Lyoko Freak: 2005 - 2015. Return to the past now....

It is currently Thu Mar 28, 2024 4:39 am

Spam Bots on the Forum

Forum and website news. This forum can contain important information that concerns you, so make sure you read our updates.

Moderators: The Administrators, Moderators


Spam Bots on the Forum

Postby Star Way » Tue Aug 29, 2006 6:32 am

Hello all- this isn't a real update, just an announcement regarding the spam robots that have been popping up on the forum as of late.

It seems that this problem is attributed to the current version of phpBB. Apparently somehow there's a vulnerability which allows spam bots to bypass the e-mail registration and begin posting. Other forums are also having this issue, and phpBB is aware of the problem and I believe that they're working on it.

In the mean time, I know it's annoying, but there's not a whole lot we can do about it (besides changing the registration type to admin, inwhich case I'd have to approve every single person who joins here, and that would be *such* a pain in the eye.)

It would be nice if everyone would try to ignore the bots. When they post, instead of making a reply, either ignore it, or notify a mod. One way or another someone will take care of it, but there's no point in paying any attention to their useless ramblings, wouldn't you say? (Unless, of course, you are indeed interested in purchasing Viagra... inwhich case, I would ask that you do that via other means, please, and without telling us, because I don't think anyone wants to know. ;) )

Thanks so much for your patience and cooperation. I know it sucks, but we just gotta deal with it I'm afraid.

Erynn
Don't bother sending me messages or anything, I'm not in charge of the site anymore.

But I do love dancing.
User avatar
Star Way offline
Founder & Site Admin
Founder & Site Admin
 
Posts: 4919
Joined: Fri Apr 22, 2005 9:02 pm

Postby Overcaffeinated Sloth » Tue Aug 29, 2006 7:06 am

So, how would we know they'd post? By setting up a commercial user account, or guest account, or what?

Overcaffeinated Sloth offline
 

Postby Reesane » Tue Aug 29, 2006 7:35 am

Pardon my asking, but what is a "Spam-Bot?"
Mood today: O_o

Image
made by CBIzumi

Image
made by Carth
User avatar
Reesane offline
Star Fighter
Star Fighter
 
Posts: 1765
Joined: Mon Nov 21, 2005 4:36 pm
Location: Where all the missing socks go....

Re: Spam Bots on the Forum

Postby Tekirai » Tue Aug 29, 2006 8:00 am

It's a 'robot' that spams email, forums, guestbooks, IMs and all that jazz. You may have seen people who display their email (I think Star Way's done it on the contacts page) like this: ilikemuffins[AT]meowmix.boom. Or even tekirules@w00t[DOT]com. Some sites like FF.net even put your email address in an image for you. Spam-bots can take in emails that don't change like that and email the spam to them. That should be about right.

Star Way wrote:(Unless, of course, you are indeed interested in purchasing Viagra... inwhich case, I would ask that you do that via other means, please, and without telling us, because I don't think anyone wants to know. ;)


Wouldn't it be a riot if someone did, though? xDD Ahh, sorry. I'm being mean. Somehow.
User avatar
Tekirai offline
Star Fighter
Star Fighter
 
Posts: 1866
Joined: Sat Apr 01, 2006 4:57 pm
Location: Nosegay Road

Re: Spam Bots on the Forum

Postby Star Way » Tue Aug 29, 2006 11:42 am

Tekirai wrote:It's a 'robot' that spams email, forums, guestbooks, IMs and all that jazz. You may have seen people who display their email (I think Star Way's done it on the contacts page) like this: ilikemuffins[AT]meowmix.boom. Or even tekirules@w00t[DOT]com. Some sites like FF.net even put your email address in an image for you. Spam-bots can take in emails that don't change like that and email the spam to them. That should be about right.


Yep, that's right. Thanks for answering. ^^

When spambots post, it'll be really obvious because they'll advertise drugs, dating sites, porn, and other things like that....

Tekirai wrote:
Star Way wrote:(Unless, of course, you are indeed interested in purchasing Viagra... inwhich case, I would ask that you do that via other means, please, and without telling us, because I don't think anyone wants to know. ;)


Wouldn't it be a riot if someone did, though? xDD Ahh, sorry. I'm being mean. Somehow.


People *must* buy from spammers... wouldn't you think? I mean, there wouldn't be as much spam if absolutely no one fell for it... The same must go for adware. o_O
Don't bother sending me messages or anything, I'm not in charge of the site anymore.

But I do love dancing.
User avatar
Star Way offline
Founder & Site Admin
Founder & Site Admin
 
Posts: 4919
Joined: Fri Apr 22, 2005 9:02 pm

Postby Dairall » Tue Aug 29, 2006 8:31 pm

phpBB has a guide to passing bots, I'll look for all thr important and quick deteil.

1. Set activation to 'user' or 'admin'
This means to prevent fake email adresses.
Image
2. Enable visual confirmation
Image
3. Using mods.
These are home made mods blocking spam, .ect
Block Open Proxy Registrants by TerraFrost
Blocks those attempting to register from open proxies. xgmx can come back through this.

Disable spambots Registrants by TerraFrost
Blocks those attempting to register from open proxies. xgmx can come back through this.

The humanizer by Underhill
Adds the question 'Are you human?' to the registration form which must be answered for the registration to be processed. Since this isn't a standard phpBB question, most bots will not answer it.

One last thing for Erynn, I know you have alot of "no posters" no the user list, so this one, seems very helful.
Admin Toolkit - Allows you to mass delete users. Users should never be deleted straight from the users table.

Source: phpbb.com
Image
"Simms! I'm gonna need three hundred copies of your a*s by the four o-clock meeting!"
"Yes sir!"
"And try to keep your b*lls off the glass this time!"
User avatar
Dairall offline
Jeremie's Assistant
Jeremie's Assistant
 
Posts: 474
Joined: Sun Jun 18, 2006 6:35 pm
Location: Maw, Halo.

Postby Star Way » Tue Aug 29, 2006 9:24 pm

Dairall wrote:phpBB has a guide to passing bots, I'll look for all thr important and quick deteil.

1. Set activation to 'user' or 'admin'
This means to prevent fake email adresses.
Image
2. Enable visual confirmation
Image
3. Using mods.
These are home made mods blocking spam, .ect
Block Open Proxy Registrants by TerraFrost
Blocks those attempting to register from open proxies. xgmx can come back through this.

Disable spambots Registrants by TerraFrost
Blocks those attempting to register from open proxies. xgmx can come back through this.

The humanizer by Underhill
Adds the question 'Are you human?' to the registration form which must be answered for the registration to be processed. Since this isn't a standard phpBB question, most bots will not answer it.

One last thing for Erynn, I know you have alot of "no posters" no the user list, so this one, seems very helful.
Admin Toolkit - Allows you to mass delete users. Users should never be deleted straight from the users table.

Source: phpbb.com


The first two are fairly elementary (har har, I live in England now so I gotta pull some British crap here and there)... As for MODs, I never mess with them even if they've been approved (they're a pain, since if you want to keep them you have to do special installation things when the time comes to upgrade, and also I'm just not comfortable with the fact that they provide potential security issues. and then, of course, I dunno anything about PHP so, ehh.)

What's wrong with deletion via users table?
Don't bother sending me messages or anything, I'm not in charge of the site anymore.

But I do love dancing.
User avatar
Star Way offline
Founder & Site Admin
Founder & Site Admin
 
Posts: 4919
Joined: Fri Apr 22, 2005 9:02 pm

Postby Dairall » Wed Aug 30, 2006 4:16 am

I dunno, I was copying the phpbb site.
Image
"Simms! I'm gonna need three hundred copies of your a*s by the four o-clock meeting!"
"Yes sir!"
"And try to keep your b*lls off the glass this time!"
User avatar
Dairall offline
Jeremie's Assistant
Jeremie's Assistant
 
Posts: 474
Joined: Sun Jun 18, 2006 6:35 pm
Location: Maw, Halo.

Postby Overcaffeinated Sloth » Sat Sep 09, 2006 11:27 am

The first spambot's post

The first Spambot

It would appear we have in fact been hit...

Overcaffeinated Sloth offline
 

Postby MY85 » Sat Sep 09, 2006 12:54 pm

AngelBolt wrote:The first spambot's post

The first Spambot

It would appear we have in fact been hit...


He wans't the first one, I'm telling you.

Locked the thread. Can't ban him from my position.
Lani wrote:Eh, in the end, people (real or cartoon) are naked and having a good time. What's wrong with that?
User avatar
MY85 offline
Senior Member
Senior Member
 
Posts: 11339
Joined: Sat Apr 23, 2005 9:11 pm

Re: Spam Bots on the Forum

Postby Jeremified » Sat Sep 09, 2006 4:43 pm

Tekirai wrote:It's a 'robot' that spams email, forums, guestbooks, IMs and all that jazz. You may have seen people who display their email (I think Star Way's done it on the contacts page) like this: ilikemuffins[AT]meowmix.boom. Or even tekirules@w00t[DOT]com. Some sites like FF.net even put your email address in an image for you. Spam-bots can take in emails that don't change like that and email the spam to them. That should be about right.

