diff options
| author | rvelices <rv-github@modusoptimus.com> | 2007-10-29 23:39:41 +0000 |
|---|---|---|
| committer | rvelices <rv-github@modusoptimus.com> | 2007-10-29 23:39:41 +0000 |
| commit | 831694b4d1a1e93b5ed6a8e1e4a0c80d21df95cd (patch) | |
| tree | 9a31419b292aad362bacbb83773c90d8060545e7 /include/functions_comment.inc.php | |
| parent | f33617a5b85fd9c842e4e415aebe9dd213595783 (diff) | |
- send status code 403 when attempt to enter a user comment, but comments are disabled
- don't increase hit count when a comment is posted
- remove the check of user ip agains spamhaus.org when a comment is entered (my conclusion is that is useless)
git-svn-id: http://piwigo.org/svn/trunk@2155 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include/functions_comment.inc.php')
| -rw-r--r-- | include/functions_comment.inc.php | 23 |
1 files changed, 6 insertions, 17 deletions
diff --git a/include/functions_comment.inc.php b/include/functions_comment.inc.php index 3a8139a9c..aaadb2fc9 100644 --- a/include/functions_comment.inc.php +++ b/include/functions_comment.inc.php @@ -30,7 +30,7 @@ function get_comment_post_key($image_id) { global $conf; - + $time = time(); return sprintf( @@ -68,21 +68,10 @@ function user_comment_check($action, $comment) { $link_count++; } - + if ( $link_count>$conf['comment_spam_max_links'] ) return $my_action; - if ( isset($comment['ip']) and $conf['comment_spam_check_ip'] - and $_SERVER["SERVER_ADDR"] != $comment['ip'] - ) - { - $rev_ip = implode( '.', array_reverse( explode('.',$comment['ip']) ) ); - $lookup = $rev_ip . '.sbl-xbl.spamhaus.org.'; - $res = gethostbyname( $lookup ); - if ( $lookup != $res ) - return $my_action; - } - return $action; } @@ -100,8 +89,8 @@ add_event_handler('user_comment_check', 'user_comment_check', function insert_user_comment( &$comm, $key, &$infos ) { global $conf, $user; - - $comm = array_merge( $comm, + + $comm = array_merge( $comm, array( 'ip' => $_SERVER['REMOTE_ADDR'], 'agent' => $_SERVER['HTTP_USER_AGENT'] @@ -161,7 +150,7 @@ SELECT COUNT(*) AS user_exists { $comment_action='reject'; } - + if ($comment_action!='reject' and $conf['anti-flood_time']>0 ) { // anti-flood system $reference_date = time() - $conf['anti-flood_time']; @@ -192,7 +181,7 @@ INSERT INTO '.COMMENTS_TABLE.' NOW(), "'.($comment_action=='validate' ? 'true':'false').'", '.($comment_action=='validate' ? 'NOW()':'NULL').', - '.$comm['image_id'].' + '.$comm['image_id'].' ) '; |