Jump to content

Sign-up verification thingy.

Stealthbomber
 Share Followers 0

Recommended Posts

Stealthbomber

Stealthbomber

Posted
Posted

Recently we've seen a number of spam-bots sign up to Arnies and post nonsense.

 

I think it's time we got ourselves one of those verification things where a bunch of letters are displayed in a wobbly picture and you have to type them into a box before you can register.

 

Excuse the technical jargon. I'm sure you know the sort of thing I mean. :unsure:

Link to post
Share on other sites
Samm

Samm

Posted
Posted

From the thread in question:

...

 

On a more relative note, how exactly are these bots getting past the registration, as we have that image to ensure human registrants; unless someone's bothering to create the accounts first?

 

You would have thought they'd post a helluva lot more threads than this if that was the case. Maybe spam is from aliens afterall.

Meaning that, I thought we already had this :lol: I guess it's been a while since I registered.

Link to post
Share on other sites
Stealthbomber

Stealthbomber

Posted
  • Author
Posted
From the thread in question:

 

Meaning that, I thought we already had this :lol:  I guess it's been a while since I registered.

Must admit, I'm taking a flyer in assuming we don't have it.

 

I can't remember either, TBH. :unsure:

 

I thought we just had that thing where you sign up and an email gets sent to your email addy which you have to reply to so your account is activated.

Obviously they've discovered a way to allow a bot to do that.

Link to post
Share on other sites
gazchap

gazchap

Posted
Posted

They are spambots. They are registering on the forums via an automated system.

 

How they get around the CAPTCHA (the image-to-text thing) is that they get the URL of the image and download it, and then another website (typically crack websites, or computers that have been infected with a particular type of virus) will pop up a window saying "In order to continue this operation you must type in this code" (making no reference to Arnie's).

 

The user of that site then types in the code believing it to be a security feature of the website they're on, when in actual fact it's the spambot asking an unwitting human to tell them the code so that they can complete registration.

 

They're sneaky buggers, aren't they?

Link to post
Share on other sites
uscmCorps

uscmCorps

Posted
Posted
How they get around the CAPTCHA (the image-to-text thing) is that they get the URL of the image and download it, and then another website (typically crack websites, or computers that have been infected with a particular type of virus) will pop up a window saying "In order to continue this operation you must type in this code" (making no reference to Arnie's).

 

The user of that site then types in the code believing it to be a security feature of the website they're on, when in actual fact it's the spambot asking an unwitting human to tell them the code so that they can complete registration.

 

They're sneaky buggers, aren't they?

 

Whoa.... that's pretty hardcore and ingenious.

Link to post
Share on other sites
Stealthbomber

Stealthbomber

Posted
  • Author
Posted (edited)

I have one idea but, erm, it would require some level of competence by the existing members...

 

Here's how it'd work:-

- You post a "Hello" thread and sticky it in the newbs section.

- In the T&C you make it clear that a person MUST make a post to the "Hello" thread before they can post in the rest of the forums.

- You set accounts so that a newb cannot post until they RECEIVE their first PM.

 

So, our newb posts to say "Hi!" in the Hello thread and an existing member sends them a PM which unblocks their account and allows them to begin posting properly.

 

I know this is complex but I reckon the site sees around-the-clock usage so there'd always be somebody to send the PMs to newbs.

 

Thing is, my email addy now gets 200-odd bits of spam a DAY.

These spambots are going to get worse and worse and worse.

For the moment it might be okay to think "Ahh, we'll just delete the threads as they appear" but I think we need to start thinking of ways to deal with it cos it's gonna get a lot worse in future.

Edited by Stealthbomber
Link to post
Share on other sites
Quilimox

Quilimox

Posted
Posted
I have one idea but, erm, it would require some level of competence by the existing members...

 

Here's how it'd work:-

- You post a "Hello" thread and sticky it in the newbs section.

- In the T&C you make it clear that a person MUST make a post to the "Hello" thread before they can post in the rest of the forums.

- You set accounts so that a newb cannot post until they RECEIVE their first PM.

 

So, our newb posts to say "Hi!" in the Hello thread and an existing member sends them a PM which unblocks their account and allows them to begin posting properly.

 

I know this is complex but I reckon the site sees around-the-clock usage so there'd always be somebody to send the PMs to newbs.

 

Thing is, my email addy now gets 200-odd bits of spam a DAY.

These spambots are going to get worse and worse and worse.

For the moment it might be okay to think "Ahh, we'll just delete the threads as they appear" but I think we need to start thinking of ways to deal with it cos it's gonna get a lot worse in future.

its an ok idea but for example if its like 5 o clock in the evening and everyone goes on the forums for their daily dose of arniesairsoft and lots of people read a newcomers "hi" and start pm'ing him thus creating about 50 pm's for the newcomer and also once he has his account unlocked he will have to remember to post a reply to the "hi" topic to say his account is unlocked otherwise he might be reciveing pm's for hi's eversince he registered which would be quite an inconviniance to some people,

just thought i would point that out nice idea tho :D

cheers

Quil

Link to post
Share on other sites
otherrandomhero

otherrandomhero

Posted
Posted

Whatever it is, we drastically need one of these before it gets like the MN forums. The bots are posting worse things now. It starts with insurance or something, whatever. Then it goes to "unit" enhancement, not good, but liveable. Then, a bot started posting pornography, NO. Then, one posted a LOT of it. MAJOR NO!!!!!! I think what stealth posted would be a great idea. Though it may have its potential flaws, its better than having bots putting X-rated material on our site.

Link to post
Share on other sites
  • 2 weeks later...
Tecro

Tecro

Posted
Posted

Old thread, but no matter...the spam's only getting worse.

 

Spambots can easily work around the captchas. Each image in common bulletin boards has a known size, and the bots can compare the exact size with the actual code that's displayed. What's better is to create custom fields that you have to enter; say, "Enter anything." The bots probably won't know what to do. Even saying "Enter 'abcde'" will throw them off, as they're not programmed to enter fields that aren't defaults.

 

It might take some sorting through the massive CP, but I believe IPB has the option somewhere. Creating a custom field is sure to throw off most of the spambots.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Followers 0
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use and the use of session cookies.

  I accept