Login de \"$I{F}{unickname}\" ha fallado.
Por favor, inténtalo de nuevo. $I{F}{op}
";
$I{F}{op} = "Vista previa";
}
unless ($I{F}{sid}) {
# Posting from outside discussions...
$I{F}{sid} = $ENV{HTTP_REFERER} ? crypt($ENV{HTTP_REFERER}, 0) : '';
$I{story_time} = sqlSelect("time", "stories", "sid = '$I{F}{sid}'");
$I{story_time} ||= "now()";
unless (sqlSelect("title", "discussions", "sid='$I{F}{sid}'")) {
sqlInsert("discussions", {
sid => $I{F}{sid},
title => '',
ts => $I{story_time},
url => $ENV{HTTP_REFERER}
});
}
}
if ($I{F}{op} eq "Enviar") {
if (checkSubmission("comments", $I{post_limit}, $I{max_posts_allowed}, $id)) {
($I{U}{karma}) = sqlSelect("karma", "users_info", "uid=$I{U}{uid}") if $I{U}{uid} > 0;
submitComment();
}
} elsif ($I{F}{op} eq "Edit" ||
$I{F}{op} eq "post" ||
$I{F}{op} eq "Vista Previa" ||
$I{F}{op} eq "Responder") {
if ($I{F}{op} eq 'Responder') {
insertFormkey("comments",$id,$I{F}{sid});
}
# find out their Karma
($I{U}{karma}) = sqlSelect("karma", "users_info",
"uid=$I{U}{uid}") if $I{U}{uid} > 0;
editComment($id);
} elsif ($I{F}{op} eq "delete" && $I{U}{aseclev}) {
($I{U}{karma}) = sqlSelect("karma", "users_info", "uid=$I{U}{uid}")
if $I{U}{uid} > 0;
titlebar("99%", "Borra $I{F}{cid}");
my $delCount = deleteThread($I{F}{sid}, $I{F}{cid});
$I{dbh}->do("UPDATE stories SET commentcount=commentcount-$delCount,
writestatus=1 WHERE sid=" . $I{dbh}->quote($I{F}{sid})
);
print "Deleted $delCount items from story $I{F}{sid}\n";
} elsif ($I{F}{op} eq "moderar") {
($I{U}{karma}) = sqlSelect("karma", "users_info", "uid=$I{U}{uid}")
if $I{U}{uid} > 0;
titlebar("99%", "Moderamos $I{F}{sid}");
moderate();
printComments($I{F}{sid}, $I{F}{pid}, $I{F}{cid}, $commentstatus);
} elsif ($I{F}{op} eq "Cambiar") {
saveChanges() if $I{U}{uid} > 0;
printComments($I{F}{sid}, $I{F}{cid}, $I{F}{cid}, $commentstatus);
} elsif ($I{F}{Rate}) {
if ($I{F}{rating_type} eq 'comment') {
my %ratings;
foreach (sort keys %{$I{F}}) {
if (/^rating_(\d+)$/) {
my $rating_field = "rating_" . $1;
my $comment_field = "comment_" . $1;
$ratings{$1}{rating} = $I{F}{$rating_field};
$ratings{$1}{comment} = $I{F}{$comment_field};
}
}
rateComment ($I{F}{sid}, \%ratings);
}
printComments ($I{F}{sid}, $I{F}{cid}, $I{F}{cid}, $commentstatus);
} elsif ($I{F}{cid}) {
printComments($I{F}{sid}, $I{F}{cid},$I{F}{cid}, $commentstatus);
} elsif($I{F}{sid}) {
printComments($I{F}{sid}, $I{F}{pid}, "", $commentstatus);
} else {
commentIndex();
}
writelog("comments", $I{F}{sid});
footer();
}
##################################################################
# Index of recent discussions: Used if comments.pl is called w/ no
# parameters
sub commentIndex {
titlebar("90%", "Varias Discusiones activas");
print qq! \n\n";
}
if (!checkTimesPosted("comments", $I{max_posts_allowed}, $id, $formkey_earliest)) {
my $max_posts_warn =< \n";
}
titlebar("95%", "Publicar Comentario");
print < Si tienes problemas para publicar comentarios,
escribe por favor a
$I{siteadmin_name}.
