<?
/**
* @version 1.0.0
* @CreTime:2011-06-24
* @CreName:cz
*/
require_once("var.php");
$con=mysql_connect($mysql_var["hostname"],$mysql_var["username"],$mysql_var["password"]);
if($con==false)
{
	echo '连接服务器失败'.mysql_error();
	exit();
}
$return=mysql_select_db($mysql_var["select_db"],$con);
if($return==false)
{
	echo '无法选择数据库';
	exit();
}
mysql_query("set names 'utf8'",$con);<?
/**
* @version 1.0.0
* @CreTime:2016-08-24
* @CreName:hw
*/


/*
生成SQL语句Where
输入格式:一维数组
返回格式:string
*/
function out_sql_where($arr)
{
	if(is_array($arr))
	{
		foreach($arr as $arr_key_t=>$arr_value_t)
		{
			if(!empty($arr_key_t))
			{
				$out_arr[$arr_key_t]="`$arr_key_t`='$arr_value_t'";
			}
		}
		
		if(is_array($out_arr))
		{
			$str_sql=" ".join(" and ",$out_arr)." ";
			return $str_sql;
		}
	}
	return false;
}


/*
生成SQL语句update
输入格式:一维数组
返回格式:string
*/
function not_null_update($arr){
	if(is_array($arr))	{
		foreach($arr as $arr_key_t=>$arr_value_t){
			if(!empty($arr_key_t) and $arr_value_t!==NULL)
			{
				$arr_value_t=stripslashes_deep($arr_value_t);
				$arr_value_t=addslashes($arr_value_t);
				$out_arr[$arr_key_t]="`$arr_key_t`='$arr_value_t'";
			}
		}
		
		if(is_array($out_arr))		{
			$str_sql=" ".join(",",$out_arr)." ";
			return $str_sql;
		}
	}
	return false;
}

/*
生成SQL语句update
输入格式:一维数组
返回格式:string
*/
function out_sql_update($arr){
	if(is_array($arr))	{
		foreach($arr as $arr_key_t=>$arr_value_t){
			if(!empty($arr_key_t))
			{
				$out_arr[$arr_key_t]="`$arr_key_t`='$arr_value_t'";
			}
		}
		
		if(is_array($out_arr))		{
			$str_sql=" ".join(",",$out_arr)." ";
			return $str_sql;
		}
	}
	return false;
}

/*
生成SQL语句insert
输入格式:一维数组
返回格式:string
*/
function out_sql_insert($arr){
	if(is_array($arr)){
		$i=0;
		foreach($arr as $arr_key_t=>$arr_value_t){
			if(!empty($arr_key_t)){
				$i++;
				$filed[$i]="`$arr_key_t`";//字段
				$arr_value_t=stripslashes_deep($arr_value_t);
				$arr_value_t=addslashes($arr_value_t);
				
				if($arr_value_t=='null')
					$values[$i]=$arr_value_t;
				else 
					$values[$i]="'$arr_value_t'";
			}
		}
		return $str_sql=' ('.join(",",$filed).') values ('.join(",",$values).') ';
	}
	return false;
}
﻿<?
/**
* @version 1.0.0
* @CreTime:2017-02-16
* @CreName:黄炜
* @note:简要cookie判断访问频率
*/

class safe_check{
	
	static private $PKey='k5~2662!@#$~fds2D';//密钥
	static private $CookieTime=17200;//密钥过期时间
	static private $Domain='.huaxuejia.cn';//默认域名设置

	/**
	 * 每次查询前设置一下一些cookie值防止用来判断是否是采集，如果是采集的，不会设置cookie值
	 *
	 * @param string $keyword
	 * @return bool
	 */
	static public function setcookie_val($keyword,$CTime,$ICookie=false,$Path='/'){
		@header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"'); 
		@header('P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"');
		$t_seaarch_time=time();
		$ip=self::get_ip();
		$CKey=self::_createKey($keyword,$ip,$t_seaarch_time);
		
		/* 写入COOKIE S*/
		$CTime=time()+self::$CookieTime;
		$Domain=self::$Domain;
		$t_ip_times=$_COOKIE['t_ip_times']+1;

		setcookie('t_search_keyword',$keyword,$CTime,$Path,$Domain);
		setcookie('t_search_key',$CKey,$CTime,$Path,$Domain);
		setcookie('t_search_time',$t_seaarch_time,$CTime,$Path,$Domain);
		setcookie('t_search_ip',$ip,$CTime,$Path,$Domain);	
		setcookie('t_ip_times',$t_ip_times,$CTime,$Path,$Domain);	
		return true;
	}
	
	static public function set_cas_cookie_val($cas,$CTime,$ICookie=false,$Path='/'){
		@header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"'); 
		@header('P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"');
		$C_cas_time=time();
		$ip=self::get_ip();
		$CKey=self::_createKey($cas,$ip,$t_seaarch_time);
		
