Cryptographically scramble IPs stored by Neocities

"There is a time when the operation of the machine becomes so odious, makes you so sick at heart, that you can't take part; you can't even passively take part, and you've got to put your bodies upon the gears and upon the wheels, upon the levers, upon all the apparatus, and you've got to make it stop. And you've got to indicate to the people who run it, to the people who own it, that unless you're free, the machine will be prevented from working at all." Mario Savio Sproul Hall Steps University of California, Berkeley December 3, 1964
2025-08-01 23:31:52 +02:00 · 2014-11-07 00:41:10 -08:00 · 2014-11-07 00:41:10 -08:00 · 4983a9b24e
commit 4983a9b24e
parent 1b7269c201
8 changed files with 52 additions and 18 deletions
--- a/app.rb
+++ b/app.rb
@ -1216,8 +1216,7 @@ post '/admin/banip' do
    flash[:error] = 'IP is blank, cannot continue'
    redirect '/admin'
  end
-
-  sites = Site.filter(ip: site.ip, is_banned: false).all
+  sites = Site.filter(ip: Site.hash_ip(site.ip), is_banned: false).all
  sites.each {|s| s.ban!}
  flash[:error] = "#{sites.length} sites have been banned."
  redirect '/admin'
@ -1495,7 +1494,7 @@ post '/site/:username/report' do |username|
    redirect request.referer if current_site.id == site.id
    report.reporting_site_id = current_site.id
  else
-    report.ip = request.ip
+    report.ip = Site.hash_ip request.ip
  end

  report.save
@ -1533,8 +1532,8 @@ def dashboard_if_signed_in
 end

 def require_login_ajax
-  halt 'You are banned.' if Site.banned_ip?(request.ip)
  halt 'You are not logged in!' unless signed_in?
+  halt 'You are banned.' if current_site.is_banned? || parent_site.is_banned?
 end

 def csrf_safe?
@ -1546,8 +1545,11 @@ def csrf_token
 end

 def require_login
-  require_unbanned_ip
  redirect '/' unless signed_in?
+  if current_site.is_banned || parent_site.is_banned
+    session[:id] = nil
+    redirect '/'
+  end
 end

 def signed_in?