/includes/ip_handling_include.php

https://github.com/necrophcodr/Muks · PHP · 72 lines · 49 code · 2 blank · 21 comment · 7 complexity · 1f1ebbe6db0b5dfa470a6bcdaae65872 MD5 · raw file 

    

  1. <?php
    2. 

  2. /*-------------------------------------------------------+
    3. 

  3. | PHP-Fusion Content Management System
    4. 

  4. | Copyright (C) 2002 - 2011 Nick Jones
    5. 

  5. | http://www.php-fusion.co.uk/
    6. 

  6. +--------------------------------------------------------+
    7. 

  7. | Filename: ip_handling_include.php
    8. 

  8. | Author: Karoly Nagy (Korcsii)
    9. 

  9. +--------------------------------------------------------+
    10. 

  10. | This program is released as free software under the
    11. 

  11. | Affero GPL license. You can redistribute it and/or
    12. 

  12. | modify it under the terms of this license which you
    13. 

  13. | can read by viewing the included agpl.txt or online
    14. 

  14. | at www.gnu.org/licenses/agpl.html. Removal of this
    15. 

  15. | copyright header is strictly prohibited without
    16. 

  16. | written permission from the original author(s).
    17. 

  17. +--------------------------------------------------------*/
    18. 

  18. if (!defined("IN_FUSION")) { die("Access Denied"); }
    19. 

  19. 

  20. // Uncompress an IPv6 address
    21. 

  21. function uncompressIPv6($ip, $count=7) {
    22. 

  22. 	if (strpos($ip, "::") !== FALSE) {
    23. 

  23. 		$ip = str_replace("::", str_repeat(":", $count + 2 - substr_count($ip, ":")), $ip);
    24. 

  24. 	}
    25. 

  25. 	$tmp_ip = explode(":", $ip);
    26. 

  26. 	foreach ($tmp_ip as &$value) {
    27. 

  27. 		$value = str_pad($value, 4, '0', STR_PAD_LEFT);	
    28. 

  28. 	}
    29. 

  29. 	return implode(":", $tmp_ip);
    30. 

  30. }
    31. 

  31. 

  32. // Check if users full or partial ip is blacklisted and set USER_IP and USER_IP_TYPE
    33. 

  33. if (strpos(FUSION_IP, ".")) {
    34. 

  34. 	if (strpos(FUSION_IP, ":") === FALSE) {
    35. 

  35. 		// IPv4
    36. 

  36. 		define("USER_IP_TYPE", 4);
    37. 

  37. 		define("USER_IP", FUSION_IP);
    38. 

  38. 		$check_value = "blacklist_ip_type='4' AND blacklist_ip REGEXP '^";
    39. 

  39. 		$check_value .= str_replace(".", ".(", USER_IP, $i);
    40. 

  40. 		$check_value .= str_repeat(")?", $i);
    41. 

  41. 		$check_value .= "$'";
    42. 

  42. 	} else {
    43. 

  43. 		// Mixed IPv4 and IPv6
    44. 

  44. 		define("USER_IP_TYPE", 5);
    45. 

  45. 		$last_pos = strrpos(FUSION_IP, ":");
    46. 

  46. 		$ipv4 = substr(FUSION_IP, $last_pos+1);
    47. 

  47. 		$ipv6 = substr(FUSION_IP, 0, $last_pos);
    48. 

  48. 		$ipv6 = uncompressIPv6($ipv6, 5);
    49. 

  49. 		define("USER_IP", $ipv6.":".$ipv4);
    50. 

  50. 		$check_value = "(blacklist_ip_type='4' AND blacklist_ip REGEXP '^";
    51. 

  51. 		$check_value .= str_replace(".", ".(", $ipv4, $i);
    52. 

  52. 		$check_value .= str_repeat(")?", $i);
    53. 

  53. 		$check_value .= "$') OR (blacklist_ip_type='6' AND blacklist_ip REGEXP '^";
    54. 

  54. 		$check_value .= str_replace(":", ":(", $ipv6, $i);
    55. 

  55. 		$check_value .= str_repeat(")?", $i);
    56. 

  56. 		$check_value .= "$') OR (blacklist_ip_type='5' AND blacklist_ip='".USER_IP."')";
    57. 

  57. 		unset($ipv4, $ipv6, $last_pos);
    58. 

  58. 	}
    59. 

  59. } else {
    60. 

  60. 	// IPv6
    61. 

  61. 	define("USER_IP_TYPE", 6);
    62. 

  62. 	define("USER_IP", uncompressIPv6(FUSION_IP, 7));
    63. 

  63. 	$check_value = "blacklist_ip_type='6' AND blacklist_ip REGEXP '^";
    64. 

  64. 	$check_value .= str_replace(":", ":(", USER_IP, $i);
    65. 

  65. 	$check_value .= str_repeat(")?", $i);
    66. 

  66. 	$check_value .= "$'";
    67. 

  67. }
    68. 

  68. if (dbcount("(blacklist_id)", DB_BLACKLIST, $check_value)) {
    69. 

  69. 	redirect("http://www.google.com/");
    70. 

  70. }
    71. 

  71. unset($check_value);
    72. 

  72. ?>
    73.