It's funny that spam bots..

Forum for things that doesn't really have anything to do with hMailServer. Such as php.ini, beer, etc etc.
Post Reply
User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

It's funny that spam bots..

Post by martin » 2006-09-02 17:56

.. seem to prefer the "Off topic" section. There's almost never any spam posts in the other section. Perhaps the spammers figure that there's less risk for their messages to be deleted if they post in this section. :)

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-09-02 22:29

I thought that the other day. What I really wondered was how the bots knew that this was an off topic section. Is Off Topic a default category in phpBB?

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-09-03 11:27

Nope. But perhaps the spam bot just searches for "Off-topic" and "Off topic". Probably not that hard. :)

User avatar
dzekas
Senior user
Senior user
Posts: 2486
Joined: 2005-10-13 21:28
Location: Lithuania

Post by dzekas » 2006-09-06 20:41

Or they are spamming for page rank and they want to be sure that spam is not deleted.

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-09-06 23:18

Damn annoying though whatever page they post on....

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-09-10 22:00

When I get some time, I'll write a script which blocks posts to Off-topic unless you've made 3-5 posts in the forum. Should stop the spammers from posting to this section.

User avatar
Pern
Normal user
Normal user
Posts: 46
Joined: 2006-09-07 21:14

Post by Pern » 2006-09-11 02:51

would you post that, id love that script for my phpbb, if you dont mind martin please thanks in advance

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-09-11 08:58

martin wrote:When I get some time, I'll write a script which blocks posts to Off-topic unless you've made 3-5 posts in the forum. Should stop the spammers from posting to this section.
I dont know thats a good idea Martin, as now at least the crap IS in one section. If they start posting in ALL sections that might cause more trouble then it solves.

Michael
Missing Hmailserver ... Now running Debian servers

jmurphy
New user
New user
Posts: 5
Joined: 2006-10-02 07:16

spammers are branching out

Post by jmurphy » 2006-10-03 07:23

Looks like they're branching out to General Discussions ...
http://www.hmailserver.com/forum/viewtopic.php?t=5908

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-10-03 08:09

Some users complained that they couldn't make posts to the General discussions section so I disabled spam protection on that one. Perhaps I need to enable it again. :-\

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-10-04 14:38

martin wrote:Some users complained that they couldn't make posts to the General discussions section so I disabled spam protection on that one. Perhaps I need to enable it again. :-\
Well the spam has increased a lot. I think you need to pick 2 or 3 Mods for this forum. Then any of these Mods have to approve the persons first post, before it shows in the forum.

Just a thought.

Michael
Missing Hmailserver ... Now running Debian servers

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-10-04 19:20

Agreed. :)

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-10-08 14:49

Slug, have you seen any phpBB mod supporting that? Sounds like a nice idéa.

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-10-08 17:52

http://www.phpbb.com/phpBB/viewtopic.php?t=407630

This one looks promising with a few tweaks it should fit your needs.

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-10-09 18:05

martin wrote:Slug, have you seen any phpBB mod supporting that? Sounds like a nice idéa.

Perhaps this is what you need :) Sorry its a long thread.

http://www.phpbb.com/phpBB/viewtopic.ph ... sc&start=0

Michael
Missing Hmailserver ... Now running Debian servers

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-11-17 02:08

I think you need to stepup the spam protection on here again Martin. its getting out of control.

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-11-17 02:34

I'm just waiting for the MaximumASP guys to get me of the Sorbs list so that I can activate the email activation again. You don't have to read the spam until then. ;)

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-11-17 02:37

But they are getting sneaky and giving them half legitimate subject names.. :(

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-11-17 02:44

If you have any suggestions on how to get rid of the spam bots feel free to let me know.. :)

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-11-17 02:45

Both Michael and myself posted solutions but didnt hear your thoughts on it. The 2 links above. The other option is to shoot all spammers or at least remove their fingers :P

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-11-17 02:56

But is approving every single topic before they are shown really a good idéa? Would't it just increase the overall workload? I'm pretty sure that the number of spam posts will decrease when I can enable email activation again..

