PHP/MySQL IP Ban List

Posted by Anonymous on May Tue 22nd 3:26 AM - Never ExpiresView followups from Anonymous| View : 42
Syntax: PHP
2348 characters | 78 lines | 2.29 KB
DOWNLOAD | RAW | EMBED | CREATE NEW VERSION OF THIS PASTE | REPORT ABUSE | x
  1. <?php
  2. /******************************************************************************
  3.  
  4. --
  5. -- Table structure for table `blocked_ips`
  6. --
  7.  
  8. CREATE TABLE IF NOT EXISTS `blocked_ips` (
  9.   `ip` varchar(39) COLLATE utf8_bin NOT NULL DEFAULT '0.0.0.0',
  10.   PRIMARY KEY (`ip`)
  11. ) ENGINE=InnoDB DEFAULT CHARSET=utf8 COLLATE=utf8_bin;
  12.  
  13. /******************************************************************************/
  14.  
  15. $dbhost                 = 'localhost';                          // hostname of the database server
  16. $dbuser                 = 'user';                                                       // database username
  17. $dbpass                 = 'pass';                                                       // database password
  18. $dbname                 = 'database';                                   // name of the database to use
  19. $admin_mail     = 'admin@localhost';    // admin's email address
  20.  
  21. /******************************************************************************
  22.   get_ip()      - Attempts to retrieve the most accurate IP possible from user.
  23. /******************************************************************************/
  24.  
  25. function get_ip()
  26. {
  27.   if(isset($_SERVER['X_FORWARDED_FOR']))
  28.   {
  29.     if(strpos($_SERVER['X_FORWARDED_FOR'], ',') === false)
  30.     {
  31.       return $_SERVER['X_FORWARDED_FOR'];
  32.     }
  33.     return trim(reset(explode(',', $_SERVER['X_FORWARDED_FOR'])));
  34.   }
  35.   return $_SERVER['REMOTE_ADDR'];
  36. }
  37.  
  38. $ip = get_ip();
  39.  
  40. // connect to the database
  41. $con    = mysql_connect($dbhost, $dbuser, $dbpass) or die(mysql_error());
  42. mysql_select_db($dbname) or die(mysql_error);
  43.  
  44. // build query
  45. $sql = mysql_query("SELECT * FROM blocked_ips WHERE ip='$ip' LIMIT 1");
  46. $result = mysql_num_rows($sql);
  47.  
  48. if ( $result == "1" )
  49. {
  50.         header("HTTP/1.1 403 Forbidden");
  51.         echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
  52.         "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
  53. <html>
  54.         <head>
  55.                 <meta http-equiv="Content-type" content="text/html; charset=utf-8" />
  56.                 <title>ERROR: 403 Forbidden - You have been banned!</title>
  57.                 <style type="text/css">
  58.                 </style>
  59.         </head>
  60.         <body>
  61.                 <h1>ERROR: 403 FORBIDDEN</h1>
  62.                 <p>
  63.                         It appears that your IP ( '.$ip.' ) has been banned from accessing
  64.                         this sites content. If you feel that this banning is in error, feel
  65.                         free to contact the sites administrator to have it removed.
  66.                 </p>
  67.                 <p>Admin Contact: <a href="MAILTO:'.$admin_mail.'">'.$admin_mail.'</a></p>
  68.         </body>
  69. </html>
  70. ';
  71.         die();
  72. }
  73. mysql_close($con);
  74.  
  75. // clean up variables
  76. unset($ip,$sql,$query,$result,$con,$dbhost,$dbuser,$dbpass,$dbpass);
  77.  
  78. /* end of file */