Go Back   vb.org Archive > vBulletin Modifications > vBulletin 4.x Modifications > vBulletin 4.x Add-ons

Reply
 
Thread Tools
Spambot Stopper - Prevent Spambots from Registering Details »»
Spambot Stopper - Prevent Spambots from Registering
Version: 1.1.1, by kh99 kh99 is offline
Developer Last Online: Sep 2020 Show Printable Version Email this Page

Category: Anti-Spam Options - Version: 4.x.x Rating:
Released: 01-31-2013 Last Update: 02-15-2013 Installs: 443
Uses Plugins Auto-Templates
Re-useable Code Translations  
No support by the author.

What is it?
----------------------------
This mod rejects registrations where the form is filled out in less than a minimum time. You can configure one of the following actions to be taken when an automated registration is detected:

- Show a "No Permissions" page
- Display the "Successful Registration" message but without creating an account
- Redirect the user to any URL you choose
- Reload the registration page with an error message of your choosing

You can also provide a list of email addresses to be notified each time a registration is blocked.

Added for version 1.1.1: Time delay enforcer, maximum time option, time limits to cut down on email notifications, posting to a thread.

In the future, I'd like to add some simple logging and statistics, and a summary type of email notification (because people seem to quickly get tired of the single emails).

Note: I coded this myself from scratch, but I would like to acknowledge a couple of previous mods that used this same idea, by users Calorie and noppid, and maybe others. In any case, I believe this one adds some features that the others don't have.

Other advantages: no ads or links, no abuse of update notifications, no disappearing features, no threats to delete the mod (it will never be deleted, at least by me). Also, translations are allowed.

Installation:
----------------------------
1) If you have "Is Bot", "Stop the Registration Bots", "Spammers Suck!", or another mod that works on registration time, note any admincp settings for that mod then uninstall it.

2) Import the product XML file from the Product Manager.

3) Go to Settings > Options > Spambot Stopper Options and configure the desired settings.

4) IMPORTANT: try to register a new user to make sure that there are no problems with humans registering. If you want, you can also temporarily set the minimum time to a higher value (like 60 seconds) and test to see if the spammer rejection is working.



History:
----------------------------
1.1.1 (Feb 16, 2013)
  • Added timer for enforcing minimum time
  • Added maximum registration time limit
  • Added time limits for email notifications
  • Added posting notificatiosn to a thread

1.0.1 (Feb 01, 2013)
  • Fixed bug
  • Added check for fake timestamps

1.0 (Jan 31, 2013)
  • Initial Release

Download Now

File Type: zip product-kh99_spambot_stopper_1.1.1.zip (111.5 KB, 2335 views)

Screenshots

File Type: jpg sg1.jpg (118.3 KB, 0 views)

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.

Comments
  #442  
Old 02-23-2015, 12:52 PM
apleschu apleschu is offline
 
Join Date: Aug 2005
Posts: 28
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by kh99 View Post
It's a little embarrassing, but it's been a while since I've used this myself with notifications turned on, but IIRC the time should be in the email or thread notification. I'm not sure what you mean by "learned to deal with". Do you mean knowing whether you have the cutoff time set correctly? If I understand what others have said here, normally all bots take a very short time.
Hi Kevin, Thanks for answering quickly. What a pleasant surprise.

Now what I mean with when the spambots have learned to deal with that is that after a while I am pretty certain spambots will become aware of how they are prevented from registering and start delaying.

From what I was able to see there is no where the time the bot took. I have set it currently to post to forum, which is great as it publishes the spamming email addresses, and exposes them to email harvesters LOL. I thought I saw something about a log file but I was unable to find where that goes. It certainly is not in the settings of the spambot blocker. And ideally the log file would have all the information so that I can run an analysis after the fact.
Reply With Quote
  #443  
Old 02-23-2015, 01:15 PM
kh99 kh99 is offline
 
Join Date: Aug 2009
Location: Maine
Posts: 13,185
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Oh, I see. When you said "spambot" I thought you meant this mod. Anyway, as I said I don't monitor what this blocks myself, but I haven't heard anyone say anything that makes me think any spambots are smart enough to adapt to this. We discussed it earlier in the thread and I think the consensus is that there's a small percentage of vb sites using this scheme for protection, so it wouldn't be worth programming a spambot to deal with it. I think if they fail to successfully register, for whatever the reason, they just move on.

