Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
 All Forums
 Snitz Forums 2000 MOD-Group
 MOD Add-On Forum (W/Code)
 Anti-Bot Modification for Snitz Forum

Note: You must be registered in order to post a reply.
To register, click here. Registration is FREE!
Before posting, make sure you have read this topic!

Screensize:
UserName:
Password:
Format Mode:
Format: BoldItalicizedUnderlineStrikethrough Align LeftCenteredAlign Right Horizontal Rule Insert HyperlinkInsert EmailInsert Image Insert CodeInsert QuoteInsert List
   
Message:

* HTML is OFF
* Forum Code is ON
Smilies
Smile [:)] Big Smile [:D] Cool [8D] Blush [:I]
Tongue [:P] Evil [):] Wink [;)] Clown [:o)]
Black Eye [B)] Eight Ball [8] Frown [:(] Shy [8)]
Shocked [:0] Angry [:(!] Dead [xx(] Sleepy [|)]
Kisses [:X] Approve [^] Disapprove [V] Question [?]

 
Check here to subscribe to this topic.
   

T O P I C    R E V I E W
MrMike2000 Posted - 17 January 2009 : 21:01:20
I apologize in advance if this isn't the correct forum to post this in; it seemed the most applicable one that I saw.

Due to the rather aggressive increase in bot activity that I've seen across many of my forums, I've developed "bot buster" mod and I'm offering it to the Snitz community (and several of the other major message boards as well).

I've bundled up a drop-in BotBuster mod for Snitz that people are welcome to use. Technically it's not 100% "drop-in", but it's very, very close. It's all self-contained in one file, requires NO database modifications, and should require only one minor edit to the registration file. (You'll also want to set a couple of very simple configuration options in the BotBuster file, but that's it.)

It uses the http://BotScout.com API to check registration emails and reject known bots. Because it uses the BotScout API you don't have to host anything, change your database, or do any complicated modifications to your code. BoutScout.com keeps a list of emails, IPs, and user names that bots use and makes them available through a simple API (as well as manual searches).

Full Disclosure:
I'm the owner/operator of http://BotScout.com. What we do is trap bots by using a large number of "bot honeypot" forms located on a bunch of our sites. We then publish that information so people can use it to screen registration attempts. smile

I've included configuration options for SMF, VBulletin, phpBB, Phorum, PunBB, Invision Power Board, FUDForum, Ikonboard, Snitz, and W-Agora. It can be used on virtually any kind of forum, contact page, or web form.

The code and a ReadMe file are available for download here: http://www.botscout.com/code.htm (click the "Download BotScout BotBuster ver. 1.10" link). If you use it I'd love to hear about it.

If anyone would like to write up specific installation instructions for the Snitz Forum code, I'll gladly include it in the ReadMe.txt file.

Also, if anyone would like to create a Snitz-specific mod or plugin using the BotScout API, I'd be very interested in helping and would be happy to publish the code or a link to the mod on the BotScout site. The API is simple and easy-to-use, and the API details can be found here: http://botscout.com/api.htm.

MrMike
http://BotScout.com
<
15   L A T E S T    R E P L I E S    (Newest First)
AnonJr Posted - 15 December 2010 : 22:24:59
If you're looking to keep them out (before they hit the pending registration) you may want to hunt down the thread that talks about rejecting registration attempts with the same first and last names. Unless you're Mitch Mitchell (and not even then) real registrants don't use the exact same first and last names. Its been helpful in keeping out some of the more simple spam bots - but that's another topic for another thread.
Android Posted - 15 December 2010 : 19:32:29
No problem! I was so use to never having to question anything since these threads are rich with everything one needs to implement any fix or mod in one graceful motion. Not this time. . I was caught off guard by it. The updated files link was dead, so I used what was available in this thread. All went smoothly as always and it didn't even cross my mind to test it before deciding to come back and leave a post with a finish since it looks like something froze all interest that isn't documented here.
I have a problem asking questions about anything that doesn't already exist to some extent in the thread since my questions are off topic otherwise and maybe none of business I don't know..and every question I had concerned this thread suddenly becoming an oil painting frozen in time without forward motion or closure. What happened? Why is the Google link that still has the introduction "Updates will always be found at this link" not a link anymore? Was war declare between the sites? Were the participants abducted by Aliens??
As for my disappointment with the application, maybe I expected too much from Botscout.. since it doesn't do anything that 3.04.7 wasn't already doing. keeping the spam bots out and quarantined(metaphorically) in "Members Pending". I needed them locked outside. Not pending inside. I have no time for routine tasks let alone having to manually ban bot IPs every 2 minutes. It brings up no errors but neither does it do what they promise.
..but thank you for replying even though I wasn't requesting a reply, I'm happy you're still Alien abduction free! Give my regards to the others should they be set free.. I mean, given time and therapy..I'm sure Alien abduntion is very tramatic..lol...

Hey! Just a thought! Maybe the Aliens could finish this thread!

..so now you'll know not to mention my asking or not asking questions in the future and just count your blessings I remain silent and simply enjoy the topics quietly without any problems 99% of the time..

cheers!

'droid
AnonJr Posted - 14 December 2010 : 08:55:53
The few times I looked, it didn't look like you had a question and its hard to help when its not clear if there is a question, what the question is/where the problem is, and what steps we need to follow to troubleshoot... not trying to be mean or anything, just trying to offer up why the thread appears dead.
Android Posted - 13 December 2010 : 23:59:04
..beings this thread is all but dead I shouldn't feel bad but I still feel a bit guilty..it's fixed and working..I'm just not exactly sure why..sorry...

didn't ever talk to anyone here so have no one to thank with this particular,so I'll just say I'm grateful to you all and thank you!

sincerely,

'droid
Android Posted - 12 December 2010 : 04:32:54
Unfortunately, my relief was short-lived after it occurred to me that I hadn't yet tested it by trying to register membership. I wasn't but a couple of steps into testing it before the error messages began to appear. Setting off a loud voice in my head telling me I had indeed successfully stopped the bots at the door along with everyone else trying to register! Spread the word! We do not play favorites at theZonez! :D

I've been working on those errors on and off since then without success and not much info specific to this application(from my limited point of view). The Google link from Podge is dead and I see that this thread came to a screeching halt 5 or 6 months ago.

I'm off to my desktop now to put together a detailed report of my attempts and the error messages that resulted from them just in case this seemingly abandoned thread is still being monitored and the instructions to post problems here still holds true..

With this being my very first experience in many years of coming here for upgrades and troubleshooting information, etc. that I wasn't able to access the necessary information in it's entirety and implement it to my site the first try, in my eyes, makes this site the information prototype of excellence! Thank you!

Sincerely,

Android, site caretaker of theZonez

Now failure has arrived!
Hail the great teacher!
Let the lessons begin!
Android Posted - 09 December 2010 : 02:12:51
This is for those like myself that are more comfortable with detailed instructions and black and white "this goes exactly here and that goes exactly there" instructions rather then general instructions that leave it up to us to find the ideal spot in whatever page suits our site best..personally that always has me sweating bullets my choices were solid until I suffer the first test drive and it works..(which it always does) but that doesn't seem to matter to my less then confident coding abilities..I'm more of an artist than a script geek..heh..

The spam bot invasion got so bad at my site that I finally gave up banning bots manually from members pending and closed new registration for two months..I opened it yesterday and had a spam bot in members pending before the first hour was up..so I closed it again and came here then over to botscouts

my choices with the installation worked perfectly so I hope the following helps the less confident like myself..

after adding the assigned api key to botscout.asp and uploading it to my /forums/ directory I uploaded a fresh 3.4.07 untouched copy of register.asp .

To line 551 just above the E-mail Validation Mod I added first the entire ("Email") text then the entire "none", "none" text directly below that..hit save, closed my FTP.. reopened registration and left the site to go hide out on the INTERNET the rest of the day(I'm retired)..that evening I built up the courage to return to the site to happily find members pending empty! Just before coming here, my wishes were validated in real time as I witnessed the process in action from the online page make both a spam bot and a web crawler disappear in barely enough time to Google their IP's and identify them!..both the unwanted bots simply vanished at the same time(it appeared since the quickest setting on auto refresh is one minute) ..but it refreshed then both were gone! Happy daze!
..I'm still riding that cloud of relief and redemption! Thanks to all! Now I'm off to botscout to share the love and pick up one of their linked logos..
It feels all 2009 and peaceful at my site again!

good times!

