Announcement

Collapse
No announcement yet.

Spammers Getting Around Image Verification

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • stoneaccents
    replied
    Recent upgrade now Porn spam

    I just upgraded VB last week and now I am getting slammed by porn spammers. I have a digital scrapbook site I have had about 100 porn spams in the last 2 days. I have heard that a lot of other scrapbook sites have been hit this week also. All of my settings are right. It seems kind of odd that as soon as I upgrade the spams start. What do I need to do to stop this????

    I tried to change the adminpc folder and the config.php folder like VB support said and I got page not found when I tried to go to the forum, what could I have done wrong, I named the admin folder the same thing as I named
    $config['Misc']['admincpdir'] = 'admincp';
    Last edited by stoneaccents; Sun 5 Oct '08, 3:30pm.

    Leave a comment:


  • hotshot
    replied
    What would be really cool is if we could use something like this http://www.maxmind.com/app/city and restrict registrations from certain countries etc.
    When I see the word RIPE I know it is trouble.

    Leave a comment:


  • Floris
    replied
    If you read this thread you'd see we are not in denial.

    Leave a comment:


  • hotshot
    replied
    Same problem here, my forum is getting hammered with new registrations of spammers. Vbulletin appears to be in denial, TOO MANY people are being compromised for this to be human.

    Most of the email addresses are @gmail.com
    Last edited by hotshot; Sat 4 Oct '08, 3:46pm.

    Leave a comment:


  • fatal1980
    replied
    Ah. I might have posted on the vbulletin.org then Thanks!

    Leave a comment:


  • Floris
    replied
    Originally posted by fatal1980 View Post
    I'm pretty sure my post got deleted, but xrumer is most likely the cause of the spam.
    I do not see a deleted post in your profile. And yes, it's xrumer most likely due to it's recent release.

    Leave a comment:


  • fatal1980
    replied
    I'm pretty sure my post got deleted, but xrumer is most likely the cause of the spam.

    Leave a comment:


  • Steve Machol
    replied
    I did not say that every instance of spammers is being done by humans. Some are and some aren't.

    By the way the staff is brainstorming some ideas that look promising.

    Leave a comment:


  • spiceplace
    replied
    Originally posted by Steve Machol View Post
    No need. As I said this has already been confirmed. There is very little you can do to stop a human from registering and then turning over things to a bot.
    But I installed recaptcha Thursday evening and the bots have been stopped. If it were a human, they certainly would be able to read the two words and type them in.

    Leave a comment:


  • Steve Machol
    replied
    No need. As I said this has already been confirmed. There is very little you can do to stop a human from registering and then turning over things to a bot.

    Leave a comment:


  • spiceplace
    replied
    Originally posted by Steve Machol View Post
    We have had confirmation from one forum that a human registered, then turned over the Q&A info to a bot which then rapidly added new registrations to began spamming.
    Steve, I have a log file of one of the signups. The accesses are 1 second apart and it took several tries to get the captcha key. I can provide the log to someone there if you want to see it. It's only about 12 lines. PM me if you want the log.

    Leave a comment:


  • spiceplace
    replied
    I was wondering the other day, when I was getting a flood of signups, if the imagehash on the vb capcha was unique to each board.

    This was the link to the image generation on the verify page:
    image.php?type=regcheck&imagehash=d47dd74a5f12b99d 1d5a3fde6236aedd

    If not unique to each board, then anyone with access to the vb source could rip through a few billion iterations of the function call, store the hash and the code that the user keys. Once you have enough of them, then you don't need to see, you have a db of hash and response. That was my thought on how they're getting by the human verification. A per board seed would prevent this, should that be the root cause.

    Leave a comment:


  • Steve Machol
    replied
    Originally posted by spiceplace View Post
    I can say for a fact that they are not humans. I was updating a forum last night that died with a database error. The forum wouldn't work in a browser. It was late and very low activity forum so I let it go. Got up early this morning to fix things up and had a bunch of new user emails!
    We have had confirmation from one forum that a human registered, then turned over the Q&A info to a bot which then rapidly added new registrations to began spamming.

    At this time I recommend using the Q&A verification with as many different Q&As as possible which will be randomly applied for each registration.

    Meanwhile the Devs are looking at stronger measures but unfortunately when you have a person doing something like this, then there is no easy way to stop this. If you are being hit, you should consider moderating new members.

    Leave a comment:


  • Floris
    replied
    Nice find! Thanks for sharing I see it's not just forums and Gmail, but Hotmail too.

    Leave a comment:


  • Floris
    replied
    Change to the Human Verifiaction Library : Question & Answers, and set a few unique creative questions.

    Bad question: What is 2+2
    Good question: If you eat half a dozen of apples, but put one back, how many do you have left?

    Bad question: Color of Sky?
    Good question: Third letter in the logo of this site? (From the right)

    Leave a comment:

widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Working...
X