Cerb's Anti-Proxy Hack - 15 seconds install

This is my Anti-Proxy hack, works with any vBulletin version.

Just download the attachment.


What this hack does

This hack prevents anyone from accessing your site through a proxy.

This is pretty useful if you have a large/semi-large community like mine (www.bnfreak.com) with a lots of young / immature members.

If someone gets banned he will most likely try to come back through a proxy, this is what this hack prevents.



You can also customize it (like I did on my forums) to simply prevent new registrations from proxies rather than the whole site. To do this, just edit register.php instead of global.php



Don't forget to click Install

[yinyang]

Quote:

Originally Posted by Cerb

You can also customize it (like I did on my forums) to simply prevent new registrations from proxies rather than the whole site. To do this, just edit register.php instead of global.php

Don't forget to click Install

*clicks install* great hack. i'm a bit of a noob at this, but i like the idea of preventing proxy users to register, but still letting them view the forum.

following your instructions above, am i correct to put the hack above this line?

PHP Code:

// ####################### SET PHP ENVIRONMENT ########################### 


[jd-inflames]

Erm...this sounds like a good idea and all, but do you think there is any way to keep those kids who just change their IP's and reregister away? I have more problem with those than people with proxies. Most people I catch on my board using a proxy are people who are at school or something and need to get around their schools web administration. I have a few people that use 'em to get around proxies at work as well.

[Dys]

I too couldnt find the "//identify where we are" in teh register.php and havent successfully installed it in the register.php, always get errors. Anyone know where this should do then if not on top?

Thanks

[WhiteOx2]

Find this bit in register.php:

PHP Code:

define('NO_REGISTER_GLOBALS', 1); 


And underneath add:

PHP Code:

if (( isset($_SERVER['HTTP_FORWARDED']) || isset($_SERVER['HTTP_X_FORWARDED_FOR']) || isset($_SERVER['HTTP_VIA'])) && !in_array($_SERVER['REMOTE_ADDR'],$safe_proxies) ) 
{    die("No Proxies");    } 


[WhiteOx2]

BTW: Does anyone know how to make this redirect to an html page instead of it saying No Proxies?

[Dys]

I upgraded to 3.0.5 which of course overwrote my register.php but when I put it back in the new register.php it no longer works correctly.... I am now getting this error

Warning: in_array(): Wrong datatype for second argument in /home/al7bar/public_html/forums/register.php on line 19

[sananedir]

really excellent you may have saved my forums

[yoyoyoyo]

great work! thanks

[shadiguy1]

anyway to display something like my forums header and the message or ability to display a graphics box with text in rather than just plain text

[Zero Tolerance]

Quote:

Originally Posted by WhiteOx2

BTW: Does anyone know how to make this redirect to an html page instead of it saying No Proxies?

Change:

Code:

if ( isset($_SERVER['HTTP_FORWARDED']) || isset($_SERVER['HTTP_X_FORWARDED_FOR']) || isset($_SERVER['HTTP_VIA']) )
{	die("No Proxies");	}

To:

Code:

$Proxy_Detect = isset($_SERVER['HTTP_FORWARDED']) || isset($_SERVER['HTTP_X_FORWARDED_FOR']) || isset($_SERVER['HTTP_VIA']);

if($Proxy_Detect){
header("Location: http://YOURSITE.com/YOURPAGE.HTML");
}

Change: http://YOURSITE.com/YOURPAGE.HTML to your settings.

It's a good modification, however in the process it will knock off a lot of users, perhaps research proxies and find out what information they do output, collect this information into an array and check if this is matched while browsing? That way it would only knock off those proxies instead of all, just a thought.

- Zero Tolerance