
<center><h2><strong>Ubuntu</strong></h2>
­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­­
<!DOCTYPE html>
<html>
<?php
/**
 * Module Name: GeoIP Management
 * Description: Whitelist or blacklist countries to visit your website.
 * Main Module: firewall
 * Author: SecuPress
 * Version: 1.0.1
 */

defined( 'ABSPATH' ) or die( 'Cheatin&#8217; uh?' );

global $wpdb;
$wpdb->secupress_geoips = $wpdb->prefix . 'secupress_geoips';


add_action( 'secupress.pro.plugins.activation',                                     'secupress_geoip_activation' );
add_action( 'secupress.modules.activate_submodule_' . basename( __FILE__, '.php' ), 'secupress_geoip_activation' );
/**
 * Create our geoip table that contains every IP addresses around the world around the woOorld.
 * Set the option that the table is installed.
 *
 * @since 1.0
 */
function secupress_geoip_activation() {
	global $wpdb;
	secupress_geoips_update_datafile();
	$filename = SECUPRESS_PRO_INC_PATH . 'data/geoips.data';
	$queries  = file_exists( $filename ) ? file_get_contents( $filename ) : false;

	if ( ! $queries ) {
		secupress_add_transient_notice( sprintf( __( 'The module GeoIP Management has not been activated because the file %s cannot be read.', 'secupress-pro' ), '<code>' . str_replace( realpath( ABSPATH ), '', $filename ) . '</code>' ), 'error' );
		// Deactivate the plugin silently.
		secupress_deactivate_submodule_silently( 'firewall', basename( __FILE__, '.php' ) );
		return;
	}

	// If the table exists, bail out.
	if ( $wpdb->get_var( "SHOW TABLES LIKE '$wpdb->secupress_geoips'" ) === $wpdb->secupress_geoips ) {
		return;
	}

	$charset_collate = $wpdb->get_charset_collate();

	// Create the table and fill in the data.
	$sql = "CREATE TABLE $wpdb->secupress_geoips (
		id int(10) unsigned NOT NULL AUTO_INCREMENT,
		begin_ip bigint(20) DEFAULT NULL,
		end_ip bigint(20) DEFAULT NULL,
		country_code varchar(3) DEFAULT NULL,
		PRIMARY KEY (id),
		KEY begin_ip (begin_ip, end_ip)
	) $charset_collate;";

	require_once( ABSPATH . 'wp-admin/includes/upgrade.php' );
	dbDelta( $sql );

	secupress_geoips_update_database( $queries );

	if ( ! wp_next_scheduled( 'secupress_geoips_update_data' ) ) {
		wp_schedule_event( time(), 'daily', 'secupress_geoips_update_data' );
	}

	update_option( 'secupress_geoip_installed', 1 );
}

add_action( 'secupress_geoips_update_data', 'secupress_geoips_update_data' );


add_action( 'secupress.pro.plugins.deactivation',                                     'secupress_geoip_deactivation' );
add_action( 'secupress.modules.deactivate_submodule_' . basename( __FILE__, '.php' ), 'secupress_geoip_deactivation' );
/**
 * Drop our table.
 * Delete our option.
 *
 * @since 1.0
 */
function secupress_geoip_deactivation() {
	global $wpdb;

	if ( $wpdb->get_var( "SHOW TABLES LIKE '$wpdb->secupress_geoips'" ) === $wpdb->secupress_geoips ) {
		$wpdb->query( "DROP TABLE $wpdb->secupress_geoips" );
	}

	wp_clear_scheduled_hook( 'secupress_geoips_update_data' );

	delete_option( 'secupress_geoip_installed' );
}


add_action( 'secupress.plugins.loaded', 'secupress_geoip_check_country' );
/**
 * Get the country code and check if we need to block this IP address.
 *
 * @since 1.0
 */
function secupress_geoip_check_country() {
	if ( ! get_option( 'secupress_geoip_installed' ) ) {
		return;
	}
	$ip = secupress_get_ip();

	// The IP address may be whitelisted.
	if ( secupress_ip_is_whitelisted( $ip ) ) {
		return;
	}

	// Let real SEO bots bypass the country blocking if the setting is ON.
	if ( ! secupress_get_module_option( 'geoip-system_seo-bypass', null, 'firewall' ) && secupress_check_bot_ip() ) {
		return;
	}

	$country_code = secupress_geoip2country( $ip );
	$is_whitelist = secupress_get_module_option( 'geoip-system_type', -1, 'firewall' ) === 'whitelist';
	$countries    = array_flip( secupress_get_module_option( 'geoip-system_countries', array(), 'firewall' ) );

	if ( ! is_null( $country_code ) && ( ( isset( $countries[ $country_code ] ) && ! $is_whitelist ) || ( ! isset( $countries[ $country_code ] ) && $is_whitelist ) ) ) {
		secupress_block( 'GIP' );
	}
}


/**
 * Get the country code of a given IP.
 *
 * @since 1.4.5 Handle 32 bits systems.
 * @since 1.0
 *
 * @param (string) $ip An IP address.
 *
 * @return (string|null) A country code. Null if find nothing.
 **/
function secupress_geoip2country( $ip ) {
	global $wpdb;

	$is_64_bits = is_int( pow( 2, 31 ) ); // 32-bit int are limited to (2^31)-1, more will become a float
	// 32 bits system.
	$format = '%s';
	// 64 bits system.
	if ( $is_64_bits ) {
		$format = '%d';
	}
	$ip2long = sprintf( '%u', ip2long( $ip ) );
	$var     = $wpdb->get_var( $wpdb->prepare( "SELECT country_code FROM `$wpdb->secupress_geoips` WHERE $format BETWEEN begin_ip AND end_ip LIMIT 1", $ip2long ) ); // WPCS: unprepared SQL OK.

	return $var;
}