There is no log file, although I've been talking about it for a long time. At this point I don't think there ever will be one, but who knows, I might get motivated some day to release an update with a few new features.
Reply With Quote
  #444  
Old 02-23-2015, 03:12 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by apleschu View Post
Now what I mean with when the spambots have learned to deal with that is that after a while I am pretty certain spambots will become aware of how they are prevented from registering and start delaying.
First of all the bots themselves aren't intelligent. They are part of a program, programmed by humans.

Using timers for well over three years and studying bot behavior carefully, I have seen no evidence adjustments are made for timers.

Think about it - first you as a XRumer programmer have to know there is a timer. Then you have to know there is a minimum and a maximum setting. Then you have to guess the setting, site to site.

It won't happen, because they are hitting 1000s of sites all at the same time, and individual results don't draw any attention - it's like fishing with a big seining net. Automation, bulk and speed are all that matters.

It's easy to think you're personally being targeted and studied, but you're not. You're just one in the many 1000s.
Reply With Quote
  #445  
Old 02-23-2015, 05:26 PM
apleschu apleschu is offline
 
Join Date: Aug 2005
Posts: 28
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by kh99 View Post
I think if they fail to successfully register, for whatever the reason, they just move on.
I am certain for now this is precisely what happens, until there are enough sites where they are starting to investigate why they no longer can register as they 'used to'. The whole spam, anti spam is after all a whack a mole game. It was that for many years and will be for many years to come. So basically a fair assumption is that over time spambots will learn that it is much more effective to wait for 'x' seconds and then send the registration screen back. That would be a simple change in the spambot and over time they will do that. Its just a question when, not if.
Quote:
There is no log file, although I've been talking about it for a long time. At this point I don't think there ever will be one, but who knows, I might get motivated some day to release an update with a few new features.
I would offer my help in getting a log file into the mod if nothing else because I'd love to have it and I am fairly certain some other folks would be able to get some insight as well. e.g. Right now I believe its about 70% yahoo.com addresses responsible for the spam registration attempts, but I'd love to be able to have real data, not just "gut" data.
Reply With Quote
  #446  
Old 02-23-2015, 06:13 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by apleschu View Post
I am certain for now this is precisely what happens, until there are enough sites where they are starting to investigate why they no longer can register as they 'used to'. The whole spam, anti spam is after all a whack a mole game. It was that for many years and will be for many years to come. So basically a fair assumption is that over time spambots will learn that it is much more effective to wait for 'x' seconds and then send the registration screen back. That would be a simple change in the spambot and over time they will do that. Its just a question when, not if.
It is not a "simple change."

Using timers for well over three years and studying bot behavior carefully, I have seen no evidence adjustments are made for timers.

Think about it - first you as a XRumer programmer have to know there is a timer. Then you have to know there is a minimum and a maximum setting. Then you have to guess the setting, site to site. Impossible. And not even doable, since you are dealing with 10s of 1000s of sites you are hitting. There's also nothing in XRumer that tracks failed registration attempts anyway.

It won't happen, because they are hitting 1000s of sites all at the same time, and individual results don't draw any attention - it's like fishing with a big seining net. Automation, bulk and speed are all that matters.

It's easy to think you're personally being targeted and studied, but you're not. You're just one in the many 1000s.

Conventional "wisdom" says the spammers are all powerful, all-talented, smarter than us gods of some sort, who will always figure a way around any hindrance we dummies out here might devise. And it just ain't so.
Reply With Quote
  #447  
Old 02-23-2015, 06:37 PM
kh99 kh99 is offline
 
Join Date: Aug 2009
Location: Maine
Posts: 13,185
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by apleschu View Post
I am certain for now this is precisely what happens, until there are enough sites where they are starting to investigate why they no longer can register as they 'used to'. The whole spam, anti spam is after all a whack a mole game. It was that for many years and will be for many years to come. So basically a fair assumption is that over time spambots will learn that it is much more effective to wait for 'x' seconds and then send the registration screen back. That would be a simple change in the spambot and over time they will do that. Its just a question when, not if.
I agree with you. I think it's a given that if this were a built in feature of vbulletin, it would have been defeated long ago. It would actually be fairly trivial for a programmer who knew what they were doing.


