ban user by IP

Anon

Can any kind person tell me how to ban a user by IP address?
I want to stop a spammer!
tia

Anon

Ban from where? Email? web page? form?

ame12

If it's a web-based system, just compare $REMOTE_ADDR in your login or authentication area. That's the client IP address (e.g., 111.222.15.18). Your server logs should help isolate which IP address the offender's coming in from.

Dave

===========================================
http://badblue.com/helpphp.htm
Get PHP up and running fast: Win95,98,ME,NT

BadBlue: a free, small footprint web server

Anon

hello
this i think can be done as suggested by dave

heres a sample for this

$remoteip = $REMOTE_ADDR ;

$banip = getipbyname(urname.bom.x);
// this gives u the ip to be banned which is dynamic

//just compare the ips and njoy

if ($remote ip == $banip) {

echo "Hello Mr -- ur r unwanted guest";
} else {
echo "welcome";
}

i hope this is what u want

enjoy

cheers
mandar@freeos.com

Anon

Yeah, mandar and Dave, you CAN compare the $REMOTE_ADDR as a way of blocking an IP, but it is largely ineffective nowadays with DNS and NAT's.

DNS - Different IP every couple of days (depending on lease rate and config of server) OR if you are AOL, every time you log in. So that won't work.

NAT - Cable modems/High Speed. The NAT gives everyone on the same node the same IP while on the internet. So you could get a dozen guys with the same IP trying to visit your site that are getting banned.

As well (for the really paranoid) : www.anonymizer.com (and other sites like it) will re-route you through one of their servers so that your IP won't be available to the sites you visit.

As you can see, locking down one particular user is next to impossible if they have even the slightest knowledge of computers.

Until there is a way to pinpoint a computer (even that is no good with Public Comps at Colleges and Libraries) to a specific user, you don't have a lot of options.

Your best bet to stop a spammer, I think, is to make your message board "private" and force the email to be from a non-free email provider (like hotmail and mail) BUT that would take a lot of coding to build the array to block out all possible free email addresses.

Or just charge them a registration fee before they can post. That will stop your spammer cold (and most of your visitors).

Good luck.

Anon

thanks guys for all the response.It was web based...I am now thinking carefully as to which course of action to take.It would seem that i have a few options..
🙂)

jconner

I believe you meant DHCP and not DNS. DNS is the name service used to translate IP addresses to names and vice versa. DNS does not have a "lease rate" it has an expiration time. DHCP is not usually used with dial-up accounts. RADIUS is, however. RADIUS provides an IP address to dialup users. AOL uses RADIUS for its dialup users as well (most likely).

NAT allows the attachment of several nodes to one IP address. This allows a cable modem user to have 5 or 10 machines all connected one cable modem with only one real IP address. This is technically a type of firewall. However, the way you descrbe it is a lil bit inaccurate. The machines on the internal network all have seperate IP addresses in some private IP address space. Each machine has a default gateway setting pointed to the NAT router (many people use Linux, FreeBSD, DSL router (including ISDN or iDSL), or a similar routing device). The NAT router decides if the traffic coming to it on the network is Internet bound or for the internal network. If it is for the internal it discards it (usually). If it is for the Internet it translates the internal IP address to the real IP address that the cable modem provides and sends it on. When the traffic comes back it checks to see where that traffic should go and sends it to the computer on the internal network the traffic was destined for.

Anon

DHCP, not DNS. My bad, was working on my ODBC connections and had DSN on the mind so I guess I converted that to DNS.

I understand fully how a NAT operates and the way I describe it is accurate (I didn't bother with the intrAnet side since it was irrelevant but did mention "on the internet"), but was simplifying it for the masses.

Also, the "expiration date" you mention is incorrect. You do, in fact, 'lease' your IP address if you are using DHCP for <i>n</i> days depending on your server config.

🙂