Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3356902

Timestamp:

09/05/2025 09:06:04 PM (7 months ago)

Author:

iridiumintel

Message:

Update trunk for version 2.0.3: bugfix for PHP 8.2 deprecation, refactored bad_query logic

Location:

bad-ip-wp/trunk

Files:

: 3 edited

README.txt (modified) (2 diffs)
bad-ip-wp.php (modified) (2 diffs)
includes/BadIPAdmin.php (modified) (14 diffs)

Legend:

: Unmodified
: Added
: Removed

bad-ip-wp/trunk/README.txt

-                      r3354922
+                      r3356902
 Requires at least: 3.0.1
 Tested up to: 6.6.0
 Stable tag: 2.0.2
+Stable tag: 2.0.3
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 …
 == Changelog ==
+= 2.0.3 =
+* bugfix for PHP 8.2 deprecation, refactored bad_query logic
 = 2.0.2 =

bad-ip-wp/trunk/bad-ip-wp.php

-                      r3354922
+                      r3356902
  * Description:       Bad IP WP is a lightweight, high-performance WordPress firewall plugin designed to block malicious actors in real time. Includes central server sync, TOR exit node filtering, brute-force protection, and live dashboard control. Built for agencies, sysadmins, and paranoid devs.
  *                    Centralized logging and real-time firewall control with dashboard integration.
  * Version:           2.0.2
+ * Version:           2.0.3
  * Author:            Iridium Intelligence
  * Author URI:        https://iridiumintel.com
 …
+}
 define('BAD_IP_VERSION', '2.0.2');
+define('BAD_IP_VERSION', '2.0.3');
 define('BAD_IP_PLUGIN_DIR', plugin_dir_path(__FILE__));
 define('BAD_IP_PLUGIN_URL', plugin_dir_url(__FILE__));

bad-ip-wp/trunk/includes/BadIPAdmin.php

-                      r3353501
+                      r3356902
         $user_ip = BadIPHelper::getUserIP();
         $_now = current_time('mysql');
+        //error_log("🚨 [BadIP] hook_bad_ip_head");
         if (BadIPHelper::checkIPInBlacklist($user_ip) && !BadIPHelper::checkIPInWhiteList($user_ip)) {
 …
         $settings = $wpdb->get_row("SELECT * FROM {$wpdb->prefix}bad_ip_settings");
         if (!$settings || !BadIPHelper::checkOnline(BAD_IP_API_URL)) {
+        if (!$settings) { // || !BadIPHelper::checkOnline(BAD_IP_API_URL)
             return;
+        }
 …
             return;
+        }
+        $origin    = $settings->login_incidents === '1' ? get_site_url() : 'anonymous';
+        $reporter  = get_site_url();
         $payload = [
             'uid' => $settings->token,
             'ip'  => $user_ip,
+            'origin' => $origin,
+            'reporter' => $reporter,
         ];
 …
         if ($cached_result !== false) {
             $rsp = json_decode($cached_result);
         } else {
             $response = wp_remote_post(BAD_IP_API_URL . 'bad_ip/check/?uid=' . $settings->token, [
 …
             $rsp_body = wp_remote_retrieve_body($response);
             set_transient($transient_key, $rsp_body, 60); // keširaj rezultat na 60 sekundi
+            set_transient($transient_key, $rsp_body, 600); // keširaj rezultat na 10 minuta
             $rsp = json_decode($rsp_body);
+        }
 …
+        }
+        /*
         if (!empty($_SERVER['QUERY_STRING']) && isset($_SERVER['REQUEST_URI'])) {
             $query = $_SERVER['REQUEST_URI'];
             if (!BadIPHelper::checkQuery($query)) {
                 error_log('✅ [BadIP] BADQUERY: ' . $query);
+                //error_log('✅ [BadIP] BADQUERY: ' . $query);
                 $payload = [
                     'uid'   => $settings->token,
                     'query' => $query,
+                    'origin'   => $origin,
+                    'reporter' => $reporter,
                 ];
                 $response = wp_remote_post(BAD_IP_API_URL . 'bad_query/check/?uid=' . $settings->token, [
 …
+            }
+        }
+        */
+    }
 …
+        }
         $origin    = $settings->login_incidents === '1' ? get_site_url() : 'anonymous';
         $reporter  = get_site_url();
+        //$origin    = $settings->login_incidents === '1' ? get_site_url() : 'anonymous';
+        //$reporter  = get_site_url();
         $qs        = $_SERVER['QUERY_STRING'] ?? '';
         $action    = $_SERVER['REQUEST_URI'] ?? null;
 …
+            }
+            /*
             $payload = [
                 'uid'      => $settings->token,
 …
                 'action'   => $action,
             ];
             $cache_key = 'bad_ip_check_' . md5($user_ip);
             $cached_rsp = get_transient($cache_key);
             if (!$cached_rsp) {
                 $response = wp_remote_post(BAD_IP_API_URL . 'bad_ip/check/?uid=' . $settings->token, [
 …
                 $rsp = $cached_rsp;
+            }
+            */
             // Log to local DB
 …
                 'action' => $action,
             ]);
+            $this->report_incident('bad_query', $action);
+        }
+    }
 …
         $url     = home_url(add_query_arg([], $_SERVER['REQUEST_URI']));
         $agent   = $_SERVER['HTTP_USER_AGENT'] ?? '';
+        $origin    = 'anonymous';
+        $reporter  = get_site_url();
         $data = [
 …
             'url'        => $url,
             'user_agent' => $agent,
+            'action'     => $detail,
+            'origin'     => $origin,
+            'reporter'     => $reporter,
         ];
         wp_remote_post(BAD_IP_API_URL . 'report', [
+        $response = wp_remote_post(BAD_IP_API_URL . 'incidents', [
             'method'    => 'POST',
             'timeout'   => 3,

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory