mirror of
https://gh.wpcy.net/https://github.com/webguyio/dam-spam.git
synced 2026-05-25 03:03:57 +08:00
663 lines
No EOL
27 KiB
PHP
663 lines
No EOL
27 KiB
PHP
<?php
|
|
|
|
if ( !defined( 'ABSPATH' ) ) {
|
|
status_header( 404 );
|
|
exit;
|
|
}
|
|
|
|
// phpcs:disable WordPress.DB.DirectDatabaseQuery -- Utility functions require direct DB access
|
|
|
|
function dam_spam_read_file( $f, $method = 'GET' ) {
|
|
$parms = array(
|
|
'timeout' => 10,
|
|
'method' => $method,
|
|
);
|
|
$result = wp_safe_remote_request( $f, $parms );
|
|
if ( empty( $result ) ) {
|
|
return '';
|
|
}
|
|
if ( is_array( $result ) ) {
|
|
$answer = $result['body'];
|
|
return $answer;
|
|
}
|
|
if ( is_object( $result ) ) {
|
|
$answer = 'ERR: ' . $result->get_error_message();
|
|
return $answer;
|
|
}
|
|
return '';
|
|
}
|
|
|
|
function dam_spam_get_icon_urls() {
|
|
return array(
|
|
'up' => DAM_SPAM_URL . 'assets/images/up.png',
|
|
'down' => DAM_SPAM_URL . 'assets/images/down.png',
|
|
'trash' => DAM_SPAM_URL . 'assets/images/trash.png',
|
|
'stop' => DAM_SPAM_URL . 'assets/images/stop.png',
|
|
'whois' => DAM_SPAM_URL . 'assets/images/whois.png',
|
|
'search' => DAM_SPAM_URL . 'assets/images/search.png',
|
|
);
|
|
}
|
|
|
|
function dam_spam_get_ajax_allowed_html() {
|
|
return array(
|
|
'a' => array(
|
|
'href' => array(),
|
|
'onclick' => array(),
|
|
'title' => array(),
|
|
'alt' => array(),
|
|
'target' => array(),
|
|
),
|
|
'img' => array(
|
|
'src' => array(),
|
|
'class' => array(),
|
|
'alt' => array(),
|
|
),
|
|
'br' => array(),
|
|
'tr' => array(),
|
|
'td' => array(),
|
|
);
|
|
}
|
|
|
|
function dam_spam_cloudflare_is_configured() {
|
|
$options = dam_spam_get_options();
|
|
$cf_email = isset( $options['cf_email'] ) ? trim( $options['cf_email'] ) : '';
|
|
$cf_api_key = isset( $options['cf_api_key'] ) ? trim( $options['cf_api_key'] ) : '';
|
|
$cf_zone_id = isset( $options['cf_zone_id'] ) ? trim( $options['cf_zone_id'] ) : '';
|
|
return !empty( $cf_email ) && !empty( $cf_api_key ) && !empty( $cf_zone_id );
|
|
}
|
|
|
|
function dam_spam_cloudflare_api_request( $endpoint, $method = 'GET', $data = null ) {
|
|
$options = dam_spam_get_options();
|
|
$cf_email = isset( $options['cf_email'] ) ? trim( $options['cf_email'] ) : '';
|
|
$cf_api_key = isset( $options['cf_api_key'] ) ? trim( $options['cf_api_key'] ) : '';
|
|
$cf_zone_id = isset( $options['cf_zone_id'] ) ? trim( $options['cf_zone_id'] ) : '';
|
|
if ( empty( $cf_email ) || empty( $cf_api_key ) || empty( $cf_zone_id ) ) {
|
|
return array( 'success' => false, 'message' => 'Cloudflare API not configured' );
|
|
}
|
|
$url = 'https://api.cloudflare.com/client/v4/' . ltrim( $endpoint, '/' );
|
|
$args = array(
|
|
'method' => $method,
|
|
'headers' => array(
|
|
'X-Auth-Email' => $cf_email,
|
|
'X-Auth-Key' => $cf_api_key,
|
|
'Content-Type' => 'application/json',
|
|
),
|
|
'timeout' => 30,
|
|
);
|
|
if ( $data !== null && ( $method === 'POST' || $method === 'PUT' || $method === 'PATCH' ) ) {
|
|
$args['body'] = wp_json_encode( $data );
|
|
}
|
|
$response = wp_remote_request( $url, $args );
|
|
if ( is_wp_error( $response ) ) {
|
|
return array( 'success' => false, 'message' => $response->get_error_message() );
|
|
}
|
|
$body = wp_remote_retrieve_body( $response );
|
|
$decoded = json_decode( $body, true );
|
|
if ( !isset( $decoded['success'] ) ) {
|
|
return array( 'success' => false, 'message' => 'Invalid API response' );
|
|
}
|
|
return $decoded;
|
|
}
|
|
|
|
function dam_spam_cloudflare_clear_cache() {
|
|
$options = dam_spam_get_options();
|
|
$cf_zone_id = isset( $options['cf_zone_id'] ) ? trim( $options['cf_zone_id'] ) : '';
|
|
$result = dam_spam_cloudflare_api_request(
|
|
'zones/' . $cf_zone_id . '/purge_cache',
|
|
'POST',
|
|
array( 'purge_everything' => true )
|
|
);
|
|
return $result;
|
|
}
|
|
|
|
function dam_spam_sync_ban_list_to_cloudflare() {
|
|
if ( !dam_spam_cloudflare_is_configured() ) {
|
|
return array( 'success' => false, 'message' => esc_html__( 'Cloudflare not configured', 'dam-spam' ) );
|
|
}
|
|
$options = dam_spam_get_options();
|
|
$cf_zone_id = $options['cf_zone_id'];
|
|
$manual_bans_raw = get_option( 'dam_spam_manual_bans', '' );
|
|
$automatic_bans = get_option( 'dam_spam_automatic_bans', array() );
|
|
$manual_bans = array();
|
|
if ( !empty( $manual_bans_raw ) ) {
|
|
$lines = explode( "\n", $manual_bans_raw );
|
|
foreach ( $lines as $line ) {
|
|
$ip = trim( $line );
|
|
if ( !empty( $ip ) && filter_var( $ip, FILTER_VALIDATE_IP ) ) {
|
|
$manual_bans[] = $ip;
|
|
}
|
|
}
|
|
}
|
|
if ( !is_array( $automatic_bans ) ) {
|
|
$automatic_bans = array();
|
|
}
|
|
$banned_ips = array_unique( array_merge( $manual_bans, array_keys( $automatic_bans ) ) );
|
|
$disable_ban_list = empty( $banned_ips );
|
|
$account_id_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}", 'GET', null );
|
|
if ( !isset( $account_id_response['success'] ) || $account_id_response['success'] !== true ) {
|
|
$error = isset( $account_id_response['message'] ) ? $account_id_response['message'] : esc_html__( 'Failed to get account ID', 'dam-spam' );
|
|
return array( 'success' => false, 'message' => $error );
|
|
}
|
|
$account_id = isset( $account_id_response['result']['account']['id'] ) ? $account_id_response['result']['account']['id'] : '';
|
|
if ( empty( $account_id ) ) {
|
|
return array( 'success' => false, 'message' => esc_html__( 'Account ID not found', 'dam-spam' ) );
|
|
}
|
|
$list_name = 'dam_spam_ips';
|
|
$lists_response = dam_spam_cloudflare_api_request( "accounts/{$account_id}/rules/lists", 'GET', null );
|
|
$list_id = null;
|
|
if ( isset( $lists_response['success'] ) && $lists_response['success'] === true && isset( $lists_response['result'] ) ) {
|
|
foreach ( $lists_response['result'] as $list ) {
|
|
if ( isset( $list['name'] ) && $list['name'] === $list_name ) {
|
|
$list_id = $list['id'];
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
$ip_limit = 10000;
|
|
if ( count( $banned_ips ) > $ip_limit ) {
|
|
$banned_ips = array_slice( $banned_ips, 0, $ip_limit );
|
|
}
|
|
$items = array();
|
|
foreach ( $banned_ips as $ip ) {
|
|
$items[] = array(
|
|
'ip' => $ip,
|
|
'comment' => 'Dam Spam'
|
|
);
|
|
}
|
|
if ( $disable_ban_list && !$list_id ) {
|
|
return array( 'success' => true, 'count' => 0, 'message' => esc_html__( 'No banned IPs to sync', 'dam-spam' ) );
|
|
} elseif ( $disable_ban_list && $list_id ) {
|
|
dam_spam_cloudflare_api_request( "accounts/{$account_id}/rules/lists/{$list_id}/items", 'PUT', array() );
|
|
} elseif ( $list_id ) {
|
|
$update_response = dam_spam_cloudflare_api_request( "accounts/{$account_id}/rules/lists/{$list_id}/items", 'PUT', $items );
|
|
if ( !isset( $update_response['success'] ) || $update_response['success'] !== true ) {
|
|
$error = isset( $update_response['message'] ) ? $update_response['message'] : esc_html__( 'Failed to update list', 'dam-spam' );
|
|
return array( 'success' => false, 'message' => $error );
|
|
}
|
|
} else {
|
|
$create_response = dam_spam_cloudflare_api_request( "accounts/{$account_id}/rules/lists", 'POST', array(
|
|
'name' => $list_name,
|
|
'kind' => 'ip',
|
|
'description' => 'IP addresses blocked by Dam Spam'
|
|
) );
|
|
if ( !isset( $create_response['success'] ) || $create_response['success'] !== true ) {
