The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
DNSBL/Open Proxy-Blocking Details »» | |||||||||||||||||||||||||
History
I've had some problems with abuse via open proxies for a time ago, and when we were banning abusers, they always found a new proxy to use and register new accounts with. Since this forum was a large type we could'nt just ban e-mails etc just like that, because this was leading to a very large amount of other banned users too. At IRC, in the other hand, we had Open Proxy Monitors, that was banning everything that was blacklisted in some DNSBL-databases. No spammers had a chance to get in there as long they were listed in such database. This is a plugin that blocks blacklisted hosts from some different DNSBL's. It uses the global_start-hook, a very simple handler for blocking proxies, and a vBphrase called OPM_Deny. April 2006 The source has been rewritten a bit. The proxychecker is now using a cache that, by default, stores all ip's in a database for 6 hours. It scans some DNSBL's and can be configured to block proxies from bitmasks (defined in the plugin) which makes it a little bit more reliable, because it does'nt block everything it see). Configuration is made from the plugin (hopefully there will be a nice admin interface in the future). Exceptions (ip's that can pass through this system even if it is a proxy) are also handled differently now. // CHANGES // // 2008-09-20 (2.0.8) // // * Changed the routines for how to handle inclusion/exclusions // * Splitted up plugins for 3.5/3.6 and 3.7 // // 2007-08-05 // // * Fixed reported bug, based on resolved hosts ending with 127 // * Changed database-tables to get rid of (hopefully) duplicate keys // * Added resolver-function // * Added two new block-methods available at the efnet-rbl // // 2006-06-28 (2.0.6/Another fix) // // * Proxyinclusions/exclusions didn't work properly // // 2006-06-28 (2.0.5/Fix only) // // * Fixed a bug in the $block-array that affected some of the blocking results // // 2006-06-28 (2.0.4) // // * opm.tornevall.org has a new entry for anonymizers, added support for this // * Default value on "block everything detected" in plugin changed to "no" // // 2006-06-26 (2.0.3) // // * Created options for admincp (removed plugin-configuration) // * Fixed a bit-bug for njabl // * Plugin is now a function (rbl_livecheck) for external lookups // * Added options for "only block on newuser-registrations" // // 2006-06-22 (2.0.3 RC) // // * The monitor is now a function // * Added small compatibility with other plugins (with return) // // 2006-05-13 // // * sorbs zones added (no bitmasking) // * opm.blitzed.org removed // * time() changed to TIMENOW // // 2006-04-21 // ========== // // * proxyinclusions // quickly add own hosts that should be treated as a proxy // How does it work with other vBulletins? This filter actually works with both 3.5 and 3.6, but for now, they will be separate versions, but for 3.5 and 3.6 you should look here and for 3.7 you should look here. How to use the compatibility thing If you have a plugin that you want to use together with the proxy monitor (only returns a value if a an ip-address is registered as a proxy or not) you can call the function rbl_livecheck like this (example): PHP Code:
Don't forget to install it Show Your Support
|
Comments |
#132
|
|||
|
|||
I just installed this on my forum and it blocked me. I'm using Optimum Online at home and a leased line from VERIO at work. No clue why both are blocked as proxies. Any thoughts?
|
#133
|
||||
|
||||
Quote:
define(DISABLE_HOOKS, 1); to your config.php so you can disable the blocker while you're investigating... Then check www.tornevall.net/cgi-bin/ip.cgi if that page says where you might be blacklisted (I just wrote a FAQ about the blacklist part). You can also add your ip into the configuration under "Exclude from monitor". Then it won't block you. It looks like there's a few problems with proxyblocking on admins. I'll take a look on some solutions on this. Maybe a function for "only look for logged in" users, so you have a chance to login before getting blocked. |
#134
|
||||
|
||||
My techy's response...
Quote:
|
#135
|
||||
|
||||
Quote:
Quote:
How about something like this? Let's say someone is logging into a forum in the normal way. After this, he switch to a proxy. The RBL checks if there's any changes from the last activity (with a limit of like 10 minutes so we're sure we don't block all dynamic users - besides, it should only look after proxys anyway, so that might not interfere with normal activity), and if the new ip is detected as a proxy, the users again gets blocked... |
#136
|
||||
|
||||
I've passed that on to my techy again. He's constantly going on about how it should include usernames in the proxycache at the moment... don't know if that's something you can do?
On a sidenote, is there any way for me to do a check on an IP to see if it is really an open proxy? I know there are sites that will check my own PC, but I'm not sure if there are sites that allow me to check other people's IPs. This would help me be reasonable when dealing with people who have complained that they can no longer get in. PS. I have to say, you're definitely one of the more helpful guys I've experienced at these kind of boards. Thanks for your continuing assistance! EDIT: Here's the response from our techy after quoting you to him... Quote:
|
#137
|
|||
|
|||
TMM-TT do you know if this works on 3.6.x
|
#138
|
||||
|
||||
Quote:
|
#139
|
|||
|
|||
thank you.
|
#140
|
||||
|
||||
What about v3.6.2?
|
#141
|
||||
|
||||
Quote:
|
Thread Tools | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|