Sory I have english bad.

This mod for spam and flood

Updated for other php files.

Open index.php or anywhere php page (ex: showthread.php)

at top find

<?php

/*================================================= =====================*\
|| ################################################## ################## ||
|| # vBulletin 3.6.8 - Licence Number


Add Below

<?php


$dd1 = $_COOKIE["spambak"];
$dd2 = $_COOKIE["spambakx"];
$value1 = '1';
$value7 = '1200';
$adresxx = $_SERVER['PHP_SELF'];
//cookie check

setcookie("spambak3", "ok", time()+6000); /* expire in 1 hour */
if ($_COOKIE["spambak3"] == "ok"):
else:
setcookie("adres", $adresxx, time()+60);
header("Location: check.php");
exit;
endif;

if ($_COOKIE["spambak"] >= "60"):

setcookie("spambak", $value7, time()+555560); /* expire in 1 hour */
setcookie("spambakx", "ok", time()+555560); /* expire in 1 hour */
header("Location: http://www.asdğğğğğkfasdfjkashfjashfjashdf.com");
exit;
endif;

if ($_COOKIE["spambakx"] == "ok"):
$value2 = $dd1+1;
setcookie("spambak", $value2, time()+60); /* expire in 1 hour */


else:
setcookie("spambak", $value1, time()+60); /* expire in 1 hour */
setcookie("spambakx", "ok", time()+60); /* expire in 1 hour */

endif;

/*================================================= =====================*\
|| ################################################## ################## ||
|| # vBulletin 3.6.8 - Licence Number



---------------------------------
Upload forum folder
check.php
nocookie.php

Enjoy Good Working

hummmmmm ..! how dose it work dud ?

what do u mean abut flood and spam ?

how dose this issue effact on my index.php ????

thanx any way ..

Test ; Please click http://www.ailemiz.biz/test.php
Please page refresh 60 time in 1 minute
And block

This mod for DDOS attack

So if you have a forum with more than 61 members searching / posting, the 61st member is going to see an error message ?

So if you have a forum with more than 61 members searching / posting, the 61st member is going to see an error message ?

No, error message for only one member.
if one member or ddos program 60st refresh page in 60 seconds and error page writing only one member

No, error message for only one member.
if one member or ddos program 60st refresh page in 60 seconds and error page writing only one member
this affects only index.php, hovewer, when e.g. some thread (showthread.php) will be ddosed, this mod will not help.

Well, usually people only attack the index file...but can't you do this with your server config files?

this affects only index.php, hovewer, when e.g. some thread (showthread.php) will be ddosed, this mod will not help.

Open index.php or anywhere php page (ex: showthread.php)

at top find

<?php

add below code

$dd1 = $_COOKIE["spambak"];
$dd2 = $_COOKIE["spambakx"];
$value1 = '1';
$value7 = '1200';
$adresxx = $_SERVER['PHP_SELF'];
//cookie check

setcookie("spambak3", "ok", time()+6000); /* expire in 1 hour */
if ($_COOKIE["spambak3"] == "ok"):
else:
setcookie("adres", $adresxx, time()+60);
header("Location: check.php");
exit;
endif;

if ($_COOKIE["spambak"] >= "60"):

setcookie("spambak", $value7, time()+555560); /* expire in 1 hour */
setcookie("spambakx", "ok", time()+555560); /* expire in 1 hour */
header("Location: http://www.asdğğğğğkfasdfjkashfjashfjashdf.com");
exit;
endif;

if ($_COOKIE["spambakx"] == "ok"):
$value2 = $dd1+1;
setcookie("spambak", $value2, time()+60); /* expire in 1 hour */


else:
setcookie("spambak", $value1, time()+60); /* expire in 1 hour */
setcookie("spambakx", "ok", time()+60); /* expire in 1 hour */

endif;

Well, usually people only attack the index file...but can't you do this with your server config files?

config files dont working ddos or flod attack.
Because dont working

Test : http://www.ailemiz.biz/forum/includes/config.php
Dont working.

Attack only index.php, showthread.php and ex.

config files dont working ddos or flod attack.
Because dont working

Test : http://www.ailemiz.biz/forum/includes/config.php
Dont working.

Attack only index.php, showthread.php and ex.
You misunderstood, I said server config files, not vbulletin config.php.

You misunderstood, I said server config files, not vbulletin config.php.

Sorry. No this mod working for whoewer php files.

I pressed refresh non stop for 2 minutes on that site, and didnt get blocked. not working.

I even opened over 100 pages in tabs, and still not blocked. not working sorry.

I pressed refresh non stop for 2 minutes on that site, and didnt get blocked. not working.

I even opened over 100 pages in tabs, and still not blocked. not working sorry.

No 2 minute block.
Only 61 refresh in 1 minute working.

or automatic reset and again number 1.

It block me i refreshed 61 times and it blocked me!!!

It block me i refreshed 61 times and it blocked me!!!


This mod for attack
Please clear cookies in explorer or mozilla

what id the person is not signed up and not a member. how will it block them then?

Regardless of the person not being signed up, it sets a cookie on their computer


The problem with this is if cookies are disabled ;)

what shall i put here - header("Location: http://www.asdğğğğğkfasdfjkashfjashfjashdf.com");

my problem is last night - i have 1006 guest from - 70.87.15.10 That IP::

and they load every page.. if i use that code it will be ok?

what shall i put here - header("Location: http://www.asdğğğğğkfasdfjkashfjashfjashdf.com");

my problem is last night - i have 1006 guest from - 70.87.15.10 That IP::

and they load every page.. if i use that code it will be ok?


Change this adres example : http://www.yoursite.com/banned.htm ;)

If you are seriously being ddossed or any real attack, nothing you can do on the software level will help. All of such attacks need to be fought on the hardware/network level.

FYI - this mod causes a problem for any people trying to access your site using a proxy

I agree, you need the prevention from the hardware level.

It's the requests to the server that bring the server down, not the success or failure of a page.

When you have 1000's of drone pc's requesting info from your server every second, software follies like this wont cut it.

Dear
only edit index.php and showthread.php ?

dear

I should Change this adress

header("Location: http://www.asdğğğğğkfasdfjkashfjashfjashdf.com");

to my domain ?

thanks

He shows in the Opera http://www.asdğğğğğkfasdfjkashfjashfjashdf.com and not the forum

Is this the bug ?

This is http://www.asdğğğğğkfasdfjkashfjashfjashdf.com ddoser redirect page,
u can change it to any address, when ddos attak will be redirected )))

ِDears

my site users say they when go to site index see Please Open Browser Cookies " message

They couldn't go to mydomain.com/forum/index.php

It's very bad !!!!

why ?

This might help for a amatuer DOS attack, very unlikely on a DDOS.

Also those who try to attack a server generally do not allow for cookies (often not even a real browser or just a basic client on machine in a botnet).

Mr. Marco van Herwaarden

Is there a Anti Flood for VB ?

my site has been attack 2 days ?

what is SOLUTION ?

Mr. Marco van Herwaarden

Is there a Anti Flood for VB ?

my site has been attack 2 days ?

what is SOLUTION ?
To contact your webhost and let them know you're under attack.

Thank you for releasing this.

Can I use this code for vbb 3.7?

This wont work ddosers does not save cookies

correct me if i'm wrong

This wont work ddosers does not save cookies

correct me if i'm wrong
Correct;)

this working for me thank you very much ..... this save olso cookies. working perfeckt...