|
|
$error_msg = isset( $create_response['errors'][0]['message'] ) ? $create_response['errors'][0]['message'] : '';
|
|
if ( empty( $error_msg ) ) {
|
|
$error_msg = isset( $create_response['message'] ) ? $create_response['message'] : esc_html__( 'Failed to create list', 'dam-spam' );
|
|
}
|
|
return array( 'success' => false, 'message' => $error_msg );
|
|
}
|
|
$list_id = isset( $create_response['result']['id'] ) ? $create_response['result']['id'] : '';
|
|
if ( empty( $list_id ) ) {
|
|
return array( 'success' => false, 'message' => esc_html__( 'List ID not found', 'dam-spam' ) );
|
|
}
|
|
$update_response = dam_spam_cloudflare_api_request( "accounts/{$account_id}/rules/lists/{$list_id}/items", 'PUT', $items );
|
|
if ( !isset( $update_response['success'] ) || $update_response['success'] !== true ) {
|
|
$error = isset( $update_response['message'] ) ? $update_response['message'] : esc_html__( 'Failed to add items to list', 'dam-spam' );
|
|
return array( 'success' => false, 'message' => $error );
|
|
}
|
|
}
|
|
$rulesets_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets", 'GET', null );
|
|
$ruleset_id = null;
|
|
$rule_id = null;
|
|
if ( isset( $rulesets_response['success'] ) && $rulesets_response['success'] === true && isset( $rulesets_response['result'] ) ) {
|
|
foreach ( $rulesets_response['result'] as $ruleset ) {
|
|
if ( isset( $ruleset['phase'] ) && $ruleset['phase'] === 'http_request_firewall_custom' ) {
|
|
$ruleset_id = $ruleset['id'];
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
if ( $ruleset_id ) {
|
|
$ruleset_detail = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}", 'GET', null );
|
|
if ( isset( $ruleset_detail['success'] ) && $ruleset_detail['success'] === true && isset( $ruleset_detail['result']['rules'] ) ) {
|
|
foreach ( $ruleset_detail['result']['rules'] as $rule ) {
|
|
if ( isset( $rule['description'] ) && $rule['description'] === 'Dam Spam Block List' ) {
|
|
$rule_id = $rule['id'];
|
|
$existing_rule = $rule;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
if ( $rule_id ) {
|
|
$update_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}/rules/{$rule_id}", 'PATCH', $disable_ban_list
|
|
? array( 'action' => 'block', 'expression' => $existing_rule['expression'], 'description' => 'Dam Spam Block List', 'enabled' => false )
|
|
: array( 'action' => 'block', 'expression' => "(ip.src in \${$list_name})", 'description' => 'Dam Spam Block List', 'enabled' => true )
|
|
);
|
|
if ( !isset( $update_rule_response['success'] ) || $update_rule_response['success'] !== true ) {
|
|
$error_msg = isset( $update_rule_response['errors'][0]['message'] ) ? $update_rule_response['errors'][0]['message'] : '';
|
|
if ( empty( $error_msg ) ) {
|
|
$error_msg = isset( $update_rule_response['message'] ) ? $update_rule_response['message'] : esc_html__( 'Failed to update WAF rule', 'dam-spam' );
|
|
}
|
|
return array( 'success' => false, 'message' => $error_msg );
|
|
}
|
|
} elseif ( $disable_ban_list ) {
|
|
return array( 'success' => true, 'count' => 0, 'message' => esc_html__( 'Ban list cleared', 'dam-spam' ) );
|
|
} elseif ( $ruleset_id ) {
|
|
$create_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}/rules", 'POST', array(
|
|
'action' => 'block',
|
|
'expression' => "(ip.src in \${$list_name})",
|
|
'description' => 'Dam Spam Block List'
|
|
) );
|
|
} else {
|
|
$create_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/phases/http_request_firewall_custom/entrypoint", 'PUT', array(
|
|
'rules' => array(
|
|
array(
|
|
'action' => 'block',
|
|
'expression' => "(ip.src in \${$list_name})",
|
|
'description' => 'Dam Spam Block List'
|
|
)
|
|
)
|
|
) );
|
|
if ( !isset( $create_rule_response['success'] ) || $create_rule_response['success'] !== true ) {
|
|
$error_msg = isset( $create_rule_response['errors'][0]['message'] ) ? $create_rule_response['errors'][0]['message'] : '';
|
|
if ( empty( $error_msg ) ) {
|
|
$error_msg = isset( $create_rule_response['message'] ) ? $create_rule_response['message'] : esc_html__( 'Failed to create WAF rule', 'dam-spam' );
|
|
}
|
|
return array( 'success' => false, 'message' => $error_msg );
|
|
}
|
|
}
|
|
return array( 'success' => true, 'count' => count( $banned_ips ) );
|
|
}
|
|
|
|
function dam_spam_sync_countries_to_cloudflare() {
|
|
if ( !dam_spam_cloudflare_is_configured() ) {
|
|
return array( 'success' => false, 'message' => esc_html__( 'Cloudflare not configured', 'dam-spam' ) );
|
|
}
|
|
$options = dam_spam_get_options();
|
|
$cf_zone_id = $options['cf_zone_id'];
|
|
$cf_block_countries = isset( $options['cf_block_countries'] ) ? $options['cf_block_countries'] : 'N';
|
|
$countries = isset( $options['cf_blocked_countries'] ) && is_array( $options['cf_blocked_countries'] ) ? $options['cf_blocked_countries'] : array();
|
|
$disable_rule = ( $cf_block_countries != 'Y' || empty( $countries ) );
|
|
$country_codes = array_map( function( $code ) {
|
|
return '"' . strtoupper( sanitize_text_field( $code ) ) . '"';
|
|
}, $countries );
|
|
$expression = 'ip.geoip.country in {' . implode( ' ', $country_codes ) . '}';
|
|
$rulesets_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets", 'GET', null );
|
|
$ruleset_id = null;
|
|
$rule_id = null;
|
|
if ( isset( $rulesets_response['success'] ) && $rulesets_response['success'] === true && isset( $rulesets_response['result'] ) ) {
|
|
foreach ( $rulesets_response['result'] as $ruleset ) {
|
|
if ( isset( $ruleset['phase'] ) && $ruleset['phase'] === 'http_request_firewall_custom' ) {
|
|
$ruleset_id = $ruleset['id'];
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
if ( $ruleset_id ) {
|
|
$ruleset_detail = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}", 'GET', null );
|
|
if ( isset( $ruleset_detail['success'] ) && $ruleset_detail['success'] === true && isset( $ruleset_detail['result']['rules'] ) ) {
|
|
foreach ( $ruleset_detail['result']['rules'] as $rule ) {
|
|
if ( isset( $rule['description'] ) && $rule['description'] === 'Dam Spam Country Block' ) {
|
|
$rule_id = $rule['id'];
|
|
$existing_rule = $rule;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
if ( $rule_id ) {
|
|
$update_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}/rules/{$rule_id}", 'PATCH', $disable_rule
|
|
? array( 'action' => 'block', 'expression' => $existing_rule['expression'], 'description' => 'Dam Spam Country Block', 'enabled' => false )
|
|
: array( 'action' => 'block', 'expression' => $expression, 'description' => 'Dam Spam Country Block', 'enabled' => true )
|
|
);
|
|
if ( !isset( $update_rule_response['success'] ) || $update_rule_response['success'] !== true ) {
|
|
$error_msg = isset( $update_rule_response['errors'][0]['message'] ) ? $update_rule_response['errors'][0]['message'] : '';
|
|
if ( empty( $error_msg ) ) {
|
|
$error_msg = isset( $update_rule_response['message'] ) ? $update_rule_response['message'] : esc_html__( 'Failed to update WAF rule', 'dam-spam' );
|
|
}
|
|
return array( 'success' => false, 'message' => $error_msg );
|
|
}
|
|
} elseif ( $disable_rule ) {
|
|
return array( 'success' => true, 'count' => 0, 'message' => esc_html__( 'Country blocking disabled', 'dam-spam' ) );
|
|
} elseif ( $ruleset_id ) {
|
|
$create_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/{$ruleset_id}/rules", 'POST', array(
|
|
'action' => 'block',
|
|
'expression' => $expression,
|
|
'description' => 'Dam Spam Country Block'
|
|
) );
|
|
} else {
|
|
$create_rule_response = dam_spam_cloudflare_api_request( "zones/{$cf_zone_id}/rulesets/phases/http_request_firewall_custom/entrypoint", 'PUT', array(
|
|
'rules' => array(
|
|
array(
|
|
'action' => 'block',
|
|
'expression' => $expression,
|
|
'description' => 'Dam Spam Country Block'
|
|
)
|
|
)
|
|
) );
|
|
if ( !isset( $create_rule_response['success'] ) || $create_rule_response['success'] !== true ) {
|
|
$error_msg = isset( $create_rule_response['errors'][0]['message'] ) ? $create_rule_response['errors'][0]['message'] : '';
|
|
if ( empty( $error_msg ) ) {
|
|
$error_msg = isset( $create_rule_response['message'] ) ? $create_rule_response['message'] : esc_html__( 'Failed to create WAF rule', 'dam-spam' );
|
|
}
|
|
return array( 'success' => false, 'message' => $error_msg );
|
|
}
|
|
}
|
|
return array( 'success' => true, 'count' => count( $countries ) );
|
|
}
|
|
|
|
function dam_spam_write_ban_file() {
|
|
$manual_bans_raw = get_option( 'dam_spam_manual_bans', '' );
|
|
$automatic_bans = get_option( 'dam_spam_automatic_bans', array() );
|
|
$manual_bans = array();
|
|
if ( !empty( $manual_bans_raw ) ) {
|
|
$lines = explode( "\n", $manual_bans_raw );
|
|
foreach ( $lines as $line ) {
|
|
$ip = trim( $line );
|
|
if ( !empty( $ip ) && filter_var( $ip, FILTER_VALIDATE_IP ) ) {
|
|
$manual_bans[$ip] = true;
|
|
}
|
|
}
|
|
}
|
|
if ( !is_array( $automatic_bans ) ) {
|
|
$automatic_bans = array();
|
|
}
|
|
$all_bans = array_merge( $manual_bans, $automatic_bans );
|
|
global $wp_filesystem;
|
|
if ( empty( $wp_filesystem ) ) {
|
|
require_once ABSPATH . 'wp-admin/includes/file.php';
|
|
WP_Filesystem();
|
|
}
|
|
if ( !$wp_filesystem ) {
|
|
return;
|
|
}
|
|
$mu_plugin_file = WP_CONTENT_DIR . '/mu-plugins/dam-spam-banner.php';
|
|
if ( empty( $all_bans ) ) {
|
|
if ( file_exists( $mu_plugin_file ) ) {
|
|
wp_delete_file( $mu_plugin_file );
|
|
}
|
|
return;
|
|
}
|
|
$mu_plugin_content = "<?php\n";
|
|
$mu_plugin_content .= "/*\n";
|
|
$mu_plugin_content .= "Plugin Name: Dam Spam Banner\n";
|
|
$mu_plugin_content .= "Description: Blocks banned IPs before WordPress fully loads.\n";
|
|
$mu_plugin_content .= "*/\n\n";
|
|
$mu_plugin_content .= "\$visitor_ip = isset( \$_SERVER['REMOTE_ADDR'] ) ? \$_SERVER['REMOTE_ADDR'] : '';\n\n";
|
|
$mu_plugin_content .= "if ( isset( \$_SERVER['HTTP_CF_CONNECTING_IP'] ) && !empty( \$visitor_ip ) ) {\n";
|
|
$mu_plugin_content .= "\t\$cf_ip4 = array(\n";
|
|
$mu_plugin_content .= "\t\t'103.21.244.0/22', '103.22.200.0/22', '103.31.4.0/22',\n";
|
|
$mu_plugin_content .= "\t\t'104.16.0.0/13', '104.24.0.0/14', '108.162.192.0/18',\n";
|
|
$mu_plugin_content .= "\t\t'131.0.72.0/22', '141.101.64.0/18', '162.158.0.0/15',\n";
|
|
$mu_plugin_content .= "\t\t'172.64.0.0/13', '173.245.48.0/20', '188.114.96.0/20',\n";
|
|
$mu_plugin_content .= "\t\t'190.93.240.0/20', '197.234.240.0/22', '198.41.128.0/17',\n";
|
|
$mu_plugin_content .= "\t);\n";
|
|
$mu_plugin_content .= "\t\$cf_ip6 = array(\n";
|
|
$mu_plugin_content .= "\t\t'2400:cb00::/32', '2405:8100::/32', '2405:b500::/32',\n";
|
|
$mu_plugin_content .= "\t\t'2606:4700::/32', '2803:f800::/32', '2a06:98c0::/29',\n";
|
|
$mu_plugin_content .= "\t\t'2c0f:f248::/32',\n";
|
|
$mu_plugin_content .= "\t);\n";
|
|
$mu_plugin_content .= "\t\$bin_ip = inet_pton( \$visitor_ip );\n";
|
|
$mu_plugin_content .= "\tif ( \$bin_ip !== false ) {\n";
|
|
$mu_plugin_content .= "\t\t\$cf_ranges = strlen( \$bin_ip ) === 4 ? \$cf_ip4 : \$cf_ip6;\n";
|
|
$mu_plugin_content .= "\t\t\$len = strlen( \$bin_ip );\n";
|
|
$mu_plugin_content .= "\t\tforeach ( \$cf_ranges as \$range ) {\n";
|
|
$mu_plugin_content .= "\t\t\tlist( \$net, \$bits ) = explode( '/', \$range, 2 );\n";
|
|
$mu_plugin_content .= "\t\t\t\$bin_net = inet_pton( \$net );\n";
|
|
$mu_plugin_content .= "\t\t\tif ( \$bin_net === false || strlen( \$bin_net ) !== \$len ) {\n";
|
|
$mu_plugin_content .= "\t\t\t\tcontinue;\n";
|
|
$mu_plugin_content .= "\t\t\t}\n";
|
|
$mu_plugin_content .= "\t\t\t\$mask = str_repeat( \"\\xff\", (int) ( \$bits / 8 ) ) . ( \$bits % 8 ? chr( 0xff << ( 8 - \$bits % 8 ) ) : '' );\n";
|
|
$mu_plugin_content .= "\t\t\t\$mask = str_pad( \$mask, \$len, \"\\x00\" );\n";
|
|
$mu_plugin_content .= "\t\t\tif ( ( \$bin_ip & \$mask ) === ( \$bin_net & \$mask ) ) {\n";
|
|
$mu_plugin_content .= "\t\t\t\t\$visitor_ip = \$_SERVER['HTTP_CF_CONNECTING_IP'];\n";
|
|
$mu_plugin_content .= "\t\t\t\tbreak;\n";
|
|
$mu_plugin_content .= "\t\t\t}\n";
|
|
$mu_plugin_content .= "\t\t}\n";
|
|
$mu_plugin_content .= "\t}\n";
|
|
$mu_plugin_content .= "}\n\n";
|
|
$mu_plugin_content .= "\$dam_spam_banned_ips = array(\n";
|
|
foreach ( array_keys( $all_bans ) as $ip ) {
|
|
if ( !filter_var( $ip, FILTER_VALIDATE_IP ) ) {
|
|
continue;
|
|
}
|
|
$mu_plugin_content .= "\t'" . esc_sql( $ip ) . "' => true,\n";
|
|
}
|
|
$mu_plugin_content .= ");\n\n";
|
|
$mu_plugin_content .= "if ( !empty( \$visitor_ip ) && filter_var( \$visitor_ip, FILTER_VALIDATE_IP ) && isset( \$dam_spam_banned_ips[\$visitor_ip] ) ) {\n";
|
|
$mu_plugin_content .= "\theader( 'Connection: close' );\n";
|
|
$mu_plugin_content .= "\tignore_user_abort( true );\n";
|
|
$mu_plugin_content .= "\tob_start();\n";
|
|
$mu_plugin_content .= "\theader( 'Content-Length: 0' );\n";
|
|
$mu_plugin_content .= "\tob_end_flush();\n";
|
|
$mu_plugin_content .= "\tflush();\n";
|
|
$mu_plugin_content .= "\texit;\n";
|
|
$mu_plugin_content .= "}";
|
|
$mu_plugins_dir = WP_CONTENT_DIR . '/mu-plugins';
|
|
if ( !$wp_filesystem->is_dir( $mu_plugins_dir ) ) {
|
|
$wp_filesystem->mkdir( $mu_plugins_dir, FS_CHMOD_DIR );
|
|
}
|
|
$wp_filesystem->put_contents( $mu_plugin_file, $mu_plugin_content, FS_CHMOD_FILE );
|
|
}
|
|
|
|
function dam_spam_auto_migrate_from_stop_spammers() {
|
|
if ( get_option( 'dam_spam_options' ) !== false ) {
|
|
return;
|
|
}
|
|
$ss_options = get_option( 'ss_stop_sp_reg_options' );
|
|
$ss_stats = get_option( 'ss_stop_sp_reg_stats' );
|
|
if ( $ss_options === false ) {
|
|
return;
|
|
}
|
|
$dam_spam_options = dam_spam_map_old_to_new_options( $ss_options );
|
|
update_option( 'dam_spam_options', $dam_spam_options );
|
|
if ( $ss_stats !== false ) {
|
|
$dam_spam_stats = dam_spam_map_old_to_new_stats( $ss_stats );
|
|
update_option( 'dam_spam_stats', $dam_spam_stats );
|
|
}
|
|
update_option( 'dam_spam_migrated_from_ss', gmdate( 'Y-m-d H:i:s' ) );
|
|
}
|
|
|
|
function dam_spam_auto_migrate_from_old_dam_spam() {
|
|
if ( get_option( 'dam_spam_migrated_from_ds' ) !== false ) {
|
|
return;
|
|
}
|
|
if ( get_option( 'dam_spam_options' ) !== false ) {
|
|
return;
|
|
}
|
|
global $wpdb;
|
|
$old_options = $wpdb->get_results(
|
|
"SELECT option_name, option_value FROM {$wpdb->options} WHERE option_name LIKE 'ds_%'",
|
|
ARRAY_A
|
|
);
|
|
if ( empty( $old_options ) ) {
|
|
return;
|
|
}
|
|
foreach ( $old_options as $option ) {
|
|
$old_name = $option['option_name'];
|
|
$new_name = str_replace( 'ds_', 'dam_spam_', $old_name );
|
|
$value = maybe_unserialize( $option['option_value'] );
|
|
if ( $old_name === 'ds_options' && is_array( $value ) ) {
