| Author |
 Topic  |
|
barrynet
Starting Member
36 Posts |
 Posted - 17 January 2009 : 19:57:00
|
I am having a bunch of registrations hitting my 3.0.6 site. They are coming with IP address's that are all zeros, from different email addresses and using different user names, although the first and last name is usually the same. The one constant is that the registrations are being filled in with the same country each time. I do not understand given these conditions how I can stop them. The killer here is that they are getting in without going through the registration process.
I have done what I can via the info provided here
1. put in the code to stop Forum Post - note this is now owned by a different company so the URL info provided is incorrect.
2. turned on email validation
3. unique email required
4. Require registration is on
5. HTML is off
6. checked all the forum properties for code
I would try the birthday or captcha mods but they are too complex for me to try and since they seem to bypass registration might not help aqnyway. Actually I find many of the mods mentioned here are not what a non programmer can use. Plus someone posts something and then there are are comments like may contain minor bugs, swomeone posts a different version, or suggest mods to the post but only shows thier mod but not what code (modules) it effects or the line numbers do not match the base version. Why can someone not just provide fully updated modules that I can copy to my forum.
I also do not understand why they are registering. I am not getting any spam postings in my board. Are the registrations used at a later date?
cheers
Barry
< |
Edited by - barrynet on 18 January 2009 19:46:22 |
|
|
Carefree
Advanced Member
Philippines
4207 Posts |
Posted - 17 January 2009 : 20:02:01
|
| See this post - find and delete duplicate members (including those with duplicate 0.0.0.0 IP addresses).< |
 |
|
|
barrynet
Starting Member
36 Posts |
Posted - 17 January 2009 : 20:25:43
|
Thanks Carefree
It appears that some IP address that are all zeros is legitimate as I have good users with that condition so I can nor do anything with the IP. What would be helpful is a mod that checks if first and last name are the same and if so denies, quietly, the registration. If I could check first and last name are the same and/or if from country xxxxxxx that would be great.
Sorry if I missed something in the reference you provided, I am not a great programmer.
cheers
Barry
< |
|
|
|
AnonJr
Moderator
United States
5768 Posts |
Posted - 17 January 2009 : 22:47:01
|
There's already some code floating around to check that.
I wouldn't go with banning the country, and its hard to give you the kind of directions you are asking for as everyone's forum is a little different once you add your first MOD.
I'd also be wary of any forum where updates and bugs weren't reported. 
What in particular were you looking for and what in particular are you having trouble with? If you're willing to work, we're willing to help.< |
|
|
|
Carefree
Advanced Member
Philippines
4207 Posts |
Posted - 18 January 2009 : 02:17:05
|
Here's a relatively simple approach. In "register.asp", look for the following lines (appx 414-416):
Insert the following after that:< |
Edited by - Carefree on 19 January 2009 11:40:23 |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 18 January 2009 : 13:03:35
|
Thanks AnonJr for the response
Carefree thanks very much for the code. I will try it this afternoon
cheers
Barry.< |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 18 January 2009 : 13:33:21
|
Hi Carefree
I added the code but I get an err now on the registration
http://www.nwsca.com/register.txt - changed script
http://www.nwsca.com/forum_err.txt - error message
OK a question that will show my training with code issues  - Might it make a difference if I m using an access database?
cheers
Barry< |
Edited by - barrynet on 18 January 2009 19:06:57 |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 18 January 2009 : 19:17:53
|
AnonJr - "What in particular were you looking for and what in particular are you having trouble with?"
As stated in the first message I am getting registrations with different user names and ip address's of 0. They use the same first and last name and also country. They do not seem to do anything except register. I have no problem at all deleting member's from this country as no legitimate user would be coming from there.
cheers
Barry< |
|
|
|
Carefree
Advanced Member
Philippines
4207 Posts |
Posted - 19 January 2009 : 01:12:50
|
Duhh - I typed without thinking. Change the two bits that say
myConn_Execute to my_Conn.Execute < |
|
|
|
Shaggy
Support Moderator
Ireland
6780 Posts |
Posted - 19 January 2009 : 04:43:33
|
What makes you think they're bypassing the registration process?
< |
 Search is your friend
“I was having a mildly paranoid day, mostly due to the
fact that the mad priest lady from over the river had
taken to nailing weasels to my front door again.” |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 19 January 2009 : 08:48:17
|
Hi Shaggy
The registrations from the spammers do not go into my pending file. If I register a user myself as a test it goes to pending so its working.
cheers
Barry< |
|
|
|
Shaggy
Support Moderator
Ireland
6780 Posts |
Posted - 19 January 2009 : 09:07:45
|
Ah, fair enough, missed that bit in your original post (a weekend of insomnia can have that effect on a guy!  ) If they're not going through register.asp then you need to investigate exactly how they're managing it; there may be a vulnerability in one of your scripts, not necessarily in your forum, though, that's open to SQL injections. A good place to start would be your log files; next time it happens have a look for anything out of the ordinary.
< |
Search is your friend
“I was having a mildly paranoid day, mostly due to the
fact that the mad priest lady from over the river had
taken to nailing weasels to my front door again.” |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 19 January 2009 : 09:16:09
|
Thanks Carefree
I had a thought this morning. I am not forcing that the first and last names be filled in. If they are both blank I think your code would not accept the registration. Really hate to ask but would it be possible for you to add a check for blank name fields and let the registration proceed if both are blank.
cheers
Barry< |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
Carefree
Advanced Member
Philippines
4207 Posts |
Posted - 19 January 2009 : 11:40:55
|
quote:
Originally posted by barrynet
Thanks Carefree
I had a thought this morning. I am not forcing that the first and last names be filled in. If they are both blank I think your code would not accept the registration. Really hate to ask but would it be possible for you to add a check for blank name fields and let the registration proceed if both are blank.
cheers
Barry
I edited the code above to include blank name checking.< |
|
|
|
barrynet
Starting Member
36 Posts |
Posted - 19 January 2009 : 13:28:23
|
quote:
Originally posted by ruirib
How can they register without going through register.asp?! Did you code something to allow this? If not, that's your main concern!
ruirib
I am not capable of coding an ignore registration and even if I could it would be pretty silly of me to do so. All I can tell you is that if I register a test user I get a pending member. However I now have, since yesterday, 3 users in the database that I never got any registration notification for.
I will go over my forum setting again very carefully this afternoon, just in case I missed something but as I said it works properly when I do it.
I did see a reference to an "sql attack" that has nothing to do with the board script. I am not sure how this works. I do have my access database in a secure area (not in the public HTML area)
There are 2 admins and we have both changed our passwords.
There are no moderators.
cheers
Barry< |
|
|
|
Topic |
|
Topic Locked
