Rob Pengelly — Fri, 17 Mar 2000 21:51:00 +0000

Whoops

Honest mistake

Thanks for pointing that out

------------------
Patrick is my hero.

Orpheus — Fri, 17 Mar 2000 21:37:00 +0000

actually that wouldn't work

($num1,$num2,$num3,$num4)=split(/:/,$input);
would split the IP at a :. which they don't have

so just replace
($num1,$num2,$num3,$num4)=split(/:/,$input);

with

($num1,$num2,$num3,$num4)=split(/\./,$input);

the \ is required because the . is a pattern matching symbol.

Mark444 — Fri, 17 Mar 2000 20:10:00 +0000

Thanks!!! I'm going to test it right now
I'll let you know...

-----------------------
robp is my hero.

Rob Pengelly — Fri, 17 Mar 2000 15:14:00 +0000

I understand the IP problem. You could break down the IP , because usually the first 3 numbers are the same, so you could just look for those 3 numbers in the persons IP (If I am wrong, you could chang it to the first 2 numbers)

So just replace some of the code above to this:

code:

#Checking
($num1,$num2,$num3,$num4)=split(/:/,$input);

if(defined $people{$accountname})
{	
	if($people{$accountname} !~ m/$num1.$num2.$num3.(.*)/sogi) {$people{$accountname} .= ",$input"}
}
[/code]

------------------
Patrick is my hero.

Mark444 — Fri, 17 Mar 2000 11:31:00 +0000

Thanks guys for your replies
Robp's solution would be great but...most of our users have dynamic IPs and if they connect to our site 3 times a day they will show 3 different IPs. European providers use to assign dynamic IPs: every modem connection with ur ISP gives you a different one.
The cookie idea could work even if it's not the best security solution.
A cookie for every page visited who allows the same account only 3-4 pageviews a day for any article page would work...but anyone knows how to implement it?
The site runs on a Discus board (discusware.com) and that sw is pretty hard to customize...
Hope you can help...thanks

Rob Pengelly — Fri, 17 Mar 2000 04:16:00 +0000

I agree with Orpheus, try to add some code into the login script.

Try somthing like this in your login script:

code:

$input = $ENV{'REMOTE_ADDR'};
$file= 'log.txt';
$accountname = 'rob'; #or the variable the other script stores the username in (ie-$username)
#Opening file to get all the information
open(IN,"$file");
@data = <IN>;
close(IN);
foreach $line (@data)
{
	chop $line;
	($account,$ips)=split(/:/,$line);
	$people{$account} = $ips;
}	

#Checking
if(defined $people{$accountname})
{
	if($people{$accountname} !~ m/$input/sogi) {$people{$accountname} .= ",$input"};
}
else 
{
	$people{$accountname} = ",$input";
}		
	
	

#Printing info back into the file
open(IN,">$file");
foreach $account (sort keys %people) 
{
print IN "$account:$people{$account}\n";
}
close(IN);
[/code]

So, what this will do is keep track of all the IP's used by a username.  Add that into where people login.  Just check it occasionally, and if you see that a certain login is using  10+ IP's, more than 1 person may be using that account. 

------------------
Patrick is my hero.

[This message has been edited by robp (edited 16 March 2000).]

Orpheus — Fri, 17 Mar 2000 01:09:00 +0000

Restricting page views isn't the best idea. If I was only allowed 2 views a day on slashdot i'd die

I think you should do something with their IP addresses. Maybe put them in a small database that would record all the actions on their IP.

That way if you suspected someone of trading acounts you could just look at the database.

fairhousing — Thu, 16 Mar 2000 18:51:00 +0000

one way to stop it is to set a cookie on them. then if the cookie changes password or user name, both accounts r deleted.

it still want stop someone from doing it, but it will just make it a little harder for them.

good luck

------------------
Thumbs up or down ratings of the best and worst ways to make $$$ on the net. CLICK 4 CASH! from Affiliate Programs and Ad Networks