PAY ATTENTION!!!
In modify the includes/usercp_register.php
I have 20 to 30 Bots registering attempts per day, so I've modified my usercp_register to send me an e-mail with user info details, in first when there is a registration with a "strange" site and e-mail, and in a second time all who specify the whole site field, and in last EVERYONE!
I find a lot of registrations WITHOUT the email sent to me,
that means that some registretion-abuse Bots BYPASS the usercp_register.php .
PLEASE, HELP! I hope that phpbb had a VALID method to DENY this kind of accesses (that I think can be follow in a dangerous security hole...).
I paste here the code that I've inserted from line 452:
Code: Select all
if ( $website != '' )
{
rawurlencode($website);
//GLC 20060623
//if ($mode == 'register' || $mode == 'editprofile') {
if ($mode == 'register') {
if (
(strpos($website,"cialis") !== false)|| (strpos($website,"sex") !== false)||
(strpos($website,"girl") !== false)|| (strpos($website,"anal") !== false)||
(strpos($website,"hard") !== false)|| (strpos($website,"xxx") !== false)||
(strpos($website,"hot") !== false)|| (strpos($website,"chin") !== false)||
(strpos($website,"core") !== false)|| (strpos($website,"fuck") !== false)||
.......
(strpos($website,"acti") !== false)|| (strpos($website,"suck") !== false)
) {
mail("[email protected]","WWW.COUGAR.IT - Porno Hacking Attempt Blocked!",$website."\nINFO Da: http://www.nwtools.com/default.asp?prog=network&host=".decode_ip($user_ip)."\nFrom User: ".$username."\nDomain: ".GetHostByAddr(decode_ip($user_ip))."\nSession: ".$user_ip."\nGetDecoded: ".decode_ip($userdata['session_ip'])."\n - Connection on: ".decode_ip($user_ip)."\n - subscribed email: ".$email );
//die ("Porno Hacking Attempt Blocked!"); }
$error = TRUE;
$error_msg .= "<br />Porno Hacking Attempt Blocked! Personal Website NOT ALLOWED, AND IP TRACKED AT " + decode_ip($user_ip);
$website = "";
} else {
//mail("[email protected]","WWW.COUGAR.IT - Registration w/ Personal Site Information!",$website."\nDa:".$REMOTE_ADDR."\nFrom User:".$username."\nDomain:".GetHostByName($REMOTE_ADDR)."\nSession: ".$user_ip."\nGetDecoded: ".decode_ip($userdata['session_ip'])." - ".decode_ip($user_ip) );
mail("[email protected]","WWW.COUGAR.IT - Registration w/ Personal Site Information!",$website."\nINFO Da: http://www.nwtools.com/default.asp?prog=network&host=".decode_ip($user_ip)."\nFrom User: ".$username."\nDomain: ".GetHostByAddr(decode_ip($user_ip))."\nSession: ".$user_ip."\nGetDecoded: ".decode_ip($userdata['session_ip'])."\n - Connection on: ".decode_ip($user_ip)."\n - subscribed email: ".$email );
$website = "";
}
} //GLC 20060623 Fine
if ($mode == 'editprofile') {
mail("[email protected]","WWW.COUGAR.IT - MODIFY Personal Site",$website."\nDa:".$user_id."\nFrom User:".$username."\nDomain:".$current_email."\nSession: ".$user_ip."\nGetDecoded: ".decode_ip($userdata['session_ip'])." - ".decode_ip($user_ip) );
} //GLC 20060623 Fine
}