Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Sign In
Not a member yet? Click here to register.

Spam problem

I've recently had literally thousands of spam messages posted as comments on my site. They have to have been generated by bots, no human could have posted so many messages.

The problem seems to be that the image validation code can be read by bots, is there any way to make it more challenging for them?

I've tried using email validation in the past, but that causes more problems than it solves. Many people who tried to register said they didn't receive the confirmation mail, and I suspect it's often ended up in people's spam bins without them noticing.
tapaga,

I am experiencing the same problems as you are today.

1. Name= Luis (with 4 numbers)
email= u72.15.530.luis@eemjbh.info
IP= 66.154.87.10

2. Name= Herman (with 4 numbers)
email= u74.17.152.herman@ovtdpupw.info
IP= 61.55.135.167

and others...
Seems like the same Jerk.... Nothing better to do with his/her life....
They were putting pornography advertising in the news comments.....
Yes, those are the ones I received spam from.

What worries me is that one of the sites on which I received spam was running PHP Fusion with the email registration still switched on.

Is this spammer somehow able to bypass all the registration checks?

Here's the IP addresses they've used so far:

61.55.135.167
66.154.87.10
66.154.80.88

Would it be going too far if I banned all 66.154 addresses?
Sorry for double post, wanted to add some new info. These spam seem to come from an ISP called Cyber Wurx, whose net range is 66.154.0.0 - 66.154.95.255.
I have the same problem with my website today... it seems it is a hole that someone can spam all the news in a minute... :o
Why don't you just blacklist those ip's?
Now they're doing my other sites....

Attempting to blacklist full range.. Anything that starts with =
61.55.
66.154.
The same problem today... :@
the website i'm workin on also just got attacked

what i did
- disable registration
- ban the members
- ban the ip address

the bad ip is 200.88.223.98

does anybody know how to hold the activation?
- because i need them to verify who they are
- by giving their fullname & address (for example)
Seems that alot of us are having this problem. I have the Unauthenticated Users Infusion installed, if you don't, I suggest you do. While some might slip through, my staff and I check this all day, and just today I deleted, and banned two. I might not solve the entire problem, but I'm finding that if solves most of it.

http://www.phpfusion-mods.com/forum/v...post_21642
Until this is solved, my site will run without the link to PHP-Fusion.

It seems that they search for the POWERED BY link.

When there's a proper solution to this, I will put the link back on :)...

Quote

Stefan wrote:
Until this is solved, my site will run without the link to PHP-Fusion.

It seems that they search for the POWERED BY link.

When there's a proper solution to this, I will put the link back on :)...


I agree, I'm going to do the same thing. I had several different sites attacked simultaneously, on two completely different servers at completely different URLs. The only thing that connects them is PHP Fusion, and the only way they could find this out with a bot is to look for the copyright message.

If the bug is fixed I'll put the link back.
yes..happend to me, lol..this ppl are crazy? i desabled registration for the moment
I have two ideas for a solution:

A) If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message (or, something like that :D ), and the comment won't show.

B ) An Administrator must activate/accept the first 5 comments/Forum posts by a new user, before he/she can post like the rest of the users.
Here's a few more IPs..

66.154.80.88
66.154.0.0
66.154.95.255
151.204.179.29
200.88.223.98
218.63.252.219

69.61.55.51 - another one

Quote

If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message


I would actually like an option to ban all links in comments. None of my legitimate users ever leave links.
Yup, loooks like crackers founded a some new bugs who allow to run a spam bots on php-f sites(thats are really big problem to default phpBB ), becouse even in few Lithuanian sites I saw today sth like:

Quote

david7416:
u74.4.379.david@cgwx.info

sarah7487:
u74.20.602.sarah@santa-clauss.info


All they had posted a spam in comments.
*On all these site were enabled the image code vertify system. :/

My option how to solve this problem is to change the files and db table variable(we did that, so we newer had sth like spam)

Quote

tapaga wrote:

Quote

If a user tries to post a comment with 3 or more links, he/she will get a "Hell no you wont" message


I would actually like an option to ban all links in comments. None of my legitimate users ever leave links.

You can disable links in comments:
Created new part of maincore.php - parsecbb:
there you all what will be similar with links(url and mail tags): you can change to sth like that:

Quote

<b>NOT ALLOWED</b>

It's easy to code it.

Quote

ozzWANTED wrote:
All they had posted a spam in comments.
*On all these site were enabled the image code vertify system. :/


It change image on text.
It's obliged to help, i think so ;)
Thread Information
Author
Replies
170 posts
Views
66,240 times
Last Post
Last updated on 12 years ago
Related Threads
You can view all discussion threads in this forum.
You can start a new discussion thread in this forum.
You cannot reply in this discussion thread.
You cannot start on a poll in this forum.
You cannot upload attachments in this forum.
You cannot download attachments in this forum.