Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    Copyright
    Preface
    Ch. 1. Strings
    Ch. 2. Numbers
    Ch. 3. Dates and Times
    Ch. 4. Arrays
    Ch. 5. Variables
    Ch. 6. Functions
    Ch. 7. Classes and Objects
    Ch. 8. Web Basics
    Introduction
    Recipe 8.2. Setting Cookies
    Recipe 8.3. Reading Cookie Values
    Recipe 8.4. Deleting Cookies
    Recipe 8.5. Redirecting to a Different Location
    Recipe 8.6. Using Session Tracking
    Recipe 8.7. Storing Sessions in a Database
    Recipe 8.8. Detecting Different Browsers
    Recipe 8.9. Building a GET Query String
    Recipe 8.10. Using HTTP Basic Authentication
    Recipe 8.11. Using Cookie Authentication
    Recipe 8.12. Flushing Output to the Browser
    Recipe 8.13. Buffering Output to the Browser
    Recipe 8.14. Compressing Web Output with gzip
    Recipe 8.15. Hiding Error Messages from Users
    Recipe 8.16. Tuning Error Handling
    Recipe 8.17. Using a Custom Error Handler
    Recipe 8.18. Logging Errors
    Recipe 8.19. Eliminating "headers already sent" Errors
    Recipe 8.20. Logging Debugging Information
    Recipe 8.21. Reading Environment Variables
    Recipe 8.22. Setting Environment Variables
    Recipe 8.23. Reading Configuration Variables
    Recipe 8.24. Setting Configuration Variables
    Recipe 8.25. Communicating Within Apache
    Recipe 8.26. Profiling Code
    Recipe 8.27. Program: Website Account (De)activator
    Recipe 8.28. Program: Abusive User Checker
    Ch. 9. Forms
    Ch. 10. Database Access
    Ch. 11. Web Automation
    Ch. 12. XML
    Ch. 13. Regular Expressions
    Ch. 14. Encryption and Security
    Ch. 15. Graphics
    Ch. 16. Internationalization and Localization
    Ch. 17. Internet Services
    Ch. 18. Files
    Ch. 19. Directories
    Ch. 20. Client-Side PHP
    Ch. 21. PEAR
    Colophon
    Index
    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 8. Web Basics > Program: Abusive User Checker

    Recipe 8.28. Program: Abusive User Checker

    Shared memory's speed makes it an ideal way to store data different web server processes need to access frequently when a file or database would be too slow. Example 8-7 shows the pc_Web_Abuse_Check class, which uses shared memory to track accesses to web pages in order to cut off users that abuse a site by bombarding it with requests.

    Example 8-7. pc_Web_Abuse_Check class

    Code View: Scroll / Show All
    class pc_Web_Abuse_Check {
  var $sem_key;
  var $shm_key;
  var $shm_size;
  var $recalc_seconds;
  var $pageview_threshold;
  var $sem;
  var $shm;
  var $data;
  var $exclude;
  var $block_message;

  function pc_Web_Abuse_Check() {
    $this->sem_key = 5000;
    $this->shm_key = 5001;
    $this->shm_size = 16000;
    $this->recalc_seconds = 60;
    $this->pageview_threshold = 30;

    $this->exclude['/ok-to-bombard.html'] = 1;
    $this->block_message =<<<END
<html>
<head><title>403 Forbidden</title></head>
<body>
<h1>Forbidden</h1>
You have been blocked from retrieving pages from this site due to
abusive repetitive activity from your account. If you believe this
is an error, please contact 
<a href="mailto:webmaster@example.com?subject=Site+Abuse">webmaster@example.com</a>.
</body>
</html>
END;
   }
  
  function get_lock() {
    $this->sem = sem_get($this->sem_key,1,0600);
    if (sem_acquire($this->sem)) {
      $this->shm = shm_attach($this->shm_key,$this->shm_size,0600);
      $this->data = shm_get_var($this->shm,'data');
    } else {
      error_log("Can't acquire semaphore $this->sem_key");
    }
  }

  function release_lock() {
    if (isset($this->data)) {
      shm_put_var($this->shm,'data',$this->data);
    }
    shm_detach($this->shm);
    sem_release($this->sem);
  }

  function check_abuse($user) {
    $this->get_lock();
    if ($this->data['abusive_users'][$user]) {
      // if user is on the list release the semaphore & memory 
      $this->release_lock();
      //  serve the "you are blocked" page 
      header('HTTP/1.0 403 Forbidden');
      print $this->block_message;
      return true;
    } else {
     // mark this user looking at a page at this time 
     $now = time();
     if (! $this->exclude[$_SERVER['PHP_SELF']]) {
       $this->data['user_traffic'][$user]++;
     }
     // (sometimes) tote up the list and add bad people 
     if (! $this->data['traffic_start']) {
       $this->data['traffic_start'] = $now;
     } else {
       if (($now - $this->data['traffic_start']) > $this->recalc_seconds) {
         while (list($k,$v) = each($this->data['user_traffic'])) {
           if ($v > $this->pageview_threshold) {
             $this->data['abusive_users'][$k] = $v;
             // log the user's addition to the abusive user list 
             error_log("Abuse: [$k] (from ".$_SERVER['REMOTE_ADDR'].')');
           }
         }
         $this->data['traffic_start'] = $now;
         $this->data['user_traffic'] = array();
       }
     }
     $this->release_lock();
    }
    return false;
  }
}

    Click here to edit, compile, and run this code in real-time using CodeSaw


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial


      
    • Safari Books Online
    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint