[BETA] Backscatter Captcha Mod

A place for MOD Authors to post and receive feedback on MODs still in development. No MODs within this forum should be used within a live environment! No new topics are allowed in this forum.
Forum rules
READ: phpBB.com Board-Wide Rules and Regulations

IMPORTANT: MOD Development Forum rules

On February 1, 2009 this forum will be set to read only as part of retiring of phpBB2.
Post Reply
User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

[BETA] Backscatter Captcha Mod

Post by zaphodb777 » Sat Jun 07, 2008 1:00 pm

Due to phpbbmodders.net dropping my discussion there (they all but nuked their 2.0.x devs! :cry: ), I have decided to repost links to my project here. It is a modification to the captcha system that came with Ver. 2.0.22 . It is a simple one file drop-in replacement, and so far it has "bounced out" 100% of the robots that have attempted to register accounts. Here are the links to it...

http://zaphodb777.dyndns.org/backscatter.php This is the project page, download link and a brief description are to be found here.

http://zaphodb777.dyndns.org/blog/archi ... try_47.php This page is where I first wrote up about the concept when it was still in closed ALPHA, has some images and more of why it works. Due to some good response, I fast-tracked the project to BETA.

http://zaphodb777.dyndns.org/files/back ... CHA_mod.7z The actual downloadable project file link as per forum rules.

http://zaphodb777.dyndns.org/forum Please come visit the site, and try it out for yourself before deciding if you want to mess with it.

I can't wait to hear your responses, and I invite 3.X coders to impliment my mod in their system, as this is all V2 GPL just like from whence it came.

Thanks!
Zaphod
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

User avatar
momentum
Registered User
Posts: 1505
Joined: Thu Sep 20, 2007 4:07 am
Location: Melbourne, Australia

Re: [BETA] Backscatter Captcha Mod

Post by momentum » Sun Jun 08, 2008 5:59 am

I have this MOD (actually it's just a drop-in replacement usercp_confirm.php file) installed on two different boards for the last month and haven't yet seen a single spamBOT registration.

Both boards were previously overrun with spammer registrations and posts before being protected with the Registration Authorization Code MOD. I removed the RAC MOD in order to test the effectiveness of this modification. Not a single spammer in a month means it must be doing something right.

This has to be the easiest MOD I've ever added to phpBB2.

Craig.
QOTY: phpBB is free, good hosting is not. - robert (Lumpy Burgertushie)

User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by zaphodb777 » Wed Jun 18, 2008 9:34 pm

Has anyone else tried this yet, and if so, any complaints? Suggestions?

I'd love to hear from you. :D

Zap!
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

User avatar
momentum
Registered User
Posts: 1505
Joined: Thu Sep 20, 2007 4:07 am
Location: Melbourne, Australia

Re: [BETA] Backscatter Captcha Mod

Post by momentum » Sun Jun 29, 2008 9:33 am

Zaphod,

It's been quite some time since I installed this MOD and neither board has seen a spamBOT registration. Working well. :D

Craig.
QOTY: phpBB is free, good hosting is not. - robert (Lumpy Burgertushie)

User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by zaphodb777 » Sat Jul 05, 2008 5:38 pm

Well, I did kinda foul my own test, but just a little. Seems the spambotmasters at keyweb.de/keyweb.ru were trying actual URI hacking to get around my captcha, since OCR was failing. The IP range banning feature in phpBB wasn't working either... So, I decided to tell them "NO!" with this little ditty included at the beginning of all phpbb php pages.

This **NOT** a mod for phpBB... it is a mod for any page you wish to keep a hostname or ip block out of.
Released GPL V.2 of course!

<?php
function lrmatch($haystack, $pattern)
{
$length = strlen($pattern);
if ((substr($haystack,0,$length) == $pattern) or (substr($haystack,-$length) == $pattern))
return true;
return false;
}

$ax="0";
$hoster=strtolower($_SERVER['REMOTE_HOST']);
$address=strtolower($_SERVER['REMOTE_ADDR']);
$url="http://YOURWEBSITE.TLD/CURSEOUT-LOGGING-PAGE.php";
// Start Compare here
$ax = $ax + (lrmatch($hoster,"keyweb.de"));
$ax = $ax + (lrmatch($address,"87.118.68"));
$ax = $ax + (lrmatch($address,"87.118.69"));
$ax = $ax + (lrmatch($address,"87.118.70"));
$ax = $ax + (lrmatch($address,"87.118.71"));
// Finish Compare here
if($ax > "0"){
header('Location: '.$url);
echo('
<html>
<head>
<title>You\'re Banned!</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body>
BOOT TO THE HEAD!
</body>
</html>
');
die("BANNED!");
}
?>

save this as a seperate .php named whatever you like, I named mine bandersnatch.php, and replace "YOURWEBSITE.TLD/CURSEOUT-LOGGING-PAGE.php" with an appropriate value for a page you would like to send the spammers to... Haven't figured out how to send them to hades yet. Then simply "include('bandersnatch.php');" at the very top of your .php page, just inside the first <?php of course.

Oddly enough, this also stopped all hacking attempts on my board, just killing these 2048 IPs. Not sure if this will "stick" but for now, I'll take what I can. They had given up on OCRing though, so I am satisfied my auth mod is the tough nut to crack that I designed it to be. Now they are looking to hack straight through.

Good Luck!
Zap.
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

deny
Registered User
Posts: 565
Joined: Wed May 14, 2003 9:14 am
Location: Find-Ip-Address.org
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by deny » Sat Jul 12, 2008 8:32 am

zaphodb777 wrote:Has anyone else tried this yet, and if so, any complaints? Suggestions?

I'd love to hear from you. :D

Zap!

It is very very difficult for human to see letters if he would to register:

Image
Geolocation of any IP address including detection of hostname,
browser, country and country code with ip address range web tool.

IP Address Locator | Email Tracking | IP Address | Check Email

User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by zaphodb777 » Sat Jul 12, 2008 8:39 am

I admit, it is hard to see, but even harder for bots. But thanks for posting the image.

Edit: BTW, the code in the image is LK4DPX :D
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by zaphodb777 » Sun Dec 28, 2008 5:19 am

Been awhile since I posted here, but that above code segment has been super-expanded and refined to become the first php/MySQL/phpbb/etc. protection script. (As far as I can tell, hotscripts revealed not much else along it's lines, if anything). It's GNU/GPL V2, so it's free.

You can snag it off my site at http://zaphodb777.dyndns.org/zbblockpage.php

Russian Business Network members like this hit...

@: Sat, 27 Dec 2008 14:53:07 -0700
Host: 77.51.20.37
IP: 77.51.20.37
Score: 1
Why blocked: Russian Attack Prone Netblock.
File: removed for security
Query:
Referer: http://www.phpbb.com/community/viewtopi ... it=CAPTCHA
Reconstructed URL: http://zaphodb777.dyndns.org/backscatter.php

Need not apply.
(That is actual output from ZB Block, catching an actual suspicious IP)

Laterz!
Zap :D
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

User avatar
Dog Cow
Registered User
Posts: 2491
Joined: Fri Jan 28, 2005 12:14 am
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by Dog Cow » Thu Jan 15, 2009 9:48 pm

I think I see (pun?) a way to beat this: all a script has to do is check for the normalized area where the characters are. In this case, the script is looking for 3 or more black pixels vertically, such as appear in most of the characters, and also alternating white/black pixels horizontally.

So basically, if this is the image, where 1 represents black, and a 0 represents white:

Code: Select all

111011010111000110101101010101010101110110100010101110110011
The left and right half are fairly random, even including repeating 1's or 0's. But in the middle of that string, there's an easily-detectable alternating 1010101 pattern. Now, this is just one line, but in the actual captcha, the script would find that at y values close in range, the 1 or 0 at the x value remains constant. As soon as it deviates, then that could signal the start of the random noise again. By "locking on" to this area, a script could potentially throw out all the random garbage and isolate the target characters.

Otherwise, it's an interesting idea. I read the description about the optical illusion. :D
Moof!
Mac GUI Vault: Retro Apple II & Macintosh computing archive.
Inside Allerton bookMac GUIMac 512K Blog

User avatar
zaphodb777
Registered User
Posts: 25
Joined: Sat Jun 07, 2008 12:40 pm
Location: Casper, Wyoming, USA (Like No Place on Earth!)
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by zaphodb777 » Sat Jan 17, 2009 2:23 pm

True. But so far, most skiddies can't code such an advanced routine. Also, as I said, I have other tricks up my sleeve in reserve, but haven't needed them yet.

But you have given me an idea to start injecting some random 101010101010s here and there in the image to throw your detection.

This isn't one of my ideas in reserve.

The ultimate CAPTCHA idea of mine is to use temporal dimensional scrambling, where analysis of any one grab is worthless, and since the flash generating it, is using Unix Epoch seeded pseudo-random directed temporal effects, it shouldn't be predictable. One added benefit to temporal domain obfuscation is that it is EASY for any sighted individual to read and enter the code. Still worried about what to do for blind friends though.

Zap
http://www.spambotsecurity.com
The home of ZB Block PHP Website/Forum/Blog protection software.
(GNU/GPL V.2 freeware)

User avatar
3Di
Registered User
Posts: 12893
Joined: Mon Apr 04, 2005 11:09 pm
Location: Milan (IT) Frankfurt (DE)
Name: Marco
Contact:

Re: [BETA] Backscatter Captcha Mod

Post by 3Di » Sat Jan 17, 2009 3:39 pm

Interested in to port this to phpBB3, may I contact you privately? In case, feel free to add myself to your MSN. :)

Regards.
Want to compensate me for my interest? Donate
Please PM me only to request paid works. Thx.
Extensions, Scripts, MOD porting, Update/Upgrades
My development's activity º PhpStorm's proud user

Post Reply

Return to “[2.0.x] MODs in Development”

Who is online

Users browsing this forum: No registered users and 10 guests