Belegarth

Requires a form originating post:
http://www.phpbb.com/phpBB/viewtopic.php?t=210055

This Mod would probably block about 85% of all spam messages!


stop spam words:
http://www.phpbb.com/phpBB/viewtopic.php?t=354376

This Mod could be configured with the misspellings of all the *'s and Ceilis and odd * spellings out there... increasing our chances of eliminating spammers.


This one blocks a register if their mx record is incorrect... good by announomouse posting on a proxy.
http://www.phpbb.com/phpBB/viewtopic.php?t=458856

This one makes user have to wait x days before they can post off site content... pictures or links:
http://www.phpbb.com/phpBB/viewtopic.php?t=464628

Are there any mods with the pictures of jumbled up letters and numbers when you try to start an account?

Or are there ways to overpass those steps?

We currently have the jumbled letters.

Super smart bots can be trained to read them still, so you have to litteraly invent a new permutation, additionaly Botters can manualy log their bot in once and then let it go to work.

Whoever is behind this bot invasion needs a swift roundhouse kick to the face. Seriously.

it seems that currently someone at "christmas orgasms" is the problem. this is the lagrest bot invasion ive seen by far, and its all from the same source. the other problem with that is the fact that this site sent like 20 or 30 bots out, meaning we cant just ban one and delete its posts.

"christmas orgasms"

Is a trojan site. download it and good bye personal info.

Actualy I have deleted about 15 bots. And Moderators are busy deleting their posts as well. Blocking the Bot's E-mail domains and some of the IP addresses they are coming at us from is starting to work. I would imagine that the bulk of the invasion has ended. We might see some more spikes of activity, but as we see them we will stop those as well.

I am expecting this thread to be spammed.

The bots are still getting through. I wonder if they are being manually registered onto the site.

Just disable manual registrations and examine each registrant individually. It's more work, but it's the only way to be sure.

but it's the only way to be sure.

I thought the only way to be sure was to nuke the site from orbit...?

It should be obvious but Terjo2 is a bad one.

I had trouble with a guestbook a couple years ago like this. Here's what I did... watched trends in spam posts and created a list (array) of keywords and phrases that signaled bots. Created a condition in the source in the post functions where it checked against the array. If a flag came up, the poster's account, IP address and date/time were logged into a separate database and the post was not added. After gaining a few entries into the "spam" database, I also filtered against IP addresses (DHCP still often gives out the same IP address).

Also add checking against users. If there are a bunch of spam posts (especially if they're in a row), flag the user and disable the account. Also increase the required delay between posts.

Sure it's digging through the source and manipulating the database directly, but sometimes you just gotta do that.

In this recent surge, look for posts that are just links with irregular URL's that don't go anywhere. Is there a way to check the http status of a link in php? If the return code is anything other than 200 and all the post is is a link, flag it.

... wish I could read MAC addresses with PHP. Anyone?

Holy cow! How many of the 4500 registered users are bot-accounts? Looking at a snapshot of the memberlist, it could be hundreds...

we could just spam the emails that are spamming us..

xAlUcArDx wrote:we could just spam the emails that are spamming us..

doesn't matter. They make an E-mail account that is meant to be spammed with the different 'welcome to forum X' E-mails. Most bot posts are deleted after the first few hours. And those E-mail boxes are never checked by a real person like you or me that uses an E-mail for personal things.

and the most resent 2 bot attack that ressed old posts and made new ones while 2 MODs where online.

some mods only have acces to their own private forum.

ah right...forgot about that.

Bruder wrote:
I am expecting this thread to be spammed

good call

Iyon wrote:Carmen Electra Giving A Head And Taking A Load!
http://Carmen-Electra-Giving-A-Head-And ... ie=1079054

I can't believe they add so much to the conversation. We should keep these things around.

Nah, burn them all.

Why can't we do anything to them for a breach of contract or edit the begining contract so the bots can breach it in every way conceiveable. I realize legal action is a little excesive and probably wouldn't work anyway, however it might work as a threat.

I don't know how feasible it is to do this but Another idea I had was to have exisisting members have to vouch for new members (like how gmail was). We could have a fourm just for people not a member of the fourm and they could ask if someone could vouch for them there, and if they start talking about porn then they are probably a bot.

that would make it rather hard for people who don't know anyone in the sport yet. The mods are few in number but they don't even get paid (I don't think) so everyone leave them alone on this. They are not just letting the bots post stuff for days only hours which when you consider the mods sleep, work, school, and some may have kids its a freakin miracle they can even do moding for us. if they want I wouldn't mind helping out with the bot killing though . If there is any thing I or the members of the board can do let us know and I think we would all like to help.

I realized that the mods do have lives, thats what the second option was for is so that if someone is interseted in the sport they could only post in the in say the new mwmbers area that way the mods only had to check one fourm, and the vouching for people so the mods didn't have to go through users seaqrching for bots.

I think it would work however I'm not sure about the programming side of it.

If the mods need help, just ask. I'm on here from about 8:30-17:00 M-F, and I'm sure I'm not the only one.

This last batch was especially bad; they hit EVERY public forum at least 3 times each. Even this sanctum of technological sanity was not left unscathed...

Let's just shoot them and get it over with.