Well, I did kinda foul my own test, but just a little. Seems the spambotmasters at keyweb.de/keyweb.ru were trying actual URI hacking to get around my captcha, since OCR was failing. The IP range banning feature in phpBB wasn't working either... So, I decided to tell them "NO!" with this little ditty included at the beginning of all phpbb php pages.
This **NOT** a mod for phpBB... it is a mod for any page you wish to keep a hostname or ip block out of.
Released GPL V.2 of course!
<?php
function lrmatch($haystack, $pattern)
{
$length = strlen($pattern);
if ((substr($haystack,0,$length) == $pattern) or (substr($haystack,-$length) == $pattern))
return true;
return false;
}
$ax="0";
$hoster=strtolower($_SERVER['REMOTE_HOST']);
$address=strtolower($_SERVER['REMOTE_ADDR']);
$url="
http://YOURWEBSITE.TLD/CURSEOUT-LOGGING-PAGE.php";
// Start Compare here
$ax = $ax + (lrmatch($hoster,"keyweb.de"));
$ax = $ax + (lrmatch($address,"87.118.68"));
$ax = $ax + (lrmatch($address,"87.118.69"));
$ax = $ax + (lrmatch($address,"87.118.70"));
$ax = $ax + (lrmatch($address,"87.118.71"));
// Finish Compare here
if($ax > "0"){
header('Location: '.$url);
echo('
<html>
<head>
<title>You\'re Banned!</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body>
BOOT TO THE HEAD!
</body>
</html>
');
die("BANNED!");
}
?>
save this as a seperate .php named whatever you like, I named mine bandersnatch.php, and replace "YOURWEBSITE.TLD/CURSEOUT-LOGGING-PAGE.php" with an appropriate value for a page you would like to send the spammers to... Haven't figured out how to send them to hades yet. Then simply "include('bandersnatch.php');" at the very top of your .php page, just inside the first <?php of course.
Oddly enough, this also stopped all hacking attempts on my board, just killing these 2048 IPs. Not sure if this will "stick" but for now, I'll take what I can. They had given up on OCRing though, so I am satisfied my auth mod is the tough nut to crack that I designed it to be. Now they are looking to hack straight through.
Good Luck!
Zap.