what to use in this case? sessions?

sponk

Hey,

I am developing a whois site and I wan't to restrict the amount of whois lookups per user so it doesn't get abused. For example, when somebody does 5 or more lookups within a minute, it should ban him temporarily for 2 or so min (in case this is not possible, I wrote a script where the user has to enter the numbers displayed as an image to proceed). Now my question is, how do I find out how many lookups the user did in a minute? Thanks and really appreciate any help and response! 🙂

sponk

bump :p

cdxrevvved

One solution would be to write a cookie to store the time of last lookup, and total lookups and use that for your comparison..

Another (if you dont want to hassle with cookies) would be to create a simple table in MySQL that stores the # of lookups and the time ...

There are several solutions that can be used, but those 2 would be easiest...

everytime the user does a lookup, you store the data, and use that to backtrack and reference.

sponk

thanks for your reply.
I got the session part but now I am lost on how to calculate the time. As I don't want more than 5 lookups per minute, could anyone write me a time function? thanks

sponk

bump

ednark

dont' use sessions those can be lost, too easily.

you want three bits of info

the ip address used, the time of the first hit, and the number of hits since

ip_address | first_hit_time | hit_count

then every time a whois is executed you
1) get current time
2) find a matching ip address in the table, if one doesn't exist, create it and set the first_hit time to current time
3) if the first_hit was more than 5 minutes ago, set hit_count to 1
4) if the first_hit was less than 5 min ago, increment the hit_count
5) if the hit count is above your abuse threshhold, do not execute the query
6) if the hit count is below your abuse threshhold, do the whois

7) run a cleaning program that runs every so ofter and removes all entries older than 5 minutes,

7) give a X% chance on every whois query of running a cleaning operation to remove all 5 minute old requests

so now you are left up to figuring out:
how to run your cron table clean up
how to connect and make table entries, remove table rows, update hit_times, deduce time differences

does that make sense?

happy coding

[edit]

most of those second set of problems can be found by simple reading up on the documentation of whatever database engine you use, both postges and mysql have searchable docs online.

sponk

thanks for your help! Got it working 😃

ednark

can you post your code for other people to see, or give a link to where we can see it in action, for others who find this post during a search

sponk

Sure, so here it goes:

$result1 = mysql_query("SELECT * FROM validation WHERE ip_address=\"$REMOTE_ADDR\"");
$result = mysql_fetch_array($result1);
//$current_time=date("H:i:s");
$current_time=date("His");
if(!$result)//if IP is not found
{
mysql_query("INSERT INTO validation (ip_address,first_hit_time,hit_count) VALUES ('$REMOTE_ADDR','$current_time','1')");
$val=1;
}
else//if IP is found
{
$hit_count=(int)$result['hit_count'];
$first_hit_time=$result['first_hit_time'];
$time_diff=(int)($current_time-$first_hit_time);
if($time_diff<500)//check if previous query less more than 5min ago
{
$hit_count=$hit_count+1;
}
else//previous query was more than 5min ago
{
$hit_count=1;
$first_hit_time=$current_time;
}

//update values in mysql database
mysql_query("UPDATE validation SET first_hit_time='$first_hit_time',hit_count='$hit_count' WHERE ip_address=\"$REMOTE_ADDR\"");

if($hit_count<5)//check if less than 5 queries were made
{
    $val=1;
}
else//more than 5 queries made
{
    $val=0;
}

}

if($val)
{
...do the action woohoo....
}
else
{
...display a message that they are over limit...
}