开发者

only allow certain ips to access my "family site"?

问答 作者:

for some days i have been struggeling with making only certain ips accessing my family site since i only want my family to be enable to access the site. ill need some help by your guys. This is how far i have gotten and if ip is not in data开发者_运维百科base it will redirect to www.google.com .

The code:

$ip =$_SERVER['REMOTE_ADDR']; 
$result = mysql_query('SELECT * FROM `ips` WHERE `ip`="' . $ip . '"'); 

if(mysql_affected_rows($link) < 0){ 
header('location:http://google.com'); 
}

EDIT: Got an idea of what i can use that wont change the computer mac address so the code will need change of the table and the names inside. How will i go about that , so when the user try to access my site it does a check if the mac adress of the computer is in database else redirect to google.com.

Kind regards Fredrik

I'm not really sure of what the question is, but if you want to password-protect a site and you don't want to make your users generate yet another password, you can try out the LightOpenID library. This way, your family can log in with the OpenID identifier of their choice. You just need to keep a list of their identifiers. It's roughly the authentication system used at StackOverflow.

As about OpenID accounts, you already have one if you use Google, Yahoo or many other sites.

The mysql_affected_rows is for INSERT, UPDATE OR DELETE Use this:

if(mysql_num_rows($result) == 0){ 
   header('location:http://google.com'); 
}

And why do you use the $link variable instead of $result?

IP addresses change very often so they might have access one day and on the next it will be different and they will lose the priviledge.

You will be better off by creating a login system. This way, from anywhere they can access the information you want to share.

You could also consider trying to do this with htaccess. Check out stupid htaccess tricks.

A better way might be to use an htaccess password here's a free tool which is also pretty simple to set up.

Also, instead of checking affected rows you should check the number of rows returned in your code. Check out the PHP manual

If you use Apache as your webserver you can change the directory node content in the httpd.conf configuration file to Allow from YOUR_IP and Deny from all. This is usually a more suitable place to create such restrictions.

Note that the default Apache access for <Directory /> is Allow from All. This means that Apache will serve any file mapped from an URL. Change this with a block such as

<Directory />
   Order Deny,Allow
   Deny from All
   Allow from IP
</Directory>

and then override this for directories you want accessible.

For the redirect part you can add this to your httpd.conf to redirect to google on 403 Forbidden errors. Don't forget to restart the webserver after you made the changes.

ErrorDocument 403 http://www.google.com

继续阅读:databasephp

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9