|
|
$new_value = array();
|
|
foreach ( $value as $key => $val ) {
|
|
if ( strpos( $key, 'ds_' ) === 0 ) {
|
|
$new_key = str_replace( 'ds_', 'dam_spam_', $key );
|
|
$new_value[$new_key] = $val;
|
|
} else {
|
|
$new_value[$key] = $val;
|
|
}
|
|
}
|
|
$value = $new_value;
|
|
}
|
|
update_option( $new_name, $value );
|
|
}
|
|
update_option( 'dam_spam_migrated_from_ds', gmdate( 'Y-m-d H:i:s' ) );
|
|
}
|
|
|
|
function dam_spam_map_old_to_new_options( $old_options ) {
|
|
$new_options = dam_spam_load( 'get_options', '' );
|
|
$migration_map = array(
|
|
'chkadminlog' => 'check_admin_log',
|
|
'chkaws' => 'check_aws',
|
|
'chkcloudflare' => 'check_cloudflare',
|
|
'chkgcache' => 'check_good_cache',
|
|
'chkgoogle' => 'check_google',
|
|
'chkmiscallowlist' => 'check_misc_allow_list',
|
|
'chkpaypal' => 'check_paypal',
|
|
'chkform' => 'check_form',
|
|
'chkscripts' => 'check_scripts',
|
|
'chkvalidip' => 'check_valid_ip',
|
|
'chkwlem' => 'check_allowed_email',
|
|
'chkwluserid' => 'check_allowed_user_id',
|
|
'chkwlist' => 'check_allow_list',
|
|
'chkwlistemail' => 'check_allow_list_email',
|
|
'chkstripe' => 'check_stripe',
|
|
'chkauthorizenet' => 'check_authorize_net',
|
|
'chkbraintree' => 'check_braintree',
|
|
'chkrecurly' => 'check_recurly',
|
|
'chksquare' => 'check_square',
|
|
'ss_private_mode' => 'dam_spam_private_mode',
|
|
'chk404' => 'check_404',
|
|
'chkaccept' => 'check_accept',
|
|
'chkadmin' => 'check_admin',
|
|
'chkagent' => 'check_agent',
|
|
'chkamazon' => 'check_amazon',
|
|
'chkbcache' => 'check_bad_cache',
|
|
'chkblem' => 'check_blocked_email',
|
|
'chkbluserid' => 'check_blocked_user_id',
|
|
'chkblip' => 'check_blocked_ip',
|
|
'chkbotscout' => 'check_botscout',
|
|
'chkdisp' => 'check_disposable',
|
|
'chkdnsbl' => 'check_dnsbl',
|
|
'chkexploits' => 'check_exploits',
|
|
'chkgooglesafe' => 'check_google_safe',
|
|
'chkhoney' => 'check_honeypot',
|
|
'chkhosting' => 'check_hosting',
|
|
'chkinvalidip' => 'check_invalid_ip',
|
|
'chklong' => 'check_long',
|
|
'chkshort' => 'check_short',
|
|
'chkbbcode' => 'check_bbcode',
|
|
'chkreferer' => 'check_referer',
|
|
'chksession' => 'check_session',
|
|
'chksfs' => 'check_sfs',
|
|
'chkspamwords' => 'check_spam_words',
|
|
'chkurlshort' => 'check_url_short',
|
|
'chkurls' => 'check_urls',
|
|
'chktld' => 'check_tld',
|
|
'chkubiquity' => 'check_ubiquity',
|
|
'chkakismet' => 'check_akismet',
|
|
'chkmulti' => 'check_multi',
|
|
'chktor' => 'check_tor',
|
|
'chkperiods' => 'check_periods',
|
|
'chkhyphens' => 'check_hyphens',
|
|
'badagents' => 'bad_agents',
|
|
'badTLDs' => 'bad_tlds',
|
|
'blist' => 'block_list',
|
|
'wlist' => 'allow_list',
|
|
'wlist_email' => 'allow_list_email',
|
|
'spamwords' => 'spam_words',
|
|
'blockurlshortners' => 'block_url_shortners',
|
|
'wlreqmail' => 'allow_list_request_email',
|
|
'wlreq' => 'allow_list_request',
|
|
'redirurl' => 'redirect_url',
|
|
'logfilesize' => 'log_file_size',
|
|
'rejectmessage' => 'reject_message',
|
|
'multicnt' => 'multicount',
|
|
'ss_sp_cache' => 'dam_spam_cache',
|
|
'ss_sp_hist' => 'dam_spam_hist',
|
|
'ss_sp_good' => 'dam_spam_good',
|
|
'ss_sp_cache_em' => 'dam_spam_cache_em',
|
|
);
|
|
foreach ( $old_options as $old_key => $value ) {
|
|
if ( isset( $migration_map[$old_key] ) ) {
|
|
$new_options[$migration_map[$old_key]] = $value;
|
|
} elseif ( strpos( $old_key, 'chk' ) !== 0 && strpos( $old_key, 'ss_' ) !== 0 && strpos( $old_key, 'cnt' ) !== 0 ) {
|
|
$new_options[$old_key] = $value;
|
|
}
|
|
}
|
|
$new_options['check_credit_card'] = 'Y';
|
|
$new_options['check_woo_form'] = 'N';
|
|
$new_options['check_gravity_form'] = 'N';
