mgutt wrote: What do you prefer for the cache folder?
drathbun wrote:mgutt wrote:What do you prefer for the cache folder?
For something that is going to be provided by another server? Not "execute" permissions, that's for sure.What happens if your server gets compromised, and someone loads a different script in place of the one I'm expecting?
I think the idea behind providing a list of known spammers is interesting. I started my own list not two days ago, and it contains quite a few (but not all) of the items on your list. But I would envision providing that as a list that people could look at, review, and elect to use. I would never - as trustworthy as you might think you are- trust someone to provide that list as a service via a remote call like you've provided in this MOD. It's not that I don't trust you, per se, it's that I don't trust the process.
Granting execute permissions should not be required, and I would not use any MOD that uses this technique. I will not attempt to speak for the MOD Team, but I would suggest that perhaps you get one of them to take an advance look at your MOD and let you know if it would even be approved for the MOD-DB in its current state.
Code: Select all
@chmod("cache/spamfilter.php", 0666);
Code: Select all
$match_email = str_replace('*', '.*?', $row[$i]['ban_email']);
if (preg_match('/^' . $match_email . '$/is', $email))
Code: Select all
if ( !defined('IN_PHPBB') )
{
die('Hack attempt');
}
Code: Select all
$row = unserialize(\'%s\');
Ramon Fincken wrote: so spammers will use this cashette.com account to actually get paid if I'm correct..
disgusting![]()
![]()
You can test the successful installation as follows:
## - Try to register an account at your forum with one of the
## forbidden mail accounts (f.e. with "test@boom.ru").
## You will get a decline message at your forum if my
## mod works successfully
## - Wait till a new user has registered to your forum. Now
## you will find the file: cache/spamfilter.php (if not CHMOD
## the "cache" folder 0777 as mentioned in the topic of phpBB)
IgnorantNewGuy wrote: 1. Does this work with CH 2.1.6 presently?
IgnorantNewGuy wrote: 2. Can you explain how this works, exactly? As I look at the only file required to be edited, all of the banned domains you've listed in your database are not there. Do I have to enter them manually into my ACP?
IgnorantNewGuy wrote: Regarding these instructions:
You can test the successful installation as follows:
## - Try to register an account at your forum with one of the
## forbidden mail accounts (f.e. with "test@boom.ru").
## You will get a decline message at your forum if my
## mod works successfully
## - Wait till a new user has registered to your forum. Now
## you will find the file: cache/spamfilter.php (if not CHMOD
## the "cache" folder 0777 as mentioned in the topic of phpBB)
The first one worked. I saw the error message.
The second one did not. Cache was already set to 777 and cache/spamfilter.php was not created even after I created a real user.
Thx,
Scott 8)
// output to file
$handle = @fopen("cache/spamfilter.php", 'w');
@flock($handle, LOCK_EX);
@fwrite($handle, sprintf($cache_data, create_date('Y-m-d H:i:s', time(), $board_config['board_timezone']), time(), str_replace('\'', '\\\'', str_replace('\\', '\\\\', $spamdata[0]))));
@flock($handle, LOCK_UN);
@fclose($handle);
@umask(0000);
@chmod("cache/spamfilter.php", 0666);
return true;
Code: Select all
// if the cache is older than 14 days it is rewritten
if ( $gentime < (time() + 1209600) )
{
Code: Select all
// if the cache is older than 3 days it is rewritten
if ( ($gentime + 259200) < time() )
{