From 815223b9dc63bac789f3ed4525056bffdc80f4ca Mon Sep 17 00:00:00 2001 From: cynic Date: Fri, 11 Oct 2024 17:09:21 -0400 Subject: [PATCH] ASN whitelisting --- data/config.php | 13 +++++++++++++ lib/asn.php | 35 +++++++++++++++++++++++++++++++++++ lib/bot_protection.php | 32 ++++++++++++++++++++++++-------- 3 files changed, 72 insertions(+), 8 deletions(-) create mode 100644 lib/asn.php diff --git a/data/config.php b/data/config.php index 5c704ae..4de9992 100644 --- a/data/config.php +++ b/data/config.php @@ -40,6 +40,19 @@ class config{ //["fumo_plushies", 1006], //["minecraft", 848] ]; + + // the following refer to ASN whitelisting + // if you enable ASN whitelisting, no other bot protection will be used + // this doesn't work if you put it behind cloudflare + const ASN_WHITELIST = 0; + // the ASNs that should be allowed + const ASN_WHITELIST_LIST = [ + //example: + //["1337"] + ]; + // the whois server to hit up + const WHOIS_SERVER = "whois.cymru.com"; + const WHOIS_PORT = 43; // If this regex expression matches on the user agent, it blocks the request // Not useful at all against a targetted attack diff --git a/lib/asn.php b/lib/asn.php new file mode 100644 index 0000000..5bfa492 --- /dev/null +++ b/lib/asn.php @@ -0,0 +1,35 @@ + diff --git a/lib/bot_protection.php b/lib/bot_protection.php index e3d51a8..fec212d 100644 --- a/lib/bot_protection.php +++ b/lib/bot_protection.php @@ -1,20 +1,36 @@ "the ASN whitelist is enabled, and you ain't on it." + ]); + die(); + } + else{ + apcu_inc("real_requests"); + if($output === true){ + $frontend->loadheader( + $get, + $filters, + $page + ); + } + } + return; + } // check if we want captcha if(config::BOT_PROTECTION !== 1){ - apcu_inc("real_requests"); - if($output === true){ - $frontend->loadheader( - $get, - $filters, - $page - ); - } + return; }