Martin Truckenbrodt wrote:spammers can not learn from SFS. Blacklists or databases like SFS can not been hacked or cracked. Spammers have learned to crack the Visual CAPTCHAs and they have learned to crack the default Q&A CAPTCHAs.
Sorry, I didn't make myself clear; I do not believe SFS has been breached, and didn't intend to give that impression; my (poor) joke was only intended to imply that spammers have learned the value of databases
, in that, like SFS, they have a compiled a live database of info useful to their members.
No anti-spam database is perfect; false positives can arise from over-enthusiastic members, spammer infiltration to devalue the DB, as well as structural issues.
For me, the real weakness is an over-reliance on IP address, which is a very much a moving feast and will become more so.
However, even with that weakness, the statistical likelihood of barring potential 'good members' by banning a spammer IP is infinitessimally small, given the number of IP addresses, the number of web users, and the niche nature of most forums. But I'm sure it has happened now and then.
As posts above have shown (as well as mu albeit limited personal experience), SFS can be a major tool if used correctly and intelligently, and I'd urge members to support the option
of SFS in any future builds of phpBB - as well as making it much easier for the technically challenged (like me) to install and update all antispam tools.