Android
theZonez Caretaker(10+years and counting)
jamminjames Posted - 11 July 2009 : 16:58:50
Is there an ASP version of this or any bot-excluding patches ready yet? I can't tell for sure from reading through this forum...
AnonJr Posted - 13 May 2009 : 13:42:23
Glad you got it fixed.

Just do us a small favor and use the not-quite-documented [scrollcode] tags Huw put in these forums to keep the code from stretching the layout.
cafcportal Posted - 13 May 2009 : 13:16:26
Ok - I fixed it.

The problem was that the Array 7 also had extra characters in. I changed it. My code is now as follows:

inc_botscout.asp

  Set xml = Server.CreateObject("Microsoft.XMLHTTP")
  Set xmlDoc = Server.CreateObject("Microsoft.XMLHTTP")
 'Set xml = Server.CreateObject("MSXML2.ServerXMLHTTP")

    xml.Open "GET", "http://botscout.com/test/?multi&name=" & Username & "&mail=" & emailAddress & "&ip=" & ipAddress & "&key=" & strBotScoutAPIKey, False
    xml.Send
    
    responseArray = Split(xml.responseText, "|")
        
    ipResponse = responseArray(3)
    usernameResponse = responseArray(5)  
    emailResponse = left(responseArray(7),1)
    
    botCheck = CLng(ipResponse) + CLng(usernameResponse) + CLng(emailResponse)

  Set xml = Nothing
end function


my code in register.asp now looks like:
	
DIM spamScore
    spamScore = botCheck(Request.Servervariables("REMOTE_HOST"), Request.Form("Email"), Request.Form("Name"))
	if spamScore  > 3 then
		Response.Write ("BotCheck: you have a spam score of:" & spamScore) ' Tell the user what the problem is
		Response.End ' Stop processing
	end if


This stops spammers from registering (I hope)

Maybe I can program in ASP after all? ;-)

AnonJr Posted - 13 May 2009 : 12:58:35
off-the-cuff I'd say that one of the three variables you're trying to convert to a Long data type has a value that can't be converted. Beyond that I couldn't say as I'm not overly familiar with the code in question.
cafcportal Posted - 13 May 2009 : 12:31:11
Hi,

After putting this code into my site and sorting a couple of syntax errors in the code I am getting the following error when attempting to register, (I used a known bot e-mail address)

Microsoft VBScript runtime error '800a000d'

Type mismatch: 'cLng'

/forum/inc_botscout.asp, line 34

Line 34 is:

botCheck = CLng(ipResponse) + CLng(usernameResponse) + CLng(emailResponse)

What is the problem?

I am NOT an ASP programmer, so please do not flame me if it is obvious to you ;-)

Podge Posted - 21 February 2009 : 11:23:56
That makes sense HuwR. The code is being run on the server via asp (not javascript) but it should be the same principle.<
HuwR Posted - 20 February 2009 : 08:53:28
In general if you are scripting on the client and assuming you do
not know which version of IE and which version of MSXML your visitors
have installed then you are better off using version independent program
ids as that way if an MSXML version is around that is bound to that
program id you can instantiate it without needing to know about the
exact MSXML version.

The version independent program id for an XML HTTP request object is
Microsoft.XMLHTTP
thus
var httpRequest = new ActiveXObject('Microsoft.XMLHTTP');
creates an XML HTTP request object in IE 5 or later<
MrMike2000 Posted - 20 February 2009 : 07:58:08
I received this comment from one of my users regarding the use of "Server.CreateObject("Microsoft.XMLHTTP"), so I thought I'd pass it on.
quote:
I just took a quick look at the Snitz code and they really shouldn't be using;

Set xml = Server.CreateObject("Microsoft.XMLHTTP")

If their server doesn't allow MSXML2, they badly need to upgrade MSXML

http://blogs.msdn.com/xmlteam/archive/2006/10/23/using-the-right-version-of-msxml-in-internet-explorer.aspx

The post on the BotScout forum is here:
http://botscout.com/forum/index.php/topic,16.new.html

You may want to talk with him directly, since I don't really know ASP at all. (I don't know anything about the workings of 'Server.CreateObject' so I don't know what to tell you about it or MSXML2.)<
MrMike2000 Posted - 29 January 2009 : 14:07:47
Super. I've stored a local copy and also linked to the Google Code cache. Thank you!<

Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.07 seconds. Powered By: Snitz Forums 2000 Version 3.4.07