【向暴力群发(搜客,利剑)说不For Disciz 5.0 GBK!】2007/01/03更新

那位老大把删除好的给我发一份怎么样？估计我的是没删完，对代码不了解，所以没办法了。我邮箱lxshd@126.com，谢谢了。

1. <?php
   
2. 
   
3. $secnum['num_list'] = "1~1,2~2,3~3,4~4,5~5,6~6,7~7,8~8,9~9,10~10";
   
4. $secnum['hashname'] = 'kengni';
   
5. $secnum['fieldname_useranswer'] = "$mcspvalue";
   
6. $secnum['fieldname_mathresult'] = "$mcspinfo";
   
7. 
   
8. function math_comment_spam_protection() {
   
9.         global $secnum;
   
10.         $num_array = mcsp_aux_numbers_to_array($secnum['num_list']);
    
11.         $rand_keys = array_rand($num_array, 2);
    
12.         $mcsp_info['operand1'] = $num_array[$rand_keys[0]];
    
13.         $mcsp_info['operand2'] = $num_array[$rand_keys[1]];
    
14.         $result = $rand_keys[0] + $rand_keys[1];
    
15.         $mcsp_info['result'] = mcsp_aux_generate_hash($result, date(j));
    
16.         return $mcsp_info;
    
17. }
    
18. 
    
19. function mcsp_check_input($answer,$result) {
    
20.         global $secnum;
    
21.         $value_result = $result;
    
22.         $value_entered = preg_replace('/[^0-9]/','',$answer);       
    
23.         if ($value_entered == '') {
    
24.                                 $checkresult='no_answer';
    
25.         } elseif ( $value_result != mcsp_aux_generate_hash($value_entered, date(j)) ) {
    
26.                 if ( ( date('G') <= 1 ) AND ( $value_result == mcsp_aux_generate_hash($value_entered, (intval(date(j))-1) ) )  ) {
    
27. 
    
28.                 } else {
    
29.                                                 $checkresult='wrong_answer';
    
30.                 }
    
31.         }
    
32.         return $checkresult;
    
33. }
    
34. 
    
35. function mcsp_aux_generate_hash($inputstring, $day) {
    
36.         global $secnum;
    
37. $inputstring .= getenv('REMOTE_ADDR');
    
38.         $inputstring .= $secnum['hashname'];
    
39.         $inputstring .= $day . date('ny');
    
40.         $enc = strrev(md5($inputstring));
    
41.         $enc = substr($enc, 26, 1) . substr($enc, 10, 1) . substr($enc, 23, 1) . substr($enc, 3, 1) . substr($enc, 19, 1);
    
42.         return $enc;
    
43. }
    
44. function mcsp_aux_numbers_to_array($input) {
    
45. 
    
46.         $input = str_replace(' ', '', $input);       
    
47.         $sourcearray = explode(',', $input);       
    
48.         foreach ($sourcearray as $loopval) {
    
49.                 $temparr = explode('~', $loopval);
    
50.                 $targetarray[$temparr[0]] = $temparr[1];
    
51.         }
    
52.         return $targetarray;
    
53. }
    
54. function mcsp_aux_fieldname_formatting($input) {
    
55.        
    
56.         $return = preg_replace('/[^a-zA-Z0-9_\-]/', '', $input);
    
57.         return $return;
    
58. }
    
59. ?>

复制代码

这是我删除注释后的代码，那位帮看一下那里删错了

这个我就不太清楚了，我碰到一个有类似情况的，只要把注释删除，就OK了～～～！

能不能把你删除注释的代码发一份？我可能给删除的多了，对有些代码不认识。

这个就是删除注释后的了～～！

1. <?php
   
2. $secnum['num_list'] = "1~1,2~2,3~3,4~4,5~5,6~6,7~7,8~8,9~9,10~10";
   
3. $secnum['hashname'] = 'kengni';
   
4. $secnum['fieldname_useranswer'] = "$mcspvalue";
   
5. $secnum['fieldname_mathresult'] = "$mcspinfo";
   
6. function math_comment_spam_protection() {
   
7.         global $secnum;
   
8.         // Get numbers in array
   
9.         $num_array = mcsp_aux_numbers_to_array($secnum['num_list']);
   
10.         // Get random keys
    
11.         $rand_keys = array_rand($num_array, 2);
    
12.         // Operands for displaying...
    
13.         $mcsp_info['operand1'] = $num_array[$rand_keys[0]];
    
14.         $mcsp_info['operand2'] = $num_array[$rand_keys[1]];
    
15.         // Calculate result
    
16.         $result = $rand_keys[0] + $rand_keys[1];
    
17.         $mcsp_info['result'] = mcsp_aux_generate_hash($result, date(j));
    
18.         return $mcsp_info;
    
19. }
    
20. function mcsp_check_input($answer,$result) {
    
21.         global $secnum;
    
22.         // Get result
    
23.         $value_result = $result;
    
24.         // Get value user has entered
    
25.         $value_entered = preg_replace('/[^0-9]/','',$answer);        // Remove everything except numbers
    
26.         if ($value_entered == '') {
    
27.                 // Case 1: User has not entered an answer at all:
    
28.                 $checkresult='no_answer';
    
29.         } elseif ( $value_result != mcsp_aux_generate_hash($value_entered, date(j)) ) {
    
30.                 if ( ( date('G') <= 1 ) AND ( $value_result == mcsp_aux_generate_hash($value_entered, (intval(date(j))-1) ) )  ) {
    
31.                         // User has just passed midnight while writing the comment. We consider
    
32.                         // the time between 0:00 and 1:59 still as the day before to avoid
    
33.                         // error messages if user visited page on 23:50 but pressed the "Submit Comment"
    
34.                         // button on 0:15.
    
35.                 } else {
    
36.                         // Case 2: User has entered a wrong answer:
    
37.                         $checkresult='wrong_answer';
    
38.                 }
    
39.         }
    
40.         return $checkresult;
    
41. }
    
42. function mcsp_aux_generate_hash($inputstring, $day) {
    
43.         global $secnum;
    
44.         // Add IP address:
    
45.         //          [ not use for now... if users using dial-up connections, disconnect when writing
    
46.         //                    the comment and re-connect again, they will get a new IP address. ]
    
47.         // $inputstring .= getenv('REMOTE_ADDR');
    
48.         // Add name of the weblog:
    
49.         $inputstring .= $secnum['hashname'];
    
50.         // Add date:
    
51.         $inputstring .= $day . date('ny');
    
52.         // Get MD5 and reverse it
    
53.         $enc = strrev(md5($inputstring));
    
54.         // Get only a few chars out of the string
    
55.         $enc = substr($enc, 26, 1) . substr($enc, 10, 1) . substr($enc, 23, 1) . substr($enc, 3, 1) . substr($enc, 19, 1);
    
56.         // Return result
    
57.         return $enc;
    
58. }
    
59. function mcsp_aux_numbers_to_array($input) {
    
60.         // Converts the input string, e.g. "1~one, 2~two, 3~three, 4~four, ..."
    
61.         // into an array, e.g.: Array([1] => one, [2] => two, [3] => three, ...)
    
62.         $input = str_replace(' ', '', $input);        // Strip whitespace
    
63.         $sourcearray = explode(',', $input);        // Create array
    
64.         foreach ($sourcearray as $loopval) {
    
65.                 $temparr = explode('~', $loopval);
    
66.                 $targetarray[$temparr[0]] = $temparr[1];
    
67.         }
    
68.         return $targetarray;
    
69. }
    
70. function mcsp_aux_fieldname_formatting($input) {
    
71.         // Clean the input values for the field names...
    
72.         $return = preg_replace('/[^a-zA-Z0-9_\-]/', '', $input);
    
73.         return $return;
    
74. }
    
75. ?>

复制代码

非常感谢，我试一下。

非常感谢搂住，终于安装成功了，按照你删除注释后的上传的，看来我删除的注释删除的太多了。

我按你的方法修改后注册页面显示空白，请楼主教下我。谢谢

这帖子怎么跑这里来了？？？

注册页的提示有点往上了。改为

1. 
   
2. <tr>
   
3.         <td class="altbg1"><span class="bold">防止暴力注册</span></td>
   
4.         <td class="altbg2"><div class="input"><input type="text" name="mcspvalue" size="25" maxlength="15" id="mcspvalue"></div>
   
5.         <div id="mcsp" class="notice">&nbsp; <span class="smalltxt">请计算一个简单的加法 $mcsp_info[operand1] + $mcsp_info[operand2] ,将结果填写至左边.</span></div>
   
6.         <input type="hidden" name="mcspinfo" value="$mcsp_info['result']">
   
7.         </td>
   
8.         </tr>
   

复制代码

能好看一点～