Go Back   vb.org Archive > Community Discussions > Modification Requests/Questions (Unpaid)
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #11  
Old 12-17-2010, 01:57 AM
OldSchoolDSL OldSchoolDSL is offline
 
Join Date: Oct 2010
Posts: 1,196
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Uninstalled

I ended up getting a 503 error after using this. Odd thing is it only affected me.
Reply With Quote
  #12  
Old 12-17-2010, 02:00 AM
adwade adwade is offline
 
Join Date: Aug 2006
Location: SouthEast, TN
Posts: 323
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by BirdOPrey5 View Post
...However it might be easy to forget to re-edit global.php on an upgrade so I'm wondering if it isn't better to put this line in a plugin on a hook in global.php instead so you don't need to worry about upgrades...
Ah, yeah, that sounds like a great idea to me...whatever it was you said?! :erm:

Seriously though if/when you do that, post some details so a non-coder could work their way through the same process. :up:
Reply With Quote
  #13  
Old 12-17-2010, 02:00 AM
onehost onehost is offline
 
Join Date: Jul 2006
Posts: 378
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by OldSchoolDSL View Post
Uninstalled

I ended up getting a 503 error after using this. Odd thing is it only affected me.
That sucks...

I added the line at the very top of global.php

not sure how long it supposed to take for it to work...

I still have 20+ spiders online, and google.com and googlebot.com
have prevention signs preventing them from doing something, so I
am not sure if they were like that before I added the line or not...

the hook method sounds like it would be a good idea to implement...

--------------- Added [DATE]1292559903[/DATE] at [TIME]1292559903[/TIME] ---------------

I guess it is working..nice...

#: 1 @: Thu, 16 Dec 2010 21:55:46 -0600

Host: 211.43.152.16

IP: 211.43.152.16

Score: 1

Why blocked: Korean Suspicious.

Query: f=0

Referer:

User Agent: Mozilla/5.0 Firefox/3.0.5

Reconstructed URL: http:// bizwebforum.com /forumdisplay.php?f=0



#: 2 @: Thu, 16 Dec 2010 21:56:17 -0600

Host: ec2-75-101-167-57.compute-1.amazonaws.com

IP: 75.101.167.57

Score: 1

Why blocked: Amazon Web Services. Not an ISP. Used by hackers, Keyword spamming SEO bots, and other unsavories. Checked for bypass.

Query:

Referer:

User Agent: Mozilla/5.0 (compatible; Firefox Addon; Windows XP 5.1)

Reconstructed URL: http:// www.bizwebforum.com /forum.php

Damn Korean hackers....

Another fine tool to help fight auto hackers and spammers.
Reply With Quote
  #14  
Old 12-17-2010, 02:34 AM
adwade adwade is offline
 
Join Date: Aug 2006
Location: SouthEast, TN
Posts: 323
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by OldSchoolDSL View Post
Uninstalled

I ended up getting a 503 error after using this. Odd thing is it only affected me.
First, per the (PDF) manual...
If your page starts with HTML like...
Code:
<html>
<head>
Or perhaps even a <doctype> statement, then the proper place for ZB Block, is on the
first line like...
Code:
<?php include('yourdirectory/zbblock/zbblock.php'); ?><html>
<head>
Restating here again, that there should be NO spaces, and NO newlines where ZB Block is added.

These will not work...
Code:
<?php include('yourdirectory/zbblock/zbblock.php'); html>
<head>
This is just bad syntax and may even error the browser.
Code:
<html><?php include('yourdirectory/zbblock/zbblock.php'); ?>
<head>
This will cause an error if ZB Block tries to throw it's own 403 or 503 error, as bytes have already been sent to the output buffer.

Once again, if ZB Block exits without detection, no bytes will be added before “<!
DOCTYPE” and your page will be perfect when viewed remotely.

Oh, just in the case you didn't understand, ZB Block has to be on the first line of the source. No blank lines above it. (Some people have missed this).

Also, if the page is something.htm or something.html, you will have to rename it (and re-aim your links) to something.php for ZB Block to work. As of now, there is no safe way to use a rewrite rule to attach ZB Block to other file types.
--------------- Added [DATE]1292560586[/DATE] at [TIME]1292560586[/TIME] ---------------

Quote:
Originally Posted by OldSchoolDSL View Post
Uninstalled

I ended up getting a 503 error after using this. Odd thing is it only affected me.
Also, from the manual...

As installed, ZB Block will work fine for most people, but a lock-out condition could
happen if you trigger the warning more than 3 times in 1 day.


