Added to version 2.0.1:

// CHANGES
//
// 2006-04-21
// ==========
//
// * proxyinclusions
// quickly add own hosts that should be treated as a proxy

could this mod be modded so it only checks new registering users? is it just a case of replacing the hookname with register_start instead of global start?

Also how would i go about adding sorbs.net to the list?

I'm looking at the 2.0.1 plugin code, and I noticed that you did this:

My I ask why are we creating a new variable instead of using the default one defined in the initializer (./includes/init.php ~line30)?
Surely its not by a whole lot individually, but I'm sure it'd save some resources to use the already defined static value than creating a new one each time?

opm.blitzed.org needs to removed from the default list, as it is no longer in operation.

http://lists.blitzed.org/pipermail/o...q2/000015.html

Thanks! :)

Here we go -

// 2006-05-13
//
// * sorbs zones added (no bitmasking)
// * opm.blitzed.org removed
// * time() changed to TIMENOW

Is this supposed to work with Public Proxies? I am testing it on my site and it doesn't seem to....

if it works properly.. it ll be one of the best xml product i´m adding

thanx a lot buddy..

gr8

I'm getting this sql error for some reason:

and for me this is incompatible with menu control 1.3 and hit coutner hacks

The duplicate entry can be fixed (I think) with a repair or optimize on that table. The menu control sounds new for me.. :)

Same here, did you find yoru solution? Anybody?

How about moving the plugin from global_start to register_start?

Does that do the trick?

What I want is to disallow people on proxies to register, I don't want the script to check any further than that.

I am pretty happy with the alter ego detector hack, and I don't have a problem with people using multiple nicks, I just want to disallow signups that come via a proxy.

I think this is big hack my board avarage is 400 online user at a lot time any big server can be install this hack ?? and have you see any problem ?
regards

How do i install this, am a newbie. Have download it but cannt find how to add it to the plugin system.

Go to manage products, then at the bottom click add/import product, then click browse and nav to the .xml file and you're done.

*edit*
I do have a question..I've installed the hack, is that it, install it and it's good to go, nothing to configure?

Ever since I installed this today I've been getting these kind of errors emailed to me

Database error in vBulletin 3.5.4:

Invalid SQL:
INSERT INTO proxycache (ip, listed, dateline) VALUES ('62.252.64.13', 0, 1149904834);

MySQL Error : Duplicate entry '62.252.64.13' for key 1 Error Number : 1062
Date : Friday, June 9th 2006 @ 09:00:35 PM
Script : http://www.talkjesus.com/private.php
Referrer :
IP Address : 62.252.64.13
Username : bigwhale
Classname : vb_database


Anyone know what's it all about?

Can someone please help me? I'm getting a few of these errors each day

Nice. Helped my get rid of some slammers. Thanks.

Help? I uninstalled this hack and people are still being blocked!

Sorry for all delayed answers...

I think a database repair on the table proxycache should fix duplicate entries. I've got the same problems, specially with sessions those moments, when my server completely locked up so I had to force a reboot and that table is also fixed the same way.

Everything is (still) made from the plugin code. I've been working with a troll-tracker tonight, that can be configured via admincp settings so I hope I can fix it for this product too. :)

Look for this code in the plugin, for configuration (below):


I have a version 2.0.3 in my hand now, and that code works as a function so it can be called from other plugins too. With an admin interface, there might be a chance that this can be fixed easier than today. :)


If it's uninstalled, it shouldn't do anything, so this is very strange. Do you still have the same problem?

It's still 2.0.3 but some changes to the configuration has been made. The request for another function has also been added, refering to this request


// 2006-06-26
//
// * Created options for admincp (removed plugin-configuration)
// * Fixed a bit-bug for njabl
// * Plugin is now a function (rbl_livecheck) for external lookups
// * Added options for "only block on newuser-registrations"

Minor modifications has been made to the source. The first one is only a default value (look below ;)). The second change affect opm.tornevall.org - an extra separate entry has been added to the DNS-database for anonymizers (like iphide.com and anonymouse.org, the only two web-based anonymizers I know actually). I think blocking of proxy-by-web-anonymous-services can be useful in some way, somewhere. :)


// 2006-06-28
//
// * opm.tornevall.org has a new entry for anonymizers, added support for this
// * Default value on "block everything detected" in installer changed to "no"

Thanks! I was waiting for those 2 to be blocked :]

And now, it works better. Just found a bug in the $block-part, that should be fixed now.. :)

haha another mod on my car site called me saying he couldnt get on ... he uses aol, im guessing its blocking those as well?

