Page 2 of 4 FirstFirst 1234 LastLast
Results 11 to 20 of 35

Thread: Spammers!!!

  1. #11
    Join Date
    Jun 2004
    Location
    Solon, Maine
    Posts
    5,940

    Default

    Quote Originally Posted by Ekidokai View Post
    !4 mre spammers. That's incredible. Do they really think that anyone will pay any attention to any of their crap? Except the grwth cream.
    We're up to 22 for the day so far. What bothers me is that they're starting to use US based ISP's, which makes it very difficult to block email originating from those ISP's - we don't want to block REAL geocachers from logging on.

    We had a case recently where one of our well-known members was blocked from the site because they changed ISP's - to one that was blocked a long time ago before we really knew what we were doing. LOL!

  2. #12
    Join Date
    Jun 2004
    Location
    Solon, Maine
    Posts
    5,940

    Default

    Here is a profile of the typical spammer we've been getting lately:

    There is a new user, LuChenVahn at Geocaching Maine

    To view their profile, go here:

    http://www.geocachingmaine.org/forum/member.php?u=2547

    Email Address : vasilisaandreeva20.10@gmail.com
    Birthday : August 9, 1981
    Referrer: N/A
    IP Address: 94.181.176.2

    First Name : QQQOU
    Last Name : LuChenVahn
    Location : USA
    Postbit Template Selection : Horizontal Postbit

    If you check the IP address at "WhoIs", you'll see that this person is logging on from a Russian ISP:

    role: Network Operation Center CJSC ER-Telecom Company Penza branch
    address: ZAO Elektrosvyaz-Penza
    address: Kalyaeva st. 7A
    address: 440600 Penza
    address: Russian Federation
    phone: +7 8412 260342
    fax-no: +7 8412 520803
    e-mail: [Email Removed]
    admin-c: UON5-RIPE
    tech-c: STLK1-RIPE
    tech-c: ZPM2-RIPE
    nic-hdl: ETHD2-RIPE
    notify: [Email Removed]
    changed: [Email Removed] 20070126
    source: RIPE
    mnt-by: MNT-ERTHOLDING

    And if you check the "Stop Forum Spam" website, you'll see that this "user" has been busy lately.

    But it's fun trying to keep them out! LOL!

  3. #13
    Join Date
    Sep 2009
    Location
    [x, y, z, t]
    Posts
    668

    Default

    reCaptcha, this forum is using is vulnerable to cracking. You should use different CAPTCHA. Also you should add one field asking for geocaching profile URL. And implementing various negative captchas
    Vast majority of spammers could be filtered out at this point.
    Next implement a behavioral analysis, what users do when they register. Rest of the spammers could be filtered out here.
    Moo

  4. #14
    Join Date
    Dec 2007
    Location
    So. China Maine
    Posts
    1,588

    Default

    That's just what I was thinking cano, that and sending the spammers an internet virus that sets their computers on fire!


    Quote Originally Posted by cano View Post
    reCaptcha, this forum is using is vulnerable to cracking. You should use different CAPTCHA. Also you should add one field asking for geocaching profile URL. And implementing various negative captchas
    Vast majority of spammers could be filtered out at this point.
    Next implement a behavioral analysis, what users do when they register. Rest of the spammers could be filtered out here.
    Sometimes the road less traveled is less traveled for a reason.

  5. #15
    Join Date
    Jun 2004
    Location
    Solon, Maine
    Posts
    5,940

    Default

    Quote Originally Posted by dubord207 View Post
    That's just what I was thinking cano, that and sending the spammers an internet virus that sets their computers on fire!
    These are obviously bots that are joining from "zombie" computers - owners that let their computers get taken over by spambots.

  6. #16
    Join Date
    Aug 2008
    Location
    America
    Posts
    2,544

    Default Fire!

    Quote Originally Posted by dubord207 View Post
    That's just what I was thinking cano, that and sending the spammers an internet virus that sets their computers on fire!
    What fire? Where?

    Electrocution works much better. Really gets their attention.
    I have no enemies, but I'm intensely disliked by my friends.

  7. #17
    Join Date
    Jun 2004
    Location
    Solon, Maine
    Posts
    5,940

    Default

    Quote Originally Posted by cano View Post
    reCaptcha, this forum is using is vulnerable to cracking. You should use different CAPTCHA. Also you should add one field asking for geocaching profile URL. And implementing various negative captchas
    Vast majority of spammers could be filtered out at this point.
    Next implement a behavioral analysis, what users do when they register. Rest of the spammers could be filtered out here.
    I think Rick changed this today - I see that the verification process is now "question and answer" (not reCaptcha), and some of the questions (14-7=?, for example) were added today.

  8. #18
    Join Date
    Jun 2004
    Location
    Litchfield, Maine
    Posts
    3,589

    Default

    The process was not just a CAPTCHA issue. We also had someone that manually screens all the new applicants that register on the site and approves them. Somehow this user got past the approver.

    Yes I did change the verification process to see if that will help any.
    Blazing Troll

  9. #19
    Join Date
    Jun 2004
    Location
    Solon, Maine
    Posts
    5,940

    Default

    Quote Originally Posted by attroll View Post
    Somehow this user got past the approver.
    Sheesh! Not! This person had posted that PM before I even got up that morning. Note my first comment on the issue, which was in response to email received from a member about an "inappropriate post". I don't know why he was able to post a PM BEFORE he was validated, but he won't post again. LOL!

    (Only 14 "new members" this morning. We're doing better. LOL!)

  10. #20
    Join Date
    Jun 2004
    Location
    Bangor, ME
    Posts
    6,061

    Default

    We did have an issue where people were able to PM (but not post) before being approved, but I thought we had fixed that.
    DNFTT! DNFTT! DNFTT!

    "The funniest thing about this particular signature is that by the time you realize it doesn't say anything it's to late to stop reading it..."

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •