Page 1 of 3
Spam posts
Posted:
Fri Jan 27, 2006 11:51 am
by SpOOnmAn
Posted:
Wed Feb 08, 2006 10:05 am
by rabidhamster
Posted:
Tue Nov 28, 2006 10:58 pm
by SpOOnmAn
i found a trick on the german phpbb forum that sounds good to me, but i do not know anything about php and phpbb,
they say something like spambots call a function "GET /phpBB/profile.php?mode=register&agreed=true"
so if in the file "includes/usercp_register.php" the word "agreed" is changed to something else (it is 6 times in the file) this call should not work anymore... but be sure to change it everywhere in the code, otherwise nobody can register anymore...
also usefull seems to be this mod:
gordon please tell me if this helped?
Posted:
Wed Nov 29, 2006 8:33 am
by rabidhamster
Hi. I'll go look into it - i like the idea of changing that word - nice and simple and it should cut out 90% of registrations
Posted:
Wed Nov 29, 2006 11:22 am
by SpOOnmAn
but be sure not to change it to something like "agreeed" or so, better use a unrelated word or random string
Posted:
Fri Dec 01, 2006 6:04 pm
by SpOOnmAn
gordon, did u already try that?, or did u not find time?
btw good luck with your startup company!
Posted:
Mon Dec 04, 2006 9:30 am
by rabidhamster
just did it now. I can still create new users. We'll see if it helps at all - it may not depending how smart the bots are
Looking at it there's quite a lot of changes that can be made to made it harder for the bot writers though.
Posted:
Mon Dec 04, 2006 11:15 am
by rabidhamster
doesn't seem to have worked - although maybe its old registrations filtering through.
Posted:
Tue Dec 05, 2006 9:26 am
by rabidhamster
Posted:
Tue Dec 05, 2006 9:33 am
by andff
Posted:
Tue Dec 05, 2006 9:38 am
by rabidhamster
Posted:
Tue Dec 05, 2006 9:47 am
by andff
Posted:
Tue Dec 05, 2006 9:48 am
by SpOOnmAn
maybe this mod can help, seems to be a big pack of security tools for phpbb, but i dont realy know what it can do at all and how much administrative work it needs
Posted:
Tue Dec 05, 2006 9:49 am
by rabidhamster
would be nice if i could do it automatically - anyone with more than 4 numbers in their name gets the chop
tbh I could make the whole process of accepting users manual - we don't ave that many users
Posted:
Tue Dec 05, 2006 9:54 am
by andff