XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk
  1. Board index / 
  2. XOOPS Community Support forums / 
  3. XOOPS general usage questions 
  4.  / {merge request] To Admin - Spammer Targeting Xoops sites - duplicate material
Register
31
BDW
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/5/31 10:53

  • BDW

  • Quite a regular

  • Posts: 280

  • Since: 2002/9/28


well i also only allow email activation but he was able to register.

I caught it before any posts where made.
32
Anonymous
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/5/31 11:02

  • Anonymous

  • Posts: 0

  • Since:


Quote:
BDW wrote:

well i also only allow email activation but he was able to register.


The registration process itself is difficult to stop (unless you know the domains used - thanks for the list, btw ) and seems to be an issue for most systems. It's not a XOOPS problem as such - ask anyone who admins a phpbb messageboard!

The only defence is to tie your site down - no anonymous posts/comments and, if you have a number of new registrations that you can cope with and can activate them quickly enough so that you don't lose users, Admin-only activation.

Quote:
BDW wrote:

I caught it before any posts where made.


If only every webmaster was as diligent and paid as much attention to their sites
33
BDW
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/5/31 11:07

  • BDW

  • Quite a regular

  • Posts: 280

  • Since: 2002/9/28


Quote:

JAVesey wrote:

If only every webmaster was as diligent and paid as much attention to their sites


aye, but it didnt take a genius since it registered to two of my site with similar but not the same email address.

i.e pcnac****@

replace **** with random number.

Just had a thought, maybe the bot creates a random inbox and the person that owns the domain has a catch-all system where any email that goes to that domain regardless of whether the inbox exists then the email is forwarded by the catch-all system.

That would explain why they where able to activate and that it takes them a couple of days to post. hmmmmm.
34
sailjapan
Re: To Admin - Spammer Targeting Xoops sites

He's back!
new email address
kakto16852@gigantegassoso.info

also refers to the gwb.info site
Never let a man who does not believe something can be done, talk to a man that is doing it.
35
Anonymous
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/5/31 14:53

  • Anonymous

  • Posts: 0

  • Since:


Quote:
sailjapan wrote:

He's back!


Yay

Sound like you missed him

Quote:
sailjapan wrote:

new email address
kakto16852@gigantegassoso.info

also refers to the gwb.info site


Add |gigantegassoso.info$ into your User Info details as per BWB's post earlier and the g-w-b.info text into the banned words list as per a subsequent post.
36
irmtfan
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/6/1 3:53

  • irmtfan

  • Module Developer

  • Posts: 3419

  • Since: 2003/12/7


huum i think now we just can disable registration from that domains and i prefer to close emails with extension .it and .info until other solution come from
37
blueteen
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/6/1 9:02

  • blueteen

  • Quite a regular

  • Posts: 379

  • Since: 2004/7/16


here is what I suggested this morning on french XOOPS forum.
for what i know, this spammer always uses a particular url in his profile.
i modified my register.php (xoops 2.0.16) to add a test on this url.
backup your register.php before any change.

line 41, replace :
function userCheck($uname$email$pass$vpass)

with
function userCheck($uname$email$url$pass$vpass)


line 141 :
$stop .= userCheck($uname$email$pass$vpass);

with
$stop .= userCheck($uname$email$url$pass$vpass);


line 174 :
$stop userCheck($uname$email$pass$vpass);

with
$stop userCheck($uname$email$url$pass$vpass);


to finish, line 92, after :
if (strrpos($uname' ') > 0) {
    $stop .= _US_NICKNAMENOSPACES."";
}


add :
//spam gwb
if (preg_match("/george-walker-bush/i"$url)) {
        $stop .= _US_INVALIDMAIL."";
    }
//spam gwb


thus, if someone try to register on your website, with an url containing "george-walker-bush", a message will tell to him that his email is not valid.
this is surely a temporary solution, but this prevents your website to be spammed easily !
38
vaughan
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/6/1 11:59

  • vaughan

  • Friend of XOOPS

  • Posts: 680

  • Since: 2005/11/26


this has turned into quite an interesting and useful thread.

would anybody mind if i changed the topic title to something more appropriate. say "Spammer Prevention Techniques" or something?

Other people may find this thread useful, and others may have other tips & advice on reducing the actions of spammers.
39
Anonymous
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/6/1 12:57

  • Anonymous

  • Posts: 0

  • Since:


Quote:
vaughan wrote:

would anybody mind if i changed the topic title to something more appropriate. say "Spammer Prevention Techniques" or something?


I think the answer should come from the originator of the thread, but speaking personally, I think it's a good idea.
40
nekro
Re: To Admin - Spammer Targeting Xoops sites

  • 2007/6/1 13:01

  • nekro

  • Quite a regular

  • Posts: 213

  • Since: 2005/11/9


It also happened on xoops.org.. some time ago... i send to pm in that moment warning the problem...

--------------------------------------
TO jmorris:

nekro,

Thank you for reporting this! I will watch these users and see if they start posting spam.

Best regards,

James

Quote:

nekro wrote:
i think that there is a couple of bots looged in... check it out... maybe for spam
can you do anything??'

galu753, m9467007, cpy0730, fupjp, f8740026, e461839,book530,

--------------------------------------

TO phppp

Sent: 2007/3/12 22:43:12Re: posible attack

thanks,
will keep in mind


Quote:


nekro wrote:
another thing... i think that someone is doing any kind of atack.. there are many bots created in a little time ... check it out... i also advise to jmorris...

--------------------------------------

I ve also found that bots in my site in the last week... like pcnaxXXXX
« 1 2 3 (4) 5 6 7 ... 9 »

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

268 user(s) are online (185 user(s) are browsing Support Forums)

Members: 0

Guests: 268

more...

Donat-O-Meter

Stats
Goal: $15.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $15.00
Make donations with PayPal!

Latest GitHub Commits