vb.org Archive - DNSBL/Open Proxy-Blocking

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vBulletin 3.5 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=113)

- - DNSBL/Open Proxy-Blocking (https://vborg.vbsupport.ru/showthread.php?t=96318)

I just installed this on my forum and it blocked me. I'm using Optimum Online at home and a leased line from VERIO at work. No clue why both are blocked as proxies. Any thoughts?

Quote:

Originally Posted by pzykotic

I just installed this on my forum and it blocked me. I'm using Optimum Online at home and a leased line from VERIO at work. No clue why both are blocked as proxies. Any thoughts?

If you can't log in to your forum, enter

define(DISABLE_HOOKS, 1);

to your config.php so you can disable the blocker while you're investigating...

Then check www.tornevall.net/cgi-bin/ip.cgi if that page says where you might be blacklisted (I just wrote a FAQ about the blacklist part).

You can also add your ip into the configuration under "Exclude from monitor". Then it won't block you.

It looks like there's a few problems with proxyblocking on admins. I'll take a look on some solutions on this. Maybe a function for "only look for logged in" users, so you have a chance to login before getting blocked. :)

My techy's response...

Quote:

Originally Posted by cl_out

https://vborg.vbsupport.ru/external/2006/09/2.gif

Checking on logging in only wouldn't be good enough, especially if you tell your browser to "remember" to be logged in via cookies - you could even log in normally, then hop over to a proxy :p Checking whenever the user isn't a guest is good :p Of course, an option to only check when the user tries to post/PM/other database-changing function might be better than for every page request, but that's not important at the moment :p

I can always find out the answer to the error message question I asked by myself if we implement it, having access to multiple IP addresses simultaneously to post from :p I suppose the logging bit isn't that important right now either since I now noticed it says it caches IPs for a few hours, since we can then use an SQL query instead on the cache table, though it would be nice if with the IP it stored the username that attempted to connect from it in there as well :p

Quote:

Originally Posted by Loony BoB

My techy's response...

Quote:

tell your browser to "remember" to be logged in via cookies - you could even log in normally, then hop over to a proxy

How about something like this?

Let's say someone is logging into a forum in the normal way. After this, he switch to a proxy. The RBL checks if there's any changes from the last activity (with a limit of like 10 minutes so we're sure we don't block all dynamic users - besides, it should only look after proxys anyway, so that might not interfere with normal activity), and if the new ip is detected as a proxy, the users again gets blocked...

I've passed that on to my techy again. :D He's constantly going on about how it should include usernames in the proxycache at the moment... don't know if that's something you can do?

On a sidenote, is there any way for me to do a check on an IP to see if it is really an open proxy? I know there are sites that will check my own PC, but I'm not sure if there are sites that allow me to check other people's IPs. This would help me be reasonable when dealing with people who have complained that they can no longer get in.

PS. I have to say, you're definitely one of the more helpful guys I've experienced at these kind of boards. Thanks for your continuing assistance!

EDIT: Here's the response from our techy after quoting you to him...

Quote:

Originally Posted by cl_out

Yeah, I saw that post, but I thought that's how it worked anyway? I thought it checked if the user's IP is in the database, it uses that data. Then if the user hops to a proxy (or changes IP address because he's dynamic), obviously his IP will be different so I thought it would check again anyway? I didn't know it cached if the user was clean, then it remembers the user, regardless of his IP address.

I originally mentioned the possibility of the address changing in context of if you only checked when the user logs on rather than all the time like it currently does, which wouldn't be when you want to check anyway. When I asked about only checking for users logging on/are logged on, I should have made it clearer by saying we don't care to check guests (or spiders) if they're using a proxy or not, since they can't post anyway, hence only continuously checking actual users logged in :p

TMM-TT do you know if this works on 3.6.x

Quote:

Originally Posted by DementedMindz

TMM-TT do you know if this works on 3.6.x

Yes it does :)

Quote:

Originally Posted by TMM-TT

Do you mean like if someone posts www.freeporn.com into the forum, that post should be blocked if it's listed in the BL?

That would be nice if it didnt slow the site down too much..

X vBulletin 3.8.12 by vBS Debug Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (7)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (4)pagenav_pagelink (1)pagenav_pagelinkrel (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages:

Phrase Groups Available:

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01581 seconds Memory Usage 1,746KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (7)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (4)pagenav_pagelink (1)pagenav_pagelinkrel (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: