Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 General Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #21  
Old 10-27-2012, 03:06 PM
Midohash's Avatar
Midohash Midohash is offline
 
Join Date: Aug 2010
Posts: 110
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Max Taxable View Post
That would block hundreds of millions of innocent people. Don't do it.

If you have his user agent string, paste it here for me to look at if you don't mind?

And no, I would not change my mind. HE would be getting a new computer after he put the fire out.
I will definitely do, I am keep watching now. Thanks a lot for your continuous advise and support :up: ... Is there any way to redirect him once he registers again to a malicious site to infect his PC? ... The idea jumped to my mind when you wrote this phrase:

HE would be getting a new computer after he put the fire out.
Reply With Quote
  #22  
Old 10-27-2012, 03:27 PM
vijayninel's Avatar
vijayninel vijayninel is offline
 
Join Date: Mar 2009
Posts: 537
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Midohash View Post
I have never heard about it and don't know what is it for? ... would appreciate some more information please

I use a hack which informs me by a pm if 2 accounts are logging on through the same computer. I don't know if AE detector is an alternative name to this product or a different one?
That might be it. this is the one actually https://vborg.vbsupport.ru/showthread.php?t=183268

Use it to detect multiple accounts and then put them on global ignore using the "tachy goes coventry" from user banning options. Dont ban them - always put on ignore. If you ban them then they will just keep coming back.
Reply With Quote
Благодарность от:
Max Taxable
  #23  
Old 10-27-2012, 03:28 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Midohash View Post
I will definitely do, I am keep watching now. Thanks a lot for your continuous advise and support :up: ... Is there any way to redirect him once he registers again to a malicious site to infect his PC? ... The idea jumped to my mind when you wrote this phrase:

HE would be getting a new computer after he put the fire out.
I wouldn't recommend any of that. However, back in my botnet fighting days I wasn't above going into the zombie computers through their modem and frying their processor by grossly overclocking it. That's what I was referencing. Those computers were wet paper sacks for security, that's why they were botnet zombies to start with.

--------------- Added [DATE]1351355389[/DATE] at [TIME]1351355389[/TIME] ---------------

Quote:
Originally Posted by vijayninel View Post
That might be it. this is the one actually https://vborg.vbsupport.ru/showthread.php?t=183268

Use it to detect multiple accounts and then put them on global ignore using the "tachy goes coventry" from user banning options. Dont ban them - always put on ignore. If you ban them then they will just keep coming back.
The only problem with Tachy is, if they log out they can see their posts aren't posting.
Reply With Quote
  #24  
Old 10-27-2012, 03:35 PM
vijayninel's Avatar
vijayninel vijayninel is offline
 
Join Date: Mar 2009
Posts: 537
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Max Taxable View Post
The only problem with Tachy is, if they log out they can see their posts aren't posting.
Yes. If they realise that then they will create another account. So you have to repeat the process again. The thing is that if they have to keep checking it takes the fun out of trolling and ultimately they give up.

I have worn out several determined trolls this way. Trust me - banning doesnt work. Put them on global ignore and wear them out.
Reply With Quote
  #25  
Old 10-27-2012, 03:45 PM
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Posts: 3,134
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by vijayninel View Post
Yes. If they realise that then they will create another account. So you have to repeat the process again. The thing is that if they have to keep checking it takes the fun out of trolling and ultimately they give up.

I have worn out several determined trolls this way. Trust me - banning doesnt work. Put them on global ignore and wear them out.
That is one of my techniques. I've never banned any account, letting them know they are banned only encourages more of the same, I agree.



To the OP: To REALLY freak your guy out, unban his account, assign it a password only you know, and start posting with it. Have him looking for homosexual hookups, etc.
Reply With Quote
  #26  
Old 10-27-2012, 04:41 PM
Midohash's Avatar
Midohash Midohash is offline
 
Join Date: Aug 2010
Posts: 110
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by vijayninel View Post
That might be it. this is the one actually https://vborg.vbsupport.ru/showthread.php?t=183268

Use it to detect multiple accounts and then put them on global ignore using the "tachy goes coventry" from user banning options. Dont ban them - always put on ignore. If you ban them then they will just keep coming back.
Quote:
Originally Posted by Max Taxable View Post
I wouldn't recommend any of that. However, back in my botnet fighting days I wasn't above going into the zombie computers through their modem and frying their processor by grossly overclocking it. That's what I was referencing. Those computers were wet paper sacks for security, that's why they were botnet zombies to start with.

--------------- Added [DATE]1351355389[/DATE] at [TIME]1351355389[/TIME] ---------------

The only problem with Tachy is, if they log out they can see their posts aren't posting.
Thanks a lot vijayninel and Max Taxable. I found that I have the same hack recognizing multiple accounts but was installed in a different name in Arabic translation version. However the hack was not effective with that evil guy at all! He registers many times a day and the hack has never caught him even once! ... As mentioned before he has a sound background in IT technology and software for my hard luck ... Most of his registrations are with fake emails which he is unable to verify of course! ... His main aim is to display dozens of obscene and evil usernames on (who is on line) and other forum statistics! ... I have tried several options including:

* Helding registration to new members, however re-enabled it after a couple of days!
* Made forum statistics invisible to all groups expect group 6 (Admins) which is me , However forum members requested re-enabling them again after several days in spite of explaining to them my reasons!

Is there anyway to allow forum statistics and at the same time to Prevent Users awaiting Email confirmation and awaiting Moderation from getting displayed on them!
Reply With Quote
  #27  
Old 10-27-2012, 05:42 PM
vijayninel's Avatar
vijayninel vijayninel is offline
 
Join Date: Mar 2009
Posts: 537
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Midohash View Post
Most of his registrations are with fake emails which he is unable to verify of course! ... His main aim is to display dozens of obscene and evil usernames on (who is on line) and other forum statistics! ... I have tried several options including:

* Helding registration to new members, however re-enabled it after a couple of days!
* Made forum statistics invisible to all groups expect group 6 (Admins) which is me , However forum members requested re-enabling them again after several days in spite of explaining to them my reasons!

Is there anyway to allow forum statistics and at the same time to Prevent Users awaiting Email confirmation and awaiting Moderation from getting displayed on them!
I think users awaiting confirmation arent shown on Who's online. Check if the usergroup id is listed in forum.php. Usually the usergroup id of Users Awaiting Email Confirmation is 3 it may be different on your forum. If it is then add that number to the skipgroups array in forum.php like 3,4,5 etc.

PHP Code:
$skipgroups = array(3,4); 

Also set your usergroup permissions so that Users Awaiting Email Confirmation cant post on the forums.
Reply With Quote
  #28  
Old 10-27-2012, 06:56 PM
Midohash's Avatar
Midohash Midohash is offline
 
Join Date: Aug 2010
Posts: 110
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by vijayninel View Post
I think users awaiting confirmation arent shown on Who's online. Check if the usergroup id is listed in forum.php. Usually the usergroup id of Users Awaiting Email Confirmation is 3 it may be different on your forum. If it is then add that number to the skipgroups array in forum.php like 3,4,5 etc.

PHP Code:
$skipgroups = array(3,4); 

Also set your usergroup permissions so that Users Awaiting Email Confirmation cant post on the forums.
I have tried all those precautions but still users awaiting email confirmation (group ID =3) appear on forum statistics including those on line. However they couldn't post

--------------- Added [DATE]1351426823[/DATE] at [TIME]1351426823[/TIME] ---------------

The evil guy user agent looks like that:

Mozilla/5.0 (Windows NT 6.0; rv:16.0) Gecko/20100101 Firefox/16.0

Any suggestions?

--------------- Added [DATE]1351428441[/DATE] at [TIME]1351428441[/TIME] ---------------

This is the full user agent of the evil guy:

Quote:
"
host-41.235.34.232.tedata.net - - [27/Oct/2012:19:38:43 -0500] "GET /favicon.ico HTTP/1.1" 200 491 "-" "Mozilla/5.0 (Windows NT 6.0; rv:16.0) Gecko/20100101 Firefox/16.0"
host-41.235.34.232.tedata.net - - [27/Oct/2012:19:38:44 -0500] "GET /vb/ HTTP/1.1" 200 25587 "-" "Mozilla/5.0 (Windows NT 6.0; rv:16.0) Gecko/20100101 Firefox/16.0"
Can I use something like that: HTTP/1.1 in ban spiders by user agent?
Reply With Quote
  #29  
Old 10-29-2012, 12:35 AM
Midohash's Avatar
Midohash Midohash is offline
 
Join Date: Aug 2010
Posts: 110
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Just to let you know that the evil obscene guy I am talking about him has registered here today with my real name (mohamed hashesh) to continue his disgraceful and obscene behaviour!
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:56 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.08356 seconds
  • Memory Usage 2,275KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (2)bbcode_php
  • (11)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (9)post_thanks_box
  • (1)post_thanks_box_bit
  • (9)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit
  • (9)post_thanks_postbit_info
  • (9)postbit
  • (9)postbit_onlinestatus
  • (9)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • fetch_musername
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • post_thanks_function_fetch_thanks_bit_start
  • post_thanks_function_show_thanks_date_start
  • post_thanks_function_show_thanks_date_end
  • post_thanks_function_fetch_thanks_bit_end
  • post_thanks_function_fetch_post_thanks_template_start
  • post_thanks_function_fetch_post_thanks_template_end
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete