Keeping the ba$t@rd$ out...
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact:
Keeping the ba$t@rd$ out...
I think it's time to seriously consider a Turing test for loging in and registering to this site.
The newest REGISTERED user this morning is an online viagra selling site.
I was under the impression we were vetting registrations to keep this stuff out?
The newest REGISTERED user this morning is an online viagra selling site.
I was under the impression we were vetting registrations to keep this stuff out?
-
- 1100 or more caches found
- Posts: 953
- Joined: 05 September 04 7:21 pm
- Location: Brisbane
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact:
I've just had a trawl through the first 10 pages or so of the memberlist sorted by date joined decending (ie latest members). The following list are almost definately spammers, determined by their supplied www adresses;
Audi7Spy
datingservices2
dollaralerterw
dorveishique
duckdawg
fox2006
GiantPlayaht
in4wikiu
InDigo72
Limfoman
MaugleeRobins
Nadejd890
Namibiya69
squirrelwarez
stantorley
TopGunMen
Vulkanbabe
zooworms
Some of these are dating services, others are p()rn sites, and I bet you London to a brick that none of them have *ANY* interest in geocaching.
Actually while I was compiling this list it occurred to me that the main reason we are being targetted by spammers is because we allow web addresses in our user profiles. Maybe if we disallowed web site listings and deleted those we already have it might got quite a way towards removing the spammers from our midst. Take away their incentive to spam us.
I know this might seem like a drastic measure to take and could prove unpopular with some legitimate members of the forum. Website designing and showing off to the world your geocaching exploits *is* a lot of fun, I know, but being spammed isn't. Maybe the code makers behind this site can come up with another way of linking to our personal websites that doesn't allow spammers to get a foothold...
Audi7Spy
datingservices2
dollaralerterw
dorveishique
duckdawg
fox2006
GiantPlayaht
in4wikiu
InDigo72
Limfoman
MaugleeRobins
Nadejd890
Namibiya69
squirrelwarez
stantorley
TopGunMen
Vulkanbabe
zooworms
Some of these are dating services, others are p()rn sites, and I bet you London to a brick that none of them have *ANY* interest in geocaching.
Actually while I was compiling this list it occurred to me that the main reason we are being targetted by spammers is because we allow web addresses in our user profiles. Maybe if we disallowed web site listings and deleted those we already have it might got quite a way towards removing the spammers from our midst. Take away their incentive to spam us.
I know this might seem like a drastic measure to take and could prove unpopular with some legitimate members of the forum. Website designing and showing off to the world your geocaching exploits *is* a lot of fun, I know, but being spammed isn't. Maybe the code makers behind this site can come up with another way of linking to our personal websites that doesn't allow spammers to get a foothold...
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact:
-
- 400 or more spectacular views seen
- Posts: 259
- Joined: 09 March 04 2:17 pm
- Location: N51° 04.195' W115° 22.044'
- Contact:
You may want to consider adding "ref=nofollow" to all user supplied urls such as profile websites and the like. This prevent search engines from following those links or at least not using them for adding to a pages rank, that reduces the value of a spammer adding their profile to this site to zero. (though it probably wont stop them trying)
- EcoTeam
- 200 or more found
- Posts: 1267
- Joined: 03 April 03 7:57 pm
- Twitter: EEVblog
- Location: Crestwood, NSW
- Contact:
Isn't it just a matter of switching on the "graphic registration" thingy or whatever it is called? The one where the user must read numbers from a displayed graphic to verify they are human.ideology wrote:bugger, we went through the list a couple of weeks ago and weeded out about 80
we've been planning to put a turing test thingy on here for a while
My phpBB forum version has this feature built in (but you have to enable it in the setup) and I thought it's supposed to be fool-proof?
EcoDave
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact:
It's called a Turing Test or a CAPTCHA, but they are far from fool-proof, or bot-proof for that matter.EcoTeam wrote:Isn't it just a matter of switching on the "graphic registration" thingy or whatever it is called? The one where the user must read numbers from a displayed graphic to verify they are human.
My phpBB forum version has this feature built in (but you have to enable it in the setup) and I thought it's supposed to be fool-proof?
EcoDave
see http://en.wikipedia.org/wiki/Captcha for more info
I think a CAPTCHA will probably stop a fair number of spammers, but not all.
Sombody CMIIW, but the phpBB software will be ugraded in the future, possible with the inclusion of a CAPTCHA module...
- riblit
- It's the journey.
- Posts: 3444
- Joined: 04 April 03 6:30 pm
- Location: Land Grant of John Campbell
All new registrations are disabled until the account is manually enabled and that doesn't happen until the account information is checked and the any web page visited.
None of those accounts are active, so they can't post to the forums or have their link displayed on the links page.
I modified the link page code some time ago so that a member has to have an active account and at least one forum post to have a web page link displayed.
The 'latest member' shows the last registration, irrespective of its activation state. The member list also shows all registrations, active or not so it is not representative of the active members.
The reason they have been left is that the name and email address can't be used again. If they are deleted, the spammer is free to try again with the same name and email address.
None of those accounts are active, so they can't post to the forums or have their link displayed on the links page.
I modified the link page code some time ago so that a member has to have an active account and at least one forum post to have a web page link displayed.
The 'latest member' shows the last registration, irrespective of its activation state. The member list also shows all registrations, active or not so it is not representative of the active members.
The reason they have been left is that the name and email address can't be used again. If they are deleted, the spammer is free to try again with the same name and email address.
- riblit
- It's the journey.
- Posts: 3444
- Joined: 04 April 03 6:30 pm
- Location: Land Grant of John Campbell
The latest phpbb release has the CAPTCHA code. There are plans to upgrade, however we can't just drop in the new release as the original was modified to include some extra info in the profiles.
Plans are to move that to the cachers 'My' page to make it easier to upgrade the bbs software, however, like all things, it takes time to do so and ensure nothing breaks in the upgrade.
Plans are to move that to the cachers 'My' page to make it easier to upgrade the bbs software, however, like all things, it takes time to do so and ensure nothing breaks in the upgrade.
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact:
- The Ginger Loon
- 450 or more roots tripped over
- Posts: 824
- Joined: 28 March 03 9:09 pm
- Location: Tamworth
- Contact: