Preventing Spam in 3.0.5 and Lower [*Read First Post*]

Get help with installation and running phpBB 3.0.x here. Please do not post bug reports, feature requests, or MOD-related questions here.
Scam Warning
Forum rules
END OF SUPPORT: 1 January 2017 (announcement)
Locked
User avatar
krisCrash
Registered User
Posts: 7
Joined: Tue Dec 18, 2007 1:31 pm
Contact:

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by krisCrash »

So!
Zero bots after adding custom fields + upgrading to 3.0.5 + disabling CAPTCHA, not even the usual 15 signed up bots that fail to activate their accounts daily. These were only a problem for my personal irritation anyway.
bbrunnrman wrote:Meanwhile, regarding your use of the custom "Numbers" field, you ought to edit the language file, as indicated near the end of the Knowledge Base article so the error message doesn't give away the correct answer.
Do you mean if a bot can at some point learn to parse the number out of the error message? Yes you have a big point here. And the text-dropdown question it could get right by trial and error as there are only 2 options. A human I am not worried about, a human spammer WILL be able to answer the current bot questions I have easily :lol:

Well, right now I will give it a go and see what happens, tweak things along the way. 99% of bots can't even use an email activation :roll:
hbridge55 wrote:I would actually really like to see this feature expanded, when and if it makes it into official distribution. The ability to have two or three questions with mulitple answers (5 or 6?) could make this approach very flexible with the ability to weed out almost all spammers. Users could just get two of three questions (or whatever) correct and be admitted.
Hmm, can the custom profile fields be utilized in such a way? If in the future it is easy to make a question with several incorrect answers, for instance.

QUIV3R
Registered User
Posts: 30
Joined: Thu Nov 27, 2008 12:10 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by QUIV3R »

How do I delete all (1386) users which are bots anyway without painstakingly sifting through every single bot on me forum and deleting them one at a time lol??

also, my URL 'www.sub-merge.org.nz/sublife'.... how do I change the URL to 'www.sub-merge.org.nz' without the forward slash sublife please.

User avatar
Phil
Former Team Member
Posts: 10403
Joined: Sat Nov 25, 2006 4:11 am
Name: Phil Crumm
Contact:

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by Phil »

Given the size of this topic you'd be much better off posting a new topic to garner support.
Moving on, with the wind. | My Corner of the Web

dieck
Registered User
Posts: 3
Joined: Mon Nov 15, 2004 7:59 am
Contact:

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by dieck »

Like Kitties? Try my new Asirra POST-intercepting approach.
http://www.phpbb.com/community/viewtopi ... &t=1632005
Light travels faster than sound.
That is why some people appear bright until you hear them speak.

Seraphic
Registered User
Posts: 274
Joined: Wed Feb 15, 2006 8:20 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by Seraphic »

QUIV3R wrote:How do I delete all (1386) users which are bots anyway without painstakingly sifting through every single bot on me forum and deleting them one at a time lol??

also, my URL 'www.sub-merge.org.nz/sublife'.... how do I change the URL to 'www.sub-merge.org.nz' without the forward slash sublife please.
Easy, if all the bot users have zero posts, you can do a mass delete of all users with zero (0) posts.
It is what I did to remove the 235 bots from my forum. :mrgreen:

tffnguy
Registered User
Posts: 461
Joined: Mon Aug 18, 2003 10:55 am
Contact:

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by tffnguy »

Seraphic wrote:Easy, if all the bot users have zero posts, you can do a mass delete of all users with zero (0) posts.
It is what I did to remove the 235 bots from my forum. :mrgreen:
If I did that on my board I'd delete half the active users. If its an informational site there will likely be a ton of people who only read.
Some people question my sanity because of the way I run my site. I question my sanity because I do run it.
-David T. Smith-

The Ford Falcon News
Living Off Grid in Terlingua Texas

vwenberg
Registered User
Posts: 8
Joined: Sat Dec 15, 2007 10:01 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by vwenberg »

You know what would be sweet? If phpBB had more flexibility in banning masks. While phpBB can ban IPs entire octets, banning hostnames isn't as flexible. If phpBB followed the same flexibility as IRC does in banning host masks, it would be much easier to really drill down to a specific part of the network/ISP. While there may be arguments about how well this would actually prevent spam, it is nonetheless an option that administrators should have whether it is used or not. Banning host masks in phpBB is simply not flexible enough to be of any use.

QUIV3R
Registered User
Posts: 30
Joined: Thu Nov 27, 2008 12:10 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by QUIV3R »

Seraphic wrote:
QUIV3R wrote:How do I delete all (1386) users which are bots anyway without painstakingly sifting through every single bot on me forum and deleting them one at a time lol??

also, my URL 'www.sub-merge.org.nz/sublife'.... how do I change the URL to 'www.sub-merge.org.nz' without the forward slash sublife please.
Easy, if all the bot users have zero posts, you can do a mass delete of all users with zero (0) posts.
It is what I did to remove the 235 bots from my forum. :mrgreen:

How and where do I delete these bots... Its one thing say what you've done but, you need to be a little more specific as to how you got it done... I can't mind read!

momentum
Registered User
Posts: 1505
Joined: Thu Sep 20, 2007 4:07 am
Location: Melbourne, Australia

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by momentum »

ACP->Users tab->Prune Users.

Craig.
QOTY: phpBB is free, good hosting is not. - robert (Lumpy Burgertushie)

QUIV3R
Registered User
Posts: 30
Joined: Thu Nov 27, 2008 12:10 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by QUIV3R »

how do I mass delete worthless bot spam? 3645 posts actually?

momentum
Registered User
Posts: 1505
Joined: Thu Sep 20, 2007 4:07 am
Location: Melbourne, Australia

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by momentum »

Delete the BOTs and make sure you have the "delete posts" option checked as well.

Craig.
QOTY: phpBB is free, good hosting is not. - robert (Lumpy Burgertushie)

QUIV3R
Registered User
Posts: 30
Joined: Thu Nov 27, 2008 12:10 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by QUIV3R »

cool thanks... what if I've already deleted the bots without deleting the posts as well... Am'I screwed?

QUIV3R
Registered User
Posts: 30
Joined: Thu Nov 27, 2008 12:10 am

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by QUIV3R »

Did it by pruning the forums lol

t-p
Registered User
Posts: 311
Joined: Wed Jun 13, 2007 12:51 am
Location: California, USA

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by t-p »

Hi iWisdom,

Excellent summary!

I am testing 3.0.5

All works just fine.

Issue: I tried to implement suggestions recommended in "Custom Profile Fields" knowledge base article.
1. I created two custom profiles exactly as suggested in the article.
2. modified en/ucp.php as suggeste in the article.
3. perged cachy.

But none of the fields appears in the registration. Am I supposed to disable GD for these to show up?

Am I supposed to do something else in addition to the three steps I described above?

p.s.: I also tried without modification to en/ucp.php file. Nothing!

Thanks for help in advance.

--tara

bbrunnrman
Registered User
Posts: 80
Joined: Sun Dec 24, 2006 9:19 pm

Re: Preventing Spam in 3.0 [*Read First Post*]

Post by bbrunnrman »

Hi tara,

I am somewhat amazed that the Knowledge Base article on Custom Profile Fields still hasn't been updated. That article was posted in October 2008, when phbBB 3.0.2 was the current version. Since then, the custom profile field functionality has changed a number of times, with the result that screenshots in the article are out-of-date. For updated settings that work in 3.0.5, see my post at http://www.phpbb.com/community/viewtopi ... 5#p9778455

Meanwhile, once you get your custom fields working, the change to en/ucp.php suggested in the Knowledge Base article is important because it stops the error message from giving away the answer when using the "Numbers" type field. (It's conceivable that a bot could make use of that answer in the error message, although I don't know if any have been programmed to do it yet.)

Also, instead of using exactly the two examples suggested in the Knowledge Base article, it would be helpful to be a little more creative in designing your custom fields. Note that the last paragraph of my post referenced above includes links to two earlier posts - at http://www.phpbb.com/community/viewtopi ... 5#p9659965 and http://www.phpbb.com/community/viewtopi ... 5#p9660415 - that describe simple code changes enabling you to create a custom text field with a single required answer, or custom dropdown box with one correct option instead of one incorrect option.

Locked

Return to “[3.0.x] Support Forum”