[MOD] Anti-Spam v1.0 for Guestbook & Comments

[colorssky]

 

[mawenzi]

@nnjj

... look carefully on the first side ... or take this ... 

[colorssky]

the whole website is blocked at my country!!!
I can't view it at all

[colorssky]

I hope somebody can understaned my problem with the website!

[b.o.fan]

@Olphi:
Bitte mal Link zu deiner Gallery posten oder per PM schicken,
und deine guestbook.php anhängen.

Hallo IcEcReaM!

ich habe das gleiche Problem wie http://www.4homepages.de/forum/index.php?topic=12268.msg69275#msg69275 !


ich hänge meine guestbook und detail.php mal an!

PS: wenn ich java script ausschalte, sehe ich keinen code!

[colorssky]

why no body wants to support me in this issue!!
all what I ask is the files only to applay the patch!

[V@no]

Ok, here it is (I'll remove it as soon as you downloaded it)

P.S. Ever heard of such thing as PROXY? try google it you might find it very helpfull in this kind of situations.

[colorssky]

thankx buddy @ end
I did what in file but nothing happen a lso nothing ask for scuer no!

[colorssky]

STRANGE! even with this pluggin, the spam not stopping!

what shall I do! everything is done correctly! 

[V@no]

who is spamming? guests? or members? if members - you know what to do...
are they from the same IP?

[colorssky]

no its guests!!
he drive me crazy! 

[V@no]

Well, then I guess I was right in my first replys to this thread...since the code does not use any "encryption", its pretty much useless mod...

[V@no]

What you can try to do is replace

Code: [Select]

       $secure_image .= '<img src="'.get_gallery_image("captcha".substr($prevent_code,$i,1).".gif").'" border="0" alt="" />';
with:

Code: [Select]

       $secure_image .= '<img src="'.$site_sess->url(ROOT_PATH."securecode.php?id=".($i+1)."&".time()).'" border="0" alt="" />';
(look in the original tutorial to find that line)

Then create a new file securecode.php in your 4images root with this code inside:

Code: [Select]

<?php
$nozip = $fast = 1;
define('ROOT_PATH', './');
include(ROOT_PATH.'global.php');
require(ROOT_PATH.'includes/sessions.php');
$file = get_gallery_image("spacer.gif");//image which will be used if something went wrong.

if ($id > 0 && $id < 7 && $comment_code = stripslashes($site_sess->get_session_var('comment_code')))
{
  $file = get_gallery_image("captcha".substr($comment_code,$id-1,1).".gif");
}
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");             // turn off caching
header("Cache-Control: no-store, no-cache, must-revalidate"); // HTTP/1.1 
header("Cache-Control: pre-check=0, post-check=0, max-age=0"); // HTTP/1.1 
header("Cache-Control: no-cache, must-revalidate");
header("Content-Transfer-Encoding: none"); 
header("Content-Type: image/gif");
header("Content-Length: ".filesize($file));
readfile($file);
?>
And finaly, in guestbook_form.html and comment_form.html templates replace

Code: [Select]

                    <noscript>
                       <table>
                         <tr>
                           <td>{secure_image} </td>
                           <td><input type="text" name="prevent_code" value="" size="5" /> </td>
                         </tr>
                         <tr><td colspan="2"><b>{lang_enter_secure_code}</b></td>
                         </tr>
                        </table>
                    </noscript>
                  <script type="text/javascript">
                  function spamcode () {
                       var spamy = {prevent_code};
                       document.getElementsByName("prevent_code")[0].value = spamy;
                  }
                  document.write('<input type="hidden" name="prevent_code" value="0" \/>');
                  </script>

With:

Code: [Select]

                       <table>
                         <tr>
                           <td>{secure_image} </td>
                           <td><input type="text" name="prevent_code" value="" size="5" /> </td>
                         </tr>
                         <tr><td colspan="2"><b>{lang_enter_secure_code}</b></td>
                         </tr>
                        </table>
                  <script type="text/javascript">
                  function spamcode () {
                  }
                  </script>
I suspect is because of that javascript code the bots "learned" how to go around the security code.

I havent tested it, so be first

[colorssky]

this error comes up

Parse error: parse error, unexpected T_CONSTANT_ENCAPSED_STRING in /home/jenanart/public_html/gallery/details.php on line 458

and line 458 was the following

Code: [Select]

       $secure_image .= '<img src="'.$site_sess->url(ROOT_PATH."securecode.php?id=".$i+1."&".rand(999999999)).'" border="0" alt="" />';

[colorssky]

any ideas?