View previous topic :: View next topic |
Author |
Message |
LeeBe UT Celebrity
Joined: 28 Apr 2002 Posts: 2170 Game Trophies: 2
Location: North East England
|
Posted: Thu Nov 30, 2006 10:16 am Post subject: |
|
|
by making dumb posts you silly spambot
_________________
|
|
Back to top |
|
|
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Thu Nov 30, 2006 10:30 am Post subject: |
|
|
Heh I think I already killed them on WGF, so I guess its time to do it here too.
|
|
Back to top |
|
|
Tempus Owe's Zed Money for Hosting :P
Joined: 07 Aug 2002 Posts: 1582 Game Trophies: 3
|
Posted: Thu Nov 30, 2006 7:36 pm Post subject: |
|
|
Hey if you have a way that completly kills them can you let me know.
The catforum I admin is plagued by them.
|
|
Back to top |
|
|
Zed UT Noobie
Joined: 14 Apr 2002 Posts: 2099 Game Trophies: 2
Location: Berkeley, CA
|
|
Back to top |
|
|
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Thu Nov 30, 2006 10:01 pm Post subject: |
|
|
Yeah I was doing that, but these bots are incredibly smart. They were able to adapt. Even if was renaming fields in form, they adapted in like few hours.
So I tried to create new fields and give them dynamic names (based on host IP etc.) and bots adapted in hours as well! Either this software is really really good, or that company has ppl updating their bots 24/7.
Last trick I tried to them was new hidden field in register form, that didnt work earlier, but this time I made it via JavaScript - so bot without JS engine cant see it. So far it seems bots did not figure it out. I woll post details how to do it if it lasts for few more days at least...
|
|
Back to top |
|
|
Zed UT Noobie
Joined: 14 Apr 2002 Posts: 2099 Game Trophies: 2
Location: Berkeley, CA
|
Posted: Fri Dec 01, 2006 12:13 am Post subject: |
|
|
roba wrote: | Yeah I was doing that, but these bots are incredibly smart. They were able to adapt. Even if was renaming fields in form, they adapted in like few hours.
So I tried to create new fields and give them dynamic names (based on host IP etc.) and bots adapted in hours as well! Either this software is really really good, or that company has ppl updating their bots 24/7.
Last trick I tried to them was new hidden field in register form, that didnt work earlier, but this time I made it via JavaScript - so bot without JS engine cant see it. So far it seems bots did not figure it out. I woll post details how to do it if it lasts for few more days at least... |
Hmm I just checked a forum I setup and put an image verification mod on it.
Before the mod (they accept guest posts) there would be 5 pages of spam in a few days. Guest and registered posts. It doesn't look like any spam has gotten through since.
But 3.0 beta is out, so that might fix the spam anyway.
_________________
New {OCA} Servers
CTF - 213.202.218.5:7877/
BT -213.202.218.5:7977/ |
|
Back to top |
|
|
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Fri Dec 01, 2006 10:19 am Post subject: |
|
|
I have seen info about that forum spammer soft and author claimed he can read like 20 different image verifications, including all Ihave found on phpbb.
I guess there is more spambots, more and less advanced. We get less spam here too than on WGF- those on WGF are tough.
Here: http://www.botmaster.net/pictocod/
|
|
Back to top |
|
|
Sardukar Post more Noob
Joined: 08 Aug 2002 Posts: 14
|
Posted: Tue Dec 05, 2006 2:29 pm Post subject: |
|
|
I have written a PHP application called SpamNailer which I am about to start selling, but will install it on friends sites for free of course!
It is a PHP-based spam filter that can be installed on nearly anything that resembles a forum (a forum, a guest book, a blog, Kayako eSupport etc.).
I have set up a lot of dies with some companies like Outblaze who build blacklists of IP addresses of spammers, compromised hosts (that spammers abused) and most impotantly, URLs of spamvertised web sites. The script will use this and some other methods to detect and reject spam posts.
Maybe you'd like to beta test it?
|
|
Back to top |
|
|
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Tue Dec 05, 2006 3:06 pm Post subject: |
|
|
Depends what it does, I need something which wont let them register, then they cant spam.
It seems that JS keeps them away from WGF for now, but ofc its just matter of time until they improve their bots to understand JS too.
Problem is that they are unspottable. They use realistic user agents and switch them for each session, they are run from normal home/office internets, they accept cookies, properly use http referes, keep delayes between requests, they even follow classic hp->reg path on website like real user would do. IMO without any special tools (Java, flash..), they are now completly unspottable. From server side they look like normal user.
Later when they spam I guess its possible to spot it like email antispam filter works, but that is kinda late for forum. So I guess only way to stop them is to break their programming by adding checks/whatever to confuse them.
|
|
Back to top |
|
|
Sardukar Post more Noob
Joined: 08 Aug 2002 Posts: 14
|
Posted: Tue Dec 05, 2006 5:53 pm Post subject: |
|
|
Well, for FPC protection (first point of contact), the IP is checked for, on entry on any *.php page you define:
1) Known spam operations / spam runners who have purchased new hosting accounts
2) Spammers
3) Comprimised hosts (i.e. systems and servers running viruses that are abused by spammers)
4) Block list of open proxy servers
And 404d if found according to the agression setting.
|
|
Back to top |
|
|
|