catatan Kesalahan';
$txt['httpBL_viewlogpass_description'] = 'Ini adalah daftar manusia yang dihentikan oleh mod namun diizinkan masuk setelah membuktikan mereka bukan robot, dan seluruh pengunjung yang terdeteksi sebagai spammer pada basis data namun dengan tingkat ancaman yang lebih rendah dari "Tingkat ancaman yang dianggap buruk" pada pengaturan Anda, sehingga mereka tidak dihentikan.';
$txt['httpBL_info_email_desc'] = 'Mod membutuhkan alamat email Anda untuk memberitahu Anda jika ada masalah dan pada siapapun yang kurang beruntung dengan memiliki alamat IP yang dianggap spammer dan tidak tahu cara keluar dari halaman <strong>warning.php</strong>, jadi mereka dapat meminta bantuan Anda. Karena itu, ini harus berupa alamat email yang benar. Kita membaginya menjadi tiga kata agar tidak terbaca robot. Sebagai contoh, jika alamat email Anda adalah <strong>info@situsanda.com</strong>, kata pertama adalah <strong>info</strong>, kata kedua adalah <strong>situsanda</strong>, dan kata ketiga adalah <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'Karena IP sering berubah, ketika pengunjung melihat captcha dan membuktikan diri sebagai manusia, pengunjung diizinkan masuk hanya selama beberapa jam yang Anda tentukan di sini. Setelah itu, IP-nya mungkin berasal dari komputer lain.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL menggunakan fungsi dari "Mod OS & Browser Detection" untuk menampilkan sistem operasi dan peramban yang digunakan seluruh pengunjung di catatan. Jika Anda ingin melihat pula sistem operasi dan peramban yang digunakan pengunjung situs Anda pada halaman "Pengguna Online", tandai kotak ini. Tentu saja, agar dapat melihatnya (pada catatan maupun halaman "Pengguna Online"), Anda harus menginstal baik <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> atau <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">add-on kecil untuk melihat sistem operasi dan peramban pada httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
$httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
$httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'Pengaturan Umum';
$txt['httpBL_general_settings_desc'] = 'Jika Anda ingin menggunakan MOD httpBL, Anda harus memiliki sebuah Honey Pot (yang terinstal pada server Anda) dan sebuah kunci API http:BL dari Project Honey Pot. Jika Anda tidak memilikinya, silakan kunjungi <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> untuk mendapatkan dan menginstal Honey Pot pada server Anda, serta meminta kunci API http:BL Anda.';
$txt['httpBL_info_email'] = 'Alamat email Anda';
$txt['httpBL_internal_settings'] = 'Pengaturan Internal';
$txt['httpBL_internal_settings_desc'] = 'Berikut adalah pengarutan internal untuk mengendalikan cara kerja mod httpBL. Tidak disarankan untuk menggantinya hingga Anda mengetahui persis pengaruhnya ke cara kerja mod ini.';
$txt['httpBL_extra_settings'] = 'Pengaturan Tambahan';
$txt['httpBL_extra_settings_desc'] = 'Pengaturan lainnya yang mungkin ingin Anda ganti.';
$txt['httpBL_warning_settings'] = 'Pengaturan Halaman Peringatan';
$txt['httpBL_warning_settings_desc'] = 'Jika Anda ingin melihat tampilan halaman "warning.php" dengan pengaturan ini (halaman yang akan dilihat setiap pengunjung dengan IP dianggap berbahaya), klik di sini: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br />Halaman tersebut yang akan tampil untuk pengunjung yang tidak terlalu berbahaya, dengan captcha agar mereka dapat membuktikan diri sebagai manusia. Jika Anda ingin melihat halaman yang sama untuk pengunjung yang SANGAT berbahaya (tanpa captcha), gunakan tautan ini: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br />Jika Anda ingin mengganti desainnya atau menerjemahkannya dan Anda tidak tahu caranya, atau Anda memiliki pertanyaan tentang mod ini, Anda akan menemukan informasi lebih banyak di <a href="'. $httpBL_help_link. '">bagian BANTUAN httpBL</a> (sementara dalam bahasa Inggris).';
$txt['httpBL_use_two_languages'] = 'Gunakan dua bahasa pada halaman peringatan';
$txt['httpBL_use_two_languages_sub'] = 'Pada dasarnya, halaman peringatan terdiri dari dua bahasa: Inggris dan Indonesia, sehingga seluruh pengunjung dapat memahami arti halaman tersebut. Jika dimatikan, halaman tersebut hanya akan tampil dalam bahasa Inggris.';
$txt['httpBL_horizontal_separator'] = 'Pemisah mendatar untuk halaman peringatan';
$txt['httpBL_horizontal_separator_sub'] = 'Pemisah mendatar dasar untuk setiap blok dalam halaman peringatan menggunakan &lt;hr /&gt; (garis mendatar abu-abu), namun Anda dapat menggantinya dengan apa saja menggunakan HTML.<br />
Sebagai contoh, &lt;br /&gt; akan memberi Anda sebuah garis polos.<br />
Atau Anda bisa menggunakan gambar garis mendatar yang Anda suka dengan menuliskan:<br />
&lt;img src="http://www.situsanda.com/gambar_apapun.jpg" alt="" border="0" /&gt;<br />
(Ganti tautan di dalam src="" dengan path sebenarnya ke gambar Anda).';
$txt['httpBL_log_clear_this_log'] = 'Bersihkan catatan ini';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Spammer MOD httpBL?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Manusia MOD httpBL?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Apakah Anda yakin ingin menghapus seluruh data pada Catatan Kesalahan MOD httpBL?';

// MOD httpBL END

As for the warning.php, the translation stays the same :)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 12:58:14 PM
Hi,
what's the exact procedure to update httpBL from 2.4 to 2.5.1?
Do I have to setup again all the module settings after the update?

Thanks in advance.

Exsharaen is right. When you uninstall your old version and install the new one all your settings are left untouched. Check them just in case, but they should be exactly the same as before.

You should worry now only about the 2 new settings controlling the design of your warning page. (The last 2 settings). You didn't have them before.

Another thing I always do before uninstalling a version of httpBL and installing a new one is to save a copy of my warning_css.css file, as it always get overwritten when installing a new version, and I have a different version of that file for every forum.

The file warning_css.css is the css for the warning page and you can modify it to give it the feeling you want for every forum. I will talk more about this in the tutorial when I arrive to that part, but you can see here a couple of examples of how a warning page looks after tweaking a little the css file:

Forum: http://www.snoopyvirtualstudio.com/foro/
Warning page: http://www.snoopyvirtualstudio.com/foro/warning.php

Forum: http://www.snoopyvirtualstudio.com/miel/
Warning page: http://www.snoopyvirtualstudio.com/miel/warning.php

As you can see, in the first one I changed completely the design. The warning page looks completely different as the forum, but in the second example they look almost exactly the same.

In both cases I just played a little with the css file (apart from a small change inside the warning page in the first one).

@snoopy: I wonder why I got this error when uninstalling httpBL 2.4 prior to update to 2.5.1:

Quote
Fatal error: require_once() [function.require]: Failed opening required '/my_forum_path/Sources/httpBL_Subs.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /my_forum_path/Sources/Load.php on line 524

...

This is weird, the httpBL codes are still there ...

...

Somehow my Load.php didn't revert back. ...

That's strange. When uninstalling it should erase all the lines in the Sources files. Anyway it has happened to me a couple of times when uninstalling other mods. Luckily if doesn't happen very often, but when it happens the only solution is what you did: Check all the files and do the changes manually.

I don't think it's a fault in any mod or in the Package Manager. I suppose it must be that the server is too busy doing something else at that particular moment and fail to follow all the instructions the Package Manager is asking it to do.

The only file is never touched when I uninstall a version of httpBL is the file index.template.php, because I don't use the default Theme, so I always get a few errors saying "Fatal error: require_once() ....." (but referring to that index.template.php file, not the Load.php one).

I could easily avoid those errors editing manually my index.template.php when uninstalling, but then I would need to edit it again after installing the new version (to put it back the same way it was) so its easier for me just to ignore those errors and delete them from the "Forum Error Log" after updating.

I am a little bit reluctant to translate the Help section, since it's heavily related to... you ;D I think translating it will lose some of its meaning, and people may assume you can speak in any language (even though when refering to other site only in English, I always give a little warning at the translated strings). Lest, if you still want me to translate this section, I will try to translate it appropriately, so people won't be disappointed after knowing you only speak English :)

I think you are right. I suppose you have seen I have added anyway a warning saying that I am only fluent in English and Spanish, but there are a lot of people who never read the warnings.  ;D

If anybody calls me speaking Indonesian I suppose I wouldn't even recognize what language they were speaking.  ;D

Also, inside the help section, the English part is pointing to web pages (tutorial, forums, etc) in English and the Spanish part to web sites in Spanish. So I suppose if you translate the Help section to Indonesian you should need to translate as well the tutorial, open a support thread in Indonesian, change my Skype ID to yours, etc. Too much hassle. (Unless you like to complicate your live).  ;)

===============

Just a small question:

I have separated now the languages files in 2 different ones, saving one of them with UTF-8 encoding and the other one with ISO-8859-15 (valid for English and Spanish).

I want to do the same with Indonesian, but I am not sure which ones I should use. One of them will be UTF-8 (of course) but the other one?
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 07:51:44 PM
Hey Snoopy_Virtual.

I downloaded your mod (version 2.4) and thought it was mandatory to add the OS/Browser Plugin (not the add-on).
But then, the new 2.5.1 version came out, so I uninstalled (but did not remove) the OS/Browser Plugin, and HTTPBL, and installed the new 2.5.1 version and its companion OS Plugin.

My problem is, when I go to the forum and look at the threads, now there's this large empty space between the members' info on the left and their thread.  The space was previously taken by their OS/Browser Info (WindowsXP/Windows XP, Mozilla Firefox version x.xxx, etc.).

How do I revert this back to normal?  Even when I uninstall everything, the tables are still somewhat messed up.  Even with the add-on correctly installed, it's still too wide and now I'm thinking I'll have to edit the Template's section to shrink that part of the forum tables... I think I may have messed something up even though everything installed/uninstalled properly.  And you logged out of Skype before I could catch you. xD

Here's an image of the problem.  The problem is highlighted in red with white letters:
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fwww.inverteddungeon.com%2Fjorgefuentes%2Fimages3%2FOSBrowser-error.png&hash=6b8ecb243f0fdfebdd18baa3c47dfa5b)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 08:43:18 PM
I downloaded your mod (version 2.4) and thought it was mandatory to add the OS/Browser Plugin (not the add-on).
But then, the new 2.5.1 version came out, so I uninstalled (but did not remove) the OS/Browser Plugin, and HTTPBL, and installed the new 2.5.1 version and its companion OS Plugin.

I don't really get what you mean. When you say you installed OS/Browser Plugin Do you mean "Mod OS & Browser Detection" made by "X3mE"?

It's not mandatory to install it at all if you don't want. It is a completely different mod that has nothing to do with mod httpBL. They are independent and you can install or uninstall any of the 2 without any problem.

Mod httpBL uses one of the functions inside the other mod to display the OS/Browser inside the logs and inside the "Who's online" page while the "Mod OS & Browser Detection" displays the OS/Browser inside the threads of the forum.

You shouldn't have uninstalled "Mod OS & Browser Detection" to update mod httpBL.

Anyway I think all that will be a lot more clear once I have time to finish the tutorial (I hope).

My problem is, when I go to the forum and look at the threads, now there's this large empty space between the members' info on the left and their thread.  The space was previously taken by their OS/Browser Info (WindowsXP/Windows XP, Mozilla Firefox version x.xxx, etc.).

If the empty space is in the threads it means somehow the installation of "Mod OS & Browser Detection" has been messed up when uninstalling and re-installing it.

Anyway, even as that mod is not mine, I can help you putting it back properly, because I use it, so I have read all the code inside (as I always do with all the mods I use) and I know it very well.

And you logged out of Skype before I could catch you. xD

I logged out because it was 2 in the morning here and I thought I should go to bed, but I have found some interesting posts to read and I am still awake, so since I saw your post I have logged in again in Skype and will be there for a while yet.  ;)

If I don't see you today I'll see you tomorrow and we take a look at that.
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 08:49:24 PM
Ok, let me talk to you on skype then.  Then I can explain it all more easily.
Title: Re: httpBL
Post by: Jorge D. Fuentes on December 28, 2010, 10:48:21 PM
Thanks for all of your help.
That was pretty awesome, and I learned a lot, so Kudos to you, sir! :)
Title: Re: httpBL
Post by: snoopy_virtual on December 28, 2010, 11:17:09 PM
No problem at all.

Actually I learn a lot when I'm teaching something (believe it or not). The big problem normally is with the people that comes to you saying "They know everything and you can teach them nothing" (I'm thinking on a few examples just now).

With this kind of people usually you find out at the end there is nothing to learn from them and, as much as I like to teach, I like even more to learn new things every day.

If you get what I mean.  ;)
Title: Re: httpBL
Post by: Baby Daisy on December 29, 2010, 01:07:26 AM
Thank you for the effort you put into this modification. :)
Title: Re: httpBL
Post by: snoopy_virtual on December 29, 2010, 06:47:59 AM
Thank you for the effort you put into this modification. :)

You're welcome.
Title: Re: httpBL
Post by: V@no on December 29, 2010, 01:37:08 PM
Hello.

I haven't update to v2.5.1 yet, and don't know if this has been changed since v2.4 (which I have right now), but would it be possible display what is currently installed version and what is new version in this message:
Quote
Mod httpBL is ON but it is not up-to-date.
It's not a big deal, but would be convenient ;)

Thank you.
Title: Re: httpBL
Post by: snoopy_virtual on December 29, 2010, 05:30:13 PM
Not a bad idea. I will write it down to do it whenever I can.

Just now it's not done. It only tells you the mod is not up-to-date, but you need to check manually what version you have and what version is in the download page.
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 12:33:15 PM
Hi, Happy New Year. :) I have a feature request for an ip whitelist facility. I have a couple of regular users, one is a moderator, who access the site from large institutions (one a university and the other a medical establishment) where the IT departments aren't bothered if they (staff) are blacklisted and the severity is enough to not offer them the captcha. I can customise it myself but would have to patch for each new release, maybe this is a feature others could use as well?
Title: Re: httpBL
Post by: EL34 on January 02, 2011, 12:37:07 PM
I also have a moderator that accesses the forum from a university
He gets flagged as a spammer because of the IP's he is forced to use.

Some way to white list him and others would be great.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 12:49:32 PM
That feature was done since version 2.4 last October.

The white list is not done by IPs as they can change very often if you got a dynamic one. It's done by membergroups.

Just go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod, edit the permissions for that group and you will find that permission there. It's the first one in the left hand side (if I remember correctly).

You can have as many "trusted" groups as you want.

If you only trust one guy and don't trust the whole group, make a new group, change the permission for just that group, and put your friend in that group (not as his primary group, but as one of the "additional groups")
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 12:54:41 PM
Yes I understand and have done that much, but this requires that they don't log out, which in a multi-user environment is potentially not secure, if you see what I mean.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:11:38 PM
If I put a white list by IP and they are coming from a multi-user environment it's even worse.

Everybody coming from that IP will be able to do whatever they want in the forum at any time.

If the mod is stopping that IP the most likely reason is they may have a trojan in the computer.

We already had that problem a couple of times here. I don't remember what companies they were (I think one of them was from somebody working in the Yankees Stadium in New York or something like that). They ended up explaining the problem to the IT responsible there, doing a check up and finding a big trojan hiding in one of the computers. They wouldn't have known about the trojan if it wouldn't have been for this problem.

Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:14:57 PM
Anyway, if an IP is blacklisted in Project Honey Pot, you can always go to their site, explain the problem to them and ask them to white list that particular IP.

If they know something about that IP that prevent them from white list it they will tell you.
Title: Re: httpBL
Post by: ms_ukyankee on January 02, 2011, 01:23:28 PM
I'm sorry, you're right actually, I told them before that they only needed to visit the ProjectHoneyPot ip search page from the offending ip to get whitelisted themselves without bothering the IT Dept (according to the Project website) and they didn't bother looking at it as far as I know, so nevermind. ;) Thank you for the quick response though.

Love this mod, between it and stopforumspam, I have had only one spam post in a month, instead of the previous few daily.
Title: Re: httpBL
Post by: snoopy_virtual on January 02, 2011, 01:59:50 PM
If you are using SMF 2 go to Admin => Security and Moderation => Anti-Spam => Verification Questions

If you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
Title: Re: httpBL
Post by: EL34 on January 02, 2011, 04:02:58 PM
Quote
Just go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod

Thanks Snoop
I changed my moderators to not be checked by httpbl
Title: Re: httpBL
Post by: henrik1782 on January 08, 2011, 10:11:34 PM
Hi

Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

Best regards
Henrik Poulsen
Title: Re: httpBL
Post by: snoopy_virtual on January 09, 2011, 10:55:22 PM
Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

The system used by Honey Pot is dynamic and it's changing every day. You need to check in your logs to see the actual figures, but let's say for example you have configured your mod like this:

Allow in all the users with Threat Level less than 10
Show a warning page with captcha to all the users with Threat Level between 10 and 30
Stop completely all the users with Threat Level higher than 30

Now let's say a user with Threat Level 11 arrives to your forum. They will see the warning with a captcha.

