banipv6.php

<?php
require "include/bittorrent.php";
dbconn();
loggedinorreturn();
if (get_user_class() < UC_ADMINISTRATOR)
stderr("Sorry", "Access denied.");
$type_ = array('ip'=>"封禁单个ip",'building'=>"封禁全楼",'school'=>"封禁全校");

$remove = (int)$_GET['remove'];
if (is_valid_id($remove))
{
  sql_query("DELETE FROM banipv6 WHERE id=".mysql_real_escape_string($remove)) or sqlerr();
  write_log("IPv6Ban ".htmlspecialchars($remove)." was removed by $CURUSER[id] ($CURUSER[username])",'mod');
}

if ($_SERVER["REQUEST_METHOD"] == "POST" && get_user_class() >= UC_ADMINISTRATOR)
{
	$ip = trim($_POST["ip"]);
	$type = sqlesc(trim($_POST["type"]));
	$comment = trim($_POST["comment"]);
	$days=0;
	if ($_POST["fast"]=="never")$until=sqlesc('0000-00-00 00:00:00');
	else{
	if ($_POST["fast"]) $days=$_POST["fast"];
	if ($_POST["week"]) $days+=7*$_POST["week"];
	if ($_POST["days"]) $days+=$_POST["days"];
	if($days)$until=sqlesc(date("Y-m-d H:i:s",time()+86400*$days));
	}
	if (!$ip|| !$type || !$comment)
		stderr("Error", "数据丢失！");
	if (!validateIPv6($ip))
		stderr("Error", "IPv6地址格式不正确！");
	$iplong = IPv6ToLong($ip);
	$comment = sqlesc($comment);
	$added = sqlesc(date("Y-m-d H:i:s"));
	sql_query("INSERT INTO banipv6 (added, addedby, ip0, ip1, ip2, ip3, ip4, ip5, ip6, ip7, comment, type, until) VALUES($added, ".mysql_real_escape_string($CURUSER[id]).", $iplong[0], $iplong[1], $iplong[2], $iplong[3], $iplong[4], $iplong[5], $iplong[6], $iplong[7], $comment, $type, $until )") or sqlerr(__FILE__, __LINE__);
	header("Location: $_SERVER[REQUEST_URI]");
	die;
}

//ob_start("ob_gzhandler");

$res = sql_query("SELECT * FROM banipv6 ORDER BY added DESC") or sqlerr();

stdhead("IPv6地址封禁");

print("<h1>已封禁列表</h1>\n");

if (mysql_num_rows($res) == 0)
  print("<p align=center><b>列表为空！</b></p>\n");
else
{
  print("<table border=1 cellspacing=0 cellpadding=5>\n");
  print("<tr><td class=colhead>添加时间</td><td class=colhead align=left>被封禁ip</td><td class=colhead align=left>封禁范围</td><td class=colhead align=left>预计解封时间</td>".
    "<td class=colhead align=left>操作人</td><td class=colhead align=left>备注</td><td class=colhead>移除</td></tr>\n");

  while ($arr = mysql_fetch_assoc($res))
  {
	  $ip=array($arr[ip0],$arr[ip1],$arr[ip2],$arr[ip3],$arr[ip4],$arr[ip5],$arr[ip6],$arr[ip7]);
 	  print("<tr><td>".gettime($arr[added])."</td><td align=left>".LongToIPv6($ip)."</td><td align=left>".$type_[$arr[type]]."</td><td align=left>".($arr[until]=='0000-00-00 00:00:00'?"手动解除封禁":gettime($arr[until]))."</td><td align=left>". get_username($arr['addedby']) .
 	    "</td><td align=left>$arr[comment]</td><td><a href=banipv6.php?remove=$arr[id]>移除</a></td></tr>\n");
  }
  print("</table>\n");
}

if (get_user_class() >= UC_ADMINISTRATOR)
{
	print("<h1>添加新条目</h1>\n");
	print("<table border=1 cellspacing=0 cellpadding=5>\n");
	print("<form method=post action=banipv6.php>\n");
	print("<tr><td class=rowhead>待封禁ip地址：</td><td><input type=text name=ip size=40></td></tr>\n");
	print("<tr><td class=rowhead>封禁范围</td><td><select name=\"type\"><option value=\"ip\" selected=\"selected\">".$type_['ip']."</option><option value=\"building\" >".$type_['building']."</option><option value=\"school\" width=40 >".$type_['school']."</option></select>\n");
	print("<tr><td class=rowhead>封禁时间</td><td><select name=\"fast\"> <option value=\"never\" selected=\"selected\">不限时</option><option value=\"1\" > 1 天</option><option value=\"7\" > 1 周</option><option value=\"14\"> 2 周</option><option value=\"28\"> 4 周</option><option value=\"56\"> 8 周</option></select>+<input type=text name=week size=2>周+<input type=text name=days size=2>日</td></tr>\n");
	print("<tr><td class=rowhead>备注信息</td><td><input type=text name=comment size=40></td></tr>\n");
	print("<tr><td colspan=2 align=center><input type=submit value='确认' class=btn></td></tr>\n");
	print("</form>\n</table>\n");
}

stdfoot();

?>