Store banned IP addresses as plain text

Inspired by commit 32c8d0c (Store last login address as plain text, 2016-03-13). Signed-off-by: Lukas Fleischer <lfleischer@archlinux.org>
2025-02-03 10:43:03 +01:00 · 2017-01-25 08:37:48 +01:00 · 2017-01-25 08:37:48 +01:00 · 70db022aa8
commit 70db022aa8
parent f8916d7e9b
3 changed files with 9 additions and 2 deletions
--- a/schema/aur-schema.sql
+++ b/schema/aur-schema.sql
@ -376,7 +376,7 @@ CREATE TABLE IF NOT EXISTS TU_Votes (
 -- Malicious user banning
 --
 CREATE TABLE Bans (
-	IPAddress INTEGER UNSIGNED NOT NULL DEFAULT 0,
+	IPAddress VARCHAR(45) NULL DEFAULT NULL,
 	BanTS TIMESTAMP NOT NULL,
 	PRIMARY KEY (IPAddress)
 ) ENGINE = InnoDB;
--- a/upgrading/4.5.0.txt
+++ b/upgrading/4.5.0.txt
@ -11,3 +11,10 @@ ALTER TABLE Users
 	ADD COLUMN LastSSHLogin BIGINT UNSIGNED NOT NULL DEFAULT 0,
 	ADD COLUMN LastSSHLoginIPAddress VARCHAR(45) NULL DEFAULT NULL;
 ---
+
+3. Convert the IPAddress column of the Bans table to VARCHAR(45). If the table
+   contains any active bans, convert them accordingly:
+
+----
+ALTER TABLE Bans MODIFY IPAddress VARCHAR(45) NULL DEFAULT NULL;
+----
--- a/web/lib/acctfuncs.inc.php
+++ b/web/lib/acctfuncs.inc.php
@ -621,7 +621,7 @@ function try_login() {
 function is_ipbanned() {
 	$dbh = DB::connect();

-	$q = "SELECT * FROM Bans WHERE IPAddress = " . $dbh->quote(ip2long($_SERVER['REMOTE_ADDR']));
+	$q = "SELECT * FROM Bans WHERE IPAddress = " . $dbh->quote($_SERVER['REMOTE_ADDR']);
 	$result = $dbh->query($q);

 	return ($result->fetchColumn() ? true : false);