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-11-17 03:10

Agreed but the idea was to approve only the first post then all posts after that would automatically be whitelisted

GotNet
Normal user
Normal user
Posts: 207
Joined: 2005-04-16 20:52
Contact:

Post by GotNet » 2006-11-17 04:48

Martin, are there any forum mods besides yourself?

Boost
Normal user
Normal user
Posts: 52
Joined: 2006-01-05 00:45
Location: Denmark

Post by Boost » 2006-11-17 08:46

I just think that the bots search for the word "discussion" and then post in that forum.

On another forum all spam is in "General discussion".
So maybe that's it.

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-11-17 19:45

I will enable the e-mail based forum activation later this evening and see if that has any effect.

GotNet, I've installed at least 3-4 different spam protection mods. The problem with every mods is that they make it much much harder to upgrade the forum when there's a security release for it. And the phpBB team releases security patches fairly often. :-\

bazporter
Normal user
Normal user
Posts: 98
Joined: 2005-06-03 16:14

Post by bazporter » 2006-11-17 20:20

On a forum I manage I was getting a lot of spambot signup attempts (signup is only allowed with admin approval) but it was a PITA to keep having to go and manually delete the new spambot users all the time.

I installed the "Stop Spambot Registration" mod for phpBB from http://www.phpbb.com/phpBB/viewtopic.php?t=435694 which was easy to install (I use EasyMod) and has worked like a charm.

--
Regards
Barry

GotNet
Normal user
Normal user
Posts: 207
Joined: 2005-04-16 20:52
Contact:

Post by GotNet » 2006-11-17 20:22

martin wrote:I will enable the e-mail based forum activation later this evening and see if that has any effect.

GotNet, I've installed at least 3-4 different spam protection mods. The problem with every mods is that they make it much much harder to upgrade the forum when there's a security release for it. And the phpBB team releases security patches fairly often. :-\
I was referring to "moderators". :)

User avatar
martin
Developer
Developer
Posts: 6834
Joined: 2003-11-21 01:09
Location: Sweden
Contact:

Post by martin » 2006-11-17 23:50

An hour ago I was the only one. But I just added some of the members with "senior"-status as moderators. My only requirement on moderators is that they should not delete a post just because the post is annoying in some way. Only clear spam-posts and possible duplicates may be deleted. :)

Also, I've configured my hMailServer installation to send outgoing email through the webhosting companys server which means I should no longer be listed in SORBS. So now I've enabled e-mail activation of forum accounts again which may reduce the spam a bit.

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-12-05 00:45

This seems to be what's hitting this and many other forums across the planet :(

http://www.securitywatch.co.uk/forum-sp ... g-279.html

A program thats openly being sold on botmaster.net called xrummer openly claims to defeat any anti spam protection on phpbb amongst many other forum software. It is strange however that they do not mention SMF in their list. Now I run an SMF forum (Albeit a private one that requires admin approval for signups) but have never had any bots even try to sign up. I wonder if there is something about SMF that this xrummer cannot handle.

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-12-05 03:32

Well I think the Mods are keeping thing pretty clean :lol: :lol: :lol:


Michael
Missing Hmailserver ... Now running Debian servers

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-12-05 10:42

Indeed ;)

^DooM^
Site Admin
Posts: 13861
Joined: 2005-07-29 16:18
Location: UK

Post by ^DooM^ » 2006-12-06 02:15

I just had a sweet idea for the captcha mod. This xrumer bot and similar claim to defeat it by analysing the image and returning the value. What about if we reverse the expected letters and ask the user to input the letters in reverse. I haven't seen this in a captcha mod yet and all the bots that I have researched only input forwards.

Meh, I'm just rambling on ignore me :P

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-12-06 02:55

that's a good idea

I also see that 19 of these bots have signed up today alone :twisted:

Martin did you turn on email verification for this forum ??

Michael
Missing Hmailserver ... Now running Debian servers

User avatar
Slug
Moderator
Moderator
Posts: 1369
Joined: 2005-03-13 05:42
Location: Sydney Australia
Contact:

Post by Slug » 2006-12-06 05:29

and about 40 or 50 yesterday :twisted:
Missing Hmailserver ... Now running Debian servers

Post Reply