vb.org Archive
Page 3 of 4 12 3 4
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB4 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=251)
-   -   A trick to send spammers to hell (or anywhere you want!) (https://vborg.vbsupport.ru/showthread.php?t=232624)

edward hamilton 01-15-2010 09:18 PM
Thanks I'm definitely going to try it again tonight. This makes so much more sense than the other approaches.

I didn't do all of the replacements in the phase and language manager.

--------------- Added [DATE]1263604427[/DATE] at [TIME]1263604427[/TIME] ---------------

I just completed this and followed your instructions, including catching all of the phrases and language edits and it's working fine. I've added a small script on my register.php page to record ip addresses of those who try to register through that page to see if I miss anything that looks legit.

thisgeek 01-21-2010 04:26 PM
Quote:
Originally Posted by thisgeek (Post 1954721)
Here's something I'm trying - if you have access to your .htaccess, and mod_rewrite is enabled:

Completely forbid access to your /register.php unless the referrer is coming from your own site (that is, the user clicked the 'Register' link on your site). This prevents bots from directly accessing /register.php.
Drat. I've come up with an issue with this approach - it prevents people from activating their accounts.

I'll have a fix for it soon. Just need to somehow exclude the activation link from the redirection... I'm just having trouble with it at the moment.

MaryTheG(r)eek 01-21-2010 04:38 PM
Quote:
Originally Posted by edward hamilton (Post 1956880)
Thanks I'm definitely going to try it again tonight. This makes so much more sense than the other approaches.

I didn't do all of the replacements in the phase and language manager.

--------------- Added 16 Jan 2010 at 03:13 ---------------

I just completed this and followed your instructions, including catching all of the phrases and language edits and it's working fine. I've added a small script on my register.php page to record ip addresses of those who try to register through that page to see if I miss anything that looks legit.
Yes, works fine. Now I can definetelly say it. But somehow I missed the spamm registrations ...lol... My site has just 47 members... Less than the mods that I've post here 3 years now:D

Vaupell 01-21-2010 05:01 PM
lovely,

Should make a suggestion on Vbulletin.com about adding funktion to config.php
to rename register.php to your likeings..

just like we renamed admincp and modcp folders..

thisgeek 01-21-2010 06:16 PM
Fixed! People can now successfully activate their accounts from the link mailed to them.

The corrected code is below. Essentially it's fixed by adding the following rewrite condition to the TOP of the ruleset:

Code:
RewriteCond %{QUERY_STRING} !^a=act&u=(.*) [NC]
Quote:
Originally Posted by thisgeek (Post 1954721)
Just replace "domain\.tld" with your own domain.

EDIT: I've fixed the rewrite code so activations now work.

Code:
RewriteEngine On
RewriteCond %{QUERY_STRING} !^a=act&u=(.*) [NC]
RewriteCond %{HTTP_REFERER} !^http://(.+\.)?domain\.tld/ [NC]
RewriteRule register.php$ - [F]
Or, if you're inclined, create a sticky locked thread where you rant on a bit at bots, and redirect them to that instead, or use the topic to explain to people that they need to use the register link on the main site instead of accessing /register.php directly.

Code:
RewriteEngine On
RewriteCond %{QUERY_STRING} !^a=act&u=(.*) [NC]
RewriteCond %{HTTP_REFERER} !^http://(.+\.)?domain\.tld/ [NC]
RewriteRule register.php$ http://www.domain.tld/showthread.php?t=12345 [R,L]
For what it's worth, this seems to have reduced quite a lot of bot registrations.

radmoose 01-21-2010 06:33 PM
I think this is a great idea as it does cut down on general automated scripts that look for register.php however, I also suggest using something like the StopForumSpam plug in to deal with some of the other spammers or those that figure out that you changed the name of the page.

As far as questions/answers there are those that will go to the trouble of figuring out all of your Q&A and put them into the script to deal with.

Multiple levels of defense are all good, as long as it doesn't compromise the registration of legitimate users.

I hope that 4.1 (or maybe 4.0.3) will get the option to change the register.php name.

StopForumSpam for 4.x: https://vborg.vbsupport.ru/showthread.php?t=230921

TheSupportForum 01-23-2010 10:43 AM
does anyone know how to create a redirect using php

i want it to redirect to a dfferent site within 5 seconds is this possible

dtv100 01-28-2010 02:29 PM
what about changing also the way create new thread and post work ?
that would stop Auto Posting Apps.

example:

newreply.php
newthread.php

to

newcomment.php
newtopic.php

Ted Clore 01-28-2010 04:00 PM
What happens at upgrade time?

MaryTheG(r)eek 01-28-2010 04:26 PM
Quote:
Originally Posted by Ted Clore (Post 1969079)
What happens at upgrade time?
Still haven't upgrade, as I haven't time. Most probably I'll go directly to 4.0.2, but for sure I need to do the same work. In any case is better to do some extra work, than to moderate registrations. I had NOT EVEN A SINGLE spamm registration, since the time that I used this method.

Maria


All times are GMT. The time now is 01:52 PM.
Page 3 of 4 12 3 4
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01104 seconds
  • Memory Usage 1,741KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_code_printable
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (3)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete