more phpBB invasions?

AsaJay · Post by **AsaJay** » Thu Jan 20, 2005 4:34 pm

So I'm wondering,

have any of you who are running phpBB, noticed a new increase in bogus users trying to subscribe?

I've been getting about one a day now. Since I have subscriptions set to "admin only" authorization, I get an email telling me somone it signing up. Usually, it's a pretty bogus name and when I check the sign-up details, there is -always- a website link to nasty sites somewhere.

I just check the box to delete user and submit, which removes them.

I -had- made some changes due to things noted here on this BBS, but those efforts appear to be no good anymore.

Any new clues and is anyone else experiencing this?

AsaJay · Post by **AsaJay** » Thu Jan 20, 2005 4:41 pm

PS,

BIO, it looks like the -same- users are subscribed to your board. Dude, the last name currently registered, is the -same- one I just kicked.

In the words of Foghorn Leghorn. . . "pay attention son, I'm talkin' to ya'"

Post by **bio** » Thu Jan 20, 2005 4:45 pm

That's been an ongoing issue.

The best way to deal with it is to ban their domain (if they use it as their emal address). I just banned *@minelab.ru for that last monkey.

Post by **eddiecanuck** » Thu Jan 20, 2005 6:06 pm

Bio let me delete my first user today too.

Post by **bio** » Fri Jan 21, 2005 9:17 am

Evil is good!

Encap · Post by **Encap** » Fri Jan 21, 2005 9:47 am

The one I'm dealing with is still MT spammers.

I should move to type pad, but I'm LAAAAAAZY. (Also, I have 3 MT sites going on my server).

My blacklist is HUGE now though.

Post by **miftah** » Fri Jan 21, 2005 12:42 pm

I shitcanned my forum because of this.

Well, also because there was an average of .009 posts a day.

AsaJay · Post by **AsaJay** » Fri Jan 21, 2005 1:45 pm

Yea, I know what you mean. Took off like a rocket the first week, now it's been quite for too long.

Post by **bio** » Sat Jan 22, 2005 9:02 am

With wordpress, I wrote some extra crap into the code to make it difficult for spammers to post a comment.

Create a random number, pass that as a variable from the post page and have a checkbox with the same number. Rename the page that actually inserts the comment into the database and have it do some logic to verify that the number I passed matches the number that was associated with the checkbox. No match, no post.

Not exactly rocket science, but it works. The spammers use a program called Load-Dump to insert comments by directly attaching to the page that inserts it into the database. They don't actually look at your site.