New round of spam registrations

Get help with installation and running phpBB 3.0.x here. Please do not post bug reports, feature requests, or MOD-related questions here.
Get Involved
Forum rules
END OF SUPPORT: 1 January 2017 (announcement)
golf25radioman
Registered User
Posts: 76
Joined: Sun Dec 12, 2004 3:26 am
Location: So. California
Contact:

New round of spam registrations

Post by golf25radioman »

Hello,
Since implementing the reCaptcha spam registrations were almost down to nothing. Now today (8/19/12) I got over two dozen from two of my boards. Anyone know what the spike could be? Is reCaptcha not preventing "bot" type registrations, or has it been compromised somehow? Pity if it has. One of the biggest problems with my boards "was" spam registrations. Only thing that makes this round of them tolerable is the questions I've instituted to answer - the "bots" (or humans) don't know what to put as the answer. But somehow bogus registrations are getting past the reCaptcha.

Thanks - hope everyone else isn't getting bombarded.
alexandra-aaa
Registered User
Posts: 44
Joined: Fri Aug 13, 2010 3:49 am

Re: New round of spam registrations

Post by alexandra-aaa »

Just came to see if anyone else is having a problem. It's been since yesterday for me. In two years I've had a random bot reg'n every month or so, but I've had 18 since yesterday. Not horrible (yet), but a huge pita.

(I am currently using just GD Image.)
User avatar
Mick
Support Team Member
Support Team Member
Posts: 22919
Joined: Fri Aug 29, 2008 9:49 am
Location: Watching cricket probably.

Re: New round of spam registrations

Post by Mick »

Have a read of Preventing Spam in phpBB3 then I suggest you adopt the Q&A CAPTCHA using a GOOD, none searchable, question and answer as all other CAPTCHA's (reCAPTCHA and GD etc.) were compromised over a year ago.
"The more connected we get the more alone we become" - Kyle Broflovski©
User avatar
Andrew Clarkson
Registered User
Posts: 244
Joined: Wed Dec 10, 2003 6:05 pm
Location: Morecambe, England, UK
Contact:

Re: New round of spam registrations

Post by Andrew Clarkson »

Me too, I have now changed to the Q&A, fingers crossed!!
Andrew Clarkson

Titanic Titanic
drawbridgep
Registered User
Posts: 1
Joined: Mon Aug 20, 2012 5:05 pm

Re: New round of spam registrations

Post by drawbridgep »

Us too. Maybe a dozen in the last few days. I've switched over to the Q&A asking a question about our logo. I'd like to see them google that. We shall see.

I noticed that you can add multiple questions. Only one question seems to show up and it didn't seem to randomly switch between them. Is this the case? Is there a way (this is 3.0.10) to ask multiple questions? Or one question at random from the list?
User avatar
KevC
Support Team Member
Support Team Member
Posts: 70284
Joined: Fri Jun 04, 2004 10:44 am
Location: Oxford, UK
Contact:

Re: New round of spam registrations

Post by KevC »

You can create multiple questions but it will only ask one at a time.

However, it's not a good idea to make more than one question. If you find bots getting in, it's very hard to then work out which of your questions is being ineffective.

If you want a second thing for them to answer you can always use the custom profile fields.
Custom Profile Fields as an Anti-Spammer Tool
-:|:- Support Request Template -:|:-
Image
Cheap UK Hosting
"In the land of the blind the little green bloke with no pupils is king - init!"
User avatar
rphMedia
Registered User
Posts: 166
Joined: Sun Oct 22, 2006 3:03 pm
Location: Maine, USA
Contact:

Re: New round of spam registrations

Post by rphMedia »

I'm getting spammers all of a sudden as well - just the last couple of days.

Something ain't right...
Regards,

Ron
User avatar
KevC
Support Team Member
Support Team Member
Posts: 70284
Joined: Fri Jun 04, 2004 10:44 am
Location: Oxford, UK
Contact:

Re: New round of spam registrations

Post by KevC »

rphMedia wrote:I'm getting spammers all of a sudden as well - just the last couple of days.