EOT
#Important Stuff:
#
EOT
return;
}
} elsif ($isTrollish) {
editComment() and return unless $preview;
print <
EOT
return;
}
}
# interpolative hash ref. Got these figures by testing out
# several paragraphs of text and saw how each compressed
# the key is the ratio it should compress, the array lower,upper
# for the ratio. These ratios are _very_ conservative
# a comment has to be absolute shit to trip this off
my $limits = {
1.3 => [10,19],
1.1 => [20,29],
.8 => [30,44],
.5 => [45,99],
.4 => [100,199],
.3 => [200,299],
.2 => [300,399],
.1 => [400,1000000],
};
# Ok, one list ditch effort to skew out the trolls!
if (length($I{F}{postercomment}) >= 10) {
for (keys %$limits) {
# DEBUG
# print "ratio $_ lower $limits->{$_}->[0] upper $limits->{$_}->[1] Se produjo un error desconocido durante el envío.
EOT
# put in hidden field if there's a formkey
print qq(\n);
# 5/15/00 jowaxman
# Don't force a login if comments are all posted anonymously.
if ($I{post_comments_anon}) {
my $author_name;
$author_name = $I{U}{nickname};
print <
Nombre: $I{U}{nickname}
Email
Mostrar junto al comentario
You are not logged in. You can login now using the
convenient form below, or
Create an Account.
Posts without proper registration are posted as
$I{U}{nickname}
Nick
Passwd
Name
$I{U}{nickname} [
EOT
print $I{U}{uid} > 0 ? < \n\n";
print <Email
$I{U}{fakeemail}
EOT
print <URL
$I{U}{homepage}
EOT
}
print qq!\tTítulo \n\n!;
if ($I{F}{pid} && !$I{F}{postersubj}) {
$I{F}{postersubj} = $reply->{subject};
$I{F}{postersubj} =~ s/^Re://i;
$I{F}{postersubj} =~ s/\s\s/ /g;
$I{F}{postersubj} = "Re:$I{F}{postersubj}";
}
print "\t\t", $I{query}->textfield(
-name => 'postersubj',
-default => $I{F}{postersubj},
-size => 50,
-maxlength => 50
), " Comentario
EOT
#
(Use the Preview Button! Check those URLs!
# Don't forget the http://!)
my $checked = $I{F}{nobonus} ? ' CHECKED' : '';
print qq!\t\t No Score +1 Bonus\n!
if $I{U}{karma} > 25 and $I{U}{uid} > 0;
# if ($I{allow_anonymous}) {
# $checked = $I{F}{postanon} ? ' CHECKED' : '';
# print qq!\t\t Publicar anónimamente
\n!
# if $I{U}{karma} > -1 and $I{U}{uid} > 0;
# }
print <
Etiquetas HTML aceptadas:
%s
/gi;
if (($w / ($br + 1)) < 7) {
editComment() and return unless $preview;
return;
