dedecms如何防止恶意会员注册和恶意文章发布 - 小灰博客

dedecms如何防止恶意会员注册和恶意文章发布

文章来源：小灰博客| 时间：2013-06-19 17:57:53| 作者：Leo　| 1 条评论

文章分类：IT技术分享、PHP 标签： dedecms

最近用dede整了个网站，需要开启会员注册和会员发布文章功能，蛋疼的是开启没几天里面恶意注册会员和未审核的恶意文章满屏都是，虽然不审核不会影响前台显示，但看着是闹心的很啊，接下来支几招防御措施，

1、在后台系统-系统设置-系统基本参数设置-会员设置里将会员使用权限开通状态设置为 -1 手动审核然后将动态和状态的审核开启了如图

2、然后在系统-系统设置-验证安全设置-验证问题设置里把注册和投稿都开启了，如图

3、接下来基本就防止住了恶意文章的发布，但你会发现后台有很多需要审核的恶意注册会员这时候需要在织梦模板文件下的member 目录下面的index.php，reg_new.php文件里面加个来路的判断语句，

1
2
3
4
5
6
7
8
9
10
11

<?php if( stristr ($_SERVER['HTTP_REFERER'],"我们的域名")) /*如果你网站是两个域名的话可以写成这样if( stristr ($_SERVER['HTTP_REFERER'],"我们的域名1")||stristr ($_SERVER['HTTP_REFERER'],"我们的域名2"))*/
{
原文件php代码的正文
}
else {
echo '<script>
alert("恶意用户自重！正常用户如出现此页面请联系管理员 - Leo QQ：512562970")
setTimeout("location.href=\'http://我们的域名\'",20)
</script>';
}
?>

这样基本就可以堵住恶意注册了！当不是本站域名下来的就会弹出上面的警告框！当然魔高一尺道高一丈，等被破解了后在想相应的办法！

如果该文章帮到了您，不妨帮忙分享支持下博主！
同时也欢迎各位技术爱好者加入IT技术群（点击即可）：70035098　互相交流学习！

分享该文章到：

一条评论

高阳说道：

2017 年 8 月 14 日上午 12:28

其实增加评论的难度，虽然有效堵住了恶意注册用户，也干掉了正常的热心用户！。。。。。。。真无语啊！！！ 😥

回复

发表回复取消回复

分类

Android (4)
ASP (4)
HTML (29)
IOS (8)
IT技术分享 (161)
Javascript (21)
MYSQL (12)
Photoshop (1)
PHP (71)
SEO (4)
Windows (17)
其他 (34)
安全技术 (19)
小技巧 (47)
小灰闲谈 (11)
心情随写 (9)
程序囧事 (44)

IT技术分享

最新评论

+ 1.674227 BTC.GET - https://graph.org/Official-donates-from-Binance-04-01?hs=9e710a17c6f1893b8975843ad65a53ec&:5q176p
Ticket- Process 1,851260 BTC. Receive >> https://graph.org/Official-donates-from-Binance-04-01?hs=81d107938621831ce06bfc98e59470ae&:xtjbtk
+ 1.419261 BTC.NEXT - https://graph.org/Official-donates-from-Binance-04-01?hs=558cdf18520cfb0ab9368563ad878fe3&:t1ixi5
+ 1.200600 BTC.NEXT - https://graph.org/Official-donates-from-Binance-04-01?hs=20bcd57ec809274e19061c909e168662&:2ixvv9
+ 1.681136 BTC.GET - https://graph.org/Official-donates-from-Binance-04-01?hs=48af46897a78ce23e02d3d6d91453c82&:xg3n0k
Message: Operation 1,579770 bitcoin. Withdraw => https://graph.org/Official-donates-from-Binance-04-01?hs=8b618b6f3e2558ea545b01f25c66ea45&:f5w4y0
Reminder- TRANSFER 1.299580 BTC. Get => https://graph.org/Official-donates-from-Binance-04-01?hs=a0af85c70258e2d35864223f8bf1561e&:bapbbx
+ 1.195608 BTC.NEXT - https://graph.org/Message--17856-03-25?hs=9e710a17c6f1893b8975843ad65a53ec&:102182
+ 1.498411 BTC.NEXT - https://graph.org/Message--17856-03-25?hs=aac6bac50a00897dcb59231afcd85b90&:ca7l9u
+ 1.594516 BTC.GET - https://graph.org/Message--17856-03-25?hs=20bcd57ec809274e19061c909e168662&:xfnxxa
Notification- Process 1.846583 BTC. Verify =>> https://graph.org/Message--17856-03-25?hs=46cca2220f62b645c465c3659609f169&:o4qdng
+ 1.628365 BTC.NEXT - https://graph.org/Message--17856-03-25?hs=d2e9f25426f06f324d26af9866fa1537&:oh0f52
+ 1.106535 BTC.GET - https://graph.org/Message--17856-03-25?hs=98190feaf2cf13b298012d5af2183ac8&:lzc0m1
We send a transfer from unknown user. Next > https://graph.org/GET-BITCOIN-TRANSFER-02-23-2?hs=9e710a17c6f1893b8975843ad65a53ec&:fqrvth
Ticket: SENDING 0.75905835 BTC. Next => https://graph.org/GET-BITCOIN-TRANSFER-02-23-2?hs=189b84788c5e6405c53f7dd1193b9874&:h8yo8m
+ 0.75386069 BTC.NEXT - https://graph.org/GET-BITCOIN-TRANSFER-02-23-2?hs=d9564a149cf7ebbc725fcfce1bd3d512&:bc1353
Sending a transfer from unknown user. Take >> https://graph.org/GET-BITCOIN-TRANSFER-02-23-2?hs=b0daecdb412780460f6d70d2ebe7020c&:aau2lw
You have received a message(-s) № 221889. Open >> https://telegra.ph/Binance-Support-02-18?hs=bd8a1e7af9a0091b9e1cfeb86b9552cb&:kqpbhi
Notification; Operation №IV67. Go to withdrawal => https://telegra.ph/Binance-Support-02-18?hs=08b576daf9c0848743e65271d9d88559&:qwsyif
+ 0.75961990 BTC.NEXT - https://telegra.ph/Binance-Support-02-18?hs=20bcd57ec809274e19061c909e168662&:p4uthc

链接表