Now imagine this IP is not doing anything wrong any more. The Threat Level will go down every day. So lets say the next day the Threat Level is only 9. They will pass with no problem.

===============

This is only one case, but there are a lot more possibilities for this to happen. The only way to know exactly which one of them is happening in your forum will be to see your logs.
Title: Re: httpBL
Post by: EL34 on January 12, 2011, 07:31:50 AM
SMF 1.1.12
httpBL 2.5.1

Yo Snoop,
I am seeing the errors below in the forum log, not the httpBL error log.

Both errors below were for the same Guest, not a forum member.
Saw a bunch of these errors yesterday, all for guest,  but did not have time to report them.

8: Undefined variable: ip
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 519

2: Missing argument 1 for httpbl_look_for_empty_ip()
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 517
Title: Re: httpBL
Post by: snoopy_virtual on January 14, 2011, 06:19:25 AM
Hi EL34

I have been trying to duplicate those errors you have seen, but I cannot do it.

I don't get any errors at all in any of my forums.

You must have something else interfering with mod httpBL, but I cannot find out what it may be.

If you are still getting those errors try to contact me to see if we can sort it.
Title: Re: httpBL
Post by: EL34 on January 14, 2011, 07:13:15 AM
Hey Snoop,
It only happened on two days and has not happenned since.

If I see it happen again I'll report back.

Here is a screen shot of my package screen.
Title: Re: The Spam killer Team
Post by: Sea Mac on January 14, 2011, 03:54:56 PM
I have administrative access to FIVE SMF 1.1.12 forums that use the httpBL MOD (3 I own and 2 I've been left in charge of) and the Stop Spammer MOD. Since installing this MOD May 24th 44436 Bad IPs have been spit out of those forums: and about 500 stopped by Stop Spammer!

Thank You. I wish I could have donated 10 times as much!
 
Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2011, 08:17:33 AM
Thank You. I wish I could have donated 10 times as much!

Hey Sea Mac. Every little helps ... Thank You.  ;)
Title: Warning screen .. wrong logo
Post by: Lou69 on January 16, 2011, 12:23:39 PM
Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

 
Title: Re: Warning screen .. wrong logo
Post by: snoopy_virtual on January 16, 2011, 01:06:58 PM
Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

Open the page warning.php

Look for this code:

Code: [Select]
    <div id="warn_logo" class="catbg">';

// You can change all the staff here inside the div id="warn_logo" to whatever you want
// Just be sure you don't put here any links at all, just pictures or text.
if (empty($settings['header_logo_url']))
echo '
<span style="font-family: Verdana, sans-serif; font-size: 140%; ">', $context['forum_name'], '</span>';
else
echo '
<img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';

echo '
</div>';

It is from line 306 to 318. All that div id="warn_logo" is the stuff on top of your warning page.

For example, in this page:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:

Code: [Select]
    <div id="warn_logo">
<img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
</div>';

For example in this other page:

http://www.snoopyvirtualstudio.com/miel/warning.php

I have changed that code to:

Code: [Select]
<div id="header">
  <div id="head-l">
  <div id="head-r">
<span id="logo"> </span>
</div>
  </div>
</div>';

In both of them I have also made a few changes to the file warning_css.css to get exactly the effect I wanted.

If you know a little of HTML and CSS you should be able to see what you need to do to get what you want. If you cannot manage contact me through Skype.

Anyway, whatever you do, don't puy any links in your warning page.
Title: Re: httpBL
Post by: Lou69 on January 16, 2011, 01:48:36 PM
Hi Snoopy,

I do not have Skype and am not familar with HTML.

I will guess that from your example,

Code: [Select]
echo '
               <img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';

the url for the old site image is declared in the 'header_logo_url'.

Any idea what file that is declared in?
Title: Re: httpBL
Post by: snoopy_virtual on January 16, 2011, 05:03:08 PM
It's inside the database, in the table settings, but you don't need that. Just take for example the first one I gave you:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:

Code: [Select]
       <div id="warn_logo">
         <img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
      </div>';

Even easier:

Send me a link to your warning page (just here or in a PM) so I can see the way it is just now, and tell me where do you have the logo you want to display in there and I will send you a warning.php file already modified.

When I said "where do you have the logo" I mean the full url. For example my logo is this one: http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg

Quote
I do not have Skype

I suggested Skype because it's the one I use normally, but as you can see inside the httpBL help page I have added in the last version, I have also open all day Yahoo and MSN.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 07:13:36 AM
Hey snoop, the errors showed up again in the main forum log again.
The same errors I talked about in post #470

The undefined variable and missing argument errors show up together in pairs.
There were four pairs in the log this morning.



Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 11:18:00 AM
@EL34

I have found the problem.

It is a bug in the code.

While I sort it in the next version you can correct it manually:

Inside your Sources folder look for the file httpBL_Subs.php

Inside it (line 680) look for the code:

Code: [Select]
$ip = httpBL_look_for_empty_ip();

Replace it with:

Code: [Select]
$ip = httpBL_look_for_empty_ip($ip);

Save the modified file and upload it to your forum.

===============

Anyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Could you check your httpBL logs to see if there are any entries with no IP?

I am very interested, as this is a very extremely rare case and I never had any other opportunity to study it yet.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 11:20:34 AM
I edited the code the code.

No errors show up in the httpBL errors log.
This is the same as the last time it happened also.
The errors only show up in the main forum error log.

Thanks snoop

Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 11:33:08 AM
No. They won't be inside the httpBL error log.

If somebody arrives with a blank IP they will see the captcha, so they will be either in the spammers log (if they didn't answer correctly) or in the humans log (if they did).

But in any case they won't have an IP
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 11:38:46 AM
Quote
Anyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Depends if you really mean blank or not a real IP address ;)

Truly blank should only occur if SMF is really not able to get an IP address, and even then it should be defaulting to its standard unknown 0.0.0.0 IP address (e.g. using IPv6 or something else prevents PHP getting an IP address, like it's being invoked through CLI or something equally weird)
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 11:52:02 AM
Ok, sorry, I read your post too fast.

I had already reset the spammers log this morning before I had looked at the forum log.
The logs are empty now so I can't look for blank IP guest.
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:04:25 PM
Quote
Anyway that mistakes only happens when a visitor has no IP (when it's blank) and that's a case I have never seen yet.

Depends if you really mean blank or not a real IP address ;)

Truly blank should only occur if SMF is really not able to get an IP address, and even then it should be defaulting to its standard unknown 0.0.0.0 IP address (e.g. using IPv6 or something else prevents PHP getting an IP address, like it's being invoked through CLI or something equally weird)

All that started when (more than a year ago) somebody reported he was getting strange things in the logs, with entries with nothing at all in the IP (not even 0.0.0.0, but completely blank).

This mod is getting the IP from $user_info['ip'] and (as far as I know) that shouldn't be blank doesn't matter what, so I modified the mod and added a conditional inside it:

Code: [Select]
$ip = $user_info['ip'];

// some more code doing other things, but not affecting the IP

if ($ip == '')
{
    // some code to see what happens here
}
else
    // the mod continues as always

So that piece of code will be triggered only if the IP is blank.

As I said I haven't seen it happening yet.
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 12:07:26 PM
There shouldn't be any reason for it to be actually blank that I remember - even if the user's IP can't be established through conventional means, it should be falling back to 0.0.0.0. I suspect your user had modified something there that he wasn't meant to.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:12:32 PM
Quote
I suspect your user had modified something there that he wasn't meant to.

You can erase all your suspicions and be at peace.  :)

I have not modded anything that snoop did not tell me to mod.

Looks at post #472 to see a list of the mods I have installed if you think another mod is messing with the httpBL mod.
Title: Re: httpBL
Post by: Arantor on January 19, 2011, 12:14:11 PM
I didn't think you had, EL34 - I was referring to the user snoopy mentioned that was getting what should be an impossible circumstance in their forum...
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:17:31 PM
Sorry, two different things going on at the same time

see ya
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:21:23 PM
It was madfitz:

http://www.simplemachines.org/community/index.php?topic=283309.msg2504550#msg2504550

Answered here:

http://www.snoopyvirtualstudio.com/trankos/portal/index.php?option=com_smf&Itemid=36&topic=309.0

The problem was he never reported back so I didn't had a chance to study the case properly.

But if the visitor EL34 is getting has triggered that piece of code it means the IP there is also blank, so I hope this time I will have a chance to see what is happening.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:24:42 PM
Snoop,
Should I change the code back to stock and report back if it happens again?
This time I will scan the httpBL logs and look for an empty IP?
Title: Re: httpBL
Post by: snoopy_virtual on January 19, 2011, 12:35:39 PM
I don't think so. Leave it the way it is just now.

Just check every now and then to see if you get any blanks IPs in your httpBL logs.
Title: Re: httpBL
Post by: EL34 on January 19, 2011, 12:43:35 PM
ok, will do
Title: Re: httpBL
Post by: perf on January 20, 2011, 05:35:35 AM
Hi, and thanks for a great mod. Together with Stop Spammer, it saves me at least half an hour a day (not having to check and delete spammer accounts).

I did however have som problems installing it under 2.0 RC4. The installation script wouldn't create the log_httpBL table.  Here's the entry from the log:

Code: [Select]
http://forum.student.lth.se/index.php?action=admin;area=packages;sa=install2;package=httpBL_v2_5_1.zip;pid=0
Database Error: Table 'smf.student_log_httpBL' doesn't exist
File: /usr/local/apache2/htdocs.student/Packages/temp/install_2.php
Line: 69

I managed to work around this problem by creating the table manually.

On anoter RC4 forum (using the same database) I had prevously used httpBL with SMF 1.12, and on that forum there were no problems installing it under RC4.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 05:43:50 AM
I did however have som problems installing it under 2.0 RC4. The installation script wouldn't create the log_httpBL table.

That's strange.

Of course, the only RC4 forum I have was RC2 when I installed the mod, so the table was created then without a problem.

I will create another RC4 forum (whenever I have time) to test that up and see if I can reproduce the error to find why it's happening.
Title: Re: httpBL
Post by: Arantor on January 20, 2011, 05:52:58 AM
There was a change to how the table create statement worked sometime around RC2 where previously, it didn't use to require the db_prefix being in the table name (because it would add by default) but now it requires the db_prefix to be explicitly specified in the table-create call.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 06:11:18 AM
It is:

Code: [Select]
$smcFunc['db_create_table'](
'{db_prefix}log_httpBL',
array (
etc etc

It even has $db_prefix and $smcFunc declared globals at the top of the file just in case. (To be sure to be sure).
Title: Re: httpBL
Post by: Arantor on January 20, 2011, 06:29:28 AM
What you can try instead, as I know this has been contentious at times:

Code: [Select]
$smcFunc['db_create_table'](
$db_prefix . 'log_httpBL',
array (
etc etc
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 06:44:37 AM
In theory both things should be the same, but who knows ...

I will try both in a fresh RC4 forum and see what happens.
Title: Re: httpBL
Post by: perf on January 20, 2011, 06:54:17 AM
I don't know if it is significant, but the forum in question was orignally installed as 1.1 RC2, and has been upgraded numerous times. The only mods installed are your two, and recaptcha (which currently is uninstalled due to alignment probles.)
Title: Re: httpBL
Post by: Knuth Konrad on January 20, 2011, 01:09:58 PM
Let me start by saying that I really like your work and this mod works flawless for me.

But I'd also like to make a suggestion: In order to save the mod a couple of roundtrips to Project Honeypot, how about checking SMF's own ban list first for banned IP addresses before passing the IP over to Project Honeypot for evaluation?

Due to our forum's nature I'm in the lucky position that I can block lots of IP ranges from our forum. But from what I can tell mod:httpBL still tries to validate already banned IP addresses. Which is an unecessary waste of bandwidth both for the forum and Project Honeypot.
Title: Re: httpBL
Post by: snoopy_virtual on January 20, 2011, 03:05:44 PM
@Knuth Konrad

I have been suggesting today something very similar in the forum where we discuss the development of new versions for both mods.

The only difference with what you suggest here and my idea is that I didn't realized mod httpBL is checking the IPs before testing if that IP has been banned in the forum.

We would need to take that into consideration.
Title: Re: httpBL
Post by: Sea Mac on January 21, 2011, 03:38:01 AM
If you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
  http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)  It says it is not compatible with the version of SMF (1.1.12) I am using .....
Title: Re: httpBL
Post by: Knuth Konrad on January 21, 2011, 04:39:31 AM
We would need to take that into consideration.

Cool. :)

It's not a pressing issue as the mod works fine the way it handles it now. Those IPs just keep filling up httpBL's logs to the point where it becomes difficult to spot a new bot herd.
Title: Re: httpBL
Post by: snoopy_virtual on January 21, 2011, 02:45:42 PM
If you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet.  ;)
  http://custom.simplemachines.org/mods/index.php?mod=1516 (http://custom.simplemachines.org/mods/index.php?mod=1516)  It says it is not compatible with the version of SMF (1.1.12) I am using .....

I read somewhere that Deprecated had stopped updating that mod, but I don't remember the reasons. You can try to contact him or ask in the support thread for that mod.

Anyway, what I did was to write a specific version for every one of my forums. I cannot send you any of them as they won't work on any other forum, but if you don't get an answer there, contact me through Skype and I will modify one of the versions I use so it will work in your forum.
Title: Re: httpBL
Post by: jmpenasse on January 21, 2011, 08:32:55 PM
Hi Snoopy_virtual,

I just wanna say you thank you for this mod !  :)
I installed it today :  It's scary! Less than an hour after the activation of the mod, 14 attacks have been blocked! Most of them are hacking attempts to the members accounts ( already logged by SMF for weeks, but I had not seen )

This mod is a must to have !

Thx again

PS If I find a little free time I'll try to translate to French
Title: Re: httpBL
Post by: snoopy_virtual on January 21, 2011, 09:00:36 PM
It has been already translated to French before:

http://www.simplemachines.org/community/index.php?topic=366399.msg2690621#msg2690621

http://www.simplemachines.org/community/index.php?topic=366399.msg2749249#msg2749249

http://www.simplemachines.org/community/index.php?topic=366399.msg2749511#msg2749511

It has also been translated to Dutch and Indonesian. The only problem is I haven't had time yet to finish the package I am doing with those languages to put it in the main page so everybody can download them.

Anyway, as you can see, the French translation was for an older version and I have changed and added a lot of lines since then. So if you want to help with that it will be appreciated.  ;)
Title: Re: httpBL
Post by: oreodunno on January 23, 2011, 03:33:38 PM
thanks to the author(s) of this mod, incredible and generous work you've given to the community
Title: Re: httpBL
Post by: snoopy_virtual on January 23, 2011, 03:39:50 PM
You're welcome.  ;)
Title: Re: httpBL
Post by: DJ-X on January 28, 2011, 07:41:48 AM
For 4 days - Spammers stopped by MOD httpBL: 1950   :)
Title: Re: httpBL
Post by: DJ-X on January 28, 2011, 09:07:04 AM
Already - Spammers stopped by MOD httpBL: 2010
Title: Re: httpBL
Post by: zzuzu on January 28, 2011, 04:55:39 PM
Hello, I need a little help. I'm sorry if it was already posted. I have few members that it's showing they are bots. But they aren't. Is there any whitelist or something?
Title: Re: httpBL
Post by: snoopy_virtual on January 29, 2011, 07:28:45 AM
Hello, I need a little help. I'm sorry if it was already posted. I have few members that it's showing they are bots. But they aren't. Is there any whitelist or something?

Yes it has been already posted and yes there are in fact 2 ways of whitelist some people:

 - By IP
 - Or by membergroup

If you are new to SMF you should notice at the top right corner of every page here in this forum there is a "Search" function, very useful when you are searching for something.

If you write there the keyword whitelist and in the dropdown box you select "Search This topic" you will get all these results:

http://www.simplemachines.org/community/index.php?action=search2;search=whitelist;topic=366399

As you can see that will give you some answers, but you can get even more if you split the keyword whitelist into 2 separate keywords as well:

Write the keywords white list and in the dropdown box select again "Search This topic" and this time you will get all these results:

http://www.simplemachines.org/community/index.php?action=search2;search=white+list;topic=366399

If you don't have enough with all that info you can try with more keywords and if you still need more help ask here again.  ;)
Title: Re: httpBL
Post by: snoopy_virtual on February 01, 2011, 02:14:44 PM
At last I found some time to finish the language package I was doing with the translations that have been published here.

So just now the mod is translated to these languages:

Quote
Languages for the admin section (normal & utf-8)
Translation completed:
  • English
  • English_british
  • Spanish_es
  • Spanish_latin
  • Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)

Missing the lines added in v2.5:
  • French by Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Languages for the warning page
Translation completed:
  • English-Spanish
  • English-Indonesian by Exsharaen (http://custom.simplemachines.org/mods/index.php?action=profile;u=71820)
  • French-English by shaitanfr (http://www.simplemachines.org/community/index.php?action=profile;u=151244) and Saint_Frater (http://www.simplemachines.org/community/index.php?action=profile;u=172311)

Missing the lines added in v2.4:
  • English-Dutch by Vandaahl (http://www.simplemachines.org/community/index.php?action=profile;u=88822)

   
Quote
Legend
  • Included in MOD package
  • Included in language_full.zip and translation complete
  • Included in language_full.zip but translation incomplete

If anybody want to use any of these languages, download the file language_full_2-5-1.zip (http://custom.simplemachines.org/mods/index.php?mod=2155) and read the included file How_to_install.txt

I need to ask the translators to please check if I haven't done any mistakes in this package, as I am not fluent in all those languages.

