Spam problem
Asked Modified Viewed 78,817 times
asked
I've recently had literally thousands of spam messages posted as comments on my site. They have to have been generated by bots, no human could have posted so many messages.
The problem seems to be that the image validation code can be read by bots, is there any way to make it more challenging for them?
I've tried using email validation in the past, but that causes more problems than it solves. Many people who tried to register said they didn't receive the confirmation mail, and I suspect it's often ended up in people's spam bins without them noticing.
The problem seems to be that the image validation code can be read by bots, is there any way to make it more challenging for them?
I've tried using email validation in the past, but that causes more problems than it solves. Many people who tried to register said they didn't receive the confirmation mail, and I suspect it's often ended up in people's spam bins without them noticing.
answered
tapaga,
I am experiencing the same problems as you are today.
1. Name= Luis (with 4 numbers)
email= u72.15.530.luis@eemjbh.info
IP= 66.154.87.10
2. Name= Herman (with 4 numbers)
email= u74.17.152.herman@ovtdpupw.info
IP= 61.55.135.167
and others...
Seems like the same Jerk.... Nothing better to do with his/her life....
They were putting pornography advertising in the news comments.....
I am experiencing the same problems as you are today.
1. Name= Luis (with 4 numbers)
email= u72.15.530.luis@eemjbh.info
IP= 66.154.87.10
2. Name= Herman (with 4 numbers)
email= u74.17.152.herman@ovtdpupw.info
IP= 61.55.135.167
and others...
Seems like the same Jerk.... Nothing better to do with his/her life....
They were putting pornography advertising in the news comments.....
answered
Yes, those are the ones I received spam from.
What worries me is that one of the sites on which I received spam was running PHP Fusion with the email registration still switched on.
Is this spammer somehow able to bypass all the registration checks?
Here's the IP addresses they've used so far:
61.55.135.167
66.154.87.10
66.154.80.88
Would it be going too far if I banned all 66.154 addresses?
What worries me is that one of the sites on which I received spam was running PHP Fusion with the email registration still switched on.
Is this spammer somehow able to bypass all the registration checks?
Here's the IP addresses they've used so far:
61.55.135.167
66.154.87.10
66.154.80.88
Would it be going too far if I banned all 66.154 addresses?
Edited by tapaga on 14-03-2007 02:29,
answered
Sorry for double post, wanted to add some new info. These spam seem to come from an ISP called Cyber Wurx, whose net range is 66.154.0.0 - 66.154.95.255.
I have the same problem with my website today... it seems it is a hole that someone can spam all the news in a minute... :o
jglisson73
jglisson73 10
- Member, joined since
- Contributed 58 posts on the community forums.
- Started 17 threads in the forums
Why don't you just blacklist those ip's?
answered
Now they're doing my other sites....
Attempting to blacklist full range.. Anything that starts with =
61.55.
66.154.
Attempting to blacklist full range.. Anything that starts with =
61.55.
66.154.
answered
The same problem today... :@
answered
the website i'm workin on also just got attacked
what i did
- disable registration
- ban the members
- ban the ip address
the bad ip is 200.88.223.98
does anybody know how to hold the activation?
- because i need them to verify who they are
- by giving their fullname & address (for example)
what i did
- disable registration
- ban the members
- ban the ip address
the bad ip is 200.88.223.98
does anybody know how to hold the activation?
- because i need them to verify who they are
- by giving their fullname & address (for example)
Edited by HangJebat on 15-03-2007 08:19,
answered
Seems that alot of us are having this problem. I have the Unauthenticated Users Infusion installed, if you don't, I suggest you do. While some might slip through, my staff and I check this all day, and just today I deleted, and banned two. I might not solve the entire problem, but I'm finding that if solves most of it.
http://www.phpfusion-mods.com/forum/v...post_21642
http://www.phpfusion-mods.com/forum/v...post_21642
answered
Until this is solved, my site will run without the link to PHPFusion.
It seems that they search for the POWERED BY link.
When there's a proper solution to this, I will put the link back on :)...
It seems that they search for the POWERED BY link.
When there's a proper solution to this, I will put the link back on :)...
answered
Quote
Stefan wrote:
Until this is solved, my site will run without the link to PHPFusion.
It seems that they search for the POWERED BY link.
When there's a proper solution to this, I will put the link back on :)...
I agree, I'm going to do the same thing. I had several different sites attacked simultaneously, on two completely different servers at completely different URLs. The only thing that connects them is PHP Fusion, and the only way they could find this out with a bot is to look for the copyright message.
If the bug is fixed I'll put the link back.
Edited by tapaga on 14-03-2007 12:42,
answered
yes..happend to me, lol..this ppl are crazy? i desabled registration for the moment
answered
I have two ideas for a solution:
A) If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message (or, something like that :D ), and the comment won't show.
B ) An Administrator must activate/accept the first 5 comments/Forum posts by a new user, before he/she can post like the rest of the users.
A) If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message (or, something like that :D ), and the comment won't show.
B ) An Administrator must activate/accept the first 5 comments/Forum posts by a new user, before he/she can post like the rest of the users.
Edited by Stefan on 14-03-2007 14:46,
answered
Here's a few more IPs..
66.154.80.88
66.154.0.0
66.154.95.255
151.204.179.29
200.88.223.98
218.63.252.219
66.154.80.88
66.154.0.0
66.154.95.255
151.204.179.29
200.88.223.98
218.63.252.219
answered
69.61.55.51 - another one
answered
Quote
If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message
I would actually like an option to ban all links in comments. None of my legitimate users ever leave links.
ozzWANTED
ozzWANTED 10
BR#1, Most Wanted
Lithuanian PHP-Fusion, Shopify & WordPress support team
Lithuanian PHP-Fusion, Shopify & WordPress support team
- Member, joined since
- Contributed 99 posts on the community forums.
- Started 22 threads in the forums
Yup, loooks like crackers founded a some new bugs who allow to run a spam bots on php-f sites(thats are really big problem to default phpBB ), becouse even in few Lithuanian sites I saw today sth like:
All they had posted a spam in comments.
*On all these site were enabled the image code vertify system. :/
My option how to solve this problem is to change the files and db table variable(we did that, so we newer had sth like spam)
Quote
david7416:
u74.4.379.david@cgwx.info
sarah7487:
u74.20.602.sarah@santa-clauss.info
All they had posted a spam in comments.
*On all these site were enabled the image code vertify system. :/
My option how to solve this problem is to change the files and db table variable(we did that, so we newer had sth like spam)
Edited by ozzWANTED on 14-03-2007 15:32,
ozzWANTED
ozzWANTED 10
BR#1, Most Wanted
Lithuanian PHP-Fusion, Shopify & WordPress support team
Lithuanian PHP-Fusion, Shopify & WordPress support team
- Member, joined since
- Contributed 99 posts on the community forums.
- Started 22 threads in the forums
Quote
tapaga wrote:Quote
If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message
I would actually like an option to ban all links in comments. None of my legitimate users ever leave links.
You can disable links in comments:
Created new part of maincore.php - parsecbb:
there you all what will be similar with links(url and mail tags): you can change to sth like that:
Quote
<b>NOT ALLOWED</b>
It's easy to code it.
answered
Quote
ozzWANTED wrote:
All they had posted a spam in comments.
*On all these site were enabled the image code vertify system. :/
It change image on text.
It's obliged to help, i think so ;)
Category Forum
Official Core Support - 6Labels
None yet
Statistics
- Views 0 views
- Posts 169 posts
- Votes 0 votes
- Topic users 55 members
0 participants
Notifications
Track thread
You are not receiving notifications from this thread.
Related Questions