function move_tmp_image($file, $mime)
{
return parent::move_tmp_image('post', $file, $mime);
}
function do_sub_message_right()
{
global $db, $globals;
if ($globals['mobile'] || !$globals['submnm']) {
return;
}
$properties = SitesMgr::get_extended_properties();
if (empty($properties['message'])) {
return;
}
$message = LCPBase::html($properties['message']);
Haanga::Load('message_right.html', compact('message'));
return;
}
function delete_image()
{
return parent::delete_image('link');
}
public static function html($string, $fancy = true)
{
$o = new LCPBase();
return $o->to_html($string, $fancy);
}
function do_submit1()
{
global $db, $dblang, $current_user, $globals, $errors, $site_properties, $site_key;
$site_info = SitesMgr::get_info();
$new_user = false;
if (empty($_POST['url']) && empty($site_properties['no_link'])) {
add_submit_error(_('debe especificar enlace'));
return false;
}
if (!empty($_POST['url'])) {
if (!empty($site_properties['no_anti_spam'])) {
$anti_spam = false;
} else {
$anti_spam = true;
}
$url = clean_input_url(urldecode($_POST['url']));
$url = preg_replace('/#[^\\/]*$/', '', $url);
// Remove the "#", people just abuse
$url = preg_replace('/^http:\\/\\/http:\\/\\//', 'http://', $url);
// Some users forget to delete the foo http://
if (!preg_match('/^\\w{3,6}:\\/\\//', $url)) {
// http:// forgotten, add it
$url = 'http://' . $url;
}
// check the URL is OK and that it resolves
$url_components = @parse_url($url);
if (!$url_components || !$url_components['host'] || gethostbyname($url_components['host']) == $url_components['host']) {
add_submit_error(_('URL o nombre de servidor erróneo'), _('el nombre del servidor es incorrecto o éste tiene problemas para resolver el nombre'));
syslog(LOG_NOTICE, "Meneame, hostname error ({$current_user->user_login}): {$url}");
return false;
}
if (!check_link_key()) {
add_submit_error(_('clave incorrecta'));
return false;
}
} else {
$anti_spam = false;
}
// Check the user does not have too many drafts
$minutes = intval($globals['draft_time'] / 60) + 10;
$drafts = (int) $db->get_var("select count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval {$minutes} minute) and link_status='discard' and link_votes = 0");
if ($drafts > $globals['draft_limit']) {
add_submit_error(_('demasiados borradores'), _('has hecho demasiados intentos, debes esperar o continuar con ellos desde la') . ' <a href="queue?meta=_discarded">' . _('cola de descartadas') . '</a></p>');
syslog(LOG_NOTICE, "Meneame, too many drafts ({$current_user->user_login}): " . $_REQUEST['url']);
return false;
}
// Delete dangling drafts
if ($drafts > 0) {
$db->query("delete from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 30 minute) and link_date < date_sub(now(), interval 10 minute) and link_status='discard' and link_votes = 0");
}
$new_user = false;
if ($anti_spam) {
// Number of links sent by the user
$total_sents = (int) $db->get_var("select count(*) from links where link_author={$current_user->user_id}") - $drafts;
if ($total_sents > 0) {
$sents = (int) $db->get_var("select count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 60 day)") - $drafts;
} else {
$new_user = true;
$sents = 0;
}
$register_date = $current_user->Date();
if ($globals['now'] - $register_date < $globals['new_user_time']) {
$new_user = true;
}
if ($globals['min_karma_for_links'] > 0 && $current_user->user_karma < $globals['min_karma_for_links']) {
add_submit_error(_('no tienes el mínimo de karma para enviar una nueva historia'));
return false;
}
// Check for banned IPs
if (($ban = check_ban($globals['user_ip'], 'ip', true)) || ($ban = check_ban_proxy())) {
if ($ban['expire'] > 0) {
$expires = _('caduca') . ': ' . get_date_time($ban['expire']);
} else {
$expires = '';
}
add_submit_error(_('dirección IP no permitida para enviar'), $expires);
syslog(LOG_NOTICE, "Meneame, banned IP " . $globals['user_ip'] . " ({$current_user->user_login}): {$url}");
return false;
}
}
// END anti_spam
// check that a new user also votes, not only sends links
// it requires $globals['min_user_votes'] votes
if ($new_user && $globals['min_user_votes'] > 0 && $current_user->user_karma < $globals['new_user_karma']) {
$user_votes_total = (int) $db->get_var("select count(*) from votes where vote_type='links' and vote_user_id={$current_user->user_id}");
$user_votes = (int) $db->get_var("select count(*) from votes where vote_type='links' and vote_date > date_sub(now(), interval 72 hour) and vote_user_id={$current_user->user_id}");
$user_links = 1 + $db->get_var("select count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 24 hour) and link_status != 'discard'");
$total_links = (int) $db->get_var("select count(*) from links where link_date > date_sub(now(), interval 24 hour) and link_status = 'queued'");
if ($sents == 0) {
// If is a new user, requires more votes, to avoid spam
$min_votes = $globals['min_user_votes'];
} else {
$min_votes = min(4, intval($total_links / 20)) * $user_links;
}
if (!$current_user->admin && $user_votes < $min_votes) {
$needed = $min_votes - $user_votes;
if ($new_user) {
add_submit_error(_('¿es la primera vez que envías una historia?'), _('necesitas como mínimo') . " {$needed} " . _('votos'));
} else {
add_submit_error(_('no tienes el mínimo de votos necesarios para enviar una nueva historia'), _('necesitas votar como mínimo a') . " {$needed} " . _('envíos'));
}
add_submit_error(_('no votes de forma apresurada, penaliza el karma'), '<a href="' . $globals['base_url'] . 'queue" target="_blank">' . _('haz clic aquí para ir a votar') . '</a>');
return false;
}
}
if ($anti_spam) {
// Don't allow to send a link by a clone
$hours = intval($globals['user_links_clon_interval']);
$clones = $current_user->get_clones($hours + 1);
if ($hours > 0 && $clones) {
$l = implode(',', $clones);
$c = (int) $db->get_var("select count(*) from links where link_status!='published' and link_date > date_sub(now(), interval {$hours} hour) and link_author in ({$l})");
if ($c > 0) {
add_submit_error(_('ya se envió con otro usuario «clon» en las últimas horas') . ", " . _('disculpa las molestias'));
syslog(LOG_NOTICE, "Meneame, clon submit ({$current_user->user_login}): " . $_REQUEST['url']);
return false;
}
}
// Check the number of links sent by a user
$queued_24_hours = (int) $db->get_var("select count(*) from links, subs, sub_statuses where status!='published' and date > date_sub(now(), interval 24 hour) and link_author={$current_user->user_id} and sub_statuses.link=link_id and subs.id = sub_statuses.id and sub_statuses.origen = sub_statuses.id and subs.parent=0 and subs.owner = 0");
if ($globals['limit_user_24_hours'] && $queued_24_hours > $globals['limit_user_24_hours']) {
add_submit_error(_('debes esperar, tienes demasiados envíos en cola de las últimas 24 horas') . " ({$queued_24_hours}), " . _('disculpa las molestias'));
syslog(LOG_NOTICE, "Meneame, too many queued in 24 hours ({$current_user->user_login}): " . $_REQUEST['url']);
return false;
}
// Check the number of links sent by the user in the last minutes
$enqueued_last_minutes = (int) $db->get_var("select count(*) from links where link_status='queued' and link_date > date_sub(now(), interval 3 minute) and link_author={$current_user->user_id}");
if ($current_user->user_karma > $globals['limit_3_minutes_karma']) {
$enqueued_limit = $globals['limit_3_minutes'] * 1.5;
} else {
$enqueued_limit = $globals['limit_3_minutes'];
}
if ($enqueued_last_minutes > $enqueued_limit) {
add_submit_error(_('exceso de envíos'), _('se han enviado demasiadas historias en los últimos 3 minutos') . " ({$enqueued_last_minutes} > {$enqueued_limit}), " . _('disculpa las molestias'));
syslog(LOG_NOTICE, "Meneame, too many queued ({$current_user->user_login}): " . $_REQUEST['url']);
return false;
}
// avoid spams, an extra security check
// it counts the numbers of links in the last hours
if ($new_user) {
$user_links_limit = $globals['new_user_links_limit'];
$user_links_interval = intval($globals['new_user_links_interval'] / 3600);
} else {
$user_links_limit = $globals['user_links_limit'];
$user_links_interval = intval($globals['user_links_interval'] / 3600);
}
$same_user = (int) $db->get_var("select count(*) from links where link_date > date_sub(now(), interval {$user_links_interval} hour) and link_author={$current_user->user_id}") - $drafts;
$same_ip = (int) $db->get_var("select count(*) from links where link_date > date_sub(now(), interval {$user_links_interval} hour) and link_ip = '" . $globals['user_ip'] . "'") - $drafts;
if ($same_user > $user_links_limit || $same_ip > $user_links_limit) {
add_submit_error(_('debes esperar, ya se enviaron varias con el mismo usuario o dirección IP'));
return false;
}
// avoid users sending continuous "rubbish" or "propaganda", specially new users
// it takes in account the number of positive votes in the last six hours
if ($same_user > 1 && $current_user->user_karma < $globals['karma_propaganda']) {
$positives_received = $db->get_var("select sum(link_votes) from links where link_date > date_sub(now(), interval {$user_links_interval} hour) and link_author = {$current_user->user_id}");
$negatives_received = $db->get_var("select sum(link_negatives) from links where link_date > date_sub(now(), interval {$user_links_interval} hour) and link_author = {$current_user->user_id}");
if ($negatives_received > 10 && $negatives_received > $positives_received * 1.5) {
add_submit_error(_('debes esperar, has tenido demasiados votos negativos en tus últimos envíos'));
return false;
}
}
}
// END anti_spam
$link = new Link();
$link->url = $url;
$link->is_new = true;
// Disable several options in the editing form
$link->status = 'discard';
$link->author = $current_user->user_id;
if (!empty($site_properties['rules']) && $site_properties['no_link'] == 2) {
$link->rules = LCPBase::html($site_properties['rules']);
}
$edit = false;
if (!empty($link->url)) {
if (report_duplicated($url)) {
return true;
}
// Don't output error messages
if (!$link->check_url($url, $anti_spam, true) || !$link->get($url, null, $anti_spam)) {
$e = _('URL erróneo o no permitido') . ': ';
if ($link->ban && $link->ban['match']) {
$e .= $link->ban['match'];
} else {
$e .= $link->url;
}
add_submit_error($e, _('Razón') . ': ' . $link->ban['comment']);
if ($link->ban['expire'] > 0) {
add_submit_error($e, _('caduca') . ': ' . get_date_time($link->ban['expire']));
}
return false;
}
// If the URL has changed, check again is not dupe
if ($link->url != $url && report_duplicated($link->url)) {
return;
}
$link->randkey = intval($_POST['randkey']);
if (!$link->valid) {
$e = _('error leyendo el url') . ': ' . htmlspecialchars($url);
// Dont allow new users with low karma to post wrong URLs
if ($current_user->user_karma < 7 && $current_user->user_level == 'normal' && !$site_info->owner) {
add_submit_error($e, _('URL inválido, incompleto o no permitido. Está fuera de línea, o tiene mecanismos antibots.'));
return false;
}
add_submit_error($e, _('no es válido, está fuera de línea, o tiene mecanismos antibots. <strong>Continúa</strong>, pero asegúrate que sea correcto'));
}
if (!$link->pingback()) {
$link->trackback();
}
$link->trackback = htmlspecialchars($link->trackback);
$link->create_blog_entry();
$blog = new Blog();
$blog->id = $link->blog;
$blog->read();
$blog_url_components = @parse_url($blog->url);
$blog_url = $blog_url_components['host'] . $blog_url_components['path'];
}
if ($anti_spam) {
// Now we check again against the blog table
// it's done because there could be banned blogs like http://lacotelera.com/something
if ($ban = check_ban($blog->url, 'hostname', false, true)) {
$e = _('URL inválido') . ': ' . htmlspecialchars($url);
add_submit_error($e, _('el sitio') . ' ' . $ban['match'] . ' ' . _('está deshabilitado') . ' (' . $ban['comment'] . ')');
if ($ban['expire'] > 0) {
add_submit_error($e, _('caduca') . ': ' . get_date_time($ban['expire']));
}
syslog(LOG_NOTICE, "Meneame, banned site ({$current_user->user_login}): {$blog->url} <- " . $_REQUEST['url']);
return false;
}
// check for users spamming several sites and networks
// it does not allow a low "entropy"
if ($sents > 30) {
$ratio = (double) $db->get_var("select count(distinct link_blog)/count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 60 day)");
$threshold = 1 / log($sents, 2);
if ($ratio < $threshold) {
if ($db->get_var("select count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 60 day) and link_blog = {$blog->id}") > 2) {
syslog(LOG_NOTICE, "Meneame, forbidden due to low entropy: {$ratio} < {$threshold} ({$current_user->user_login}): {$link->url}");
add_submit_error(_('ya has enviado demasiados enlaces a los mismos sitios'), _('varía las fuentes, podría ser considerado spam'));
return false;
}
}
}
// Check the user does not send too many images or vídeos
// they think this is a fotolog
if ($sents > 5 && ($link->content_type == 'image' || $link->content_type == 'video')) {
$image_links = intval($db->get_var("select count(*) from links, subs, sub_statuses where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 60 day) and link_content_type in ('image', 'video') and sub_statuses.link=link_id and subs.id = sub_statuses.id and sub_statuses.origen = sub_statuses.id and subs.parent=0 and subs.owner = 0"));
if ($image_links > $sents * 0.8) {
syslog(LOG_NOTICE, "Meneame, forbidden due to too many images or video sent by user ({$current_user->user_login}): {$link->url}");
add_submit_error(_('ya has enviado demasiadas imágenes o vídeos'));
return false;
}
}
// Avoid users sending too many links to the same site in last hours
$hours = 24;
$same_blog = $db->get_var("select count(*) from links where link_date > date_sub(now(), interval {$hours} hour) and link_author={$current_user->user_id} and link_blog={$link->blog} and link_votes > 0");
if ($same_blog >= $globals['limit_same_site_24_hours']) {
syslog(LOG_NOTICE, "Meneame, forbidden due to too many links to the same site in last {$hours} hours ({$current_user->user_login}): {$link->url}");
add_submit_error(_('demasiados enlaces al mismo sitio en las últimas horas'));
return false;
}
// avoid auto-promotion (autobombo)
$minutes = 30;
$same_blog = $db->get_var("select count(*) from links where link_date > date_sub(now(), interval {$minutes} minute) and link_author={$current_user->user_id} and link_blog={$link->blog} and link_votes > 0");
if ($same_blog > 0 && $current_user->user_karma < 12) {
syslog(LOG_NOTICE, "Meneame, forbidden due to short period between links to same site ({$current_user->user_login}): {$link->url}");
add_submit_error(_('ya has enviado un enlace al mismo sitio hace poco tiempo'), _('debes esperar') . " {$minutes} " . _('minutos entre cada envío al mismo sitio.') . ', ' . '<a href="' . $globals['base_url_general'] . 'faq-' . $dblang . '.php">' . _('lee el FAQ') . '</a>');
return false;
}
// Avoid spam (autobombo), count links in last two months
$same_blog = $db->get_var("select count(*) from links where link_author={$current_user->user_id} and link_date > date_sub(now(), interval 60 day) and link_blog={$link->blog}");
