Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Hack Attempt Script
Author Message
crypto
Worker
Worker



Joined: Aug 02, 2004
Posts: 165

PostPosted: Wed Aug 30, 2006 3:05 am Reply with quote

Hi! I'm running latest Ravennuke version and lately I have got lots of spam messages which are submitted via submit feedback webpage. I believe that those are made with some kind of harvesting tool?

Can there be done some extra protection somehow so spammers cannot spam via submit feedback page (e.g. you have to type several security numbers manually). I dont want to put feedback page to registered-members-only page. Now I have to add manully those IP's to blocked IP table.

Is there any ideas how to get protection against those spam feedbacks?

Have you met also this kind of problems?
 
View user's profile Send private message
Guardian2003
Site Admin



Joined: Aug 28, 2003
Posts: 6799
Location: Ha Noi, Viet Nam

PostPosted: Wed Aug 30, 2006 3:24 am Reply with quote

This is part of my 'pet project' - spam stopper.
Automated abuse of the feedback module can be dramatically reduced by using CAPTCHA's though I have not got around to integrating one yet.

More than likely though, it will be a manual entry, i.e. a real human sending you spam you can usually tell by if the volume od spam is small.

I'm working on modifying the Feedback module to include hidden fields (referer, IP etc) to be sent to the admin.
Another approach I'm working on is to use a similar approach used by the account registration process - the spammer (whether its a human or bot) submits the feedabck, they are then sent a confirmation link in an email before the feedback is sent to the admin.

However, if you turn the feedback module permission to 'registered user' (which is not the ideal situation) you'll find all the spam stops immediately - why is that then?
Simple, they cannot be bothered to register, they are too bust sending spam and move on to another target.
 
View user's profile Send private message Send e-mail
crypto







PostPosted: Wed Aug 30, 2006 4:07 am Reply with quote

I have enabled IP information to the feedback form and it look likes this:

- - - - - - - - - - - -
IP-address: xxx.xxx.xxx.xxx
Browser: User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)

What do you think about to implementing security code to feedback page? Can this be done easily? Then all bot feedbacks are denied because bot cannot read security code.
 
Guardian2003







PostPosted: Wed Aug 30, 2006 6:15 am Reply with quote

The more sophisticated bots CAN read the security codes we just need to develop solutions that make it more difficult for them, whilst not making it too difficult for those who genuinely want to leave feedback.
 
Susann
Moderator



Joined: Dec 19, 2004
Posts: 3191
Location: Germany:Moderator German NukeSentinel Support

PostPosted: Wed Aug 30, 2006 7:01 am Reply with quote

crypto

if its the same kind of spam e.g. "Hello, nice site" do a search on google for this title you will find the most IPs from those spammers and you can ban them easily with cidr in your htaccess.
 
View user's profile Send private message
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Hack Attempt Script

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©