Something ain't right...
You have a simple maths question on your Q&A.
That's no good. They can search for the answer to that. It needs to be something you can't search for.

e.g. you could ask them to enter the middle 3 letters of your site name.
The answer being VIP.
-:|:- Support Request Template -:|:-
Image
Cheap UK Hosting
"In the land of the blind the little green bloke with no pupils is king - init!"
User avatar
rphMedia
Registered User
Posts: 166
Joined: Sun Oct 22, 2006 3:03 pm
Location: Maine, USA
Contact:

Re: New round of spam registrations

Post by rphMedia »

I actually just changed that from Captcha-based AND a question just a few minutes ago... but good point!

Just for reference, I had no problem with spammers (except the occasional poster) for months, but now all of a sudden, they're coming in hordes. They all seem to have the same M.O. - they input some country in the website field ?? Actually, various profile fields have entries ? And some of the email addresses don't seem to be valid either. How can they be being activated?
Regards,

Ron
User avatar
KevC
Support Team Member
Support Team Member
Posts: 70284
Joined: Fri Jun 04, 2004 10:44 am
Location: Oxford, UK
Contact:

Re: New round of spam registrations

Post by KevC »

rphMedia wrote:but now all of a sudden, they're coming in hordes.
They probably hadn't 'found' you until recently. Once they find a site you then seem to be on their list of places to try.
rphMedia wrote:They all seem to have the same M.O. - they input some country in the website field ?? Actually, various profile fields have entries ?
Absolutely. They're often listed as being in the US, They often have their timezone as -12GMT (it's the first one on the drop list) and if there's a field for occupation they usually have something like accountancy.
rphMedia wrote:And some of the email addresses don't seem to be valid either. How can they be being activated?
They don't know what activation method you're running. You'd be surprised how many just let people straight in, so they don't need a valid address. If it's admin activation, some people will just turn on accounts without checking the IP. So even without the hassle of having to create a valid address they can still access a decent percentage of boards.
-:|:- Support Request Template -:|:-
Image
Cheap UK Hosting
"In the land of the blind the little green bloke with no pupils is king - init!"
User avatar
rphMedia
Registered User
Posts: 166
Joined: Sun Oct 22, 2006 3:03 pm
Location: Maine, USA
Contact:

Re: New round of spam registrations

Post by rphMedia »

Thanks for the info!
Regards,

Ron
marcinj
Registered User
Posts: 8
Joined: Thu Jan 19, 2012 11:23 am
Location: Poland
Name: Marcin
Contact:

Re: New round of spam registrations

Post by marcinj »

Same thing here. Bot flood since Aug 18th. It did not happen for months.
User avatar
Mick
Support Team Member
Support Team Member
Posts: 22919
Joined: Fri Aug 29, 2008 9:49 am
Location: Watching cricket probably.

Re: New round of spam registrations

Post by Mick »

Andrew Clarkson wrote:Me too, I have now changed to the Q&A, fingers crossed!!
Preventing Spam in phpBB3 - Effective Solutions wrote:For this technique to be effective, you must use simple but non-obvious question and answer combinations. For instance, "What programming language is phpBB written in?" is an effective question, while "What colour is the sky?" or "2+2 = ?" are not.
"The more connected we get the more alone we become" - Kyle Broflovski©
marcinj
Registered User
Posts: 8
Joined: Thu Jan 19, 2012 11:23 am
Location: Poland
Name: Marcin
Contact:

Re: New round of spam registrations

Post by marcinj »

Does it require some extra mod?
User avatar
Mick
Support Team Member
Support Team Member
Posts: 22919
Joined: Fri Aug 29, 2008 9:49 am
Location: Watching cricket probably.

Re: New round of spam registrations

Post by Mick »

No:

How to configure Q&A
  1. ACP> Spambot countermeasures> Installed plugins> click the dropdown box and select Q&A (it will be greyed out)
  2. Click the configure button then click add.
  3. Add your question and answer (you need a Q&A for each language you have installed) click submit.
  4. Click “back to previous page” then click “back”
  5. Select Q&A from the dropdown box (again)
  6. Click submit at the bottom of the page.
  7. Done.
"The more connected we get the more alone we become" - Kyle Broflovski©
Locked

Return to “[3.0.x] Support Forum”