$check_history = $sents > 3 && $same_blog > 0 && ($ratio = $same_blog / $sents) > 0.5;
if ($check_history) {
$e = _('has enviado demasiados enlaces a') . " {$blog->url}";
if ($sents > 5 && $ratio > 0.75) {
add_submit_error($e, _('has superado los límites de envíos de este sitio'));
// don't allow to continue
syslog(LOG_NOTICE, "Meneame, warn, high ratio, process interrumped ({$current_user->user_login}): {$link->url}");
return false;
} else {
add_submit_error($e, _('continúa, pero ten en cuenta podría recibir votos negativos') . ', ' . '<a href="' . $globals['base_url'] . $globals['legal'] . '">' . _('condiciones de uso') . '</a>');
syslog(LOG_NOTICE, "Meneame, warn, high ratio, continue ({$current_user->user_login}): {$link->url}");
}
}
if (!$site_info->owner) {
// Only for the main subs
$links_12hs = $db->get_var("select count(*) from links, subs, sub_statuses where link_date > date_sub(now(), interval 12 hour) and sub_statuses.link=link_id and subs.id = sub_statuses.id and sub_statuses.origen = sub_statuses.id and subs.parent=0 and subs.owner = 0");
// check there is no an "overflow" from the same site
$site_links = intval($db->get_var("select count(*) from links, subs, sub_statuses where link_date > date_sub(now(), interval 12 hour) and link_blog={$link->blog} and link_status in ('queued') and sub_statuses.link=link_id and subs.id = sub_statuses.id and sub_statuses.origen = sub_statuses.id and subs.parent=0 and subs.owner = 0"));
if ($site_links > 10 && $site_links > $links_12hs * 0.05) {
// Only 5% from the same site
syslog(LOG_NOTICE, "Meneame, forbidden due to overflow to the same site ({$current_user->user_login}): {$link->url}");
add_submit_error(_('hay en cola demasiados envíos del mismo sitio, espera unos minutos por favor'), _('total en 12 horas') . ": {$site_links} , " . _('el máximo actual es') . ': ' . intval($links_12hs * 0.05));
return false;
}
// check there is no an "overflow" of images
if ($link->content_type == 'image' || $link->content_type == 'video') {
$image_links = intval($db->get_var("select count(*) from links, subs, sub_statuses where link_date > date_sub(now(), interval 12 hour) and link_content_type in ('image', 'video') and sub_statuses.link=link_id and subs.id = sub_statuses.id and sub_statuses.origen = sub_statuses.id and subs.parent=0 and subs.owner = 0"));
if ($image_links > 5 && $image_links > $links_12hs * 0.15) {
// Only 15% images and videos
syslog(LOG_NOTICE, "Meneame, forbidden due to overflow images ({$current_user->user_login}): {$link->url}");
add_submit_error(_('ya se han enviado demasiadas imágenes o vídeos, espera unos minutos por favor'), _('total en 12 horas') . ": {$image_links} , " . _('el máximo actual es') . ': ' . intval($links_12hs * 0.05));
return false;
}
}
if ($ban = check_ban($link->url, 'punished_hostname', false, true)) {
add_submit_error(_('Aviso') . ' ' . $ban['match'] . ': <em>' . $ban['comment'] . '</em>', _('mejor enviar el enlace a la fuente original'));
}
}
}
// END anti_spam
// Now stores new draft
$link->sent_date = $link->date = time();
if (empty($_POST['randkey']) && !empty($site_properties['no_link'])) {
$link->randkey = rand(10000, 10000000);
$link->key = md5($link->randkey . $current_user->user_id . $current_user->user_email . $site_key . get_server_name());
} else {
$link->randkey = $_POST['randkey'];
$link->key = $_POST['key'];
}
$link->store();
$link->url_title = mb_substr($link->url_title, 0, 200);
if (mb_strlen($link->url_description) > 40) {
$link->content = $link->url_description;
}
$link->site_properties = $site_properties;
$link->chars_left = $site_properties['intro_max_len'] - mb_strlen(html_entity_decode($link->content, ENT_COMPAT, 'UTF-8'), 'UTF-8');
Haanga::Load('link/submit1.html', compact('link', 'errors'));
return true;
}