Thanks.
Title: Re: httpBL
Post by: MCK on February 10, 2011, 11:56:01 PM
Just here to say thanks. This mod along with Stop Spammer & Forum Firewall has helped me tremendously. Appreciate your hard work.
Title: Re: httpBL
Post by: EL34 on February 12, 2011, 07:42:26 AM
Hey Snoop,
Got this PM from one of my long time forum members
I don't know what to tell him?

That's him in the human log screen shot

Quote
Subject : I cannot log in through a T-Mobile network
I just got one of them there fancy pants telephones with the internets all built in.  If I'm connected through my wifi network, there's no problem but If I used the T-Mobile 4G network, I get asked 2 algebra questions and promptly get booted off.  My money is on operator error (me) at this point but there's no harm is asking.
Thanks!
-richard
Title: Re: httpBL
Post by: Wizzlefits on February 12, 2011, 12:20:03 PM
@EL34
You can whitelist by going to permissions>>regular members>> and checking "Never be checked by mod httpBL".
This will prevent him from being checked and booted. It will also prevent anyone in the "regular member group" from being checked.
Wireless IPs seem to be notorious for being the bottom of the barrel.
Title: Re: httpBL
Post by: EL34 on February 12, 2011, 04:40:45 PM
Ok, but I don't think I want to clear all 3000+ members

I can't WL just one member?

I had to do that for one of my mods because he connects through a large university but I only have 4 mods and I know them all. Half the IP's he used were blacklisted

Title: Re: httpBL
Post by: Wizzlefits on February 12, 2011, 05:51:36 PM
True!
You could make another member group, for those that use wireless IPs and set httpBL not to check, then manually add them to the special member group.
Title: Re: httpBL
Post by: butchs on February 12, 2011, 07:53:28 PM
Why?  Wireless connects are the most vulnerable on the net.  They need to be cleaned up.  ???
Title: Re: httpBL
Post by: Omniverse on February 12, 2011, 09:05:04 PM
I installed this mod today because of a recent jump in bots doing brute force password attacks at my site.

Excellent mod, love it so far.


I have noticed only 2 entries in the error log for incorrect entries now, the rest have been caught by this mod. When I checked the IP's at honeypot, they were listed, one has a threat of around 40.

httpBL did not catch this IP however. It isn't listed in its log, just in my forum error log.
Any idea why that would be?
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 08:20:37 PM
I would like to install this mod but I'm confused on all the steps necessary in order to do it.
I did register at HoneySpot and told them to generate a script using php 4+. I hope that was right but now I don't know where I'm suppose to put it.
Does this work like a mod?
Then once I add this to my site, the instructions say to ask for my own http: BL AP1 Key and I don't know what that is or what to do with one.
Title: Re: httpBL
Post by: EL34 on February 13, 2011, 08:39:14 PM
I created a new folder called HoneyPot under my php folder and put the honey pot stuff is in that new folder.

www.mywebsite/php/Honeypot/yourhoneypotfile.php

now you have a path to the honeypot.php file they gave you.

you ask for a key and enter that in the httpbl setup screen and you are good to go
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 08:48:15 PM
I have a folder called phpBB. Is that where I'd make a new folder called Honeypot?
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:16:32 PM
You can name your folder anything you want, and put it anywhere you choose within your hosting space. I don't suggest naming it Honeypot either.  The idea for the honeypot is to snare the bots. The spammers already know about Project Honeypot, so they probably avoid anything that has that name in it.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 09:32:32 PM
Once I extracted the files, I realized there were instructions that helped me figure out what to do however they forgot to mention that I shouldn't use honeypot for my folder's name and I already did.
Can I just change the name or do I need to start all over?
I think I read that I can't change the name of the file but I don't remember if they said I couldn't change the name of the folder.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:37:38 PM
You can change the folder name either by ftp or by using your file manager in your host's control panel. Or simply just create another folder with a different name, copy all the contents from the previous folder to the new folder, and then delete the old one.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 09:48:00 PM
Ok thanks.
One more question. I don't understand where I'm suppose to put links for the bots to find. That's all very confusing to me.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 09:55:20 PM
I hid them in index.template.php and placed a few hidden links in portal blocks on my home page. They will be seen if the page source is read by the bots, but they are not displayed on the page to be seen by a normal user with a browser.
Title: Re: httpBL
Post by: sheryltoo on February 13, 2011, 10:00:04 PM
Ok, thanks. I'll look into doing that.
I see there's a button in my folder for these files but I don't see it on my site. Is it suppose to show up some place?
I don't think I quite understand how all this works. I'm just hoping I can stop all the incorrect password errors I keep getting.
Title: Re: httpBL
Post by: busterone on February 13, 2011, 10:08:25 PM
If you want tit to stop the incorrect password errors issue, it is probably not going to help much. Most of the IPs that have been reported are clean. Most are not listed in the Honeypot database.  Those are probably innocent users' computers that are infected by the botnet that is carrying out this attack.

The Honeypot project is a very worthwhile cause though, so I do recommend being involved in it.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 08:24:24 AM
If you want tit to stop the incorrect password errors issue, it is probably not going to help much. Most of the IPs that have been reported are clean. Most are not listed in the Honeypot database.  Those are probably innocent users' computers that are infected by the botnet that is carrying out this attack.

The Honeypot project is a very worthwhile cause though, so I do recommend being involved in it.

Is that like a virus? Can it be detected if my members run a virus scan?
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 02:53:41 PM
I was going to try and copy some of the suggestions honeypot gave me for various links into my index.template.php file only I don't understand how they work. If I put something there that starts off <a href="   then a web address and end by closing the "a tag", won't the link show up on my site?
Is that what I want? A link to my honeypot page?
Title: Re: httpBL
Post by: busterone on February 14, 2011, 04:36:34 PM
If you place it right after the <body> tag as one example, it will not display. It would need an echo '  preceding it to display in php
I also placed a couple right after the smf and theme copyright in the footer.
Here is an example from my index.template.php
Code: [Select]
echo '</div>
</div>
</div>
<div id="footerframe">
', theme_copyright(), FFCopyright(),'
<div class="smalltext"><b>BlueLight</b> design by <a href="http://www.blocweb.net">Bloc</a><br>
<a href="http://www.SMF4ME.COM/">SMF Forums Directory</a></div>
<div style="display: none;"><a href="http://www.thedemonsden.com/xxx/xxxxxx.php">cheap-selfsealing</a></div>
I xxx'd out the full link to prevent it from being indexed here.

Yes, the idea is to lead them to the honeypot.
Is that like a virus? Can it be detected if my members run a virus scan?
I could be in some instances, but probably not any of your members.  These bots are part of a directed attack at forums, possibly SMF only. Quite a few of those IPs are coming from the TOR proxy range from what I have seen so far. Whether they are from one person, or a small few using TOR, or from a bunch of infected systems that are unknowing being used and the bots automatically attack through TOR is unknown. 
Who ever they are, it is a new tactic.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 04:44:46 PM
Thank you for showing me how to do that. I'm not sure what echo ' does but I'll add it.
Title: Re: httpBL
Post by: busterone on February 14, 2011, 04:50:04 PM
No, don't add the echo' .  :)  What I meant is that for the link to dispaly to normal users, it needs to be echo'd in php. In your case, you do not want it to display. That is why I added it right after the <body> tag.
Title: Re: httpBL
Post by: Omniverse on February 14, 2011, 05:14:39 PM

Code: [Select]
   echo '</div>
      </div>
   </div>   
   <div id="footerframe">
      ', theme_copyright(), FFCopyright(),'
      <div class="smalltext"><b>BlueLight</b> design by <a href="http://www.blocweb.net">Bloc</a><br>
      <a href="http://www.SMF4ME.COM/">SMF Forums Directory</a></div>
<div style="display: none;"><a href="http://www.thedemonsden.com/xxx/xxxxxx.php">cheap-selfsealing</a></div>

Actually, from what I can tell from that code snippet, is it being echoed. Echo is closed with a ;

HTML in PHP has to be echoed or you will get an error.

The reason is doesn't show, is the style of the div that link is in. The part that says style="display: none"


Title: Re: httpBL
Post by: busterone on February 14, 2011, 05:26:34 PM
True, that part is. The one I was referring to is adding the link immediately after the <body> tag. It isn't echoed there.
Title: Re: httpBL
Post by: sheryltoo on February 14, 2011, 07:22:34 PM
What happens if I don't put any of those links on my site cause this is sounding way too confusing and over my head?
Title: Re: httpBL
Post by: mariusfv on February 15, 2011, 12:36:16 PM
Hi,

Update please for 1.1.13 , don't parse the modification.
I use stopspamforum mod and I want to use this too, I have to many spammers with recaptcha (http://www.google.com/recaptcha), activation e-mail and stopspamforum, I don't understand have they defeat recaptcha by google ? to many robots it seems bypass recaptcha.
Russia spammers bypass recaptcha so easy....90% of my spammers are from  Russia Federation and 8% from Ukraine...2% others.

Have a nice day !
Title: Re: httpBL
Post by: busterone on February 15, 2011, 05:26:49 PM
What happens if I don't put any of those links on my site cause this is sounding way too confusing and over my head?
The mod will still work as long as you have the honeypot installed, with the correct link entered on the admin page for this mod, and you have your API key input as well. The links help catch harvesters that are not yet in the database. They read the links, go there, then harvest the emails, and then they fall for the trap.
PM me if you would like some help getting your links installed on your forum.
Title: Re: httpBL
Post by: bedges on February 15, 2011, 05:44:57 PM
Just installed this today on 1.1.13, seems to be working fine (even though it's for 1.1.12).

2 things:

Typo in warning.php

$txt['httpBL_warn_infected_1'] = 'The most likely cause is that your computer, or another computer operating on your local network, has been <strong>infected with a virus, trojan, or worm</strong>. Infected computers are used by criminals, without their owners knowledge, to send spam and attack websites like this one you are trying yo visit.';

Typo in warning_css.css

h1
{
   font: bold 2em Arial, Helvetica, sans-serif;
   margin:0;
   padding:0}
}


Attached is a reformatted CSS file for your convenience.

Thanks for the mod :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 08:47:02 AM
Is there a way for me to report spammers to you? The mod works great but some still get through, I'd like to help build the pot :)
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 08:48:41 AM
Is there a way for me to report spammers to you? The mod works great but some still get through, I'd like to help build the pot :)
If you have a working honeypot, then you are already contributing towards the httpBL database run by Project Honeypot, and used in this mod. :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 08:58:06 AM
I don't, I use a quick link...my host doesn't have one set up :(
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 09:00:48 AM
I don't, I use a quick link...my host doesn't have one set up :(
That helps as well - It is through honeypots and quicklinks that the project gets all the info it uses :)
Title: Re: httpBL
Post by: Doug Varrieur on February 16, 2011, 09:10:55 AM
So Lex, is there a reporting function in the control panel that I'm missing? This morning I banned 12 new "users" who were obvious future spammers when I checked there IP's. I'd like to shoot my ban list up to the database??
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 16, 2011, 09:12:51 AM
No, The project doesn't accept direct reports - but you can go the the project website, and comment on any IP address if you know something about them, or their activity.
Title: Re: httpBL
Post by: valentino86 on February 18, 2011, 12:30:58 PM
Hi everybody. I'm using this mod on my forum but I'd like to allow one IP, how can I get it? In my joomla site I take some feed from the forum but now with this mod I can't because httpBL thinks that my joomla site is a spammer.
Title: Re: httpBL
Post by: busterone on February 18, 2011, 05:35:29 PM
Hi everybody. I'm using this mod on my forum but I'd like to allow one IP, how can I get it? In my joomla site I take some feed from the forum but now with this mod I can't because httpBL thinks that my joomla site is a spammer.
Odd, because the httpBL only reacts to IPs that are in the Project Honeypot database, and its reaction is based on the threat level it is assigned AND your threat level settings threshold.  see below
Code: [Select]
Number of days to consider good an IP

If an IP used to belong some time ago to a spammer, but nobody has seen it doing anything wrong since at least this number of days, we don't consider it dangerous now and we leave the visitor pass.
Threat level considered bad

Project Honey Pot gives every IP a threat level which is changing every day depending on what this IP does and how many days ago it did it. Every IP with a threat level lower than the number you put here will pass without even been checked.
Threat level considered VERY bad

Every IP with a threat level greater than the number you put here won't be able to pass at all. The IPs with a threat level between both numbers will see a captcha and, if they prove they are humans, they will be granted a pass for a few hours.
Minutes to keep the data in the cache
Every time the mod checks an IP saves the data in the cache (if it's enabled) and in the visitor's session for the amount of minutes you write here. If the same IP visit your page again before this amount of minutes have passed, the mod won't check it again, but it will use the data stored in the cache and/or session.

Hours until an IP needs to prove again it's human
As the IPs change very often, when the visitors see the captcha and prove they are human they are allowed inside the page only for this amount of hours. After that, the IP may be coming from a different computer.
Is your Joomla site on the same server/host as your forum?
Title: Re: httpBL
Post by: Wizzlefits on February 18, 2011, 07:46:08 PM
Very interestink.
If you could post the joomla URL we might be able to sort the problem a bit.
Title: Re: httpBL
Post by: Joshua Dickerson on February 18, 2011, 08:21:14 PM
Taking a quick look through the mod and I noticed a couple of things:
Title: Re: httpBL
Post by: valentino86 on February 19, 2011, 06:43:50 AM
Very interestink.
If you could post the joomla URL we might be able to sort the problem a bit.

Of course www.meccanicaweb.it and yes the forum is on the same server www.meccanicaweb.it/forum

Now I've disabled the mod
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 10:24:59 AM
Looks like your server IP is just triggering httpBL. So, just to make sure that there is not a code problem, change "Number of days to consider good an IP" to 50 and "Threat level considered bad to" 15.
This should allow your server IP pass through.

If everything works okay, you can try to get your server white listed.
Quote
To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!
But, you can make a special member group and in permissions, check the box to have httpBL never check that group.
Then, register a new member and add it to this group.
You will then have to manually edit the IP of the new member to that of your server. Do this by logging into phpMyAdmin and finding the new member in the "Members" table. member_ip and member_ip2 should be the same as your server IP.

If this works (finger crossed) you can then change the httpBL settings back to 90 and 10 and see if Joomla is allowed to pass.
Title: Re: httpBL
Post by: valentino86 on February 19, 2011, 03:51:33 PM
Looks like your server IP is just triggering httpBL. So, just to make sure that there is not a code problem, change "Number of days to consider good an IP" to 50 and "Threat level considered bad to" 15.
This should allow your server IP pass through.

If everything works okay, you can try to get your server white listed.
Quote
To white list an IP you need to log into http://www.projecthoneypot.org with your username there and tell them.

Unfortunately, they don't have an automated button to do that (unless you are logging exactly from the same IP you want to white-list) so you will have to enter their "contact us" section http://www.projecthoneypot.org/contact_us.php and send them an email explaining the situation.

I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!
But, you can make a special member group and in permissions, check the box to have httpBL never check that group.
Then, register a new member and add it to this group.
You will then have to manually edit the IP of the new member to that of your server. Do this by logging into phpMyAdmin and finding the new member in the "Members" table. member_ip and member_ip2 should be the same as your server IP.

If this works (finger crossed) you can then change the httpBL settings back to 90 and 10 and see if Joomla is allowed to pass.

Thank you very much for this answer. Well, I've changed the settings to 50 and 15 and that works, but the member with special permissions ( never check by httpBL) doesn't work with the settings to 90 and 10 and of course I've already changed the IP in the database. Why? I think that the member has to login almost one time.
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 04:45:34 PM
Think you may be right. Should have had you login as the new user, log out, then change the IP. That would have updated all the other tables and only left the IP to be changed.

Hopefully, Honey Pot will allow you to white list the IP. But since it belongs to a shared host...who knows.

Also, if you haven't installed it yet, you should also use Stop Spammer http://custom.simplemachines.org/mods/index.php?mod=1547
They compliment each other very well. Oh, make sure to un-check "Check their username" in Stop Spammer, as it has a tendency to cause to many false positives.
Title: Re: httpBL
Post by: butchs on February 19, 2011, 08:39:13 PM
I've never tried this with a server IP, so I'm not sure if it will work very well. If it doesn't, Snoopy will slap me a good one! lol!

I will lay low when he comes back if I were you.  :)
Title: Re: httpBL
Post by: Wizzlefits on February 19, 2011, 09:06:03 PM
Quote
I will lay low when he comes back if I were you.  :)
That's the plan! ;)
Title: Re: httpBL
Post by: welshdog on February 20, 2011, 05:04:15 PM
Project Honeypot seems to be having 'issues'.

When I tried to register on the site I was met with a message saying "Unable to save captcha-image." and no way of submitting the request... or even telling them there was an issue!!

I opened the site on three different browsers (IE 8, Firefox 4 and Chrome) and got the same result.

Anyone have any idea what's up over there?
Title: Re: httpBL
Post by: Joshua Dickerson on February 20, 2011, 05:06:07 PM
I've been having issues there all day as well.
Title: Re: httpBL
Post by: Wizzlefits on February 20, 2011, 05:12:26 PM
Yep. same here. I get a time out error every now and then.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 21, 2011, 01:06:42 AM
It now says on their page, "Project Honey Pot is currently undergoing maintenance. We expect to be back online in a couple of hours. Check Back Soon!" so hopefully they'll have things running perfectly again soon. :)
Title: Re: httpBL
Post by: Blade_Runner on February 21, 2011, 02:26:09 PM
How can I add an ip address to the whitelist?
Title: Re: httpBL
Post by: valentino86 on February 21, 2011, 03:05:40 PM
How can I add an ip address to the whitelist?

The my same problem. I suggest you to read some posts before
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 22, 2011, 12:48:06 AM
The Project Honeypot seems to be up and running again :)

How can I add an ip address to the whitelist?

The my same problem. I suggest you to read some posts before

If you access the Project Honeypot website with the IP you wish to whitelist, you should be able to make a query on your own IP, and request it to be immediately whitelisted. You can not directly whitelist IP addresses other than the one you are using, but you can make a request for other IP addresses as well.
Title: Re: httpBL
Post by: nightmarepatrol on February 22, 2011, 08:03:28 AM
The httpbl mod states that it only supports RC2 and above. is that just a because it was tested starting at RC2? I have an RC1 board that is getting overrun with events that httpbl should be able to address, however I don't was to blindly install this mod either.

So, can I install this on an RC1 installation?

Thanks.
Title: Re: httpBL
Post by: Arantor on February 22, 2011, 08:06:50 AM
Not recommended, there were a very large number of changes introduced with RC2, not least the new default theme.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on February 22, 2011, 08:41:31 AM
So, can I install this on an RC1 installation?
You should not be running RC1 installation to be honest, and I'd be more worried about that than mod compatility if I were you...
Title: Re: httpBL
Post by: mark32 on February 22, 2011, 08:31:29 PM
When I tried to register on the site I was met with a message saying "Unable to save captcha-image." and no way of submitting the request... or even telling them there was an issue!!

How can I continue? I have the problem above...
Title: Re: httpBL
Post by: busterone on February 22, 2011, 08:59:38 PM
I answered your question in the other topic, but will repeat it here. In the future don't post the same question in multiple topics.
The contact page link is in the footer of HoneyPot's site
http://www.projecthoneypot.org/contact_us.php (http://www.projecthoneypot.org/contact_us.php)

edit- I just realized from the other topic that you are having the issue with the contact page. They were having issues with the site yesterday, so maybe they are still sorting some things out. Give it a bit of time and try again.
Title: Re: httpBL
Post by: busterone on February 22, 2011, 09:15:40 PM
I am logged in at P Honeypot and cannot send a message through the contact either.  Capcha is not used if you are logged in, so there are still some other issues with the site. When I attempted to send a message, I received a gateway timeout error.  I suggest waiting it out until they repair the site issues.
Title: Re: httpBL
Post by: Roman on February 23, 2011, 06:53:10 AM
Hi i do get the follwing error now. (after answering the two questions right)


Worked fine some days ago
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 07:48:56 AM
Looks like your Settings.php file has something in it before the <?php at the start, that it shouldn't have. (Please DON'T post the file here)
Title: Re: httpBL
Post by: Roman on February 23, 2011, 01:02:23 PM
Looks like your Settings.php file has something in it before the <?php at the start, that it shouldn't have. (Please DON'T post the file here)

Hmm No   :(


Thanks for your help
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 01:58:28 PM
Do a search on this forum for 'file_check.php', put it on your server and run it - see if that agrees.
Title: Re: httpBL
Post by: Roman on February 23, 2011, 02:24:52 PM
it says

"UTF-8 BOM found" at settings.php and httpBL_2_Config.php


warning.php does end with
 </body>
</html>';
?>

file check:
"File does not end with ?>"
Title: Re: httpBL
Post by: Arantor on February 23, 2011, 02:31:27 PM
So it agrees with me that there's something in your Settings.php that shouldn't be there - the BOM at the start of the file. Have you ever edited it manually (like via cPanel or Notepad)?

As for warning.php, is there a blank line or something after ?> ?
Title: Re: httpBL
Post by: Roman on February 23, 2011, 03:24:00 PM
there is nothing after ?>

I installed a new 2.0 rc5, wrote all the data from my forum into the new settings.php and uploaded it to the old board

and everything is fine now



did edit the old settings.php because of database pw change (filezilla and notepad)


thank you for your patience and help *thumbs up
Title: Re: httpBL
Post by: snoopy_virtual on February 25, 2011, 04:47:27 PM
Hi

I am just back after a couple of weeks without internet so I am now updating my forums to 1.1.13 and RC5 and checking if my 2 mods are compatible with them. (It seems they are, but better to double check).

I have been reading through the posts made while I was away and I have already added to my TODO list a couple of nice suggestions from Joshua Dickerson, bedges and Kike_GL. Thank you.

I am not going to answer here all the posts, as it would be too long and it seems all the problems reported have already been sorted (BTW, thanks also to all the people sorting those problems while I wasn't here).

If any problem has not been sorted yet, please let me know.
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 12:51:12 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\
Title: Re: httpBL
Post by: Wizzlefits on February 26, 2011, 01:17:34 PM
Are you using the Stop Spammer mod? (http://custom.simplemachines.org/mods/index.php?mod=1547) As the two work really well together. (wish they could be combined into one)

I have had spammers get through httpBL by brute force, hitting the registration page 15 to 20 times a second. But that was several updates ago. HP has been doing some updates, but don't know if that has anything to do with this.
Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2011, 01:29:23 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\

That's really weird. It's not happening in any of my forums.

Have you checked if in mod httpBL config page still says everything is OK? (connection with the spammers database included).

Have you change the mod default Internal Settings?
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:32:45 PM
Are you using the Stop Spammer mod? (http://custom.simplemachines.org/mods/index.php?mod=1547) As the two work really well together. (wish they could be combined into one)

I have had spammers get through httpBL by brute force, hitting the registration page 15 to 20 times a second. But that was several updates ago. HP has been doing some updates, but don't know if that has anything to do with this.

no, just httpBL and logindetector. httpBL has been catching things up until last nite so not sure what's up, if anything. one of the IPs that got through is currently active and has a threat lvl of 32 so there's no reason why it should get through (although it's an IP we'd previously banned from the forums, before we installed httpBL).  Another IP address was trying to modify karma but hadn't been banned.

And yes, Project HP has been going up and down all week it seems so that may have something to do with it.

thanks for the reply!   :)

Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:34:30 PM
Bad IPs are getting through the httpBL mod, after 9:00p last nite (the last entry in the Spammers Log). I've had a few in my Users Online this morning that show up with high threat levels in the Project Honey Pot database that should have been screened out but weren't.

Don't know what's going on..... :-\

That's really weird. It's not happening in any of my forums.

Have you checked if in mod httpBL config page still says everything is OK? (connection with the spammers database included).

Have you change the mod default Internal Settings?

no haven't touched anything in the mod. and the connection is still showing as 'perfect'

Title: Re: httpBL
Post by: snoopy_virtual on February 26, 2011, 01:49:36 PM
I suppose then it should be just a bad connection every now and then. As you said Project HP's server has been going up and down all week.

Anyway if the problem persist let's us know and we will see if we can think of any more possible solutions.

But as Wizzlefits said, I will advise you to add also mod Stop Spammer. If one of them fails the another one will stop them.
Title: Re: httpBL
Post by: Aoife on February 26, 2011, 01:55:51 PM
I suppose then it should be just a bad connection every now and then. As you said Project HP's server has been going up and down all week.

Anyway if the problem persist let's us know and we will see if we can think of any more possible solutions.

But as Wizzlefits said, I will advise you to add also mod Stop Spammer. If one of them fails the another one will stop them.

okie dokie, i'll take a look at that mod. we'll be watching our logs for problems and i'll let you all know if this persists.

thanks again!

 :)
Title: Re: httpBL
Post by: DJ-X on March 01, 2011, 06:51:59 AM
(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fimg716.imageshack.us%2Fimg716%2F2916%2Fsssrr.png&hash=7ee4e525655f9fbb6fd53ea740f93962)
Protect your login from smart robots that pick up passwords :)
This code is inserted in index.php to the top.
Code: [Select]
if (strstr($_POST['user'], 'SSSR'))                  // Tried to pick up the password
   {
   header("location: /yourhoneypot.php");
   exit();
   }
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 08:06:05 AM
Is there any other place else I can download this mod?

Been trying for 3 days now at SMF and keep getting "unavailable".
Title: Re: httpBL
Post by: Aoife on March 01, 2011, 08:33:31 AM
Is there any other place else I can download this mod?

Been trying for 3 days now at SMF and keep getting "unavailable".

I just tried from http://custom.simplemachines.org/mods/index.php?mod=2155 and was able to access just fine.
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 08:52:56 AM
Just tried again....... :P

"Temporarily Unavailable
Due to high stress on the server the forum is temporarily unavailable. Please try again later. "
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 08:59:48 AM
Works fine for me, try this http://custom.simplemachines.org/mods/index.php?action=download;mod=2155;id=164985
Title: Re: httpBL
Post by: Aoife on March 01, 2011, 09:02:21 AM
Just tried again....... :P

"Temporarily Unavailable
Due to high stress on the server the forum is temporarily unavailable. Please try again later. "


And I just tried again and was able to get thru again - maybe look in the Support boards and see if anyone else is having the same issue?
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 09:56:41 AM
Works fine for me, try this http://custom.simplemachines.org/mods/index.php?action=download;mod=2155;id=164985

Nope. Same error code.
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 10:24:10 AM
OK, please make a new topic about this, detailing the problem and how long you have had this problem, on the Site Comments -board so our admins can have a stab at it ;)
Title: Re: httpBL
Post by: wickedgood on March 01, 2011, 02:32:23 PM
Finally got it downloaded and installed.

Server issue?

Seems to be working fine.

Thanks! :)
Title: Re: httpBL
Post by: Aleksi "Lex" Kilpinen on March 01, 2011, 02:38:34 PM
The servers have been having load issues lately, so it was most probably related, but it usually only affects people for some minutes at a time - not straight days. So that's why I suggested posting to the Site comments.
Title: Re: httpBL
Post by: MCK on March 04, 2011, 02:53:18 AM
I have a Global Moderator who accesses my site on his iPhone. He got trapped yesterday for no apparent reason. 2 questions.

Is the attached screen generated by httpBL mod or StopSpammer mod? I have both but can't tell which mod trapped this connection but I'm guessing it's httpBL.

If this is httpBL what can I do to make it go away? I'm guessing this is because the AT&T iPhone IP range is blacklisted due to some malicious activity. Is there a way for me to whitelist my user? Thanks for your help.

Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 06:10:09 AM
That's not mod httpBL nor mod StopSpammer.

I would never put Google adverts on any of my mods.

My guess is you are using CloudFlare, that is a piece of software from a company done to make money, so they are more interested in putting adverts everywhere than actually stopping spammers.
Title: Re: httpBL
Post by: MCK on March 04, 2011, 06:41:39 AM
Thanks for your clarification. I need to go read up on whitelisting on CloudFlare then. In the meanwhile I don't know why there is so much ill feelings about CloudFlare. I'm a new user and generally enjoy what they offer. What am I missing? Its interesting to note that they too use ProjectHoneyPot data to run their service. See http://www.cloudflare.com/wiki/DataSources

Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 07:24:22 AM
I know what CloudFlare does and how.

That's why I wouldn't recommend you to use it together with this mod. Either use one or the other.

Of course it's up to you which one to use. Personally I prefer to use always programs where I have the control and that's why I prefer this mod instead of CloudFlare, I prefer Linux instead of Windows, etc.
Title: Re: httpBL
Post by: Wizzlefits on March 04, 2011, 02:23:15 PM
Snoopy, you're just jaded! hehehe! Just kidding!
CloudFlare pretty much done themselves in when it was brought to their attention, privately and then publicly, that a very nasty website, that violated about 4 parts of their TOS, was using their service. Not once did they respond or take action.

They do have a nice service, but I think greed has clouded things quite a bit.
Title: Re: httpBL
Post by: Blade_Runner on March 04, 2011, 03:18:13 PM
Thanks for the great mod. Can anyone let me know what is the default figure for the following?

Number of days to consider good an IP
Threat level considered bad
Threat level considered VERY bad
Minutes to keep the data in the cache
Hours until an IP needs to prove again it's human

I suggest that a default figure should be stated next to the box.
Title: Re: httpBL
Post by: Wizzlefits on March 04, 2011, 05:22:35 PM
90
10
30
5
24
------------
Good idea!  ;)
Title: Re: httpBL
Post by: snoopy_virtual on March 04, 2011, 09:40:15 PM
It's already in the TODO list for the next version.  ;)
Title: Re: httpBL
Post by: Blade_Runner on March 05, 2011, 02:22:00 PM
90
10
30
5
24
------------
Good idea!  ;)

Thank you for the post. :)
Title: Re: httpBL
Post by: Lotti on March 18, 2011, 10:14:23 PM
ITALIAN TRANSLATION (Italiano) httpBL_v2_5_1

Code: [Select]
<file name="$languagedir/Modifications.italian.php" error="skip">
<operation>
<search position="end" />
<add><![CDATA[
// MOD httpBL START
// General
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_honeyPot_link_error'] = 'Link honeyPot sbagliato. Controlla la tua configurazione MOD httpBL.';
$txt['httpBL_honeyPot_key_error'] = 'http:BL API key sbagliata. Controlla la tua configurazione httpBL.';
$txt['httpBL_honeyPot_key_error_2'] = 'Connessione fallita. Ciò significa che la tua http:BL API key è sbagliata oppure che c\'è un problema con il tuo sistema DNS.';
$txt['httpBL_caught'] = 'Spammers bloccati da MOD httpBL: ';

// Config page
$txt['httpBL_description'] = 'Il MOD httpBL controlla ogni IP di ogni visitatore per vedere se è già all\'interno del DB di projecthoneypot. Se questo è vero il mod lo rispedisce alla pagina warning.php negandogli l\'accesso al forum.<br />Qui puoi accendere il mod o spegnerlo, e cambiare alcuni suoi parametri.';
$txt['httpBL_enable'] = 'Abilita/Disabilita MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'La API key che hai scritto è sbagliata. Controllala accuratamente e riprova ancora.';
$txt['httpBL_honeyPot_link'] = 'Collegamento al tuo Honey Pot';
$txt['httpBL_honeyPot_key'] = 'La tua Honey Pot http:BL API key';
$txt['httpBL_honeyPot_word'] = 'Keyword del tuo Honey Pot link';
$txt['httpBL_honeyPot_word_sub'] = 'Questa è l\'unica parola nel tuo Honey Pot link che gli spammers vedranno. Scrivi qualcosa per attrarli e farglielo cliccare e nulla che li spaventi. Se non trovi una buona parola lascialo bianco. Il mod ne sceglierà una per te.';
$txt['httpBL_info_email_1'] = 'Prima parola della tua email';
$txt['httpBL_info_email_2'] = 'Seconda parola della tua email';
$txt['httpBL_info_email_3'] = 'Terza parola della tua email';
$txt['httpBL_enable_bad_email'] = 'Verifica l\'indirizzo email che hai scritto. Non puoi lasciarlo bianco in nessuna delle tre parole.';
$txt['httpBL_bad_last_activity'] = 'Numero di giorni in cui considerare buono un IP';
$txt['httpBL_bad_last_activity_sub'] = 'Se un IP è stato usato tempo fa da uno spammer, ma nessuno vi fa niente di male per un certo numero di giorni, non lo considereremo pericoloso e lasceremo passare il visitatore.';
$txt['httpBL_bad_threat'] = 'Livello di minaccia considerato cattivo';
$txt['httpBL_bad_threat_sub'] = 'Project Honey Pot da ad ogni IP un livello di minaccia che cambia ogni giorno a seconda di cosa fa questo IP e quello che ha fatto in passato. Ogni IP con un livello di minaccia più basso del numero che inserisci passerà senza controlli.';
$txt['httpBL_very_bad_threat'] = 'Livello di minaccia considerato MOLTO cattivo';
$txt['httpBL_very_bad_threat_sub'] = 'Ogni IP con un livello di minaccia maggiore del numero che messo qui ha vinto non sarà in grado di passare del tutto. Gli IP con un livello di minaccia fra i due numeri vedranno un captcha e, se dimostreranno che sono degli esseri umani, gli sarà concesso un pass per qualche ora';
$txt['httpBL_cookie_length'] = 'Ore fino a che un IP necessita di provare ancora di essere umano';
$txt['httpBL_no_negative_here'] = 'Il numero di giorni e il livello di minaccia non può essere un numero negativo o 0.';
$txt['httpBL_no_higher_than'] = 'Il livello di pericolo considerato cattivo non può essere maggiore del livello di pericolo considerato <strong>MOLTO</strong> cattivo.';
$txt['httpBL_viewlog_extra'] = 'Visualizza informazioni supplementari dal registro';
$txt['httpBL_viewlog_extra_sub'] = 'Se selezioni questa opzione andrai a vedere tutte le informazioni nel registro, ma forse saranno troppe e perderai la prospettiva. A volte è meglio vedere solo le cose importanti.';

// View log page
$txt['httpBL_viewlog_description'] = 'Ogni volta che MOD httpBL ferma uno spammer o rileva un errore interno aggiunge una voce al registro che puoi vedere qui. Questa è la lista degli spammers fermati dal mod o perché il loro livello di minaccia era superiore al livello di minaccia considerato <strong>MOLTO</ strong> cattivo o perché hanno visto il captcha e non hanno potuto dimostrare di essere umani.';
$txt['httpBL_viewlogerror_description'] = 'Questa è la lista degli errori interni rilevati dal mod quando si cerca di verificare un indirizzo IP. A seconda dell\'errore, alcuni di loro potrebbero essere stati fermati e altri possono avere avuto il permesso di entrare. Per vedere tutte le informazioni qui è necessario premere il pulsante <strong>"Mostra informazioni extra"</strong>.';
$txt['httpBL_log_no_entries'] = 'Non ci sono voci nel registro MOD httpBL Spammers. O non hai catturato qualsiasi spammer oppure hai cancellato tutte le voci.';
$txt['httpBL_logpass_no_entries'] = 'Non ci sono voci nel registro MOD httpBL Humans. O nessuno ha provato di essere umano oppure hai cancellato tutte le voci.';
$txt['httpBL_logerror_no_entries'] = 'Non ci sono voci nel registro errori MOD httpBL. O non hai avuto nessun errore oppure hai cancellato tutte le voci.';
$txt['httpBL_viewlog_extra'] = 'Mostra informazioni extra';
$txt['httpBL_viewlog_normal'] = 'Nascondi informazioni extra';
$txt['httpBL_log_show_legend'] = 'Mostra leggenda';
$txt['httpBL_log_hide_legend'] = 'Nascondi leggenda';
$txt['httpBL_pages'] = 'Pagine';
$txt['httpBL_log_date'] = 'Data';
$txt['httpBL_log_ip'] = 'IP';
$txt['httpBL_log_threat'] = 'L. Pe.';
$txt['httpBL_log_threat_long'] = 'Livello Pericolo - Il livello di pericolosità di questo IP nel database Project Honey Pot.';
$txt['httpBL_log_activity'] = 'U. A. C.';
$txt['httpBL_log_activity_long'] = 'Ultima Attività Cattiva - Il numero di giorni passati da quando l\'IP ha fatto qualcosa di sbagliato.';
$txt['httpBL_log_suspicious'] = 'S.';
$txt['httpBL_log_suspicious_long'] = 'Sospetto - Solo sospetto di essere uno spammer.';
$txt['httpBL_log_harvester'] = 'M.';
$txt['httpBL_log_harvester_long'] = 'Mietitore - Un robot che naviga internet alla ricerca di indirizzi email da usare dopo per inviare spam.';
$txt['httpBL_log_comment'] = 'C.';
$txt['httpBL_log_comment_long'] = 'Spammer Commenti- Un robot che posta su blogs e forums. Questi posts sono tipicamente pieni di links a siti promossi dagli spammers.';
$txt['httpBL_log_url'] = 'Pagina';
$txt['httpBL_log_url_long'] = 'La pagina che questo IP ha visitato quando è stato rilevato ed espulso dal mod.';
$txt['httpBL_log_error_message'] = 'Messaggio';
$txt['httpBL_yes'] = 'Si';
$txt['httpBL_threat_colors'] = 'Significato dei colori:';
$txt['httpBL_threat_low'] = 'Basso pericolo';
$txt['httpBL_threat_medium'] = 'Medio pericolo';
$txt['httpBL_threat_high'] = 'Alto pericolo';
$txt['httpBL_threat_very_high'] = 'Altissimo pericolo';
$txt['httpBL_log_remove_all_confirm'] = 'Sei sicuro di voler cancellare tutte le voci dal registro MOD httpBL? - Questa azione non cancellerà soltanto le voci in questa sezione, ma TUTTE LE VOCI DEL REGISTRO.';
$txt['httpBL_log_remove_selected_confirm'] = 'Sei sicuro di voler cancellare le voci del registro MOD httpBL log selezionate?';

// Errors
$txt['httpBL_log_no_error'] = 'Nessun errore';
$txt['httpBL_no_errorNumber'] = 'Non c\'è un numero errore';
$txt['httpBL_no_defined'] = 'Non ancora definito';
$txt['httpBL_answers_captcha'] = 'Risposte al captcha';
$txt['httpBL_answer_captcha'] = 'Risposta al captcha';
$txt['httpBL_good'] = 'Buona';
$txt['httpBL_bad'] = 'Cattiva';
$txt['httpBL_empty_ip'] = 'IP vuoto';
$txt['httpBL_wrote_hiding'] = 'Scritto in un posto nascosto';
$txt['httpBL_no_show_captcha'] = 'L. Pe. troppo alto. Non è stato mostrato il captcha';
$txt['httpBL_no_reverse_ip'] = 'Non controllato. IP non normale. Consentito il passaggio';
$txt['httpBL_log_key_error'] = 'Non controllato per via di errore alla API key. Abilitato a passare';
$txt['httpBL_no_127'] = 'Non controllato. response[raw] non partito per via 127. Abilitato a passare';
$txt['httpBL_unknown'] = 'sconosciuto';

// Lines changed from v2.3 to v2.4
$txt['httpBL_log_user_agent'] = 'User Agent';

// New lines in v2.4
$txt['permissionname_httpBL_free_pass'] = 'Mai controllato da mod httpBL';
$txt['permissionhelp_httpBL_free_pass'] = 'Se questo permesso è abilitato, tutti i membri di questo gruppo saranno abilitato ad entrare nel forum sempre senza essere controllati dal mod httpBL, anche se il loro computer è controllato da un trojan spammer robot.<br />---<br />Abilitalo solo se sai esattamente cosa stai facendo.';
$txt['httpBL_last_act_too_high'] = 'Ultima attività troppo tempo fa. Consentito il passaggio.';
$txt['httpBL_threat_too_low'] = 'Livello Pericolo troppo basso. Consentito il passaggio';
$txt['httpBL_enable_sub'] = 'Con questa check-box selezionata il mod è ON. Con questa check-box non selezionata il mod è OFF.';
$txt['httpBL_mod_no_connect_1'] = 'Mod httpBL è ON ma non c\'è connessione adesso con HoneyPot. Prova più tardi.';
$txt['httpBL_mod_no_connect_2'] = 'Se il problema persiste chiedi aiuto nel <a href="http://www.simplemachines.org/community/index.php?topic=366399" target="_blank">forum di supporto ufficiale</a>.';
$txt['httpBL_mod_new_version_1'] = 'Mod httpBL è ON ma non è aggiornato.';
$txt['httpBL_mod_new_version_2'] = 'C\'è una nuova versione di questo mod. <a href="http://custom.simplemachines.org/mods/index.php?mod=2155" target="_blank">Per favore aggiornalo appena puoi</a>.';
$txt['httpBL_mod_all_ok'] = 'Mod httpBL è ON, è aggiornato e la connessione con HoneyPot è ok.';
$txt['httpBL_mod_is_off'] = 'Mod httpBL è OFF.';
$txt['OS_Browser_Compatible'] = 'compatibile';
$txt['OS_Browser_OS'] = 'Operating System';
$txt['OS_Browser_Unknown'] = 'sconosciuto';
$txt['OS_Browser_Browser'] = 'Browser';
$txt['httpBL_cache_length'] = 'Minuti in cui mantenere i dati nella cache';
$txt['httpBL_cache_length_sub'] = 'Ogni volta che il mod controlla un IP salva i dati nella cache (se abilitata) e nella sessione del visitatore per il numero di minuti in cui scrivi qui. Se lo stesso IP visita la tua pagina ancora prima che questo numero di minuti siano passati, il mod non lo verifica di nuovo, ma userà i dati memorizzati nella cache e/o nella sessione.';
$txt['httpBL_view_os_whosonline'] = 'Vedi dati OS & Browser nella pagina "Chi è Online"';

// Lines changed from v2.4 to v2.5
$txt['httpBL_config'] = 'Configurazioni';
$txt['httpBL_honeyPot_link_sub'] = 'Dopo aver istallato un Honey Pot nel tuo server, scrivi qui il link ad esso. Deve essere qualcosa come:<br /><strong>http://www.yourwebsite.com/yourhoneypot.php</strong>';
$txt['httpBL_honeyPot_key_sub'] = 'Prego ricordati che Project Honey Pot non te ne darà una se non hai già istallato un Honey Pot, quindi è meglio farlo prima.';
$txt['httpBL_viewlog'] = 'Registro Spammers';
$txt['httpBL_viewlogpass'] = 'Registro Umani';
$txt['httpBL_viewlogerror'] = 'Registro Errori';
$txt['httpBL_viewlogpass_description'] = 'Questa è la lista degli umani fermati dal mod, ma consentiti dopo che hanno provato di non essere robot. In più hai tutte le persone individuate come spammer nel database, ma con un livello di rischio inferiore al "livello di pericolo considerato cattivo" nelle tue configurazioni, in modo che non vengano fermati del tutto.';
$txt['httpBL_info_email_desc'] = 'Il mod ha bisogno del tuo indirizzo email per dirti se ci sono problemi e per mostrare agli esseri umani sfortunati con un IP considerato spammer come uscire dalla pagina <strong>warning.php</strong >, in modo che si possano chiedere aiuto. Poi, deve essere un indirizzo email valido. Lo abbiamo suddiviso in 3 parole in modo che il robot non lo possa vedere. Ad esempio, se l\'indirizzo è <strong>info@yourwebsite.com </strong> la prima parola è <strong>info</strong>, la seconda <strong>yourwebsite</strong>, e la terza <strong>com</strong>.';
$txt['httpBL_cookie_length_sub'] = 'Alcuni IP cambiano molto spesso, quando i visitatori vedono il captcha e dimostrano che sono umani essi sono autorizzati all\'interno della pagina solo per questa quantità di ore. Dopo di che, l\'IP può essere proveniente da un altro computer.';
$txt['httpBL_view_os_whosonline_sub'] = 'Mod httpBL usa le funzioni all\'interno di "Mod OS & Rilevamento Browser" per mostrare nei registri il sistema operativo e il browser usato da tutti i visitatori scritti in questi registri. Se vuoi vedere nella tua pagina "Chi è Online" il sistema operativo e il browser usato da tutti i tuoi visitatori, seleziona questo check-box. Ovviamente, per essere abilitato a vederli, nei registri della tua pagina "Chi è Online", devi avere istallato o <a href="http://custom.simplemachines.org/mods/index.php?mod=1515" target="_blank">Mod OS & Browser Detection</a> oppure il piccolo <a href="http://www.snoopyvirtualstudio.com/foro/index.php?topic=402.0" target="_blank">addon per vedere OS & Browser in httpBL</a>.';

// Don't translate these lines. They need to be here because in SMF 2.0 this is a little different than 1.x
global $boardurl, $smcFunc;
if (empty($smcFunc['db_query']))
$httpBL_help_link = $boardurl. '/index.php?action=httpBL;sa=helping';
else
$httpBL_help_link = $boardurl. '/index.php?action=admin;area=httpBL;sa=helping';

// New lines in v2.5
$txt['httpBL_general_settings'] = 'Configurazioni Generali';
$txt['httpBL_general_settings_desc'] = 'Se vuoi usare il MOD httpBL devi avere Honey Pot installato nel tuo server e una http:BL API key da Project Honey Pot. Se non la hai devi prima andare su <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a> per chiedere un Honey Pot, installarlo nel tuo server e quindi chiedere la tua http:BL API key.';
$txt['httpBL_info_email'] = 'Il tuo indirizzo email';
$txt['httpBL_internal_settings'] = 'Configurazioni Interne';
$txt['httpBL_internal_settings_desc'] = 'Ci sono configurazioni interne per controllare il modo in cui mod httpBL lavora. Non ti raccomandiamo di cambiarle prima di sapere il modo in cui ogni cambiamento influirà sul mod.';
$txt['httpBL_extra_settings'] = 'Configurazioni Extra';
$txt['httpBL_extra_settings_desc'] = 'Altre configurazioni che potresti voler cambiare.';
$txt['httpBL_warning_settings'] = 'Configurazioni Warning Page';
$txt['httpBL_warning_settings_desc'] = 'Se vuoi vedere l\'aspetto della tua pagina "warning.php" con queste configurazioni (la pagina a cui ogni visitatore considerato pericoloso sarà rimandato) premi questo link: <a href="'. $boardurl. '/warning.php" target="_blank">warning.php</a><br /><br/>Questo è il modo in cui apparirà ai visitatori non troppo pericolosi. Con un captcha, in modo che potranno provare d\'essere umani. Se vuoi vedere il modo in cui apparirù a chi è MOLTO pericoloso (senza captcha) usa questo link: <a href="'. $boardurl. '/warning.php?style=medium" target="_blank">warning.php?style=medium</a><br /><br/>Se vuoi cambiare il suo design o tradurre questa pagina in altri linguaggi e non sai come, oppure se hai altre questioni riguardo il mod, troverai informazioni utili nella sezione <a href="'. $httpBL_help_link. '">httpBL HELP</a>.';
$txt['httpBL_use_two_languages'] = 'Usa 2 linguaggi nella pagina warning';
$txt['httpBL_use_two_languages_sub'] = 'Di default la pagina warning è in 2 differenti linguaggi: Inglese e Spagnolo (o la lingua da te tradotta), così tutti i tuoi visitatori possono capire quello che dice in queste due lingue. Se lasci questa check-box vuota useremo soltanto l\'Inglese.';
$txt['httpBL_horizontal_separator'] = 'Separatore orizzontale per la pagina warning';
$txt['httpBL_horizontal_separator_sub'] = 'Il separatore orizzontale di default per ogni blocco all\'interno della pagina warning è &lt;hr /&gt; (linea orizzontale grigia) ma puoi cambiarlo con qualsiasi altro usando il linguaggio HTML.<br />
Per esempio &lt;br /&gt; ti darà uno spazio-linea bianca.<br />
Oppure per esempio puoi inserire una immagine orizzontale che ti piace semplicemente scrivendo:<br />
&lt;img src="http://www.yoursite.com/anypicture.jpg" alt="" border="0" /&gt;<br />
(Sostituisci il link all\'interno di src="" con la cartella della tua immagine).';
$txt['httpBL_log_clear_this_log'] = 'Pulisci questo log';
$txt['httpBL_log_clear_SpammerLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Spammers?';
$txt['httpBL_log_clear_HumanLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Umani?';
$txt['httpBL_log_clear_ErrorLog_confirm'] = 'Sei sicuro di voler cancellare tutte le voci del registro MOD httpBL Errori?';

// Help
$txt['httpBL_helping'] = 'Aiuto';
$txt['httpBL_helping_description'] = 'Ti raccomando di leggere questa pagina attentamente anche se non hai bisogno di aiuto col mod httpBL.';
$txt['httpBL_online_title'] = 'Aiuto online';
$txt['httpBL_online_body'] = '<p>Ci sono un sacco di modi in cui puoi chiedere aiuto, ma il migliore è chiedere a me direttamente di ogni eventuale dubbio che si possa avere, in modo che possiamo parlarne e risolvere il problema senza perdere tempo. I non ho testa per rispondere alle domande attraverso i forum, e-mail, PM, ecc, ma per me è molto più facile vedere che cosa è il problema e trovare la soluzione quando posso parlare con un microfono. E penso anche che questo sia molto più veloce e più efficace per risolvere i problemi.<p>
<p>Io sono connesso circa 10 ore ogni giorno usando il programma <strong>"Skype"</strong>, <strong>"YIM"</strong> (Yahoo Messenger) e <strong>"MSN"</strong> (Live Messenger). Ho anche creato un sistema nei miei server per scrivere quello che sto facendo in ogni momento e ho aggiunto un pezzo di codice al mod per leggere queste informazioni dal mio server (il pezzo si può vedere accanto a queste linee) in modo da poter vedere se sono disponibili o meno.</p>
<p>Se hai installato anche il programma Skype, il processo non può essere più semplice. Tutto quello che dovete fare è aspettare fino a quando io sono a disposizione e fare clic sul pulsante "Online". Questo aprirà automaticamente il programma Skype sul vostro computer e inizierà una conversazione tra di noi.</p>
<p>Se si preferisce utilizzare YIM o MSN invece di Skype o se non hai gia preso un microfono, il pulsante non funzionerà automaticamente. In tal caso, il pulsante sarà utile per voi solo per sapere se sono disponibile o meno, ma per contattarmi avrete bisogno di aggiungere il mio nome prima all\'interno del programma che utilizzate, come qualsiasi altro contatto. Il mio ID dentro questii 3 programmi è questo:</p>
<ul>
<li>Skype e YIM : <strong>snoopy_virtual_studio</strong></li>
<li>MSN : <strong>snoopy_virtual_studio@hotmail.com</strong></li>
</ul>
<p><strong>AVVISO:</strong> Non usare il mio indirizzo hotmail per inviarmi email, non le leggo mai. Se vuoi inviarmi un email usa quest\'altro indirizzo: <a href="mailto:info@snoopyvirtualstudio.com">info@snoopyvirtualstudio.com</a></p>
<p><strong>ATTENZIONE:</strong> Ci sono un sacco di lingue del mondo che posso capire, anche se solo un pò, ma gli unici 2 in cui sono davvero fluente sono inglese e spagnolo. Se non è possibile parlare una di queste due lingue potete chiamarmi, ma non posso promettere che saremo in grado di capirci.</p>
<p><strong>ANOTHER WARNING:</strong> Prima di iniziare a fare domande sarebbe una buona idea fare una rapida ricerca utilizzando i link che puoi vedere più in basso, per vedere se qualcun altro ha già avuto lo stesso problema ed è già stato risolto. Il motivo principale per cui ho creato questa "Guida in linea" è quello di risparmiare tempo e non avrebbe alcun senso se io alla fine dovessi rispondere centinaia di volte alle stesse domande ogni giorno.</p>';
$txt['httpBL_help_1_title'] = 'Altri modi per chiedere aiuto';
$txt['httpBL_help_1_body'] = '<p>Naturalmente, anche se io personalmente preferisco la "Guida in linea", ci saranno momenti in cui sarà impossibile utilizzarla. O perché si vive troppo lontano da me e non siamo mai online nello stesso tempo, o perché si non ti piacciono i programmi di messaggistica istantanea, o perché hai bisogno di aiuto quando sarò troppo impegnato con altri progetti e non posso essere collegato, o qualunque altro motivo. In tutti questi casi si possono trovare e / o chiedere aiuto con un sacco di modi diversi:</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/tutoriales/index.php?estudio=httpBL_2;language=english" target="_blank">Tutoral che spiega come funziona il mod, come installarlo e come configurarlo esattamente</a></strong></li>
</ul>
<p>Ogni volta che ho aggiornato la mod cerco di aggiornare anche il tutorial, ma, naturalmente, ciò dipende dalla quantità di tempo libero che ho in un dato momento, così a volte si vedrà il tutorial un pò fuori data rispetto alle performance effettive del mod. Ma spero che un giorno troverò il tempo di aggiornare il tutorial in modo corretto. Inoltre sto pianificando di aggiungere anche una sezione tutorial <strong>"FAQ"</strong> con tutte le domande che le persone mi hanno chiesto nel corso del tempo e di aggiungere anche alcune altre sezioni utili. Non sarbbe una cattiva idea verificare di volta in volta se c\'è qualcosa di nuovo lì.</p>
<ul>
<li><strong><a href="http://www.simplemachines.org/community/index.php?topic=366399.0" target="_blank">Thread Ufficiale di supporto del mod</a></strong></li>
</ul>
<p>Pieno di domande molto interessanti e risposte sulla mod e altri argomenti legati alla protezione contro gli spammer. È anche il posto giusto per segnalare eventuali bug che si possono trovare nel mod o richiedere nuove funzionalità che vorreste vedere nelle prossime versioni.</p>
<ul>
<li><strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=30.0;language=english" target="_blank">La sezione dedicata a questo mod nel mio forum personale</a></strong></li>
</ul>
<p>Il mio forum personale è dedicato a qualsiasi tipo di sorta di problemi che chiunque può avere all\'interno di un sacco di diversi settori dell\'IT. Al suo interno vi è una sezione dedicata ai mod httpBL, dove si può vedere (tra le altre cose) come è possibile installare anche questa mod su altri siti web realizzati con PHP, ma senza SMF.</p>';
$txt['httpBL_help_2_title'] = 'Come puoi aiutarci';
$txt['httpBL_help_2_body'] = '<p>Questa mod è <strong>"Free Source"</strong> e questo significa che è un lavoro di squadra dove tutti si aiutano a vicenda. Quindi non solo gli altri ti aiutano a risolvere i tuoi problemi, ma ti dovresti anche chiedersi in che modo puoi aiutare tutte le persone che lo utilizzano. A seconda della capacità e del tempo libero, i diversi modi in cui puoi aiutare sono questi:</p>
<ul>
<li><strong>Donazioni</strong></li>
</ul>
<p>Se questo mod vi ha aiutato, le donazioni sono un ottimo modo per dire "Grazie!". Inoltre, i mesi in cui le donazioni raggiungono un livello accettabile, I non ho bisogno di spendere tante ore alla ricerca di clienti per fare altri tipi di lavoro e posso dedicare più tempo a ciò che conta davvero: I vari progetti di software libero con cui collaboro.</p>
<ul>
<li><strong>Segnala bugs</strong></li>
</ul>
<p>Ogni volta che vedi che il mod si sta comportando in un modo che non è previsto, è necessario segnalare il bug nel forum appropriato. Se anche tu hai abbastanza conoscenze di programmazione per trovare dove sia l\'errore e proporre una soluzione, la migliore, ma anche se non si ha idea di dove sia la causa, il solo fatto di segnalarlo è utile, perché consentirà a qualcuno con più esperienza di sapere che il bug esiste e di dedicare del tempo per risolverlo, lavoro che renderà il la mod ancora migliore.</p>
<ul>
<li><strong>Rispondi a domande nel forum</strong></li>
</ul>
<p>Se hai usato questa mod per qualche tempo e hai una certa pratica con essa, puoi vedere a volte che qualcuno pone una domanda nel forum di cui conosci la risposta. Se rispondi a questa domanda mi risparmierai un pò tempo e mi permettai di concentrarmi sui problemi più importanti.</p>
<ul>
<li><strong>Aiutare con lo sviluppo di questo mod</strong></li>
</ul>
<p>Se disponi di sufficienti conoscenze PHP e di tempo libero puoi contribuire a risolvere i bug del mod e/o sviluppare le future versioni. Per fare questo ho aperto un <strong><a href="http://www.snoopyvirtualstudio.com/foro/index.php?board=36.0;language=english" target="_blank">sub-forum all\'interno del mio forum personale </a></strong>, dove sei il benvenuto se sei interessato all\'argomento.</p>
<ul>
<li><strong>Altro</strong></li>
</ul>
<p>Ogni altra idea che pensi possa aiutare è benvenuta.</p>';
$txt['httpBL_about_title'] = 'Riguardo MOD httpBL';
$txt['httpBL_about_body'] = '<p>Mod httpBL è stata avviata nel 2009 da me, J. C. Redondo "Snoopy", da <strong><a href="http://www.snoopyvirtualstudio.com/index.php?language=english" target="_blank">Snoopy Virtual Studio</a></strong>, basata su una idea dal forum di Project Honey Pot, principalmente <strong><a href="http://www.projecthoneypot.org/board/read.php?f=10&i=1&t=1" target="_blank">da questo thread</a></strong> e anche dal <strong><a href="http://drupal.org/project/httpBL" target="_blank">Drupal http:BL MOD fattpo da praseodym</a></strong>.</p>
<p>Naturalmente, il codice Drupal è molto differente dal codice SMF, così fin dall\'inizio ho dovuto cambiarlo molto. Inoltre, da quando ho iniziato, io ho modificato molto di più e ho aggiunto nuove funzionalità, come ho avuto nuove idee o altre mi sono state suggerite da altre persone nel forum SMF, per cui nella versione attuale non vi è rimasto che molto poco del lavoro originale, ma tutto questo non sarebbe stato possibile senza questo lavoro iniziale.</p>
<p>Dalla versione 2.4 dell\'ottobre 2010, questo mod utilizza anche le funzioni create da <strong>Marcin Krol</strong> e modificate da <strong><strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">X3mE</a></strong> nel suo mod <strong><a href="http://www.simplemachines.org/community/index.php?action=profile;u=154415" target="_blank">OS & Browser Detection</a></strong> per rilevare il sistema operativo e il browser dei potenziali spammers.</p>
<p>Questo programma, come la maggior parte del mio lavoro, è un software gratuito (almeno per le parti che ho fatto). Può essere redistribuito e/o modificato per i propri progetti in ogni caso lo si desidera. Basta ricordare da dove lo hai avuto, per darmi il credito che merito per i miei sforzi. Comunque se avete intenzione di fare soldi con esso, sarò molto grato se considerete di donare una piccola percentuale del vostro profitto.</p>';
// MOD httpBL END
]]></add>
</operation>
</file>



Warning.php
Code: [Select]
/*******************
*  Set 2 - Italian *
*******************/
$txt['httpBL_warn_title_2'] = 'Attenzione';
$txt['httpBL_warn_denied_2'] = 'Accesso Negato';
$txt['httpBL_warn_head_2'] = 'Il nostro programma anti-spam ha determinato che sei un robot che sta provando a inviare spam nel nostro forum.';
$txt['httpBL_warn_infected_2'] = 'La causa più probabile è che il tuo computer, o un computer che opera nella tua rete locale, è stato <strong>infettato da un virus, trojan o worm</strong>. I computer infettati possono essere usati dai criminali, senza il tuo consenso, per inviare spam e attaccare siti come questo che stai provando a visitare.';
$txt['httpBL_warn_dynamic_IP_2'] = 'Se usi un ip dinamico, il tuo IP dovrebbe cambiare ogni volta che riavvii il router, quindi il problema potrebbe essere che oggi usi un IP che è stato usato da un computer infetto un pò di tempo fa, quindi puoi provare, se vuoi, a riavviare il tuo router e il tuo computer e ad aprire di nuovo la pagina web e vedere se tutto andrà bene.';
$txt['httpBL_warn_technician_1_2'] = 'In ogni caso, per testare se il tuo computer è infetto, e rimuovere possibili infezioni, ti raccomandiamo di contattare al più presto un tecnico e visitare <strong>www.projecthoneypot.org</strong> per controllare i dettagli del tuo IP:';
$txt['httpBL_warn_technician_2_2'] = 'per vedere esattamente cosa è andato storto.';
$txt['httpBL_warn_info_2'] = 'Per ulteriori informazioni, prego contatta:';
$txt['httpBL_warn_at_2'] = 'at';
$txt['httpBL_warn_dot_2'] = 'dot';
$txt['httpBL_warn_hurry_2'] = 'Avrai una spiegazione più dettagliata sotto queste righe, ma, in caso si ha fretta di vedere le pagine e non hai tempo di scansionare il tuo computer alla ricerca di possibili virus, possiamo farti entrare temporaneamente. Si prega di rispondere a una di queste 2 facili domande scrivendole in modo che il robot non possa vederle. Si prega di rispondere alla prima domanda (solo il numero) per dimostrare che non sei un robot e premere il bottone <strong>"Invia"</strong>:';
$txt['httpBL_warn_send_2'] = 'Invia';
$txt['httpBL_warn_blank_2'] = 'Lascia questo campo bianco.<br />Scrivi la risposta nel campo sopra.';
$txt['httpBL_warn_wrong_2'] = 'Sbagliato';
$txt['httpBL_warn_wrong_head_2'] = 'Risposta sbagliata.';
$txt['httpBL_warn_wrong_answer_2'] = 'Forse non ci siamo spiegati correttamente oppure non hai premuto il tasto giusto. Quello che hai qui sono 2 differenti righe. Nella prima riga si può vedere una somma semplice, un campo vuoto e un bottone "Invia". In questo primo campo vuoto devi scrivere la risposta (solo il numero) e premere il bottone. Devi lasciare il secondo campo vuoto, proprio come è adesso.';
$txt['httpBL_warn_good_2'] = 'Buono';
$txt['httpBL_warn_good_head_2'] = 'Risposta corretta.';
$txt['httpBL_warn_good_answer_2'] = 'La tua risposta è corretta, ma ricordati che un robot, anche se non può vedere o capire la domanda, può digitare la risposta corretta semplicemente provando dei numeri a caso. Sarà più difficile otterene la risposta corretta due volte di fila, quindi, per favore, rispondi a questa ultima domanda e premi di nuovo il bottone <strong>"Invia"</strong>:';
Title: Re: httpBL
Post by: Lotti on March 18, 2011, 10:38:44 PM
Oh, I have also a question. I try to install this on this site-test
http://social.spaceof.info/forum/index.php

I find in html source of the page the link to the honey pot
Code: [Select]
<script language="javascript" type="text/javascript"><!-- // --><![CDATA[

Shoutbox_GetFeatures();

if (!Shoutbox.hide) Shoutbox.msgs = setTimeout("Shoutbox_GetMsgs();", 1000);

// ]]></script><a href="http://letterefilosofiasapienza.spaceof.info/forum/comfort.php" style="display: none;">Register</a>

<br><div class="tborder" ><table cellpadding="0" cellspacing="0" border="2">



<tr>

       <td class="windowbg2"><span class="smalltext" style="display: inline; visibility: visible; font-family: Verdana, Arial, sans-serif;">Benvenuti nel sito degli studenti della Facotà di Lettere e Filosofia dell'Università "La Sapienza" di Roma. Questo sito, luogo di incontro e informazione per gli studenti, non è il sito ufficiale della facoltà, che è invece raggiungibile all'indirizzo: <a href="http://lettere.uniroma1.it/" target="_blank">http://lettere.uniroma1.it/</a>. Intende però dare nuovi strumenti per gli studenti, in una logica di vero e rapido aggiornamento. Cercate informazioni su un modulo, od un professore? Usate la <a href="http://letterefilosofiasapienza.spaceof.info/forum/index.php?action=search">ricerca</a>. Per le domande, è presente l'help. E' molto importante infine <a href="http://letterefilosofiasapienza.spaceof.info/forum/index.php?action=register">registrarsi</a> per usufuire di tutti i servizi.</span></td>

</tr>

But I don't see that in this place, when I try to search this with the browser (at the end of Shoutbox, I think). It's normal?

Also, I don't see the link in html source if I visit the page like a guest.

Thanks
Title: Re: httpBL
Post by: Wizzlefits on March 18, 2011, 11:54:32 PM
It's showing fine for me. Just look just before..
Code: [Select]
</body>
  </html>
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 01:43:22 AM
Oh, I have also a question. I try to install this on ...

I find in html source of the page the link to the honey pot

....

But I don't see that in this place, when I try to search this with the browser (at the end of Shoutbox, I think). It's normal?

All the links to your honey pot are hiding from humans. Only robots can see them.

The robots don't see a web site the same way you see it. They can only see the html source of the page.

That's why the only way to see those links is looking into the html source code.

But whatever you do, don't follow those links, or the program will think you are a spammer bot (because they are the only ones who can see the links) and will add all your data to the spammer's DB

That's why those links are hiding from humans. We don't want any human falling inside the honey pots.


Quote
Also, I don't see the link in html source if I visit the page like a guest.

That's not normal.

The links need to be in the html source always. It doesn't matter if you are visiting the site as a member or a guess.

Anyway, that code you wrote there has nothing to do with the link to the honey pot.

The real link to your honey pot (as Wizzlefits said in the previous post) it's showing OK.

I have just visited your forum to check it (as a guess, of course) and I can see it as well.
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 02:01:56 AM
And by the way (I forgot):

Grazie mille for the translation   ;)
Title: Re: httpBL
Post by: Lotti on March 19, 2011, 06:21:19 AM
Thanks a lot. Another (and last) problem. I think it's not a problem only for, and only by, your mod. If you visit the warning page that include SSI.php (I think, no?) and Subs-adkfunction.php by ADK Portal.
I have this problem:

Code: [Select]
Notice: Undefined index: character_set in /home1/spaceofi/public_html/social/forum/Sources/Subs-adkfunction.php on line 1647
This is the line
Code: [Select]
//Some errors with russian languages (for example)
function parse_if_utf8($title)
{
if(empty($title))
return;

global $context, $language;

if($context['character_set'] == 'UTF-8')
$title = htmlentities($title,ENT_QUOTES,'cp1251');

return $title;

}

and this is the file.

I can // the lines, but it's not a real solution. Anybody here can help me?
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 04:51:16 PM
I think the problem is ADK Portal is not handling properly SSI.

Anyway, there is an easy way to sort this problem, but not modifying the file Subs-adkfunction.php but your warning.php file.

Look inside your warning.php for these lines:

Code: [Select]
global $httpBL_warning;
$httpBL_warning = true;

They are at the beginning of the file, before the call to SSI.

Replace them with:

Code: [Select]
global $httpBL_warning, $context;
$httpBL_warning = true;
$context['character_set'] = 'UTF-8';

or

Code: [Select]
global $httpBL_warning, $context;
$httpBL_warning = true;
$context['character_set'] = 'ISO-8859-1';

I am not sure which one of them you should use, because I can see that in your forum you are using ISO-8859-1 but inside the warning page you are using UTF-8

You should use the same one in both of them, so if you are going to use ISO-8859-1 for the warning page as well, you should also change this other line:

Code: [Select]
$txt['httpBL_warn_charset'] = 'UTF-8';

to:

Code: [Select]
$txt['httpBL_warn_charset'] = 'ISO-8859-1';

It is inside the warning.php file around line 73. Just before the language lines.

==========

Another thing I have noticed is that you are using only Italian in your warning page (in the left side) but you have left the right side blank.

It doesn't looks very nice.

You have also an easy solution here:

Go to the mod httpBL settings page and un-check the option "Use 2 languages on the warning page".

That will leave your warning page with only one language.

Check it and see if you like it more this way.
Title: Re: httpBL
Post by: Lotti on March 19, 2011, 08:17:44 PM
Thanks a lot for your support, it's why I'm happy to post the translation of your mod.
I'm going to try your suggestion; but I have a question before. Why my warning.php show only italian language? I have simple translate the Set2 to Italian, but I want to show both italian and english. Where is the problem?

Ah, ok, stupid error about the name of variables; 1 instead of 2. Sorry.

Now all it's perfect. :) Me and the student of my University thanks you  ;D
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 08:45:00 PM
I thought that was the problem, but I wasn't sure if you wanted 1 language or 2 languages there.

In fact, when you have 2 languages the one with the number "1" is the one showing on the left and the one with number "2" is the one on the right.

And when you chose to show only one language the one shown is the language with the number "1".
Title: Re: httpBL
Post by: snoopy_virtual on March 19, 2011, 09:53:09 PM
@Lotti

I have checked again your warning page to see if everything was OK now and I have seen another error:

Code: [Select]
Notice: Undefined index: actual_theme_dir in /home1/*****/public_html/***/forum/Sources/Load.php on line 2127

You can avoid that one as well using the same method we used before, but maybe some more errors will appear later and maybe we will need to be doing it again and again, so I think to avoid this we should use a more general method:

The warning page is going to be seen only by bad robots and humans unlucky enough to have a bad IP (or a trojan) so they don't need to see those errors at all.

So the best thing to do is to turn off the error reporting completely in the warning page.

Go again to the warning page and replace these lines:

Code: [Select]
global $httpBL_warning;
$httpBL_warning = true;

with:

Code: [Select]
global $httpBL_warning;
$httpBL_warning = true;
error_reporting(0);

Or leave them as I said in my previous post and add the line turning off the error reporting.

I have added a note in my TODO list to add that to the warning page by default in future versions. Still I will need to find a more permanent solution for that, but it's not good at all to display those kind of errors in the warning page to all the visitors.

I have a question though for the SMF gurus:

Turning error_reporting off will stop those errors from showing in the forum error log?

I hope no (if there are errors I will like to be able to see them so I can sort them) but I am not 100% sure about the answer there.
Title: Re: httpBL
Post by: Lotti on March 20, 2011, 03:54:03 PM
I try to fix this adding to the Load.php
Code: [Select]
if(empty($settings['actual_theme_dir']))
$settings['actual_theme_dir'] = $settings['theme_dir'];
before of
Code: [Select]
$language_directories = array(
$settings['default_theme_dir'] . '/languages',
$settings['actual_theme_dir'] . '/languages',
I hope it's ok.
Title: Re: httpBL
Post by: snoopy_virtual on March 20, 2011, 05:05:27 PM
That is not a general error.

Only the people using the mod ENotify would have those lines inside the file Load.php so, as I already told you in one of my PMs, you should ask about that problem inside the support topic for that mod.

The people reading this topic about mod httpBL won't know what to do with that, and maybe it could be useful for anybody else using mod ENotify if you talk about it there.

Also maybe there is a better way to sort that problem and you will have a lot more chances of getting it sorted if you talk about it there. As I told you I don't use mod ENotify so, to understand the problem better and find a solution, I will need to read all the code inside that mod.
Title: Re: httpBL
Post by: snoopy_virtual on March 20, 2011, 05:11:04 PM
Anyway you need to remember that the errors saying: "Undefined index ... whatever" are not always critical errors.

The script continue working even with those errors, so in most cases you can safely ignore them.

In this case you have here I don't think you should need to worry too much about them. They are not urgent errors.

I think the only really urgent thing is to add the line to stop error reporting inside the warning page, so your visitors don't see those errors and only you see them inside your log until you find a solution for them.
Title: Re: httpBL
Post by: damouse on March 29, 2011, 07:05:10 AM
thank you so much for an awesome mod, and for the effort you're putting in to maintain and improve it.

I'm a bit of a newb and have managed to install and activate it without any hassle, I just have a query about adding the code to custom theme pages, in your tutorial you talk about adding it.
 "If you have also any other web page connected to your forum through the SSI.php, you will have to insert as well "
I don't understand the php well enough to work out which pages I might need to add it to from this. I think it might be better to expand this explanation a bit further or remove it to save the confusion.

just my 2cents

keep up the awesome work




Title: Re: httpBL
Post by: snoopy_virtual on March 29, 2011, 02:05:22 PM
Quote
I think it might be better to expand this explanation a bit further or remove it to save the confusion.

You are right. I just wrote there a quick explanation planning to do it better some day but I never find the time to finish that tutorial.

Some of these days (I hope ...)

Anyway you won't have to worry about that if in your site you only have SMF.

Do you have (apart from SMF) any other program in your site connect with a bridge? (Mambo, Joomla, Coppermine, Drupal, etc)
Title: Re: httpBL
Post by: Niklas_ on March 29, 2011, 08:00:58 PM
Hi guys

That really sounds like a great mod to me, but I'm kind of worried about legal issues.
IP addresses are considered personal data in Germany (at least by some people, e.g. the judges in Hamburg), so I'm not really allowed to send them to any other organisation. That is especially critical if that other organisation is situated outside of the EU.
So I have two questions:
- Where is the httpBL Project hosted?
- Are there any other people from Germany using this mod, and have they considered the legal issues?
(for reference you might want to take a look at one of the recent Articles in c't 5/11 (in german) http://www.heise.de/artikel-archiv/ct/2011/5/154_kiosk)

Thanks
Niklas
Title: Re: httpBL
Post by: snoopy_virtual on March 30, 2011, 05:30:45 AM
Hi Niklas

Quote
- Where is the httpBL Project hosted?

It is an international organization but based on USA.

If you visit their main site http://www.projecthoneypot.org and read their "about" page you will see that it's actually an organization made by a group of lawyers and a group of program coders working together to fight international spam, so they are also very much concern about legal issues.

Also (for that reason) when you open an account with them to join the project they always ask you for your nationality, because the laws are not the same in every country.

I think the best thing you could do is to open an account in their site, so you can post in their forum (you will need it anyway if you want to use this mod) and ask them directly about your legal concerns.

As I say a lot of them are lawyers and would be able to help you out with all that.

Or (if you don't want to open an account yet) send them an email asking your question.

Quote
- Are there any other people from Germany using this mod, and have they considered the legal issues?

I am not sure about it, but I think I have seen some people from Germany using it.

You will need to wait until any of them answer you this question, but (just in case they don't see it) I will try to do a search and I will send you a PM if I find any of them.
Title: Re: httpBL
Post by: mrselnombre on March 30, 2011, 09:57:19 AM
Is there anyway to test this mod to make sure it is working?
Title: Re: httpBL
Post by: snoopy_virtual on March 30, 2011, 02:32:01 PM
After the mod is installed and activated, if you visit the config page (Admin => mod httpBL => config) you should see a green sign saying the mod is working properly.

Also, after the mod has been running for a few hours, you should see in the httpBL log page some bots stopped by the mod.

In all my forums the mod stops an average of 5 - 10 bots a day.
Title: Re: httpBL
Post by: mrselnombre on March 30, 2011, 03:35:47 PM
it took a few hours, but my log is filling up now...
fab mod!
Title: Re: httpBL
Post by: DJ-X on April 02, 2011, 11:04:15 AM
100-150 robots in the day, almost all go through Tor !
Title: Re: httpBL
Post by: busterone on April 02, 2011, 11:23:56 AM
You can be very surprised at the amount of bots scraping and attempting to post in a forum in just one day.   ;)
Title: Re: httpBL
Post by: DJ-X on April 04, 2011, 04:31:18 PM
Ipv6 - IIS7 - Mod httpBL is ON

Ipv4 _http://localhost/
Ipv6 _http://[::1]/

Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Mod httpBL is OFF = operating normally.

Who's Online: Guest (0.0.0.0)  ;)

Open _http://yoursite.com/yourhoneypot.php

A validation error occurred. If this problem persists, you will need to generate a new script.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 03:37:09 AM
Hi,

I have recently installed the httpBL mod and in a first few days it managed to stop about 1000 attempts to enter my forum.
Many thanks for that!  :) :)
But I have found out that my error log is flooded with errors from httpBL:

8: Undefined index: httpBL_unknown
File: /home/agilityh/public_html/forum/Sources/httpBL_Subs.php
Line: 674


and I have about 20 successfull registrations from spammers per day.

My SMF version is 1.1.13, httpBL: 2.2.3

Thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 04:23:48 AM
@DJ-X

I don't understand if you are trying to explain here a few different problems or just one problem. Could you explain that a little more?

Anyway let's see if I can see what you are trying to say:

Ipv6 - IIS7 - Mod httpBL is ON

Ipv4 _http://localhost/
Ipv6 _http://[::1]/

Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Mod httpBL is OFF = operating normally.

This mod only works for IPv4, as the database of spammers in Project Honey Pot doesn't support yet IPv6.

Anyway I don't understand what you were trying to say there. Could you explain it?

Who's Online: Guest (0.0.0.0)  ;)

Are you having a guest with the IP 0.0.0.0?

We were trying to investigate that possibility some weeks ago but couldn't get any good explanation really. It can be a robot (or a human) hiding their real IP or somebody visiting your site with a bad browser that doesn't identify the IP properly.

Open _http://yoursite.com/yourhoneypot.php

A validation error occurred. If this problem persists, you will need to generate a new script.

What are you doing?

NEVER VISIT YOUR HONEY POT AFTER INSTALLATION

You only visit your honey pot once, when you activate it.

You should have done that ages ago, because the mod httpBL doesn't work without a honey pot already activated and working.

So why are you trying to visit your honey pot again?

===================

@iigor

Hi,

I have recently installed the httpBL mod and in a first few days it managed to stop about 1000 attempts to enter my forum.
Many thanks for that!  :) :)
But I have found out that my error log is flooded with errors from httpBL:

8: Undefined index: httpBL_unknown
File: /home/agilityh/public_html/forum/Sources/httpBL_Subs.php
Line: 674


and I have about 20 successfull registrations from spammers per day.

My SMF version is 1.1.13, httpBL: 2.2.3

Thanks

I have never done a version 2.2.3 for mod httpBL.

The current version is 2.5.1

Please check that and if you are not using the latest version, un-install whatever version you have and install the latest one.

If after that you are still having that error check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

If you are not using the default Theme and/or you are not using English let me know and I will tell you where to look for the proper language lines.

Anyway, if you are having 20 spammers registrations per day you have something wrong.

Apart from this mod what other anti-spam mods are you using?
Title: Re: httpBL
Post by: Arantor on April 05, 2011, 04:50:59 AM
Visitors using IPv6 will show up as 'unknown' aka 0.0.0.0.
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 05:10:37 AM
Oh yes, of course. You are right.

Still I don't understand the error DJ-X was trying to explain. What is that about "Database Error"?

When the IP is 'unknown' the mod just add an entry to the log saying that and let the visitor pass.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 05:45:29 AM

I have never done a version 2.2.3 for mod httpBL.

The current version is 2.5.1

Please check that and if you are not using the latest version, un-install whatever version you have and install the latest one.

If after that you are still having that error check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

If you are not using the default Theme and/or you are not using English let me know and I will tell you where to look for the proper language lines.

Anyway, if you are having 20 spammers registrations per day you have something wrong.

Apart from this mod what other anti-spam mods are you using?

I have the latest version installed 2.5.1, have picked the wrong version from another mod, sorry.
My theme is babylon and language is croatian.
Except for reCaptcha and httpBL I don't have any other anti-spam mod installed.
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 06:27:25 AM
Hi iigor

With version 2.5.1 you shouldn't have that error, so definitely there is something wrong with your language string lines.

As this mod has not been translated to Croatian yet it should be using the English instead, so (as I said before) check that you have all the correct string lines inside the file Modifications.english.php in the folder /Themes/default/languages/

They start with a line saying:

// MOD httpBL START

and finish with a line saying:

// MOD httpBL END

You can find the proper ones in the mod main page: http://custom.simplemachines.org/mods/index.php?mod=2155 or inside the files languages.xml and languages_utf8.xml (inside the mod's package).

The theme babylon shouldn't have any language files, apart from the Settings.whatever.php but (just in case) check if you have any other files inside the folder /Themes/babylon/languages/

If you have any other file there, compare them with the files in the default folder (to add the missing lines to all of them until they are exactly the same files) and then delete the files inside the /babylon/languages/ folder and leave only the files inside the default folder.

If you don't understand all that let me know and I will explain it again more slowly or contact me through Skype and we will do it together in a minute.

=========

Quote
Except for reCaptcha and httpBL I don't have any other anti-spam mod installed.

reCaptcha is not good at all. All modern bots can jump that captcha very easy. You can leave it there or un-install it, it's no difference, but it's not stopping none of them.

Mod httpBL on its own is not good enough to stop them. I would suggest you to add these 2 mods as well:

- Anti-Spam Verification Questions (http://custom.simplemachines.org/mods/index.php?mod=1516)

- Stop Spammer (http://custom.simplemachines.org/mods/index.php?mod=1547)

With the 3 mods working together you will see a big difference.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 08:22:29 AM
Hi Snoopy,

Thanks for pointing me in the right direction.
The magic sentence was
Quote
The theme babylon shouldn't have any language files, apart from the Settings.whatever.php but (just in case) check if you have any other files inside the folder /Themes/babylon/languages/

I had Modifications.croatian-utf8.php there, and after removing the file, it seems that everything is working OK now. No entries in the log file.

I have installed Stop spammer but the Anti-spam verification question gives me an error on install on Register.php??
But that's another problem...

Thanks for Your help!
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 09:16:55 AM
Quote
I had Modifications.croatian-utf8.php there, and after removing the file, it seems that everything is working OK now. No entries in the log file.

Before deleting it you should have checked if the file Modifications.croatian-utf8.php inside the default folder was exactly the same. If not you should have copied the missing lines from the "babylon" one to the "default" one or you may have problems with other mods.

Quote
the Anti-spam verification question gives me an error on install on Register.php??

I think somebody already sorted that in the support topic:

http://www.simplemachines.org/community/index.php?topic=276309.0

But I am not 100% sure about it.

If you cannot find a solution yourself ask in that topic or try to parse the mod for a manual installation, as it only have a few lines in Register.php

But that mod is definitely a "must have", as it stops on its own a lot more spammers than all the rest put together.
Title: Re: httpBL
Post by: iigor on April 05, 2011, 09:50:45 AM
Thanks for the info.

I found the error myself, an extra line in the search text of Register.template.php (not Register.php), I'm getting old... :-[

Now all the Three musketeers stand in defense.  :) :) :)

Thank You for Your time!
Title: Re: httpBL
Post by: snoopy_virtual on April 05, 2011, 10:03:11 AM
No problem.  ;)

Just for curiosity: Could you report back in a few days time to tell us what's the number of spammer registrations you have now?

I suppose it will be a lot less than the 20 a day you are having now, but I would like to know exactly how many.
Title: Re: httpBL
Post by: DJ-X on April 07, 2011, 05:48:00 PM
Make  Mod httpBL stopped working when the website  user Ipv6, but continued to work when users go to Ipv4.
Server IIS 7.5 with Ipv4 and Ipv6 - SMF 1.1.13

Mod httpBL is On - user Ipv6
Database Error
Please try again. If you come back to this error screen, report the error to an administrator.

Forum Error Log

 Guest     Today at 00:45:07

 http://mysite.com/index.php

8: Undefined variable: ip
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 519

        Guest     Today at 00:45:07
   
 http://mysite.com/index.php

2: Missing argument 1 for httpBL_look_for_empty_ip(), called in C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php on line 680 and defined
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 517
Title: Re: httpBL
Post by: snoopy_virtual on April 07, 2011, 06:56:26 PM
@DJ-X

OK, I understand now were is the problem.

It is a bug in the mod that we discovered some weeks ago and will be sorted in the next version. In the mean time here is the solution:

http://www.simplemachines.org/community/index.php?topic=366399.msg2920367#msg2920367
Title: Re: httpBL
Post by: DJ-X on April 11, 2011, 11:13:05 AM
Another error :)

Code: [Select]
$ip = httpBL_look_for_empty_ip($ip);
Database Error
 Please try again. If you come back to this error screen, report the error to an administrator.

Database Error: Field 'error' doesn't have a default value
File: C:\inetpub\wwwroot\mysite\Sources\httpBL_Subs.php
Line: 263


phpinfo()

_SERVER["REMOTE_ADDR"]   2604:6600:13:0:225:90ff:fe10:634
_SERVER["REMOTE_HOST"]   2604:6600:13:0:225:90ff:fe10:634
Title: Re: httpBL
Post by: snoopy_virtual on April 11, 2011, 11:53:09 AM
Inside the database, in the table "log_httpBL", the field "error" is a text field.

In all the versions of MySQL I have always used, text fields cannot have default values, so I don't understand that error you are getting.

Do you know what version of MySQL you have in your server or if you are using any other kind of database?
Title: Re: httpBL
Post by: BoxingChaos on April 11, 2011, 02:45:44 PM
Just wanted to thank snoopy_virtual for keeping httpBL and Stop Spammer up to date and all. Installed both and my spammers bots are getting trapped left and right and the problem has been solved. Added these two mods httpBL and Stop Spammer to two forums and problem cured. Gracias hermano snoopy_virtual. Muy buen aporte :)
Title: Re: httpBL
Post by: snoopy_virtual on April 11, 2011, 02:59:53 PM
A mandar, que pa eso estamos  ;)
Title: Re: httpBL
Post by: BritManNJ on April 12, 2011, 07:56:11 AM
## Okay ... I fixed it ... your tutorial is good ... thank you ##

I am trying to install httpBL, but I'm getting stuck here:

2.     ...
3.   Execute Modification   ./index.php   Test successful
4.   Execute Modification   ./SSI.php   Test successful
5.   Execute Modification   ./Themes/default/index.template.php   Test failed
6.   Execute Modification   ./Themes/default/Who.template.php   Test successful
7.   Execute Modification   ./Themes/default/languages/Modifications.english.php   Test successful
8.     ....

Current packages:

Mod Name   Version   
1.   Google Analytics Code   1.4
2.   Stop Spammer   2.3.9
3.   Social Bookmarks   1.1
4.   IP-Address Tracer   1.0

What am I doing wrong?

Thankyou,

aeh
Title: Re: httpBL
Post by: snoopy_virtual on April 13, 2011, 12:22:44 PM
@BritManNJ

Apparently you found the answer before I saw the question.

Anyway if the mod is not working properly or if you have any other question just let me know.  ;)
Title: Re: httpBL
Post by: DJ-X on April 13, 2011, 03:24:52 PM
Inside the database, in the table "log_httpBL", the field "error" is a text field.

In all the versions of MySQL I have always used, text fields cannot have default values, so I don't understand that error you are getting.

Do you know what version of MySQL you have in your server or if you are using any other kind of database?

Hi !
MySQL Server 5.1

I set up so that the code does not work when IPv6 is used!
Changed in the index.php

Example
Code: [Select]
// IPv4
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {
    // It works only on server with IPv4
    echo "<b>IPv4</b><br />";
   }

// IPv6
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {

   }
   else
   {
    // It works only on server with  IPv6
    echo "<b>IPv6</b><br />";
   }
Title: Re: httpBL
Post by: snoopy_virtual on April 14, 2011, 11:26:49 AM
Hi DJ-X

I am not really sure if what you are doing there will sort your problem. Maybe it does.

Let me know if it works for you, because we could use a similar solution if anybody else has the same problem.
Title: Re: httpBL
Post by: butchs on April 14, 2011, 06:52:12 PM
As far as I know SMF is not designed to work with IPv6 either.  Why should httpBL have to be compatible when SMF has no current method to store and track IPv6 addresses?
Title: Re: httpBL
Post by: snoopy_virtual on April 14, 2011, 07:09:23 PM
Every piece of software should be able to deal properly with IPv6 now that there are no more IPv4 available.

IPv6 is not the future any more. It's the present.
Title: Re: httpBL
Post by: Arantor on April 14, 2011, 07:43:29 PM
No, SMF will silently treat IPv6 as 'not supplied' IP addresses.
Title: Re: httpBL
Post by: snoopy_virtual on April 15, 2011, 02:51:58 PM
I know.

But every "GOOD" piece of software should be able to deal properly with IPv6
Title: Re: httpBL
Post by: DJ-X on April 16, 2011, 07:59:55 AM
Hi DJ-X

I am not really sure if what you are doing there will sort your problem. Maybe it does.

Let me know if it works for you, because we could use a similar solution if anybody else has the same problem.
This works on IPv4 IPv6 Microsoft-IIS/7.5 PHP 5.3 and IPv4 Apache/2.2 (CentOS) PHP 5.2
Please correct MOD correctly

index.php

Code: [Select]
// Mod httpBL is Off when IPv6
if (strstr($_SERVER["REMOTE_ADDR"], '.'))
   {
// Before we do anything else with this user we check projecthoneypot to see if it's a spammer. MOD httpBL
// But do it only if we are not coming from the file warning.php
global $boardurl, $httpBL_warning;
if ($modSettings['httpBL_enable'] && !isset($httpBL_warning))
{
require_once($sourcedir . '/httpBL_Subs.php');
$response = httpBL_dnslookup($user_info['ip'], $modSettings['httpBL_honeyPot_key']);
if ($response)
{
$_SESSION['response'] = $response;
header('Location: '. $boardurl .'/warning.php');
exit();
}
}

   }
Title: Re: httpBL
Post by: butchs on April 16, 2011, 09:33:06 AM
I know.

But every "GOOD" piece of software should be able to deal properly with IPv6

Bad Behavior (http://Bad Behavior mod) mod handles ipv6 and Project Honey Pot nicely.

Forum Firewall (http://custom.simplemachines.org/mods/index.php?mod=2815) actually supports and tests ipv6 addresses.

I agree that you should fix httpBL.
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2011, 11:02:42 AM
Project Honey Pot doesn't handles IPv6 yet. They are working on it, but they need to built a full new database for that and a full new API system.

Mod httpBL works with the database that Project Honey Pot has just now, so it cannot handle properly IPv6 until they finish all that job.

Quote
I agree that you should fix httpBL.

Why do you care if you don't use it?
Title: Re: httpBL
Post by: Arantor on April 16, 2011, 02:14:00 PM
I'd guess it's probably the same reason I hang around here and throw out the odd support answer: because even though I might not use something, I figure my knowledge might be able to help someone else.
Title: Re: httpBL
Post by: snoopy_virtual on April 16, 2011, 02:51:57 PM
It's completely different Arantor.

You are one of the best coders I know and normally all your suggestions are accurate and all of them had help me out a lot all these years.

What I don't like is ...

I better shut my mouth before I say something too hard.

I may answer it anyway when I calm down a little.
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 09:50:40 AM
Installed and all is well. Seems to be working fine but unsure how to test it other than just wait.

One question, my email ends in 'co.uk', not 'com' so I presume I simply enter 'co.uk' into the third field for the Admin email address and it will work the same?

Many thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2011, 10:31:42 AM
Installed and all is well. Seems to be working fine but unsure how to test it other than just wait.

Just now there is no easy way to check if the mod is working OK apart from going to Admin => mod httpBL => Settings and see if there is a green sign saying every thing is OK. But that only tests if the mod is ON or OFF, if it's up-to-date or not and if the connection between your server and Project Honey Pot is OK.

There is actually a complicated way to test it, but I wouldn't recommend you to try it unless you know a lot about computers:

- Log off from your forum (so it doesn't recognize you as admin and the mod treats you as any other visitor).

- Go to Project Honey Pot and look for a very bad IP (one from a spammer with a high Threat Level).

- Change the IP of your modem/router or tweak your browser so it shows that IP as yours.

- Visit now your forum and check if the mod stops you.

I have used that method a few times when I need to do changes in the mod and need to see if they work as expected, but as I said before I wouldn't recommend anybody to use it unless they know very well what they are doing.  ;D

One question, my email ends in 'co.uk', not 'com' so I presume I simply enter 'co.uk' into the third field for the Admin email address and it will work the same?

Yes.

You can check if the result is OK using the links in Admin => mod httpBL => Settings => Warning Page Settings to see how your "warning" page looks like.
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 10:36:12 AM
Great, warning page looks fine.

Many thanks for the Mod and your reply :)
Title: Re: httpBL
Post by: snoopy_virtual on April 18, 2011, 10:44:54 AM
You're welcome.  ;)
Title: Re: httpBL
Post by: cyberdyne on April 18, 2011, 12:08:37 PM
You're welcome.  ;)

Just to confirm, it is working:

(https://www.simplemachines.org/community/proxy.php?request=http%3A%2F%2Fimg852.imageshack.us%2Fimg852%2F2382%2Funled1jr.jpg&hash=a3b89bc779979897884bfa0681f91b61)

Thanks again
Title: Re: httpBL
Post by: sharingsunshine on April 20, 2011, 03:34:25 PM
Hello,

I had httpBL working on a 1.1.12 install and after using the package manager to upgrade to 1.1.13 it has gone away.  Before I did the upgrade all files showed no problems.  I have checked the error log and nothing is showing up.

The link to the package on the navigation bar under the Members section has disappeared.

Please advise,

Thanks

Randal

Title: Re: httpBL
Post by: cyberdyne on April 20, 2011, 03:56:36 PM
Hello,

I had httpBL working on a 1.1.12 install and after using the package manager to upgrade to 1.1.13 it has gone away.  Before I did the upgrade all files showed no problems.  I have checked the error log and nothing is showing up.

The link to the package on the navigation bar under the Members section has disappeared.

Please advise,

Thanks

Randal

I'm pretty sure the upgrade process would have replaced all the files with their un-modded versions, therefore, you need to reinstall the mod.
Title: Re: httpBL
Post by: Wizzlefits on April 20, 2011, 04:52:21 PM
You always want to un-install any mods before upgrading. As you've seen, it will kill a lot of stuff. lol
Download the latest version & install, should be good to go then.
Title: Re: httpBL
Post by: sharingsunshine on April 20, 2011, 05:16:14 PM
Thanks for the help.  That did the trick!
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 10:40:26 AM
Hi again.
I'd like to edit the log pages so that I can use an API I have which will look up the listed IP addresses externally upon clicking them - as opposed to simply using the internal 'trackip' function.

Could you please tell me which files to edit in order to insert my custom URL so that this will work?

If this is a lot of editing, just pointers on what change in the spammers log would be helpful.

Many thanks in advance.

Edit:
I found the following in httpBL.template.php

Code: [Select]
// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a>';
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:04:51 PM
That's exactly the point you need to edit if you want that link to go to another place.

As you can see the link just now takes you to:

Code: [Select]
href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"

Where $scripturl is the URL of your index.php in your forum and $log['ip'] is the IP of that particular spammer.

If you tell me where you want the link to go I can tell you how to modify it, but if you know a little of PHP I suppose you can figure it out yourself.
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:08:24 PM
Great, although I wasn't sure whether to create a new entry in my language file and use perhaps, eg: $scripturl2 due to the problems using // causes or to try and simply enter the url into the script directly. Which would be best?

The url is:
Code: [Select]
http://api.ip-adress.com/?u=abcd=<ip address>
Many thanks
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:14:57 PM
If that's the URL you want, just change those 2 lines in httpBL.template.php to:

Code: [Select]
// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="http://api.ip-adress.com/?u=abcd='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a>';


Are you sure that URL is written properly?
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:18:43 PM
Works perfectly.

Many thanks for your help.  ;D
Title: Re: httpBL
Post by: snoopy_virtual on April 26, 2011, 01:25:09 PM
You are welcome.

I have been thinking you can even leave both links if you want like this:

Code: [Select]
// Build the links for the IP and username
$link_ip = $log['ip'] == '' ? $txt['httpBL_unknown'] : '<a href="'. $scripturl. '?action=trackip;searchip='. $log['ip']. '"><strong>'. $log['ip']. '</strong></a> - <a href="http://api.ip-adress.com/?u=abcd='. $log['ip']. '"><strong>Ext-API</strong></a>';

This way you would have the chance to check every IP in 2 places.  ;)
Title: Re: httpBL
Post by: cyberdyne on April 26, 2011, 01:31:46 PM
Even better. Much obliged :)
Title: Re: httpBL
Post by: gizmo71 on May 04, 2011, 04:12:40 AM
Got an error I've never seen before in my error log this morning - looks like there's a teeny weeny buglette in the way httpBL_look_for_empty_ip() is called in one specific and very rare case. The error is:
Quote
2: Missing argument 1 for httpBL_look_for_empty_ip(), called in .../smf/Sources/httpBL_Subs.php on line 680 and defined
File: .../smf/Sources/httpBL_Subs.php
Line: 517

There are two obvious and simple solutions; firstly, make the function have a default value for its parameter, e.g. change line 517 to
Quote
function httpBL_look_for_empty_ip($ip = '')
or pass an empty string when calling it from line 680, e.g.
Quote
$ip = httpBL_look_for_empty_ip('');

I think I've seen one instance of this in the last 3 months so it's obviously a very unusual set of circumstances. ;D
Title: Re: httpBL
Post by: snoopy_virtual on May 06, 2011, 06:35:30 AM
Sorry, I should have sorted that mistake ages ago.

Any of the solutions you suggest will work, or the solution I suggested some time ago (don't remember exactly where) when somebody else reported that bug before:

In /Sources/httpBL_Subs.php change line 680:

Code: [Select]
$ip = httpBL_look_for_empty_ip();

for this another one:

Code: [Select]
$ip = httpBL_look_for_empty_ip($ip);
Title: Re: httpBL
Post by: gizmo71 on May 08, 2011, 04:27:10 AM
Any of the solutions you suggest will work, or the solution I suggested some time ago (don't remember exactly where) when somebody else reported that bug before:

Ah, yes, that's much better, thanks Snoopy, I've rolled that into my forum for now. :)
Title: Re: httpBL
Post by: HaCCaBi on May 10, 2011, 04:31:17 PM
For Turkish...

Modifications.turkish.php
Code: [Select]
$txt['httpBL_honeyPot_link_error'] = 'Hatalı honeyPot bağlantısı. MOD\'unuzun httpBL ayarlarını kontrol edin.';
$txt['httpBL_honeyPot_key_error'] = 'Hatalı http:BL API key\'i. OD\'unuzun httpBL ayarlarını kontrol edin.';
$txt['httpBL_title'] = 'MOD httpBL';
$txt['httpBL_description'] = 'MOD httpBL foruma giren her ziyaretçinin IP\'sini projectshoneypot\'un veritabanında kayıtlı mı diye kontrol eder. Eğer IP kaydına veritabanındarastlarsa MOD bu kullanıcıyı direk warning.php dosyasına yönlendirerek foruma girişine engel olur. <br />Burada Mod\'u açıp kapatabilir bazı özelliklerini düzenleyebilirsiniz.';
$txt['httpBL_config'] = 'MOD httpBL ayarları';
$txt['httpBL_enable'] = 'Aç/Kapat MOD httpBL';
$txt['httpBL_enable_bad_API_key'] = 'Yazdığınız API key hatalıdır. Lütfen dikkatlice kontrol edip tekrar deneyiniz.';
$txt['httpBL_honeyPot_link'] = 'Honey Pot\'unuza link verin';
$txt['httpBL_honeyPot_link_sub'] = 'Eğer MOD httpBL\'yi kullanabilmek için Honey Pot\'un sunucunuzda kurulu olması gerekmektedir. Eğer henüz edinmediyseniz project honey pot sayfasına gidip <a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>
gerekli kurulum dosyalarını edinmelisiniz. Daha sonra buraya edindiğiniz Honey Pot dosyasının bağlantısını yazınız.
Şöyle birşey olmalı:<br /><b>http://www.siteniz.com/honeypotunuz.php</b>';
$txt['httpBL_honeyPot_key'] = 'Honey Put\'unuzun http:BL API key\'i';
$txt['httpBL_honeyPot_key_sub'] = 'Eğer MOD httpBL\'yi kullanmak istiyorsanız bir tane de
http:BL API key\'i Project Honey Pot websitesinden edinmiş olmanız gerekmektedir. Eğer henüz edinmediyseniz Project Honey Pot\'un websitesine gidip
<a href="http://www.projecthoneypot.org/?rf=62759" target="_blank">www.projecthoneypot.org</a>
bir tane edinmek için kayıt olmalı ve buraya yazmalısınız. Not olarak: öncelikle Honey Pot kurulumunu gerçekleştirmediyseniz size http:BL API key\'i verilmeyecektir. Dolayısıyla öncelikle Honey Pot kurulumunu gerçekleştirmeniz gerekmektedir.';
$txt['httpBL_honeyPot_word'] = 'Honey Pot dosyasına vermek istediğiniz bağlantı';
$txt['httpBL_honeyPot_word_sub'] = 'Bu sadece spamcılara gözükecek olan bir kelimedir. Spamcıların üzerine tıklayabileceği ilgi çekici herhangi birşeyler yazabilirsiniz. Eğer yazacak birşeyler bulamıyorsanız boş bırakabilirsiniz. Mod sizin için bu işi yapacaktır.';
$txt['httpBL_info_email_1'] = 'Email\'inizin ilk kelimesi';
$txt['httpBL_info_email_2'] = 'Email\'inizin ikinci kelimesi';
$txt['httpBL_info_email_3'] = 'Email\'inizin üçüncü kelimesi';
$txt['httpBL_info_email_sub'] = 'Mod\'un herhangi şüpheli bir durumla karşılaştığında bir robotmu insanmı olduğunu algılayabilmesi için warning.php sayfasında email adresi soracaktır. Email adreslerini robotların algılayamayacağı 3 kelimeye ayırdık. Örneğin Eğer email adresiniz <b>info@benimsitem.com</b> ise, ilk kelime <b>info</b>, ikincisi <b>benimsitem</b> ve üçüncüsü de  <b>com</b> olacaktır.';
$txt['httpBL_enable_bad_email'] = 'Yazdığınız Email adresini kontrol edin.
3 kelimeden herhangi birtanesini boş bırakamazsınız.';
$txt[