Ip User Banning

**Hart_House** · 07-20-2003, 08:05 PM

My website has been recently hacked thru the admin cp in which the user created an admin name and password for themselves. I have deleted this user and would now like to ban this user's ip from my website to prevent future hacks.

My suggestion would be to install a "user ip banning option" similar to vbulletin.

**tjoerg** · 07-21-2003, 04:23 AM

Could you tell us a bit more about that intrusion! Why did it happen?

I did a kind of ip checking!

Code:

<?PHP

$ip=$HTTP_SERVER_VARS["REMOTE_ADDR"];
$useragent=$HTTP_SERVER_VARS["HTTP_USER_AGENT"];

//echo $ip."<br>".$useragent."<br>";


//ip_check
$block_ip = array(	"'123.456.789.01'", 
		"'123.456.789.01'", 
		"'123.456.789.01'", 
		"'123.456.789.01'",
		"'123.456.789.01'",
		);

foreach ($block_ip as $value) { 
	if (preg_match($value, $ip)) exit;
 	}

?>

Get the ip-values with the one you want to check and include that file from your appliation.php too! I additionally did a "htaccess" protection for the admin and adm_template.

**Hart_House** · 07-26-2003, 11:51 AM

The hacking was a bit of my own fault because I accidently uploaded the tools folder. I have talked to dody about not including this in the download or int he upload folder because I know of many people who have uploaded this file by accident. I left this file up and someone found it and created an admin.

All is well now...

Thread: Ip User Banning

Thread Tools

Display

Ip User Banning

Similar Threads

Requiring User in Add.php

Unable to log user out

looking up user during add process

User login problem

User CP questions ???

Posting Permissions