|
|
$new_options['check_wp_form'] = 'N';
|
|
$new_options['version'] = DAM_SPAM_VERSION;
|
|
return $new_options;
|
|
}
|
|
|
|
function dam_spam_map_old_to_new_stats( $old_stats ) {
|
|
$new_stats = dam_spam_load( 'get_stats', '' );
|
|
$count_map = array(
|
|
'cntchkaws' => 'count_check_aws',
|
|
'cntchkcloudflare' => 'count_check_cloudflare',
|
|
'cntchkgcache' => 'count_check_good_cache',
|
|
'cntchkgoogle' => 'count_check_google',
|
|
'cntchkmiscallowlist' => 'count_check_misc_allow_list',
|
|
'cntchkpaypal' => 'count_check_paypal',
|
|
'cntchkform' => 'count_check_form',
|
|
'cntchkscripts' => 'count_check_scripts',
|
|
'cntchkvalidip' => 'count_check_valid_ip',
|
|
'cntchkwlem' => 'count_check_allowed_email',
|
|
'cntchkwluserid' => 'count_check_allowed_user_id',
|
|
'cntchkwlist' => 'count_check_allow_list',
|
|
'cntcap' => 'count_captcha',
|
|
'cntncap' => 'count_captcha_fail',
|
|
'cntpass' => 'count_pass',
|
|
'cntchk404' => 'count_check_404',
|
|
'cntchkaccept' => 'count_check_accept',
|
|
'cntchkadmin' => 'count_check_admin',
|
|
'cntchkadminlog' => 'count_check_admin_log',
|
|
'cntchkagent' => 'count_check_agent',
|
|
'cntchkamazon' => 'count_check_amazon',
|
|
'cntchkakismet' => 'count_check_akismet',
|
|
'cntchkbcache' => 'count_check_bad_cache',
|
|
'cntchkblem' => 'count_check_blocked_email',
|
|
'cntchkuserid' => 'count_check_blocked_user_id',
|
|
'cntchkblip' => 'count_check_blocked_ip',
|
|
'cntchkbotscout' => 'count_check_botscout',
|
|
'cntchkdisp' => 'count_check_disposable',
|
|
'cntchkdnsbl' => 'count_check_dnsbl',
|
|
'cntchkexploits' => 'count_check_exploits',
|
|
'cntchkgooglesafe' => 'count_check_google_safe',
|
|
'cntchkhoney' => 'count_check_honeypot',
|
|
'cntchkhosting' => 'count_check_hosting',
|
|
'cntchkinvalidip' => 'count_check_invalid_ip',
|
|
'cntchklong' => 'count_check_long',
|
|
'cntchkshort' => 'count_check_short',
|
|
'cntchkbbcode' => 'count_check_bbcode',
|
|
'cntchkreferer' => 'count_check_referer',
|
|
'cntchksession' => 'count_check_session',
|
|
'cntchksfs' => 'count_check_sfs',
|
|
'cntchkspamwords' => 'count_check_spam_words',
|
|
'cntchkchkurlshort' => 'count_check_url_short',
|
|
'cntchktld' => 'count_check_tld',
|
|
'cntchkubiquity' => 'count_check_ubiquity',
|
|
'cntchkmulti' => 'count_check_multi',
|
|
'wlrequests' => 'allow_list_requests',
|
|
'spcount' => 'spam_count',
|
|
'spmcount' => 'spam_multisite_count',
|
|
'spmdate' => 'spam_multisite_date',
|
|
'spdate' => 'spam_date',
|
|
);
|
|
foreach ( $old_stats as $old_key => $value ) {
|
|
if ( isset( $count_map[$old_key] ) ) {
|
|
$new_stats[$count_map[$old_key]] = $value;
|
|
} elseif ( strpos( $old_key, 'cnt' ) !== 0 ) {
|
|
$new_stats[$old_key] = $value;
|
|
}
|
|
}
|
|
$new_stats['version'] = DAM_SPAM_VERSION;
|
|
return $new_stats;
|
|
}
|
|
|
|
add_action( 'admin_init', 'dam_spam_migrate_allow_list_email' );
|
|
function dam_spam_migrate_allow_list_email() {
|
|
$options = get_option( 'dam_spam_options' );
|
|
if ( !$options || !is_array( $options ) ) {
|
|
return;
|
|
}
|
|
if ( !isset( $options['allow_list_email'] ) || !is_array( $options['allow_list_email'] ) || empty( $options['allow_list_email'] ) ) {
|
|
return;
|
|
}
|
|
$allow_list = isset( $options['allow_list'] ) && is_array( $options['allow_list'] ) ? $options['allow_list'] : array();
|
|
foreach ( $options['allow_list_email'] as $email ) {
|
|
if ( !in_array( $email, $allow_list, true ) ) {
|
|
$allow_list[] = $email;
|
|
}
|
|
}
|
|
$options['allow_list'] = $allow_list;
|
|
$options['allow_list_email'] = array();
|
|
update_option( 'dam_spam_options', $options );
|
|
}
|
|
|
|
?>
|
