Regarding phpBB3/includes/functions.php to remove session_id from links, I had to edit it in two places:
to:and also:to:I noticed that these bots are still trying to reach sites like: app.php/thankslist/givens/2/true?sid=xxxx... or app.php/help/faq?sid and only modifying the second occurrence in functions.php.
Today I have over 150 000 requests from different IP addresses from Brazil, Vietnam, Singapore and India. It's really annoying. I now forward these countries to my custom google captcha page. If they success, I store the IP in database of authorized ones and they can continue browsing the forum.
Code:
return $url . (($append_url) ? $url_delim . $append_url . $amp_delim : $url_delim) . $params . ((!$session_id) ? '' : $amp_delim . 'sid=' . $session_id) . $anchor;Code:
//Hotfix:global $user; if ($session_id && ($user->data['is_registered'] && !$user->data['is_bot'])) { return $url . (($append_url) ? $url_delim . $append_url . $amp_delim : $url_delim) . $params . ((!$session_id) ? '' : $amp_delim . 'sid=' . $session_id) . $anchor; } else { return $url . (($append_url) ? $url_delim . $append_url . $amp_delim : $url_delim) . $params . $anchor; }Code:
return $url . (($append_url) ? $url_delim . $append_url . $amp_delim : $url_delim) . 'sid=' . $session_id . $anchor;Code:
//Hotfix:global $user;if ($user->data['is_registered'] && !$user->data['is_bot']){return $url . (($append_url) ? $url_delim . $append_url . $amp_delim : $url_delim) . 'sid=' . $session_id . $anchor;}else {return $url . (($append_url) ? $url_delim . $append_url . "" : "") . $anchor;}Today I have over 150 000 requests from different IP addresses from Brazil, Vietnam, Singapore and India. It's really annoying. I now forward these countries to my custom google captcha page. If they success, I store the IP in database of authorized ones and they can continue browsing the forum.
Statistics: Posted by Moan — Fri May 16, 2025 4:05 pm