Only if it's registered in some of the RBLs listed. :)

It also depends on how the monitor is configured. I used to have more hosts in the list before but since some of the rbls fight e-mail spam and therefore blocks large dynamic ip ranges, I had to remove some of them. If the "Block everything" is set to yes, the monitor will also block everything, not matter how it's registered and that may in some cases include dynamic hosts. That's why block everything is set to no as default.

The phrase added in the product gives an address to www.tornevall.net/cgi-bin/ip.cgi where you can check which engine the ip is detected as blacklisted.


Edit:

This post made me look so inclusions/exclusions really worked properly. It didn't - the conversion from the old "plugin-configuration" made me forget a few things in the new versions. So there's a new update, again. :)


// 2006-06-28 (2.0.6/Another fix)
//
// * Proxyinclusions/exclusions didn't work properly

Thanks the best usefull script I have seen for a long period of time.

Many other scripts are good to, but they are mostly "fun"

Hi i really need help fixing this error i get this in my email how do i fix

Database error in vBulletin 3.6.0:

Invalid SQL:
INSERT INTO proxycache (ip, listed, dateline) VALUES ('218.11.207.244', 1, 1155435828);

MySQL Error : Duplicate entry '218.11.207.244' for key 1 Error Number : 1062
Date : Saturday, August 12th 2006 @ 10:23:31 PM
Script : http:///forums/infraction.php?do=report&p=14975

Is there still a huge problem with false positives? Right now, I'm limiting the DNSBL to opm.tornevall.org, because it blocks Tor and many anonymizers.

EDIT: How does it affect the server load? I temporarily disabled it, because when it was activated my load average rose by quite a bit. Maybe it was a coincidence.

Heh, I've done something wrong when installing and now I can't get into the admincp as its seeing my normal isp ip as a proxy. I'm locked out any suggestions please...

hehe clean your system and secure it. Go to the dnsrbl list and get removed, then login

Thats not helpful at all, as my ip is dynamic...

Has anyone heard about relakks, the anonymous VPN (some swedish piracy sites has been writing about this, because it makes filesharing more secure)? I've been thinking a while on how this network opens for new abuse-methods into forums, so I decided (yesterday) to add a bunch of completely new entries (65025 ips) into tornevall.org's RBL-database as a preparation for the future. I haven't been testing this with this product yet, but I think adding relakks.tornevall.org into the RBL-list might work, if you'd like to block the Relakks network. I've added this system on another subdomain so this shouldn't interfere with opm.tornevall.org.

I get a lot of these each day, maybe a dozen but various IP's.

Is this normal?

Database error in vBulletin:

Invalid SQL:
INSERT INTO proxycache (ip, listed, dateline) VALUES ('81.153.88.1', 0, 1157465418);

MySQL Error : Duplicate entry '81.153.88.1' for key 1 Error Number : 1062
Date : Tuesday, September 5th 2006 @ 09:10:20 AM
Script : http://www.talkjesus.com//login.php
Referrer :
IP Address : 81.153.88.1
Username : Unregistered
Classname : vb_database

Can someone please help out? Still getting these errors

Even some that show as no proxy?
http://www.dnsstuff.com/tools/city.ch?ip=68.34.123.100

Can you check if ip-field in the the proxycache is set as a key? If not, this might cause problems wipe dupe keys. An alternative can be to optimize/repair the table.

I've also noticed that the proxydb can't handle ipv6 properly. Maybe thats something to look at. :)


Doesn't it show up as proxy? What do you mean? :)

http://www.tornevall.net/cgi-bin/ip.cgi says:


REMOTE_ADDR 68.34.123.100

cbl.abuseat.org => unlisted
dnsbl.njabl.org => unlisted
dnsbl.ahbl.org => unlisted
rbl.efnet.org => unlisted
http.dnsbl.sorbs.net => unlisted
socks.dnsbl.sorbs.net => unlisted
misc.dnsbl.sorbs.net => unlisted
opm.tornevall.org => unlisted
relakks.tornevall.org => unlisted

This may sound dumb, but how do you check using tornevall.net? I can't see anywhere to put in an IP address.

I never added a field for doing that because of the risk of spam (like bruteforcetesting networks), but http://www.tornevall.net/cgi-bin/ip.cgi?q=<ip> should work. :)