Quote:
I would offer my help in getting a log file into the mod if nothing else because I'd love to have it and I am fairly certain some other folks would be able to get some insight as well. e.g. Right now I believe its about 70% yahoo.com addresses responsible for the spam registration attempts, but I'd love to be able to have real data, not just "gut" data.
Yeah, I had a version of this that I reworked and never released that had all the data collected, it just needed the actual logging code. I'm not sure if I still have that around. But the major obstacle for me is that I haven't looked at this code in a long time. Well, it's not much of an obstacle but it's been enough to keep me from thinking about it.
Reply With Quote
  #448  
Old 02-23-2015, 07:10 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by kh99 View Post
I agree with you. I think it's a given that if this were a built in feature of vbulletin, it would have been defeated long ago. It would actually be fairly trivial for a programmer who knew what they were doing.
He would also have to know the settings max and min, for every site with this mod he might encounter. And since he can't possibly, he's more or less urinating in the wind. Might get some improvement, might not. It would be a guessing game.

This is all mostly XRumer doing the automated registration and posting, and currently it has nothing in it at all that allows the user to set delays. They can program that into it I am sure, but without somehow being able to detect the time settings they are going to be hit and miss at best, and miss more than hit.

Agreed that if this was a native feature of vBulletin it would get alot more attention than it does - but then we get to the details, where the devils always are.
Reply With Quote
  #449  
Old 02-23-2015, 07:11 PM
apleschu apleschu is offline
 
Join Date: Aug 2005
Posts: 28
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Max Taxable View Post
It is not a "simple change."
I have been programming for SO many years before I quit being actively involved in code I can tell you from my own knowledge and experience, THAT change is not only simple, its trivial. It may not be implemented yet because there are not enough site out there so that it became a nuisance, but a programmer who could not implement: "Wait at least x number of seconds and after that wait between y and z seconds to make it look its a human in 10 minutes flat should stop programming. He or she is not worth the money they are being paid for.

Now OTOH, making the spam bots multi-threaded or multi-process or both, That is not a trivial undertaking if it is not designed into it from the get go. I have no insight into spambots and if they are multi-threaded or multi process designed, but if they are, the change to wait is so trivial that it is laughable.

Which brings be back to gathering information: Kevin, would you be willing to let me take a stab at the code? And just to be clear: I do NOT want to take over or step on anybodies toes. I just offer some time to implement a feature *I* would like to see and then hand the software back to its owner and inventor.
Reply With Quote
  #450  
Old 02-23-2015, 07:15 PM
ForceHSS ForceHSS is offline
 
Join Date: Apr 2008
Posts: 6,357
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by apleschu View Post
I have been programming for SO many years before I quit being actively involved in code I can tell you from my own knowledge and experience, THAT change is not only simple, its trivial. It may not be implemented yet because there are not enough site out there so that it became a nuisance, but a programmer who could not implement: "Wait at least x number of seconds and after that wait between y and z seconds to make it look its a human in 10 minutes flat should stop programming. He or she is not worth the money they are being paid for.

Now OTOH, making the spam bots multi-threaded or multi-process or both, That is not a trivial undertaking if it is not designed into it from the get go. I have no insight into spambots and if they are multi-threaded or multi process designed, but if they are, the change to wait is so trivial that it is laughable.

Which brings be back to gathering information: Kevin, would you be willing to let me take a stab at the code? And just to be clear: I do NOT want to take over or step on anybodies toes. I just offer some time to implement a feature *I* would like to see and then hand the software back to its owner and inventor.
Why dont you pm him the new changes to see what he thinks
Reply With Quote
  #451  
Old 02-23-2015, 07:15 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by apleschu View Post
I have been programming for SO many years before I quit being actively involved in code I can tell you from my own knowledge and experience, THAT change is not only simple, its trivial. It may not be implemented yet because there are not enough site out there so that it became a nuisance, but a programmer who could not implement: "Wait at least x number of seconds and after that wait between y and z seconds to make it look its a human in 10 minutes flat should stop programming. He or she is not worth the money they are being paid for..
Sounds trivial until you realize the x and y settings are different for every site.....
Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 09:12 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.09125 seconds
  • Memory Usage 2,369KB
  • Queries Executed 26 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (11)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (4)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (1)pagenav_pagelinkrel
  • (11)post_thanks_box
  • (15)post_thanks_box_bit
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (2)postbit_attachment
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • fetch_musername
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • post_thanks_function_fetch_thanks_bit_start
  • post_thanks_function_show_thanks_date_start
  • post_thanks_function_show_thanks_date_end
  • post_thanks_function_fetch_thanks_bit_end
  • post_thanks_function_fetch_post_thanks_template_start
  • post_thanks_function_fetch_post_thanks_template_end
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_attachment
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete