Welcome to Geeklog, Anonymous Friday, October 11 2024 @ 10:35 am EDT

Geeklog Forums

Bots that register and login

Page navigation


Status: offline

thelusiv

Forum User
Junior
Registered: 05/21/04
Posts: 23
Location:Clemson, SC
There is a better CAPTCHA for Geeklog than the one for download on this site. It's written by the Media Gallery folks. It seems that even that one can be bypassed by the bots though, after using the "Geeklog CAPTCHA Hack" I have noticed that users are still able to be created by spammers, without even submitting a "Real name" field which I have required in the custom user registration function. this thread on the MG forums has some details on the CAPTCHA and some users reporting that spammers still get through...
 Quote

Status: offline

mevans

Forum User
Full Member
Registered: 02/08/04
Posts: 393
Location:Texas
thelusiv,

Actually the CAPTCHA hack available here at geeklog.net is different from the one I have over at www.mediagallery.org. If you have been using one of them you might try the other and see if you have any better luck.

The one here uses Javascript, where the one at mediagallery.org just creates the random CAPTCHA graphic and places it into the custom registration form, then validates the results. The biggest difference besides the javascript is that the one here uses static images and I don't.

I would try which ever one you haven't used and see if the results change. This is still all new and I'm sure as we learn more about how the spambots work we can design better ways to block them.

Thanks!
Mark
 Quote

Status: offline

ByteEnable

Forum User
Full Member
Registered: 10/20/03
Posts: 138
mevans, I've just implemented your CAPTCHA in the last few minutes and already have blocked two spammers.

Have you considered this for comments too?

Thanks,

Byte
 Quote

Status: offline

mevans

Forum User
Full Member
Registered: 02/08/04
Posts: 393
Location:Texas
I'm glad it is working for you, I just put out another beta a little while ago, v0.3 which now supports ImageMagick. I had some folks who were having a hard time getting the GD libs to work under OS X, so now there is a choice, GD or ImageMagick for CAPTCHA.

Once I'm satisfied this works as it should, I'll be happy to look into adding support for comments. But, right now I'm not aware of any hooks into the comment engine, it may have to be a hack, which I would prefer not to do. Anway, I'll start poking around the code and see what I can turn up, who knows....

Thanks!
Mark
 Quote

Status: offline

ByteEnable

Forum User
Full Member
Registered: 10/20/03
Posts: 138
happy
Its working good!

Tue Aug 22 21:21:44 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.192.2
Wed Aug 23 00:25:42 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 70.87.100.194
Wed Aug 23 04:04:54 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 209.8.40.21
Wed Aug 23 04:56:07 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 209.8.40.23
Wed Aug 23 06:08:42 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 205.252.23.2
Wed Aug 23 06:20:41 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 205.252.23.8
Wed Aug 23 07:35:54 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 209.8.22.199
Wed Aug 23 07:52:57 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.192.6
Wed Aug 23 08:07:35 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.192.5
Wed Aug 23 09:46:19 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.205.179
Wed Aug 23 11:34:34 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.192.7
Wed Aug 23 12:21:03 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.192.13
Wed Aug 23 12:53:31 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 206.161.205.180
Wed Aug 23 13:23:29 2006 - CAPTCHA: Detected an attempt to bypass normal registration - IP Address: 209.8.40.30
 Quote

webmaster jg

Anonymous
Quote by Wade: 3. enhancing the "custom_usercheck" function in lib-custom.php to:


I got all the way to this point, but there is no "custom_usercheck" function in my lib_custom file. There's a "custom_usercreate" function, but placing the code in there has had no effect...

I'm still using Geeklog 1.3, could that be why?

JG
 Quote

Status: offline

brahm2

Forum User
Newbie
Registered: 03/11/06
Posts: 5
Quote by Blah: I added "http" to my spamx log and no longer get any spam at all. Users can't post links but not a single user has complained yet and it's been months since I made the change.


Very Happy Simple and brilliant. Thanks.

Over the summer I have converted my student society's website over to Geeklog (kudos, Dirk!) and I have been getting a lot of comment spam.

Catch is, registration is disabled because only student society members can get accounts.. but I want all students to be able to comment on news postings, so anonymous comments are enabled. I hope this is the fix I have been waiting for. Thanks again!
 Quote

Status: offline

billyboy

Forum User
Newbie
Registered: 05/06/06
Posts: 3
Just installed CAPTCHA v0.4 For Geeklog from here...

Installed nicely and worked. So will see whether spammers have any luck bypassing it
 Quote

Status: offline

donm1021

Forum User
Chatty
Registered: 12/31/05
Posts: 56
Quote by Dirk: As a very late follow-up: I just noticed that something from 209.8.40.26 is still trying to register automatically here on geeklog.net.

Now, if you do a ping on all those domain names that ByteEnable posted at the beginning of this thread, you'll notice that they are all hosted on IP addresses in the 209.8.22.* range. And the entire 209.8.* address range belongs to a "Beyond The Network America, Inc.". According to www.btnaccess.com, they are a hosting company, so it's one of their customers spamming.


How do you ban the entire range?

 Quote

Th3Cleaner

Anonymous
I use CHX-i I cant recomend it unless your a strong admin thats exactly what your doing.
 Quote

ironmax

Anonymous
Quote by Th3Cleaner: I use CHX-i I cant recomend it unless your a strong admin thats exactly what your doing.


Thats fine for those that host on there own machine(s) that don't have a decent firewall. What about those that are hosted someplace that don't have that access? The next best thing you can do otherwise is to have spam-x, bad behavior and ban plugins installed.
 Quote

Status: offline

timf

Forum User
Newbie
Registered: 10/06/04
Posts: 14
Location:Las Vegas
Quote by milfodd:
I've now switched to approving user requests but am having a problem deleting the bogus applications. When I attempt to do so I am faced with this error....


phpBB : Critical Error

Could not delete user 275 from phpBB groups table

DEBUG MODE

SQL Error : 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 2

DELETE FROM phpbb_groups WHERE group_id =

Line : 360
File : functions.inc


Not being the best at understanding such can anyone please give me some pointers to get on top of this.



resynch your phpbbbridge database - I had the same error and that cleared it right up.

to resynch you have to go to the phpbbridge install page:

i.e. http://www.yourdomanin.com/admin/plugins/phpbbbridge/install.php

and click on the re-synch button

at least that's what worked for me (I was getting your same error)
good luck
 Quote

Status: offline

bieffe

Forum User
Junior
Registered: 11/30/02
Posts: 16
I have the same problem where lots of bots registering themself but lucky me, they didn't post comment or whatever. I have about 50 bots registering a day.

I tried to install mevan's captcha hack with no luck. My registration page keep on showing broken image. (FYI: my php4 compiled with gd2)

So i take a look at geeklog.net's registration page & they added new field (confirmation email) & immediately i did some fix/hack on my users/registrationform.thtml & users.php to include new field. This fix/hack works. After 24 hours, there are only 1 bot can bypass this fix/hack - email from users@mail.ru

Question for geeklog.net's maintainer (sorry if the Qs sounds stupid):
1. does this fix/hack works well for your site?
2. bots still can bypass this fix/hack? if there are, how many of them?

I know i should'nt modifying geeklog's core file but i have to. I'm using latest stable GL (1.4.0sr5-1). My site at http://www.chatzradio.net

(Sorry with my bad english)
 Quote

Status: offline

mevans

Forum User
Full Member
Registered: 02/08/04
Posts: 393
Location:Texas
bieffe,

There are two methods to implement the gl-captcha, one will randomly generate the image using either GD or ImageMagick. For sites that have a difficult time getting the on-the-fly generation, there is also an option to use static images, this should work on all sites.

From the README:

9. Configure gl-captcha for your environment by editing the
public_html/captcha/captcha.php file.

$gfxDriver - specifies which graphics driver to use:
0 - GD Libs
1 - ImageMagick
2 - No Graphics driver, use Static Images

So in the case where you are seeing broken images, try setting the $gfxDriver to 2 and use the static images.

Thanks!
Mark
 Quote

Page navigation

All times are EDT. The time is now 10:35 am.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content