next »

[d3xt3r]

This script requires XDD 2.5 be installed on your server. XDD is a simple to install FlatFile database system, that can be obtained here.

This script will allow you to display the current count of your sites online visitors using PHP and XDD FlatFile databasing. Since XDD has a tested file locking system beyond most, this script can function on sites with high traffic. You can set key functions at the top of the script.

Settings..

1. Data file can be any text file in any location on the web server.
2. Session time will determine how long to show a visitor as online since last active. (In Minutes)
3. The data file will be created automatically after first pageload. No need to create it.

Installing..

1. Copy ScriptA below and paste into all .PHP pages you wish to monitor current visitors. Or paste into a commonly included file on your web system.

2. Copy ScriptB and place anywhere you wish to display the current visitor count. But keep in mind, that ScriptB must be placed on a page that runs ScriptA and ScriptA must be run before ScriptB.

ScriptA

Code:

<?php
###################################
# Xegment Delta | Online Visitors #
#                                 #
#    Script Requires XDD 2.5      #
#                                 #
#   http://d3xt3r.net/xdd.php     #
#                                 #
#           By D3xt3r             #
#                                 #
###################################
require_once("xdd.class.php");
$online_visitor_log="onlinevisitors.db";
$session_time=30;                                                                                         # Set Session Time (Minutes)
$ip=isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR']; # Get Users IP Address
$session_time=$session_time*60;                                                                           # Multiply Session Time By 60
$time_ahead=time()+$session_time;                                                                         # Set Session Time Ahead
if(!file_exists($online_visitor_log))                                                                     # If Data File Doesn't Exist
file_put_contents($online_visitor_log, " ");                                                              # Make Data File
xdd_replace($online_visitor_log,$ip,"|".$time_ahead,ID_OVERRIDE);                                         # Delete Past Occurances Of IP, And Add New
$detail_users=xdd_read($online_visitor_log,"|",ID_OVERRIDE,RV_OVERRIDE,R_ARRAY);                          # Get All Database Visits
foreach($detail_users as $detail_user){                                                                   # For Each Database Entry
$user_data=explode("|",$detail_user);                                                                     # Split Time And IP Address
if($user_data[1] < time())                                                                                # If Entry Time Less Than Current Time
xdd_delete($online_visitor_log,$detail_user,ID_OVERRIDE);                                                 # Delete Current Entry
}                                                                                                         # End "ForEach" Process
$online_visitors=count(xdd_read($online_visitor_log,"|",ID_OVERRIDE,R_ARRAY));                            # Count Visitors Online
echo $online_visitors;                                                                                    # Display Visitors Online
###################################
?>

ScriptB

Code:

<?php
#################
# Online Visitors
echo $online_visitors;
#################
?>

[stang45]

D3xt3r did you come up with XDD?


Edit** You are awesome.

[d3xt3r]

D3xt3r did you come up with XDD?

Yeah, when I got into PHP I was trying to find ways of storing data into text files. Cause I had loads of single files all around.. I came up with XDD, and it grew and grew, and now lots of people use it.

[VolksBlade]

heck yeah hes good..

@d3xt3r
hey man, dont forget in your XDD topic, or on the part of your site about XDD, to thank those who majorly helped in the development, such as; finding bugs, giving ideas, making add-ons, just to name a few..

not that i did any of those ( )

[neostar]

sorry for ruining the fun but it's 56kb, do you expect me to load 56kb each page?

[d3xt3r]

sorry for ruining the fun but it's 56kb, do you expect me to load 56kb each page?

Its 4 KB, and the require_once script is less than a Kilbyte I believe.. What are you referring to? XDD? That runs on server side and it doesn't load in the visitors browser, and provides many useful PHP functions.

[uberwalla]

I would recommend instead of

Code:

isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR'];

use just plain REMOTE_ADDR, otherwise people can use that to spoof their ip to anything.

Other than that, the script works really well. Thanks.

[d3xt3r]

I would recommend instead of

Code:

isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR'];

use just plain REMOTE_ADDR, otherwise people can use that to spoof their ip to anything.

Other than that, the script works really well. Thanks.

On 110mb that script is required for "www" addresses, since they run through a internal proxy. Otherwise remote_addr shows the IP of the local server.

EDIT: However, I could write a bypass script, that would function the best of both.

[uberwalla]

it would be best if you could find it the person is using www, then use the forwarded ip, but use the remote mainly. Because all you need is a plugin for firefox (not gonna name it so no one gets any ideas of doing something) and you can edit the ip to spoof it to even text.

[d3xt3r]

To see if a person is using "www" without HTACCESS is only done in the same manner.. This is my thought...

This would work on Box4 to stop IP spoofing..And can be modified per box basis by changing IP..

Code:

if($_SERVER['REMOTE_ADDR'] == "195.242.99.89" && isset($_SERVER['HTTP_X_FORWARDED_FOR']))
$ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
else
$ip=$_SERVER['REMOTE_ADDR'];

This would only set the $ip to the forwarded_for IF remote_addr is the same as the Box your hosted on AND forwarded_for is set, otherwise, it would set it as remote_addr...



Look good to you?

Get a current list of 110mb IP's here: http://d3xt3r.net/stats110/ - Left module dropdown

[uberwalla]

The only problem I see with this, which of course is still because of the internal proxy, would be that you can still spoof the forwarded ip if you go through it. So, basically if you go through the internal proxy, and spoof it, the real ip is still hidden. Of course not many people do this, so it wouldn't make a difference in the long run.

[d3xt3r]

The only problem I see with this, which of course is still because of the internal proxy, would be that you can still spoof the forwarded ip if you go through it. So, basically if you go through the internal proxy, and spoof it, the real ip is still hidden. Of course not many people do this, so it wouldn't make a difference in the long run.

However, when the HTACCESS proxies it, they use the REMOTE_ADDR and input the Forwarded For address. So in ending.. Its as secure as possible. Posted a tutorial for it.. If you wanna check it out.. Its the last thread in Tutorials section.

But truthfully, the best way, as I pointed out in the tutorial, is to force non-www addresses and always use the Remote_addr if not using SymLinks in HTACCESS

[neostar]

ok, I'm sorry. didn't know it but it will take more time to get a response from the server?

[d3xt3r]

ok, I'm sorry. didn't know it but it will take more time to get a response from the server?

XDD on my system takes about .0001 seconds to process without any database operations.. Practically nothing..

Also, check the load time of my site.. http://d3xt3r.net/

Check the footer. shows the load time.. And its accessessing XDD all the time. a lot. with low process time.

[neostar]

wow, ok sorry again.

Off-topic

how can your website be only 479 days?
I remember there were a couple of problems with the servers.

[d3xt3r]

My website hasn't been "up" for a straight 479 days, that is from the time I setup the domain D3xt3r.net

I thought there might be confusion on that. However, I don't know another way to word my footer.

[neostar]

Off-Topic
have you ever thought creating a CMS that uses XDD?