PageRenderTime 33ms CodeModel.GetById 6ms RepoModel.GetById 0ms app.codeStats 0ms

/dada/DADA/perllib/WWW/StopForumSpam.pm

http://github.com/justingit/dada-mail
Perl | 309 lines | 229 code | 68 blank | 12 comment | 33 complexity | 00daceec118973b511aaefc17488dad8 MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. package WWW::StopForumSpam;
    2. 

  2. 

  3. use 5.010;
    4. 

  4. use strict;
    5. 

  5. use warnings;
    6. 

  6. use autodie;
    7. 

  7. use Carp qw(croak);
    8. 

  8. use URI::Escape;
    9. 

  9. use Digest::MD5 qw(md5_hex);
    10. 

  10. use Socket;
    11. 

  11. use WWW::Curl::Easy;
    12. 

  12. use JSON qw(decode_json);
    13. 

  13. 

  14. our $VERSION = '0.02';
    15. 

  15. 

  16. sub new {
    17. 

  17.     my $class = shift;
    18. 

  18.     my $self = bless({}, $class);
    19. 

  19. 

  20.     # parse params
    21. 

  21.     while(@_) {
    22. 

  22.         my $attr = shift;
    23. 

  23.         my $value = shift;
    24. 

  24.         
    25. 

  25.         if($attr eq "timeout") {
    26. 

  26.             $self->{timeout} = 0 + $value;
    27. 

  27.         } elsif($attr eq "api_key") {
    28. 

  28.             $self->{api_key} = "$value";
    29. 

  29.         } elsif($attr eq "api_url") {
    30. 

  30.             $self->{api_url} = "$value";
    31. 

  31.         } elsif($attr eq "dnsbl") {
    32. 

  32.             $self->{dnsbl} = "$value";
    33. 

  33.         } elsif($attr eq "treshold") {
    34. 

  34.             $self->{treshold} = 0 + $value;
    35. 

  35.         }
    36. 

  36.     }
    37. 

  37.     
    38. 

  38.     # validate / set defaults
    39. 

  39.     $self->{api_url} = "http://www.stopforumspam.com/api" unless exists $self->{api_url};
    40. 

  40.     $self->{dnsbl} = "sfs.dnsbl.st." unless exists $self->{dnsbl};
    41. 

  41.     $self->{timeout} = 4 unless exists $self->{timeout};
    42. 

  42.     $self->{connect_timeout} = $self->_ceil($self->{timeout} / 2);
    43. 

  43.     $self->{treshold} = 65 unless exists $self->{treshold};
    44. 

  44.     return $self;
    45. 

  45. }
    46. 

  46. 

  47. sub check {
    48. 

  48.     my $self = shift;
    49. 

  49.     my @request_params = ();
    50. 

  50.      
    51. 

  51.     while(@_) {
    52. 

  52.         my $attr = shift;
    53. 

  53.         my $value = shift;
    54. 

  54.         
    55. 

  55.         if ($attr eq "ip" or $attr eq "email" or $attr eq "username") {
    56. 

  56.             push(@request_params, $attr . "=" . uri_escape($value));
    57. 

  57.         }
    58. 

  58.     }
    59. 

  59.     
    60. 

  60.     # add default params
    61. 

  61.     push(@request_params, "f=json");
    62. 

  62.     
    63. 

  63.     my ($http_code, $buffer) = $self->_query_api(join("&", @request_params));
    64. 

  64.     
    65. 

  65.     # if the api is not working, we don't want to allow potential spammers
    66. 

  66.     # signing up, so rather force the developers to check their logs...
    67. 

  67.     if (not defined $buffer) {
    68. 

  68.         return 1;
    69. 

  69.     }
    70. 

  70.     
    71. 

  71.     my $decoded_json = decode_json($buffer);
    72. 

  72.     if(not defined $decoded_json->{'success'}) {
    73. 

  73.         warn "unable to read json";
    74. 

  74.         return 1;
    75. 

  75.     } elsif($decoded_json->{'success'} == 0) {
    76. 

  76.         warn $decoded_json->{'error'};
    77. 

  77.         return 1;
    78. 

  78.     }
    79. 

  79.     
    80. 

  80.     if($self->_get_avg_confidence($decoded_json) > $self->{treshold}) {
    81. 

  81.         return 1;
    82. 

  82.     }
    83. 

  83.     
    84. 

  84.     return 0;
    85. 

  85. }
    86. 

  86. 

  87. sub dns_check {
    88. 

  88.     my $self = shift;
    89. 

  89.     
    90. 

  90.     my $packed_ip;
    91. 

  91.     my $ip_address;
    92. 

  92.     
    93. 

  93.     while(@_) {
    94. 

  94.         my $attr = shift;
    95. 

  95.         my $value = shift;
    96. 

  96.         
    97. 

  97.         if ($attr eq "ip") {
    98. 

  98.             $packed_ip = gethostbyname(join('.', reverse split(/\./, $value)) . "." . $self->{dnsbl});
    99. 

  99.             if (not defined $packed_ip) {
    100. 

  100.                 next;
    101. 

  101.             }
    102. 

  102.             
    103. 

  103.             $ip_address = inet_ntoa($packed_ip);
    104. 

  104.             if ($ip_address eq "127.0.0.2") {
    105. 

  105.                 return 1;
    106. 

  106.             }
    107. 

  107.             
    108. 

  108.         } elsif ($attr eq "email") {
    109. 

  109.             $packed_ip = gethostbyname(md5_hex($value) . "." . $self->{dnsbl});
    110. 

  110.             if (not defined $packed_ip) {
    111. 

  111.                 next;
    112. 

  112.             }
    113. 

  113.             
    114. 

  114.             $ip_address = inet_ntoa($packed_ip);
    115. 

  115.             if ($ip_address eq "127.0.0.3") {
    116. 

  116.                 return 1;
    117. 

  117.             }
    118. 

  118.         }
    119. 

  119.     }
    120. 

  120.     
    121. 

  121.     return 0;
    122. 

  122. }
    123. 

  123. 

  124. sub report {
    125. 

  125.     my $self = shift;
    126. 

  126.     my @request_params = ();
    127. 

  127.     
    128. 

  128.     if(not defined $self->{api_key}) {
    129. 

  129.         croak "apikey required.";
    130. 

  130.     }
    131. 

  131.     
    132. 

  132.     while(@_) {
    133. 

  133.         my $attr = shift;
    134. 

  134.         my $value = shift;
    135. 

  135.         
    136. 

  136.         if ($attr eq "username" or $attr eq "ip_addr" or $attr eq "evidence" or $attr eq "email") {
    137. 

  137.             if (length($value) > 0) {
    138. 

  138.                 push(@request_params, $attr . "=" . uri_escape($value));
    139. 

  139.             }
    140. 

  140.         }
    141. 

  141.     }
    142. 

  142.     
    143. 

  143.     # add default params
    144. 

  144.     push(@request_params, "api_key=" . $self->{api_key});
    145. 

  145.     
    146. 

  146.     my ($http_code, $buffer) = $self->_query_api(join("&", @request_params), 1);
    147. 

  147.     
    148. 

  148.     if (not defined $buffer) {
    149. 

  149.         return 0;
    150. 

  150.     }
    151. 

  151.     
    152. 

  152.     if ($http_code == 200) {
    153. 

  153.         return 1;
    154. 

  154.     } else {
    155. 

  155.         warn $self->_strip_tags($buffer);
    156. 

  156.         return 0;
    157. 

  157.     }
    158. 

  158. }
    159. 

  159. 

  160. sub _query_api {
    161. 

  161.     my ($self, $data, $is_submit) = @_;
    162. 

  162.     
    163. 

  163.     if (not defined $is_submit) {
    164. 

  164.         $is_submit = 0;
    165. 

  165.     }
    166. 

  166.     
    167. 

  167.     my $buffer = "";
    168. 

  168.     my $curl = WWW::Curl::Easy->new();
    169. 

  169.     
    170. 

  170.     if ($is_submit) {
    171. 

  171.         $curl->setopt(CURLOPT_URL, "http://www.stopforumspam.com/add.php");
    172. 

  172.         $curl->setopt(CURLOPT_POST, 1);
    173. 

  173.         $curl->setopt(CURLOPT_POSTFIELDS, $data);
    174. 

  174.     } else {
    175. 

  175.         $curl->setopt(CURLOPT_URL, $self->{api_url} . "?" . $data);
    176. 

  176.     }
    177. 

  177.     
    178. 

  178.     $curl->setopt(CURLOPT_USERAGENT, "Mozilla/5.0 (compatible; WWW::StopForumSpam/0.1; +http://www.perlhipster.com/bot.html)");
    179. 

  179.     $curl->setopt(CURLOPT_ENCODING, "");
    180. 

  180.     $curl->setopt(CURLOPT_NOPROGRESS, 1);
    181. 

  181.     $curl->setopt(CURLOPT_FAILONERROR, 0);
    182. 

  182.     $curl->setopt(CURLOPT_TIMEOUT, $self->{timeout});
    183. 

  183.     $curl->setopt(CURLOPT_WRITEFUNCTION, sub {
    184. 

  184.         $buffer .= $_[0];
    185. 

  185.         return length($_[0]);
    186. 

  186.     });
    187. 

  187.     
    188. 

  188.     my $retcode = $curl->perform();
    189. 

  189.     
    190. 

  190.     if($retcode != 0) {
    191. 

  191.         warn $curl->errbuf;
    192. 

  192.         return;
    193. 

  193.     }
    194. 

  194.     
    195. 

  195.     return ($curl->getinfo(CURLINFO_HTTP_CODE), $buffer);
    196. 

  196. }
    197. 

  197. 

  198. sub _get_avg_confidence {
    199. 

  199.     my ($self, $decoded_json) = @_;
    200. 

  200.     my $confidence_total = 0;
    201. 

  201.     my $confidence_num = 0;
    202. 

  202.     
    203. 

  203.     if(defined $decoded_json->{'username'}) {
    204. 

  204.         if (defined $decoded_json->{'username'}{'confidence'}) {
    205. 

  205.             $confidence_total += $decoded_json->{'username'}{'confidence'};
    206. 

  206.         }
    207. 

  207.         $confidence_num++;
    208. 

  208.     }
    209. 

  209.     if(defined $decoded_json->{'email'}) {
    210. 

  210.         if (defined $decoded_json->{'email'}{'confidence'}) {
    211. 

  211.             $confidence_total += $decoded_json->{'email'}{'confidence'};
    212. 

  212.         }
    213. 

  213.         $confidence_num++;
    214. 

  214.     }
    215. 

  215.     if(defined $decoded_json->{'ip'}) {
    216. 

  216.         if (defined $decoded_json->{'ip'}{'confidence'}) {
    217. 

  217.             $confidence_total += $decoded_json->{'ip'}{'confidence'};
    218. 

  218.         }
    219. 

  219.         $confidence_num++;
    220. 

  220.     }
    221. 

  221.     
    222. 

  222.     return $confidence_total / $confidence_num;
    223. 

  223. }
    224. 

  224. 

  225. sub _ceil {
    226. 

  226.     my ($self, $num) = @_;
    227. 

  227.     return int($num) + ($num > int($num));
    228. 

  228. }
    229. 

  229. 

  230. sub _strip_tags {
    231. 

  231.     my ($self, $string) = @_;
    232. 

  232.     while ($string =~ s/<\S[^<>]*(?:>|$)//gs) {};
    233. 

  233.     return $string;
    234. 

  234. }
    235. 

  235. 

  236. 1;
    237. 

  237. __END__
    238. 

  238. 

  239. =encoding utf8
    240. 

  240. 

  241. =head1 NAME
    242. 

  242. 

  243. WWW::StopForumSpam - Perl extension for the StopForumSpam.com API
    244. 

  244. 

  245. =head1 DESCRIPTION
    246. 

  246. 

  247. StopForumSpam is a Anti Spam Database for free usage. Even though aimed towards
    248. 

  248. preventing registration of spambots on a forum, this extension can be used for
    249. 

  249. any type of website (e.g. blog) as well.
    250. 

  250. 

  251. An API key is only needed for reporting a new case of spam registration.
    252. 

  252. 

  253. =head1 SYNOPSIS
    254. 

  254. 

  255.     use WWW::StopForumSpam;
    256. 

  256. 

  257.     my $sfs = WWW::StopForumSpam->new(
    258. 

  258.         api_key => "",                  # optional
    259. 

  259.         timeout => 4,                   # cURL timeout in seconds, defaults to 4
    260. 

  260.         treshold => 65,                 # defaults to 65
    261. 

  261.     );
    262. 

  262.     
    263. 

  263.     # Returns 1 if spammer (caution: it will return 1 also on errors, this is to
    264. 

  264.     # prevent mass spam registration due to services not working properly, you 
    265. 

  265.     # should therefor always check logs)
    266. 

  266.     $sfs->check(
    267. 

  267.         ip => "127.0.0.1",              # optional, recommended
    268. 

  268.         email => "test\@test.com",      # optional, recommended
    269. 

  269.         username => "Foobar",           # optional, not recommended
    270. 

  270.     );
    271. 

  271.     
    272. 

  272.     # Alternative api call via DNSBL. Does not support usernames.
    273. 

  273.     # Unlike check() this will NOT return 1 on server fail. 
    274. 

  274.     $sfs->dns_check(
    275. 

  275.         ip => "127.0.0.1",
    276. 

  276.         email => "test\@test.com",
    277. 

  277.     );
    278. 

  278.     
    279. 

  279.     # Requires the setting of "api_key" in the constructor
    280. 

  280.     $sfs->report(
    281. 

  281.         username => "Foobar",           # required
    282. 

  282.         ip_addr => "127.0.0.1",         # required
    283. 

  283.         evidence => "",                 # optional (for example the forum-post)
    284. 

  284.         email => "test\@test.com",      # required
    285. 

  285.     );
    286. 

  286. );
    287. 

  287. 

  288. =head1 SEE ALSO
    289. 

  289. 

  290. API keys and more detail on StopForumSpam are available at L<http://www.stopforumspam.com>.
    291. 

  291. 

  292. Github: L<https://github.com/lifeofguenter/p5-stopforumspam>
    293. 

  293. 

  294. Website: L<http://www.perlhipster.com/p5-stopforumspam>
    295. 

  295. 

  296. DNSBL: L<http://sfs.dnsbl.st>
    297. 

  297. 

  298. =head1 AUTHOR
    299. 

  299. 

  300. Günter Grodotzki, E<lt>guenter@perlhipster.comE<gt>
    301. 

  301. 

  302. =head1 COPYRIGHT AND LICENSE
    303. 

  303. 

  304. Copyright (C) 2014 by Günter Grodotzki
    305. 

  305. 

  306. This module is free software; you can redistribute it and/or
    307. 

  307. modify it under the same terms as Perl itself. See L<perlartistic>.
    308. 

  308. 

  309. =cut
    310. 

  310.