| Author |
 Topic  |
|
taropatch
Average Member
USA
741 Posts |
 Posted - 27 September 2006 : 23:05:33
|
Lots of posts recently about spammers hitting various forums' members. I searched and found many different mods to deal with it.
- Antispam Registration Add-On 1.0 vs. CAPTCHA - Anti spam
Does one have an advantage over the other?
- MarcelG's MOD: anti-spam E-mail filter 1.1 vs. Sonic's spamserver lock (admin pannel)
Do these perform a similar function?
- GateKeeper - Antispam
Anyone using this? Do your forum members mind answering the question to send out email?
- Anyone willing to share which mod(s) you're using? Would be good to know what combinations you're liking and finding effective. You may prefer to email me rather than post what your doing publicly
Right now, I've got the Antispam Registration Add-On. I'm going to upgrade to 3.4.06 and want to step up my anti-spam efforts. Also considering Rui's Blocking forum email spam. Any others I'm missing? Thanks in advance.
<moved from="Help: General / Current Version (v3.4.xx)" by="Shaggy" />< |
Edited by - Shaggy on 28 September 2006 04:50:38 |
|
|
HuwR
Forum Admin
United Kingdom
20611 Posts |
Posted - 28 September 2006 : 04:06:04
|
1) CAPTCHA's are not recomended by W3C because the go totally against all recomended usability standards
2) Works resonably well,but your list will get very very large
3) Not tried this
we are currently ttrialing a couple of ways of preventing automated bots from registerring/posting, but there is no substitute for human intervention< |
 |
|
|
bobby131313
Senior Member
USA
1163 Posts |
Posted - 28 September 2006 : 13:19:34
|
#3 ~ I believe it can be turned on and off for each section. I plan to use it just for registration (not posting and emailing) when the read me is updated.
I've been using Rui's mod for quite some time now and it's awesome.
< |
Switch the order of your title tags |
Edited by - bobby131313 on 28 September 2006 13:20:52 |
|
|
|
RArch
Junior Member
United Kingdom
103 Posts |
Posted - 28 September 2006 : 13:51:31
|
I've come across CAPTCHA's that have an option to speak the characters too, would that meet WC3 approval?
< |
|
|
|
HuwR
Forum Admin
United Kingdom
20611 Posts |
Posted - 28 September 2006 : 14:16:41
|
quote:
Originally posted by RArch
I've come across CAPTCHA's that have an option to speak the characters too, would that meet WC3 approval?
not really no, have you ever tried listening to them ?  the W3C recommendation is not to use captchas at all< |
|
|
|
RArch
Junior Member
United Kingdom
103 Posts |
Posted - 28 September 2006 : 15:11:59
|
quote:
Originally posted by HuwR
quote:
Originally posted by RArch
I've come across CAPTCHA's that have an option to speak the characters too, would that meet WC3 approval?
not really no, have you ever tried listening to them ? the W3C recommendation is not to use captchas at all
lol no, but I will the next time I see one 
< |
|
|
|
HuwR
Forum Admin
United Kingdom
20611 Posts |
Posted - 28 September 2006 : 16:00:57
|
| most of them have noise in the background to make it difficult for them to be copied in the same way that captchas work with images, unfortunately that makes them very difficult for ordinary people to hear and decipher too < |
|
|
|
MarkJH
Senior Member
United Kingdom
1722 Posts |
Posted - 21 October 2006 : 05:42:19
|
I've had problems recently with members posting with something called Forum Poster. Apparently, it'll register and post at thousands of forums at the same time.
Is this the kind of thing your trialling against, HuwR? If so, are things advancing? I really don't want to add CAPTCHAs or unwieldy email filters if it can be helped.< |
Bandlink.net - http://www.bandlink.net/
Bandlink Music Forums - http://www.bandlink.net/forum/ |
|
|
|
HuwR
Forum Admin
United Kingdom
20611 Posts |
Posted - 21 October 2006 : 06:58:02
|
| yes, "forum Poster" is what prompted us, there is a simple way to fool it, just add yourself a hidden field in post.asp which you then check for in post_info.asp, that should stop them.< |
|
|
|
MarkJH
Senior Member
United Kingdom
1722 Posts |
|
|
philwhite
Starting Member
Germany
47 Posts |
Posted - 06 November 2006 : 13:25:29
|
quote:
Originally posted by HuwR
yes, "forum Poster" is what prompted us, there is a simple way to fool it, just add yourself a hidden field in post.asp which you then check for in post_info.asp, that should stop them.
We've just been hit by Forum Poster for the first time. Can you explain a little more exactly?
< |
Phil White |
|
|
|
bobby131313
Senior Member
USA
1163 Posts |
Posted - 06 November 2006 : 19:19:05
|
It's just a robot that uses preset parameters (ie; forum brand, version, etc...) to find and register for forums, then make spam posts. Totally automated, but if you throw one little extra step in there it fouls them up.
Here is one of the main users/abusers...
http://seo-promotion.org/product2.htm 
<edited by="Shaggy" to="prevent parsing of URI" />
< |
Switch the order of your title tags |
Edited by - Shaggy on 07 November 2006 04:46:06 |
|
|
|
bobby131313
Senior Member
USA
1163 Posts |
Posted - 06 November 2006 : 23:06:08
|
quote:
The real problem, as I see it, is to get the safety into the code without making it obvious to the hackers what you are doing
We're not talking about hackers here, we're talking about spammers.
< |
Switch the order of your title tags |
|
|
|
bobby131313
Senior Member
USA
1163 Posts |
Posted - 06 November 2006 : 23:15:41
|
quote:
The difference is????
Huge.
Spammers are a nuisance that can be cleaned up, hackers can physically destroy your forum.
quote:
Most spammers are hackers.
Not hardly. Most are not. It's easy to be a spammer (just sign up for a forum and start sending it) , very difficult to be a hacker.
< |
Switch the order of your title tags |
Edited by - bobby131313 on 06 November 2006 23:17:07 |
|
|
|
bobby131313
Senior Member
USA
1163 Posts |
Posted - 06 November 2006 : 23:36:38
|
quote:
I was more interested in pointing out that it is very difficult to use simple security methods with public code.
If we were talking about hackers you would be correct.
It is very simple to stop most of the spammers with the Gatekeeper mod. One simple question that can be changed occasionally stops all the bots, which, at least on my forum, is 98% of them. We get very few manual spammers. Add Rui's mod and that stops 99% of the email spammers dead in their tracks, even if they sign up manually. So all that only leaves a very occasional manual spam post from a manual signup. Haven't had one in about 3 months. All this is accomplished very simply in about 30 minutes.
< |
Switch the order of your title tags |
Edited by - bobby131313 on 06 November 2006 23:41:21 |
|
|
|
HuwR
Forum Admin
United Kingdom
20611 Posts |
Posted - 07 November 2006 : 04:13:44
|
MarshalMix,
do you have another email address that does not go through Godaddy, they are being a bunch of ****ers and have wrongly blacklisted my mailservers, even after repeated requests to remove them they just refuse to answer my emails. NO other blacklist contains my server IP's other than godaddy they are just being total arses.< |
|
|
|
Topic |
|
Forum spam best practices
<