So understand if you try the ?test=xtestx syntax with your browser more than 3 times, to see how it's working -and- you have not set a master password (see p3-2 of the manual), then yes you will get blocked.

Setting the master password allows you to automatically record your own IP Address into the whitelisting so you can experiment all you want w/o getting locked out.
Reply With Quote
  #15  
Old 12-17-2010, 02:38 AM
onehost onehost is offline
 
Join Date: Jul 2006
Posts: 378
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

oh yea about that password...I did enter that password url, along with password,
and all i got was a blank page...is anything supposed to happen?

and am I supposed to block off the zd directory with the htaccess file?
Reply With Quote
  #16  
Old 12-17-2010, 02:48 AM
adwade adwade is offline
 
Join Date: Aug 2006
Location: SouthEast, TN
Posts: 323
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Yes, it takes awhile (like 20 secs or so), but then you should see a message reading:

"IP added to whitelist DB"

And yes, the INSTALL & VAULT directories should have their own .htaccess files. Mine were added upon installation, automatically.
Reply With Quote
  #17  
Old 12-17-2010, 03:19 AM
onehost onehost is offline
 
Join Date: Jul 2006
Posts: 378
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by adwade View Post
Yes, it takes awhile (like 20 secs or so), but then you should see a message reading:

"IP added to whitelist DB"

And yes, the INSTALL & VAULT directories should have their own .htaccess files. Mine were added upon installation, automatically.
ok htaccess seems ok..

concerning the password - all i got was a blank page...

still not so sure what the password is used for.

--------------- Added [DATE]1292569550[/DATE] at [TIME]1292569550[/TIME] ---------------

how do I add IP'S to Whitelist?
Reply With Quote
  #18  
Old 12-17-2010, 05:25 AM
adwade adwade is offline
 
Join Date: Aug 2006
Location: SouthEast, TN
Posts: 323
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by onehost View Post
ok htaccess seems ok..

concerning the password - all i got was a blank page...

still not so sure what the password is used for.
To my knowledge (which is limited), all it does is allow you (as the Admin) to instantly ADD your own IP Address to the Whitelist via a saved favorite or bookmark.


Quote:
how do I add IP'S to Whitelist?
In the Vault Directory, edit the IPWLDB.CSV file, separating individual entries with a comma of course.
Reply With Quote
  #19  
Old 12-17-2010, 12:42 PM
OldSchoolDSL OldSchoolDSL is offline
 
Join Date: Oct 2010
Posts: 1,196
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

@ adwade

1) Entered the code correctly

2) Site was working fine for me for 1 1/2 days, then gave me the 503 error (after 1 1/2 days)

3) did not provide a password, as I thought if it can block me .... It can block innocent members of my community.

4) Ran the test 1x and only 1x.... 1 1/2 days before.

I like the idea behind it. But this is not for me. Maybe in the future.
Reply With Quote
  #20  
Old 12-17-2010, 04:49 PM
BirdOPrey5's Avatar
BirdOPrey5 BirdOPrey5 is offline
Senior Member
 
Join Date: Jun 2008
Location: New York
Posts: 10,610
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I played with this today, first off I think it's better to put the 1 line of code into your config.php file, not global.php.

But I had some issues... first all AOL proxy users are blocked by default- this is not something I can live with... I found out how to unblock them in the ZBBlock forums though.

It ran well for an hour blocking about 20 requests but when I looked at the log I wasn't happy... For some reason a number of Amazon.com product URL's were being blocked and since I have an affiliate program this didn't look good...

Also bad it was blocking some pages that referred to me because of "spam" words in the referral link... in my case the word was "boob" because the referring page title was something along the lines of "Sarah Palin Boob Job?" - so I lost that visitor, he (or she) was blocked by this.

Finally, and what caused me to remove it for now, using this totally kills Tapatalk access to your forum...

I read a lot about what this author did and it is commendable he worked hard on this but personally I think his default settings are MUCH too strict for prime time use. I'm sure with enough customizing these issues can be overcome but it will be a while before I dedicate time to researching this.

If you're not losing the spam war I suggest you be very wary of installing this, it looks like you will lose legit visitors under the default settings.

--------------- Added [DATE]1292615449[/DATE] at [TIME]1292615449[/TIME] ---------------

I decided to try again but instead of putting it on config.php or global.php which would block Tapatalk I'm using it on register.php, login.php, and a few other select pages. This should still stop bots from registering or logging in but allow the rest of the forum to function. I know this doesn't give me all the security as running it on every script but it seems like a decent compromise for now.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 09:42 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.12321 seconds
  • Memory Usage 2,289KB
  • Queries Executed 12 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (4)bbcode_code
  • (7)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete