Jump to content


Recent surge of spambots


16 replies to this topic

#1 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 20 February 2013 - 02:30 AM

Dear Rob,

 

This is driving me nuts.

 

Yours sincerely,

Neal.



#2 rbalch

rbalch
  • Ombudsman
  • PipPipPipPip
  • 1,320 posts
  • Gender:Male
  • Location:日本
  • Donator:Yes, Continually
  • Original Name: rbalch

Posted 20 February 2013 - 04:02 PM

Hi Nealio,

 

Thanks for you efforts with this. I'm adding the bad IPs to the ban list right now. I'm going to look into why spam bots are targetting GZ

 

Rob


"Everything that is really great and inspiring is created by the individual who can labor in freedom." -Albert Einstein

"I wrote a song about dental floss but did anyone's teeth get cleaner?" -Frank Zappa
(in response to Tipper Gore's allegations that music incites people towards deviant behavior...)

#3 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 20 February 2013 - 04:16 PM

I noticed that they seem to be attacking another forum I visit so I don't think it's necessarily a problem with GZ. It looks like maybe they've discovered a new way to bypass the registration system.

#4 rbalch

rbalch
  • Ombudsman
  • PipPipPipPip
  • 1,320 posts
  • Gender:Male
  • Location:日本
  • Donator:Yes, Continually
  • Original Name: rbalch

Posted 24 February 2013 - 05:15 PM

Thanks for the info. I'm investigating...


"Everything that is really great and inspiring is created by the individual who can labor in freedom." -Albert Einstein

"I wrote a song about dental floss but did anyone's teeth get cleaner?" -Frank Zappa
(in response to Tipper Gore's allegations that music incites people towards deviant behavior...)

#5 harrumphicus

harrumphicus

    Shithead Extraordinair

  • GZ Regular
  • PipPipPipPipPipPipPipPip
  • 19,107 posts
  • Gender:Male
  • Location:Places on the earth
  • Original Name: harrumph

Posted 24 February 2013 - 05:29 PM

I think UG has disabled posting links for the time being because of it. I don't usually post over there, but something I was googling popped up on their forum and I noticed all of the links just say [forbidden link]


An asshole and a scholar, from my gentleman to my collar.


#6 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 24 February 2013 - 06:38 PM

I think it has quietened down for now. *touches wood*

#7 SmashySmashy

SmashySmashy
  • GZ Regular
  • PipPipPipPipPipPipPipPipPip
  • 28,118 posts
  • Gender:Male
  • Original Name: AcousticSmash

Posted 27 February 2013 - 05:59 PM

It's been bad on multiple forums that I tend to visit, some I post on more frequently then others. GZ isn't the only website getting flooded with spammers, unfortunately it's nearly impossible to stop the spam bots because they are so easily bypassing the Captcha system. Most of the spammers use automated posting scripts like XRumer to do it. XRumer uses SOCKS and HTTP proxies to avoid the actual users IP address from getting banned.



#8 harrumphicus

harrumphicus

    Shithead Extraordinair

  • GZ Regular
  • PipPipPipPipPipPipPipPip
  • 19,107 posts
  • Gender:Male
  • Location:Places on the earth
  • Original Name: harrumph

Posted 28 February 2013 - 09:01 PM

Well... that's appropriate.


Edited by Nealio, 01 March 2013 - 03:28 PM.
(Sorry Joel, I deleted that spam post, making this one look irrelevant)

An asshole and a scholar, from my gentleman to my collar.


#9 crab man

crab man

    no entiendo

  • Moderator
  • PipPipPipPipPipPipPipPipPipPip
  • 64,704 posts
  • Gender:Male
  • Original Name: GilmourIsGod

Posted 01 March 2013 - 04:41 AM

I'm guessing it's unstoppable for now. Until a newer, better Captcha hits the shelves.

#10 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 01 March 2013 - 03:28 PM

It's definitely not as bad as it was a week or two ago, but still  annoying.



#11 SmashySmashy

SmashySmashy
  • GZ Regular
  • PipPipPipPipPipPipPipPipPip
  • 28,118 posts
  • Gender:Male
  • Original Name: AcousticSmash

Posted 01 March 2013 - 06:20 PM

I'm guessing it's unstoppable for now. Until a newer, better Captcha hits the shelves.

 

The problem isn't Captcha though, as that kind of security has been upgraded numerous times over the last year or two. Another issue is that spammers also use scripts to create fake email accounts. So unless Rob wants to literally ban every single email domain out there from registering, including Hotmail, AOL, Yahoo etc etc, we are pooched that way. And it's nearly impossible to block the scripts spammers are using as well.



#12 harrumphicus

harrumphicus

    Shithead Extraordinair

  • GZ Regular
  • PipPipPipPipPipPipPipPip
  • 19,107 posts
  • Gender:Male
  • Location:Places on the earth
  • Original Name: harrumph

Posted 01 March 2013 - 06:24 PM

Then how have we managed for the last 10 years? It was relatively spam free until last month. Banning email domains isn't the key to blocking spammers, it's all in the authentication. Which, right now, apparently isn't cutting it.


An asshole and a scholar, from my gentleman to my collar.


#13 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 02 March 2013 - 06:17 AM

Like I said, this is currently happening on other forums too, so it's apparent that the spammers have found a way around the latest authentication systems. When a newer system is brought out, it'll be all ok again.

#14 SmashySmashy

SmashySmashy
  • GZ Regular
  • PipPipPipPipPipPipPipPipPip
  • 28,118 posts
  • Gender:Male
  • Original Name: AcousticSmash

Posted 02 March 2013 - 04:31 PM

It's the board format. Another forum I visit, the Toronto Maple Leafs message board which is owned and managed by the NHL's own IT department but is moderated by forum users, happens to be experiencing asinine amounts of spam. It's been worse since they switched from a custom forum which was slow and sometimes buggy, back to Invision Power Board (version 3.4.3). I believe the reason is that forum designs like IPB have a lot of holes and lack effective security measures, along with automated registration systems, so even if the security systems are upgraded, the scripting program is modified to find a way around the anti-spam authentication. Not to mention how shitty webmail providers like Yahoo and Hotmail are for their anti-spam and script prevention. Maybe if they fixed their shit, we'd see a lot less spam.



#15 harrumphicus

harrumphicus

    Shithead Extraordinair

  • GZ Regular
  • PipPipPipPipPipPipPipPip
  • 19,107 posts
  • Gender:Male
  • Location:Places on the earth
  • Original Name: harrumph

Posted 02 March 2013 - 04:41 PM

It's probably not scrubbing input correctly, which basically would allow you to bypass the login all together by entering certain lines of code into the username and password slots. This is common with databases..


An asshole and a scholar, from my gentleman to my collar.


#16 Nealio

Nealio

    Stuff

  • Ombudsman
  • PipPipPipPipPipPipPipPipPip
  • 35,502 posts
  • Gender:Male
  • Location:Dundalk, Ireland
  • Donator:Yes, Once
  • Original Name: nealmac

Posted 02 March 2013 - 05:09 PM

It's not just IPB forums that's experiencing this.

#17 SmashySmashy

SmashySmashy
  • GZ Regular
  • PipPipPipPipPipPipPipPipPip
  • 28,118 posts
  • Gender:Male
  • Original Name: AcousticSmash

Posted 03 March 2013 - 09:29 AM

It's not just IPB forums that's experiencing this.

 

I know, but IPB has one of the worst spam bot rates I have ever seen. Custom boards are a lot harder to crack, and sites that use manual registration approval are a lot better. 





Reply to this topic



  


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


Please consider donating to GuitarZone.com.
With more and more people using ad blocking add-ons for browsers, ad revenue has plummeted.
If you can spare even US$5 it would mean a lot to help pay for GZ's monthly server bill.
Thank you to all. Cheers! --Rob



Method #1: PayPal



Click 'Donate' above
to donate with any
major credit card or
existing PayPal funds.


E-mail on record with PayPal
[ ]



Method #2: Bitcoin


Option A )  Scan Bitcoin QR Code


Scan above box with mobile phone, or click...



Option B )  Copy and Paste Bitcoin Address

  13NA7exoZVPGBAxnKXcQAz35JQ5PvnhYDE  


Copy above address and paste into Bitcoin app...



Learn more about Bitcoin...