Go Back   vb.org Archive > vBulletin 4 Discussion > vB4 General Discussions
Reload this Page [resolved] Spam bots
FAQ Members List Calendar Search Today's Posts Mark Forums Read
  #1  
Old 07-12-2010, 06:30 AM
DAMINK DAMINK is offline
 
Join Date: Jun 2010
Location: Melbourne Australia
Posts: 301
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default [resolved] Spam bots
Ok were all used to spam bots. Xrummer and the like.
Now i am new to vBulletin but the one thing i did notice immediately once i merged my MyBB forum over to VB was how easily spam bots were able to register.
I can only assume this relates to some vulnerability in VB?
Given they can read Captures, Random questions and the like.
So i started the battle to defeat the buggers as we do.
First i added the proxy script to help a little.
I then added additional registration requirements.
Most recently i added the mod which puts a timer on the registration process. This actually works quite well. However they are still trying to register constantly.
So this go me to thinking. There has to be a better way to stop these buggers.
Now here is my thoughts on it. Tell me if its a good idea or a stupid one please.

First rename register.php to a new name.
Change all links from the forum to point to your new page.
Then recreate register.php but make it a bot trap only now and nothing more writing to the .htaccess file and ultimately banning there ip the moment they trip the trap.
Making sure your robots.txt file is up to date to reflect changes obviously.
I assume xrummer and other tools are using vb as the target and therfor using register.php as the default register page.
Its clear they can beat the capture and other options so i think there really is no option but to make it harder.
Anyway thats the basic idea of what i want to do.
I have mostly finished it. But i have one problem currently and need some help.
I have only edited the old register.php file and renamed it currently. The bot trap bit i have no problems with.
I can register using the new file fine however at the last point of registration is sends me back to the original register.php file. Now if i can remove this then i am home free i think.
Anyone have any ideas how to stop it redirecting back to register.php?do=addmember and have it go to MYFILENAME.php?do=addmember?
Finally could this be a security issue itsself trying this?
Thanks.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Hybrid Mode Hybrid Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 05:11 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.03238 seconds
  • Memory Usage 2,186KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)post_thanks_box
  • (1)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit_info
  • (1)postbit
  • (1)postbit_onlinestatus
  • (1)postbit_wrapper
  • (1)showthread_list
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_threadedmode.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids_threaded
  • showthread_threaded_construct_link
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete