Re: To Admin - Spammer Targeting Xoops sites [XOOPS general usage questions]

31

Re: To Admin - Spammer Targeting Xoops sites

2007/5/31 10:53
BDW
Quite a regular
Posts: 280
Since: 2002/9/28

well i also only allow email activation but he was able to register.

I caught it before any posts where made.

32

Re: To Admin - Spammer Targeting Xoops sites

2007/5/31 11:02
Anonymous
Posts: 0
Since:

Quote:

BDW wrote:

well i also only allow email activation but he was able to register.

The registration process itself is difficult to stop (unless you know the domains used - thanks for the list, btw

) and seems to be an issue for most systems. It's not a XOOPS problem as such - ask anyone who admins a phpbb messageboard!

The only defence is to tie your site down - no anonymous posts/comments and, if you have a number of new registrations that you can cope with and can activate them quickly enough so that you don't lose users, Admin-only activation.

Quote:

BDW wrote:

I caught it before any posts where made.

If only every webmaster was as diligent and paid as much attention to their sites

33

Re: To Admin - Spammer Targeting Xoops sites

2007/5/31 11:07
BDW
Quite a regular
Posts: 280
Since: 2002/9/28

Quote:

JAVesey wrote:

If only every webmaster was as diligent and paid as much attention to their sites

aye, but it didnt take a genius since it registered to two of my site with similar but not the same email address.

i.e pcnac****@

replace **** with random number.

Just had a thought, maybe the bot creates a random inbox and the person that owns the domain has a catch-all system where any email that goes to that domain regardless of whether the inbox exists then the email is forwarded by the catch-all system.

That would explain why they where able to activate and that it takes them a couple of days to post. hmmmmm.

34

Re: To Admin - Spammer Targeting Xoops sites

2007/5/31 12:25
sailjapan
Moderator
Posts: 1672
Since: 2005/11/16

He's back!
new email address
kakto16852@gigantegassoso.info

also refers to the gwb.info site

Never let a man who does not believe something can be done, talk to a man that is doing it.

35

Re: To Admin - Spammer Targeting Xoops sites

2007/5/31 14:53
Anonymous
Posts: 0
Since:

Quote:

sailjapan wrote:

He's back!

Yay

Sound like you missed him

Quote:

sailjapan wrote:

new email address
kakto16852@gigantegassoso.info

also refers to the gwb.info site

Add |gigantegassoso.info$ into your User Info details as per BWB's post earlier and the g-w-b.info text into the banned words list as per a subsequent post.

36

Re: To Admin - Spammer Targeting Xoops sites

2007/6/1 3:53
irmtfan
Module Developer
Posts: 3419
Since: 2003/12/7

huum i think now we just can disable registration from that domains and i prefer to close emails with extension .it and .info until other solution come from

Ready for Romance
First Persian Harry Potter Site(English added) | Persian Support Site | Xoops Persian Project

37

Re: To Admin - Spammer Targeting Xoops sites

2007/6/1 9:02
blueteen
Quite a regular
Posts: 379
Since: 2004/7/16

here is what I suggested this morning on french XOOPS forum.
for what i know, this spammer always uses a particular url in his profile.
i modified my register.php (xoops 2.0.16) to add a test on this url.
backup your register.php before any change.

line 41, replace :


function userCheck($uname, $email, $pass, $vpass)

with


function userCheck($uname, $email, $url, $pass, $vpass)

line 141 :


$stop .= userCheck($uname, $email, $pass, $vpass);

with


$stop .= userCheck($uname, $email, $url, $pass, $vpass);

line 174 :


$stop = userCheck($uname, $email, $pass, $vpass);

with


$stop = userCheck($uname, $email, $url, $pass, $vpass);

to finish, line 92, after :


if (strrpos($uname, ' ') > 0) {

    $stop .= _US_NICKNAMENOSPACES."<br />";

}

add :


//spam gwb

if (preg_match("/george-walker-bush/i", $url)) {

        $stop .= _US_INVALIDMAIL."<br />";

    }

//spam gwb

thus, if someone try to register on your website, with an url containing "george-walker-bush", a message will tell to him that his email is not valid.
this is surely a temporary solution, but this prevents your website to be spammed easily !

38

Re: To Admin - Spammer Targeting Xoops sites

2007/6/1 11:59
vaughan
Friend of XOOPS
Posts: 680
Since: 2005/11/26

this has turned into quite an interesting and useful thread.

would anybody mind if i changed the topic title to something more appropriate. say "Spammer Prevention Techniques" or something?

Other people may find this thread useful, and others may have other tips & advice on reducing the actions of spammers.

39

Re: To Admin - Spammer Targeting Xoops sites

2007/6/1 12:57
Anonymous
Posts: 0
Since:

Quote:

vaughan wrote:

would anybody mind if i changed the topic title to something more appropriate. say "Spammer Prevention Techniques" or something?

I think the answer should come from the originator of the thread, but speaking personally, I think it's a good idea.

40

Re: To Admin - Spammer Targeting Xoops sites

2007/6/1 13:01
nekro
Quite a regular
Posts: 213
Since: 2005/11/9

It also happened on xoops.org.. some time ago... i send to pm in that moment warning the problem...

--------------------------------------
TO jmorris:

nekro,

Thank you for reporting this! I will watch these users and see if they start posting spam.

Best regards,

James

Quote:

nekro wrote:
i think that there is a couple of bots looged in... check it out... maybe for spam
can you do anything??'

galu753, m9467007, cpy0730, fupjp, f8740026, e461839,book530,

--------------------------------------

TO phppp

Sent: 2007/3/12 22:43:12Re: posible attack

thanks,
will keep in mind

Quote:

nekro wrote:
another thing... i think that someone is doing any kind of atack.. there are many bots created in a little time ... check it out... i also advise to jmorris...

--------------------------------------

I ve also found that bots in my site in the last week... like pcnaxXXXX

Stats
Goal:	$100.00
Due Date:	Apr 30
Gross Amount:	$0.00
Net Balance:	$0.00
Left to go:	$100.00

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Re: To Admin - Spammer Targeting Xoops sites

Login

Search

Recent Posts

Re: Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

Re: NewBB v 5.1.0 b 6

Re: NewBB v 5.1.0 b 6

NewBB v 5.1.0 b 6

Re: XOOPS 2.5.11 search user is not working

Re: oledrion

Re: oledrion

Re: oledrion

Re: oledrion

Who's Online

Donat-O-Meter

Latest GitHub Commits

{{ record.sha.slice(0, 7) }} - {{ record.commit.message | truncate }}