}
}
# here begins the troll detection code - PMG 160200
# hash ref from db containing regex, modifier (gi,g,..),field to be tested,
# ratio of field (this makes up the {x,} in the regex, minimum match (hard minimum),
# minimum length (minimum length of that comment has to be to be tested), err_message
# message displayed upon failure to post if regex matches contents.
# make sure that we don't select new filters without any regex data
my $filter_hashref = sqlSelectAll("*","content_filters","regex != '' and field != ''");
for (@$filter_hashref) {
my($number_match, $regex);
my $raw_regex = $_->[1];
my $modifier = 'g' if $_->[2] =~ /g/;
my $case = 'i' if $_->[2] =~ /i/;
my $field = $_->[3];
my $ratio = $_->[4];
my $minimum_match = $_->[5];
my $minimum_length = $_->[6];
my $err_message = $_->[7];
my $maximum_length = $_->[8];
my $isTrollish = 0;
next if ($minimum_length && length($I{F}{$field}) < $minimum_length);
next if ($maximum_length && length($I{F}{$field}) > $maximum_length);
if ($minimum_match) {
$number_match = "{$minimum_match,}";
} elsif ($ratio > 0) {
$number_match = "{" . int(length($I{F}{$field}) * $ratio) . ",}";
}
$regex = $raw_regex . $number_match;
my $tmp_regex = $regex;
# DEBUG
# print "
\n";
# print "number $_->[0] regex $tmp_regex minimum_match $minimum_match modifier $modifier case $case
\n";
$regex = $case eq 'i' ? qr/$regex/i : qr/$regex/;
if ($modifier eq 'g') {
$isTrollish = 1 if $I{F}{$field} =~ /$regex/g;
} else {
$isTrollish = 1 if $I{F}{$field} =~ /$regex/;
}
if ((length($I{F}{$field}) >= $minimum_length)
&& $minimum_length && $isTrollish) {
if (((length($I{F}{$field}) <= $maximum_length)
&& $maximum_length) || $isTrollish) {
editComment() and return unless $preview;
print <
$err_message
$err_message
\n";
# if it's within lower to upper
if (length($I{F}{postercomment}) >= $limits->{$_}->[0]
&& length($I{F}{postercomment}) <= $limits->{$_}->[1]) {
# if is >= the ratio, then it's most likely a troll comment
if ((length(compress($I{F}{postercomment})) /
length($I{F}{postercomment})) <= $_) {
editComment() and return unless $preview;
# blammo luser
print <
EOT
}
}
}
}
return($comm, $subj);
}
##################################################################
# Previews a comment for submission
sub previewForm {
$I{U}{sig} = "" if $I{F}{postanon};
my $tempComment = stripByMode($I{F}{postercomment}, $I{F}{posttype});
my $tempSubject = stripByMode(
$I{F}{postersubj}, 'nohtml', $I{U}{aseclev}, 'B'
);
($tempComment, $tempSubject) = validateComment($tempComment, $tempSubject, 1);
$tempComment .= '
' . $I{U}{sig};
my $preview = {
nickname => $I{F}{postanon} ? $I{anon_name} : $I{U}{nickname},
pid => $I{F}{pid},
homepage => $I{F}{postanon} ? '' : $I{U}{homepage},
fakeemail => $I{F}{postanon} ? '' : $I{U}{fakeemail},
'time' => 'pronto',
subject => $tempSubject,
comment => $tempComment
};
print <
";
}
}
##################################################################
# Handles moderation
sub moderate {
my $totalDel = 0;
my $hasPosted = hasPosted($I{F}{sid});
print "\n\n";
# Handle Deletions, Points & Reparenting
foreach (sort keys %{$I{F}}) {
if (/^del_(\d+)$/) { # && $I{U}{points}) {
my $delCount = deleteThread($I{F}{sid}, $1);
$totalDel += $delCount;
sqlUpdate(
"stories",
{
-commentcount => "commentcount-$delCount",
writestatus =>1
},
"sid=" . $I{dbh}->quote($I{F}{sid}), 1
);
print <
\n";
if ($hasPosted && !$totalDel) {
print "You've already posted something in this discussion
";
} elsif ($I{U}{aseclev} && $totalDel) {
my($cc) = sqlSelect(
"count(sid)", "comments", "sid=" . $I{dbh}->quote($I{F}{sid})
);
sqlUpdate(
"stories",
{ commentcount => $cc },
"sid=" . $I{dbh}->quote($I{F}{sid})
);
print "$totalDel comments deleted. Comment count set to $cc
\n";
}
}
##################################################################
# Handles moderation
# Moderates a specific comment
sub moderateCid {
my($sid, $cid, $reason) = @_;
# Check if $uid has seclev and Credits
return unless $reason;
if ($I{U}{points} < 1) {
unless ($I{U}{aseclev} > 99 && $I{authors_unlimited}) {
print "No tienes puntos de moderador.";
return;
}
}
my($cuid, $ppid, $subj, $points, $oldreason) = sqlSelect(
"uid,pid,subject,points,reason","comments",
"cid=$cid and sid='$sid'"
);
my $modreason = $reason;
my $val = "-1";
if ($reason == 9) { # Overrated
$val = "-1";
$val = "+0" if $points < 0;
$reason = $oldreason;
} elsif ($reason == 10) { # Underrated
$val = "+1";
$val = "+0" if $points > 1;
$reason = $oldreason;
} elsif ($reason > $I{badreasons}) {
$val = "+1";
}
my $strsql = "UPDATE comments SET
points=points$val,
reason=$reason,
lastmod=$I{U}{uid}
WHERE sid=" . $I{dbh}->quote($sid)."
AND cid=$cid
AND points " .
($val < 0 ? " > -1" : "") .
($val > 0 ? " < 5" : "");
$strsql .= " AND lastmod<>$I{U}{uid}"
unless $I{U}{aseclev} > 99 && $I{authors_unlimited};
if ($val ne "+0" && $I{dbh}->do($strsql)) {
sqlInsert("moderatorlog", {
uid => $I{U}{uid},
val => $val,
sid => $sid,
cid => $cid,
reason => $modreason,
-ts => 'now()'
});
# Adjust comment posters karma
sqlUpdate(
"users_info",
{ -karma => "karma$val" },
"uid=$cuid"
) if $val && $cuid > 0;
# Adjust moderators total mods
sqlUpdate(
"users_info",
{ -totalmods => 'totalmods+1' },
"uid=$I{U}{uid}"
);
# And deduct a point.
$I{U}{points} = $I{U}{points} > 0 ? $I{U}{points} - 1 : 0;
sqlUpdate(
"users_comments",
{ -points=>$I{U}{points} },
"uid=$I{U}{uid}"
); # unless ($I{U}{aseclev} > 99 && $I{authors_unlimited});
print <
";
return $delCount;
}
##################################################################
# Checks if this user has posted in this discussion or not (to determine
# if they can moderate or not)
sub hasPosted {
return if $I{U}{aseclev} > 99 && $I{authors_unlimited};
my($sid) = @_;
my($c) = sqlSelect("count(*)", "comments",
"sid=" . $I{dbh}->quote($sid) . " and uid=$I{U}{uid}"
);
return $c;
}
##################################################################
# If you moderate, and then post, all your moderation is undone.
sub undoModeration {
my($sid) = @_;
return if $I{U}{uid} == -1 || ($I{U}{aseclev} > 99 && $I{authors_unlimited});
my $c=sqlSelectMany("cid,val", "moderatorlog",
"uid=$I{U}{uid} and sid=" . $I{dbh}->quote($sid)
);
while (my($cid, $val) = $c->fetchrow) {
$I{dbh}->do("delete from moderatorlog where
cid=$cid and uid=$I{U}{uid} and sid=" .
$I{dbh}->quote($sid)
);
# Insure scores still fall within the proper boundaries
my $scorelogic = $val < 0 ? "points < 5" : "points > -1";
sqlUpdate(
"comments",
{ -points => "points+" . (-1 * $val) },
"cid=$cid and sid=" . $I{dbh}->quote($sid) . " AND $scorelogic"
);
print "Undoing moderation to Comment #$cid
";
}
$c->finish;
}
##################################################################
# Troll Detection: essentially checks to see if this IP or UID has been abusing
# the system in the last 24 hours.
# 1=Troll 0=Good Little Goober
sub isTroll {
return if $I{U}{aseclev} > 99;
my($badIP, $badUID) = (0, 0);
return 0 if $I{U}{uid} > 0 && $I{U}{karma} > -1;
# Anonymous only checks HOST
($badIP) = sqlSelect("sum(val)","comments,moderatorlog",
"comments.sid=moderatorlog.sid AND comments.cid=moderatorlog.cid
AND host_name='$ENV{REMOTE_ADDR}'
AND (to_days(now()) - to_days(ts) < 3) GROUP BY host_name"
);
return 1 if $badIP < $I{down_moderations};
if ($I{U}{uid} > 0) {
($badUID) = sqlSelect("sum(val)","comments,moderatorlog",
"comments.sid=moderatorlog.sid AND comments.cid=moderatorlog.cid
AND comments.uid=$I{U}{uid}
AND (to_days(now()) - to_days(ts) < 3) GROUP BY comments.uid"
);
}
return 1 if $badUID < $I{down_moderations};
return 0;
}
main();
0;