		/* 写入COOKIE S*/
		$CTime=time()+self::$CookieTime;
		$Domain=self::$Domain;
		$C_ip_times=$_COOKIE['C_ip_times']+1;

		setcookie('C_cas',$cas,$CTime,$Path,$Domain);
		setcookie('C_cas_key',$CKey,$CTime,$Path,$Domain);
		setcookie('C_cas_time',$C_cas_time,$CTime,$Path,$Domain);
		setcookie('C_cas_ip',$ip,$CTime,$Path,$Domain);	
		setcookie('C_ip_times',$C_ip_times,$CTime,$Path,$Domain);	
		return true;
	}
	
	static public function get_cas_array(){
		$OutArray=array(
			'C_cas'=>$_COOKIE['C_cas'],
			'C_cas_key'=>$_COOKIE['C_cas_key'],
			'C_cas_time'=>$_COOKIE['C_cas_time'],
			'C_cas_ip'=>$_COOKIE['C_cas_ip'],
			'C_ip_times'=>$_COOKIE['C_ip_times'],
		);
		return $OutArray;
	}
	
	static public function check_cas_view(){
		$get_array=array(
			'C_cas'=>$_COOKIE['C_cas'],
			'C_cas_key'=>$_COOKIE['C_cas_key'],
			'C_cas_time'=>$_COOKIE['C_cas_time'],
			'C_cas_ip'=>$_COOKIE['C_cas_ip'],
			'C_ip_times'=>$_COOKIE['C_ip_times'],
		);
		
		if(empty($get_array['C_cas']) or empty($get_array['C_cas_key'])  or empty($get_array['C_cas_time']) or empty($get_array['C_cas_ip']) or empty($get_array['C_ip_times'])){
		
			return 'N';
		}
		
		if($get_array['C_ip_times']>100){
			 return false;
		}
		return true;
	}
	
	static public function get_serach_array(){
		$OutArray=array(
			't_search_keyword'=>$_COOKIE['t_search_keyword'],
			't_search_key'=>$_COOKIE['t_search_key'],
			't_search_time'=>$_COOKIE['t_search_time'],
			't_search_ip'=>$_COOKIE['t_search_ip'],
			't_ip_times'=>$_COOKIE['t_ip_times'],
		);
		return $OutArray;
	}

	
	static public function check_search(){
		$get_array=array(
			't_search_keyword'=>$_COOKIE['t_search_keyword'],
			't_search_key'=>$_COOKIE['t_search_key'],
			't_search_time'=>$_COOKIE['t_search_time'],
			't_search_ip'=>$_COOKIE['t_search_ip'],
			't_ip_times'=>$_COOKIE['t_ip_times'],
		);
		
		if(empty($get_array['t_search_keyword']) or empty($get_array['t_search_key'])  or empty($get_array['t_search_time']) or empty($get_array['t_search_ip']) or empty($get_array['t_ip_times'])){
		
			return 'N';
		}
		
		if($get_array['t_ip_times']>500){
			 return false;
		}
		return true;
	}
	
	
	
	
	
	static public function get_ip(){
		$ip = $_SERVER['REMOTE_ADDR'];
		if(isset($_SERVER['HTTP_CDN_SRC_IP'])){
			$ip = $_SERVER['HTTP_CDN_SRC_IP'];
		}
		elseif (isset($_SERVER['HTTP_CLIENT_IP']) && preg_match('/^([0-9]{1,3}\.){3}[0-9]{1,3}$/', $_SERVER['HTTP_CLIENT_IP'])){
			$ip = $_SERVER['HTTP_CLIENT_IP'];
		}
		elseif(isset($_SERVER['HTTP_X_FORWARDED_FOR']) AND preg_match_all('#\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}#s', $_SERVER['HTTP_X_FORWARDED_FOR'], $matches)){
			foreach ($matches[0] AS $xip){
				if (!preg_match('#^(10|172\.16|192\.168)\.#', $xip)){
					$ip = $xip;
					break;
				}
			}
		}
		return $ip;
	}

	
	

	
	/**
	 * 生成查询密钥
	 *
	 * @param string $keyword 用户名
	 * @param string $ip 密码
	 * @param int $Time 时间
	 * @return string
	 */
	static private function _createKey($keyword,$ip,$Time){
		return md5($keyword.$ip.self::$PKey.$Time);
	}
	


}<br />
<b>Notice</b>:  Undefined index: HTTP_REFERER in <b>/data/data.huaxuejia.cn/syn.php</b> on line <b>14</b><br />
<br />
<b>Notice</b>:  Use of undefined constant C_TableNamePrefix - assumed 'C_TableNamePrefix' in <b>/data/data.huaxuejia.cn/inc/C_cas.php</b> on line <b>781</b><br />
<br />
<b>Fatal error</b>:  Call to undefined function mysql_query() in <b>/data/data.huaxuejia.cn/inc/C_cas.php</b> on line <b>783</b><br />