Начало Каталог Помощ
Вход
CSE-Invent
/
CMS-CSE
огледало от https://git.cse-invent.com/product/cms.events.git
2
0
Разклонения 0
Файлове Задачи 0 Уики
ИН на ревизия: 6949b90e82
Клонове Маркери
CMS-CSE
/
public-cms
/
404.php

404.php 2.1 KB
История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. <?php
    2. 

  2. /*
    3. 

  3. $visitor_ip = $_SERVER['REMOTE_ADDR'];
    4. 

  4. 

  5. if(!blacklistisValidIPv4($visitor_ip)){
    6. 

  6.     $log_file = '../blacklist/ip_attempts.log';
    7. 

  7.     $blacklist_file = '../blacklist/ip.txt';
    8. 

  8.     $max_attempts = 5;
    9. 

  9.     $time_window = 10 * 60; // 10 minutes en secondes
    10. 

  10. 

  11.     // Charger les tentatives existantes
    12. 

  12.     $attempts = [];
    13. 

  13.     if (file_exists($log_file)) {
    14. 

  14.         $lines = file($log_file, FILE_IGNORE_NEW_LINES);
    15. 

  15.         foreach ($lines as $line) {
    16. 

  16.             list($ip, $timestamp) = explode(',', $line);
    17. 

  17.             $attempts[] = ['ip' => $ip, 'timestamp' => strtotime($timestamp)];
    18. 

  18.         }
    19. 

  19.     }
    20. 

  20. 

  21.     // Vérifier si l'IP est déjà blacklistée
    22. 

  22.     $blacklisted = false;
    23. 

  23.     if (file_exists($blacklist_file)) {
    24. 

  24.         $blacklisted_ips = file($blacklist_file, FILE_IGNORE_NEW_LINES);
    25. 

  25.         $blacklisted = in_array($visitor_ip, $blacklisted_ips);
    26. 

  26.     }
    27. 

  27. 

  28.     // Ajouter une nouvelle tentative
    29. 

  29.     file_put_contents($log_file, "$visitor_ip," . date('Y-m-d H:i:s') . ", " . $_SERVER["REQUEST_METHOD"] . "," . getFullUrl() . "\n", FILE_APPEND);
    30. 

  30. 

  31.     // Compter les tentatives récentes
    32. 

  32.     $now = time();
    33. 

  33.     $recent_attempts = array_filter($attempts, function ($attempt) use ($visitor_ip, $now, $time_window) {
    34. 

  34.         return $attempt['ip'] === $visitor_ip && ($now - $attempt['timestamp']) <= $time_window;
    35. 

  35.     });
    36. 

  36. 

  37.     if (count($recent_attempts) + 1 > $max_attempts && !$blacklisted) {
    38. 

  38.         file_put_contents($blacklist_file, "$visitor_ip\n", FILE_APPEND);
    39. 

  39.         $blacklisted = true;
    40. 

  40.     }
    41. 

  41. 

  42.     if ($blacklisted) {
    43. 

  43.         header('HTTP/1.0 401 Unauthorized');
    44. 

  44.         echo "Votre IP ($visitor_ip) a été blacklistée pour trop de tentatives.";
    45. 

  45.         exit();
    46. 

  46.     } else {
    47. 

  47.         echo "Votre IP est : $visitor_ip. Nombre de tentatives récentes : " . (count($recent_attempts) + 1);
    48. 

  48.     }
    49. 

  49. } else {
    50. 

  50.     echo json_encode([["error" => "404"]]);
    51. 

  51. }
    52. 

  52. */
    53. 

  53. 

  54. error_reporting(E_ALL);
    55. 

  55. ini_set('display_errors', 'On');
    56. 

  56. 

  57. require_once "../core/class/blacklist.class.php";
    58. 

  58. new blacklist;
    59. 

  59. 

  60. if(blacklist::isValidIPv4()){
    61. 

  61.     blacklist::execute("404");
    62. 

  62. } else {
    63. 

  63.     echo json_encode([["error" => "404"]]);
    64. 

  64. }
    65. 

  65. 

  66. ?>
    67.