首頁 探索 說明
登入
CSE-Invent
/
CMS-CSE
镜像来自 https://git.cse-invent.com/product/cms.events.git
2
0
複刻 0
檔案 問題管理 0 Wiki
目錄樹: 6949b90e82
分支列表 標籤列表
CMS-CSE
/
core
/
class
/
blacklist.class.php

blacklist.class.php 3.1 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. <?php
    2. 

  2. 

  3. class blacklist {
    4. 

  4. 

  5.     private static $log_file = '../blacklist/ip_attempts.log';
    6. 

  6.     private static $blacklist_file = '../blacklist/ip.txt';
    7. 

  7.     private static $max_attempts = 5;
    8. 

  8.     private static $time_window = 10 * 60; // 10 minutes en secondes
    9. 

  9. 

  10.     public static function execute(?string $_from = NULL) {
    11. 

  11.         self::check($_from);
    12. 

  12.     }
    13. 

  13. 

  14.     public static function isValidIPv4() {
    15. 

  15.         return filter_var($_SERVER['REMOTE_ADDR'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) !== false;
    16. 

  16.     }
    17. 

  17. 

  18.     private static function getFullUrl() { $protocol = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? 'https://' : 'http://';
    19. 

  19.         return $protocol . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
    20. 

  20.     }
    21. 

  21. 

  22.     private static function readBalcklist(){ // Charger les tentatives existantes
    23. 

  23.         $attempts = [];
    24. 

  24.         if (file_exists(self::$log_file)) {
    25. 

  25.             $lines = file(self::$log_file, FILE_IGNORE_NEW_LINES);
    26. 

  26.             foreach ($lines as $line) {
    27. 

  27.                 list($ip, $timestamp) = explode(',', $line);
    28. 

  28.                 $attempts[] = ['ip' => $ip, 'timestamp' => strtotime($timestamp)];
    29. 

  29.             }
    30. 

  30.         }
    31. 

  31.         return $attempts;
    32. 

  32.     }
    33. 

  33. 

  34.     private static function checkBlacklist(string $_ip){ // Vérifier si l'IP est déjà blacklistée
    35. 

  35.         $blacklisted = FALSE;
    36. 

  36.         if (file_exists(self::$blacklist_file)) {
    37. 

  37.             $blacklisted_ips = file(self::$blacklist_file, FILE_IGNORE_NEW_LINES);
    38. 

  38.             $blacklisted = in_array($_ip, $blacklisted_ips);
    39. 

  39.         }
    40. 

  40.         return $blacklisted;
    41. 

  41.     }
    42. 

  42. 

  43.     private static function addBalcklist(string $_ip){ // Ajouter une nouvelle tentative
    44. 

  44.         file_put_contents(self::$log_file, "$_ip," . date('Y-m-d H:i:s') . ", " . $_SERVER["REQUEST_METHOD"] . "," . self::getFullUrl() . "\n", FILE_APPEND);
    45. 

  45.     }
    46. 

  46.     
    47. 

  47.     private static function check(){ // Compter les tentatives récentes
    48. 

  48.         $now = time();
    49. 

  49.         $time_window = self::$time_window;
    50. 

  50.         $attempts = self::readBalcklist();
    51. 

  51.         $ip = $_SERVER['REMOTE_ADDR'];
    52. 

  52.         $blacklisted = self::checkBlacklist($ip);
    53. 

  53. 

  54.         self::addBalcklist($ip);
    55. 

  55. 

  56.         $recent_attempts = array_filter($attempts, function ($attempt) use ($ip, $now, $time_window) {
    57. 

  57.             return $attempt['ip'] === $ip && ($now - $attempt['timestamp']) <= $time_window;
    58. 

  58.         });
    59. 

  59. 

  60.         if (count($recent_attempts) + 1 > self::$max_attempts && !self::checkBlacklist($ip)) {
    61. 

  61.             file_put_contents(self::$blacklist_file, "$ip\n", FILE_APPEND);
    62. 

  62.             $blacklisted = TRUE;
    63. 

  63.         }
    64. 

  64. 

  65.         if ($blacklisted == TRUE) {
    66. 

  66.             header('HTTP/1.0 401 Unauthorized');
    67. 

  67.             echo "Votre IP (" . $ip . ") a été blacklistée pour trop de tentatives.";
    68. 

  68.             exit();
    69. 

  69.         } else {
    70. 

  70.             echo "Votre IP est : " . $ip . ". Nombre de tentatives récentes : " . (count($recent_attempts) + 1);
    71. 

  71.             exit();
    72. 

  72.         }
    73. 

  73.     }
    74. 

  74. 

  75.     public static function itIs(){ // Est-il blacklisté
    76. 

  76.         $ip = $_SERVER['REMOTE_ADDR'];
    77. 

  77.         if(self::checkBlacklist($ip)){
    78. 

  78.             echo "Votre IP (" . $ip . ") a été blacklistée pour trop de tentatives.";
    79. 

  79.             exit();
    80. 

  80.         }
    81. 

  81.     }
    82. 

  82. 

  83. }
    84.