Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 General Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 02-17-2011, 03:41 PM
sheyworth sheyworth is offline
 
Join Date: Mar 2009
Posts: 56
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Getting rid of spambots

How do I get rid of spambots? been getting a few of them lately. Is there anything I can install to block spambots??
Reply With Quote
  #2  
Old 02-17-2011, 09:46 PM
Naan-Kadavul's Avatar
Naan-Kadavul Naan-Kadavul is offline
 
Join Date: Sep 2009
Location: Singpore
Posts: 249
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

There is nothing you could install...there is but doesn't work properly.

What you can do is Ban the spam bots email address.. under vBulletin Options.
Do it..because after I did, spam bots...rarely visit my site..

--------------- Added [DATE]1297986446[/DATE] at [TIME]1297986446[/TIME] ---------------

try Verify email mod - that will give a professional look to your forum.

Just my suggestion.. that's all..
Reply With Quote
  #3  
Old 02-19-2011, 08:31 AM
v123shine v123shine is offline
 
Join Date: Sep 2008
Posts: 242
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

in 'Human Verification Options' >> You can try using "Question & Answer Verification" in register page.
Reply With Quote
  #4  
Old 02-20-2011, 10:32 PM
j1mmy j1mmy is offline
 
Join Date: Feb 2006
Location: UK, England
Posts: 252
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Look for an option which asks users to enter in the human verification code even after they've registered. This will significantly reduce spam to about 0-1%, then once you verify the genuine users you use a promotional system to move them to a usergroup without the human verify system. Its multiple usergroup process, but it works for me.
Reply With Quote
  #5  
Old 02-23-2011, 07:48 PM
JustAskJulie JustAskJulie is offline
 
Join Date: Nov 2002
Posts: 197
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

The Q&A verification has really worked well on my site. I went from about 100/day to 0 instantly.

There's also a tip posted on Vbulletin.com about adding a second Q&A into the registration questions (in case you need more security on top of that).
Reply With Quote
  #6  
Old 02-23-2011, 11:15 PM
kevinh kevinh is offline
 
Join Date: May 2007
Location: Melbourne, Australia
Posts: 126
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I use the human verification (Q&A) on our site and it has been very effective, BUT just today I noticed two new users who had suspect usernames - Pills2k11 and TopBrands2k11.

I googled these names and found that both had registered with dozens of vBulletin forums in the last 24-48 hours.

This is worrying because it could mean that someone has developed a spambot that can get past the Q&A.

My forum is running vBulletin 3.7.1
Reply With Quote
  #7  
Old 02-25-2011, 08:16 PM
JustAskJulie JustAskJulie is offline
 
Join Date: Nov 2002
Posts: 197
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by kevinh View Post
I use the human verification (Q&A) on our site and it has been very effective, BUT just today I noticed two new users who had suspect usernames - Pills2k11 and TopBrands2k11.

I googled these names and found that both had registered with dozens of vBulletin forums in the last 24-48 hours.

This is worrying because it could mean that someone has developed a spambot that can get past the Q&A.

My forum is running vBulletin 3.7.1
Had our first one get through today too. Username was Tek.
Reply With Quote
  #8  
Old 02-25-2011, 09:39 PM
kevinh kevinh is offline
 
Join Date: May 2007
Location: Melbourne, Australia
Posts: 126
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

We have had three now in two days, with the following usernames;

TopGUN2k12
Pills2k11
TopBrands2k11

In each case the email address has had a Polish domain but the IP address has not corresponded (USA, Brazil and UK), so it's fair to assume all information is false. None of the subscriptions have been confirmed.

In each case the username shows up as a new registrant on many vBulletin forums in the preceding 24 hours, which suggests the work of a bot.

It's worth pointing out that the Q&A questions on our site are about an obscure brand of British car and would only be known be enthusiasts. The questions could be answered with a bit of research on the web, but bots don't do research

So it appears that the bot must be exploiting a vulnerability in vBulletin. I know it would be best to update but I have so many custom mods on my site I am concerned that updating may break some of them.

We have decided to implement the promotion system as a precaution, so that a new users first post is moderated.
Reply With Quote
  #9  
Old 02-27-2011, 10:21 AM
j1mmy j1mmy is offline
 
Join Date: Feb 2006
Location: UK, England
Posts: 252
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

To make an anti-spam campaign effective you need to use multiple levels of security, not just rely on Q & A. I used to implement this Q & A and then bots came from nowhere, they were somehow getting past this?!

But then I implemented a verification check everytime a user registered and posted until their account was moderated by someone.
Reply With Quote
  #10  
Old 02-27-2011, 04:25 PM
BirdOPrey5's Avatar
BirdOPrey5 BirdOPrey5 is offline
Senior Member
 
Join Date: Jun 2008
Location: New York
Posts: 10,610
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

No one is exploiting vulnerabilities in vBulletin, not all spammers are BOTS, not by a long shot. There are people paid to join forums, there are people who do it themselves and make a business out of it. With Google they can answer just about any question you could ever think of.

This will only become more common in the future as well.

There's no inherent flaw in Q&A human verification other than humans can get in.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 12:32 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04736 seconds
  • Memory Usage 2,250KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete