vb.org Archive
Page 66 of 86 « First 16566465 66 676876 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.6 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=194)
-   -   Miscellaneous Hacks - NoSpam! - an alternative to CAPTCHA images (https://vborg.vbsupport.ru/showthread.php?t=124828)

class101 01-05-2008 10:13 AM
Quote:
Originally Posted by sapper6fd (Post 1415666)
I've been using this hack now for a while and I must say this is by far one of, if not the best hack I've ever installed.

Prior to using it, I was getting anywhere from 10 - 30 spam bots registering on my forum a day, and around 15 or so spam posts per day. After installing this hack its been reduced to around 1 spam post per day, some times none.

At first the results were minimul (My recomendation - DO NOT use a mathmatical question). My question was "What is 10 + 10". The spam bots go by that no problem. When I changed my questions to "What Company makes the PlayStation 3?" the Spam bots stopped registering almost immediatly. Now the spam posts are all done manualy by kids trying to advertise their own forums, and I'll take that spam any day over porn and pharmacuticals.

Great job!
Of course never use mathematical question they are too easy to be broke, I'm using the human verification system builtin vbulletin 3.7 with 5 questions without any other verification like image or nospam and for now 0 bots registered with theses questions:
  • What are the 4 last letters of the word 'Security' ?
  • Finish DeNiro's famous phrase in Taxi 'Are you talking to...'
  • What's a poc ? An explo...
  • G.Bush is president of the US...
  • The #1 search engines around the world is Goo...

This stopped 100% bots.

ZomgStuff 01-10-2008 06:07 PM
Edit: Post removed.

TigerWare 01-10-2008 06:40 PM
Oh bravo, never mind actually reporting it *quietly*, just alert every script kiddy that comes here that there may be something to hack. Geez! :rolleyes:

class101 01-10-2008 09:35 PM
Quote:
Originally Posted by TigerWare (Post 1419104)
Oh bravo, never mind actually reporting it *quietly*, just alert every script kiddy that comes here that there may be something to hack. Geez! :rolleyes:
What about the few real hackers there is outta there who found that bug and exploited it so far before it has been found ? Thanks for the info ZomgStuff

eJM 01-10-2008 11:15 PM
You aren't doing any of us a bit of good by telling us about this exploit. You are allowing hackers with nothing better to do than to screw up our sites that they have a new project now. The best way to report an exploit is to report it to the developer. That has ALWAYS been the preferred method and probably always will be.

Jim

ZomgStuff 01-10-2008 11:44 PM
I deleted my post, but I just wanted to let you guys know that someone is possible, so you don't have a false sense of security an then bam.

This can be a rather simple fix, and the best part is that you could fix it with a number of different ways.

class101 01-10-2008 11:49 PM
Welcome to the Full-Disclosure world. you didn't have to remove your post... Now you can wait 3month for a new patch... I have been alerting about a zoints tag bug recently and it has been patched the same day... Now do not expect that.

ZomgStuff 01-10-2008 11:56 PM
If it takes more than a week I'll just edit the mod for myself I'll gladly tell someone what to edit to fix it.

needaltuna 01-11-2008 12:43 AM
Thank you for the nice mod.

In your main post, you make no mention of the integration file. I downloaded and opened it on the off chance that I might need it, but I am still unsure whether I do or not. Should the template mods be applied only if the product doesn't install properly?

Marco van Herwaarden 01-11-2008 04:47 AM
Quote:
Originally Posted by ZomgStuff (Post 1419295)
If it takes more than a week I'll just edit the mod for myself I'll gladly tell someone what to edit to fix it.
Why don't you follow proper procedures and report the found vulnerability so staff can handle it?


All times are GMT. The time now is 07:31 PM.
Page 66 of 86 « First 16566465 66 676876 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01817 seconds
  • Memory Usage 1,741KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (3)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete