added: possibility to ban if a session cookie is incorrect (when we are using encoded cookies)

added: possibility to ban if a client tries to hijack the session cookie added: possibility to ban if a client did not send a session cookie renamed: ezc functions: login_cannot_login -> ipban_is_login_allowed_from_this_ip (and the return value was changed) login_when_available_login -> ipban_current_ip_expires_time added: config options: // after how many broken encoded cookie we should ban the current IP // default: 2 (value in the range <0 - 65535>) size_t broken_encoded_cookie_treshold; // after how many incorrect session identifiers (or session indices) we should ban the current IP // do not set this value too low, as people connecting from the same IP address (from behind a NAT) // would be banned if they have an old session cookie remembered in the browser // default: 128 (value in the range <0 - 65535>) size_t session_hijacking_treshold; // after how many times a client will be banned if it did not send a session cookie // default: 1000 (value in the range <0 - 65535>) size_t no_session_cookie_treshold; git-svn-id: svn://ttmath.org/publicrep/winix/trunk@995 e52654a7-88a9-db11-a3e9-0013d4bc506e
2014-11-24 20:22:30 +00:00
parent 76314aab10
commit c9bf20201b
18 changed files with 368 additions and 136 deletions
--- a/locale/en
+++ b/locale/en
@@ -164,7 +164,10 @@ ls_no_picture = There are not any pictures in this directory
 ipban_header = IP Banned
 ipban_col_id = Id
 ipban_col_ip_address = IP address
-ipban_col_login_failures = login failures
+ipban_col_login_failures = Login failures
+ipban_col_broken_cookie = Broken cookies
+ipban_session_hijacking = Session hijacking
+ipban_no_session_cookie = No session cookie
 ipban_col_login_allowed = Login allowed
 ipban_col_ban_level = Ban level
 ipban_col_active_flag = Active flag
@@ -177,7 +180,7 @@ ipban_has_active_flag = yes
 ipban_remove_ip = remove
 ipban_remove_all_ip = Remove all IP's from the list
 ipban_ban_list_empty = There are not any IP addresses banned at the moment.
-
+ipban_your_ip_is_banned = Your IP address is banned on this server until to:


 man_header = Man
@@ -333,7 +336,9 @@ locale_select = Select language


 login_header = Login
-login_cannot_login_from_this_ip = We are sorry but there were too many incorrect login attempts from your IP address.
+login_cannot_login_from_this_ip = We are sorry but you cannot login from this IP address.
+#We are sorry but there were too many incorrect login attempts from your IP address.
+
 login_cannot_login_available = The login process will be available since:


--- a/locale/pl
+++ b/locale/pl
@@ -168,13 +168,16 @@ ls_no_picture = W tym katalogu nie ma żadnego obrazu

 ipban_header = Lista zbanowanych adresów IP
 ipban_col_id = L.p.
-ipban_col_ip_address = adres IP
-ipban_col_login_failures = nieprawidłowe logowania
-ipban_col_login_allowed = możliwe logowanie
+ipban_col_ip_address = Adres IP
+ipban_col_login_failures = Nieprawidłowe logowania
+ipban_col_broken_cookie = Popsute ciastka
+ipban_session_hijacking = Podszywanie pod inną sesje
+ipban_no_session_cookie = Brak ciastka sesyjnego
+ipban_col_login_allowed = Możliwe logowanie
 ipban_col_ban_level = Rodzaj banu
 ipban_col_active_flag = Flaga active
 ipban_col_last_used = Ostatnio używany
-ipban_col_expires = Wygasza
+ipban_col_expires = Wygasa
 ipban_col_remove = Usuń
 ipban_loggin_allowed = tak
 ipban_loggin_not_allowed = nie
@@ -182,6 +185,7 @@ ipban_has_active_flag = tak
 ipban_remove_ip = usuń
 ipban_remove_all_ip = Usuń wszystkie adresy IP z listy
 ipban_ban_list_empty = W tej chwili nie ma żadnych zbanowanych adresów IP.
+ipban_your_ip_is_banned = Twój adres IP jest zablokowany aż do:


 meta_header = Meta
@@ -353,7 +357,9 @@ locale_select = Wybierz język


 login_header = Logowanie
-login_cannot_login_from_this_ip = Przepraszamy ale z twojego adresu IP było zbyt wiele prób nieprawidłowego logowania. 
+login_cannot_login_from_this_ip = Przepraszamy ale nie możesz się zalogować z tego adresu IP.
+#Przepraszamy ale z twojego adresu IP było zbyt wiele prób nieprawidłowego logowania. 
+
 login_cannot_login_available = Ponowne logowanie będzie możliwe dopiero od:

 uptime_header = Czas pracy systemu