Star Way wrote:(Unless, of course, you are indeed interested in purchasing Viagra... inwhich case, I would ask that you do that via other means, please, and without telling us, because I don't think anyone wants to know. ;)


Wouldn't it be a riot if someone did, though? xDD Ahh, sorry. I'm being mean. Somehow.

ROFL I've been getting those e-mails ALL THE TIME. And it's always from a different e-mail address, with different messed-up spelling, and a different website. >>;
thank you all for the good memories <3
User avatar
Jeremified offline
Lyoko Freak
Lyoko Freak
 
Posts: 6051
Joined: Thu Feb 02, 2006 11:40 pm

Postby Lyokofreak » Sat Sep 09, 2006 10:54 pm

I thought of some rough ways to force the spambot to screw up... Besides the stupid coding, the only thing that can possibly fix the exploit is a post-level verification image. The IMAGE's name is spoofed as a spam.gif (or w/e). The only way for a spambot to identify the image is by its name under its own temp files i believe :/ ... When spam.gif is read by "spambot", a message can be sent to the admin or mods and they can ipban this "spambot" before it's able to register... Long text verifications mixed with that might work very well... But im NO php coder and im still learning html lolz
Last edited by Lyokofreak on Sat Sep 09, 2006 11:09 pm, edited 2 times in total.
How to write an infinite Jesus pwns loop in PHP:
while($_SERVER[PHP_SELF])
{
echo "Jesus pwns!";
}
User avatar
Lyokofreak offline
Star Fighter
Star Fighter
 
Posts: 1123
Joined: Sun Oct 09, 2005 10:41 am

Postby Darkborn » Sat Sep 09, 2006 11:00 pm

I don't think bots have an IP, Hack..
User avatar
Darkborn offline
Lyoko Freak
Lyoko Freak
 
Posts: 8334
Joined: Wed Nov 02, 2005 10:10 pm
Location: Gone with the Wind

Postby Jeremified » Sat Sep 09, 2006 11:05 pm

I agree; a spambot is just a floating... evil thingy. No IP address because you need a home to have an address.
thank you all for the good memories <3
User avatar
Jeremified offline
Lyoko Freak
Lyoko Freak
 
Posts: 6051
Joined: Thu Feb 02, 2006 11:40 pm

Postby Dairall » Sat Sep 09, 2006 11:10 pm

Its also not bots. It's lifeless zombie idiots who join to spam. I hate them. Who else? Here is my list of spam:
1. Human- Spaming 50 usless post if not cought.
2. Bot- Posting in a no protected forum with no care!
3. Human-Joining not posting, but PMing.
There are maybe lots of examples. But spambots, I REALLY HATE!
Some bot have an IP of 0.x Star way could ban an ip with a afterrisk(*) So bots like 0.* can't join.
Image
"Simms! I'm gonna need three hundred copies of your a*s by the four o-clock meeting!"
"Yes sir!"
"And try to keep your b*lls off the glass this time!"
User avatar
Dairall offline
Jeremie's Assistant
Jeremie's Assistant
 
Posts: 474
Joined: Sun Jun 18, 2006 6:35 pm
Location: Maw, Halo.

Postby Lyokofreak » Sat Sep 09, 2006 11:10 pm

It still needs to be hosted on a local machine, at least one connection is made... AT LEAST 1
do a trace and/or nbtstat on unfamiliar ip's (once again, VERY active moderation is required when someone uploads the bot to the db)

Thanks so much for your patience and cooperation. I know it sucks, but we just gotta deal with it I'm afraid.

Erynn


I found many mods for spambots though :O

then again... changing the port this forum uses could fix it. Since the bot is coded to spam on port 80... People would probly have to go to lyokofreak.net/forum/:12345 or whatever port you prefer to use...
But then comes the DNS Crap and the messing w/ webhost... I dont know if you think its worth it

its all trial and error lol...
How to write an infinite Jesus pwns loop in PHP:
while($_SERVER[PHP_SELF])
{
echo "Jesus pwns!";
}
User avatar
Lyokofreak offline
Star Fighter
Star Fighter
 
Posts: 1123
Joined: Sun Oct 09, 2005 10:41 am

Postby Dairall » Mon Sep 11, 2006 6:24 pm

M3H 1S T3H N3Wb H4X0r wrote: I found many mods for spambots though :O

Star way doesn't prefere mods. Something about updating. Too much trouble. But, so did I. I think it's great she doesn't use mods, good admin!
[OF: Nice nick]
Image
"Simms! I'm gonna need three hundred copies of your a*s by the four o-clock meeting!"
"Yes sir!"
"And try to keep your b*lls off the glass this time!"
User avatar
Dairall offline
Jeremie's Assistant
Jeremie's Assistant
 
Posts: 474
Joined: Sun Jun 18, 2006 6:35 pm
Location: Maw, Halo.

Postby Carth » Wed Sep 27, 2006 7:27 pm

Nudder one showed up.

It's advertising porn sites. With, er...free previews.

Please get rid of it. I'm going to go clear my Temporary Internet.
User avatar
Carth offline
Moderator
Moderator
 
Posts: 8372
Joined: Thu Nov 24, 2005 9:35 pm
Location: Syracuse University

Postby Reesane » Wed Sep 27, 2006 7:46 pm

My other fourm is taking precations, too.

Also look at the "Illiteret Spam" thread. :arg:
Mood today: O_o

Image
made by CBIzumi

Image
made by Carth
User avatar
Reesane offline
Star Fighter
Star Fighter
 
Posts: 1765
Joined: Mon Nov 21, 2005 4:36 pm
Location: Where all the missing socks go....

Postby Stephen (x1) » Wed Sep 27, 2006 8:43 pm

I would like to point out that almost all the members on the Memberlist with the location "USA" are spambots. Just check their profiles to confirm it...So if there's a random or spammy post, check their location..
What will you remember me for?

Stephen (x1) offline
Site Admin
Site Admin
 
Posts: 8683
Joined: Sat Apr 23, 2005 3:52 pm

Postby Rail Runner » Wed Sep 27, 2006 8:51 pm

I also notice that spambots joining the forums usually designate a first letter with last full name...for example JRodriguez or something...I have noticed that the most.
Amtrak, its everywhere I want to be!
User avatar
Rail Runner offline
Lyoko Freak
Lyoko Freak
 
Posts: 12367
Joined: Tue Mar 28, 2006 10:26 am
Location: Ridin the Rails

Postby LadyChaos » Wed Sep 27, 2006 9:33 pm

Virtualized STI wrote:I also notice that spambots joining the forums usually designate a first letter with last full name...for example JRodriguez or something...I have noticed that the most.


Hmmm... the spambots I get on a forum I co-administrate all use a series of numbers and letters. We get about one every 3 days or so. The location tends to change too, it's not just USA. I delete all of them the second I see their posts, so I can't go back and check any of them.
not gonna bother coming back

LadyChaos offline
Star Fighter
Star Fighter
 
Posts: 1767
Joined: Wed Jan 04, 2006 4:58 pm
Location: gone

Postby codeTONY » Wed Sep 27, 2006 10:08 pm

http://www.lyokofreak.net/forum/memberl ... C&start=40

Whoa, look at all of the "USA" locations. Click "next" to see all of the spambots.

Whoa, this is my 666th post.
OMG Japanese desu yo ( ^.^)( -.-)( _ _)
I am the 334th user here on LF. bee tee dubs.
gay | UxO, UxW shipper | artist | writer |musician | trilingual | cosplayer | Otakon '07 attendee as Odd~ | ConnectiCon '09 attendee | Avatard | Odd's boy
My LJ!

♪♫♥
User avatar
codeTONY offline
Star Fighter
Star Fighter
 
Posts: 1481
Joined: Sat Feb 11, 2006 9:35 pm
Location: ~I'm in Odd~

Postby Reesane » Wed Sep 27, 2006 10:43 pm

The fourm i posted a link to had an infestation, an most of them had rushan e-male addreses (yes fokes, you can tell what contry someone is from by looking at their e-male adress)....

... now all people from rusha who join the fourm are doomed..... :arg:
Mood today: O_o

Image
made by CBIzumi

Image
made by Carth
User avatar
Reesane offline
Star Fighter
Star Fighter
 
Posts: 1765
Joined: Mon Nov 21, 2005 4:36 pm
Location: Where all the missing socks go....

Re: Spam Bots on the Forum

Postby Lyokofreak » Fri Sep 29, 2006 5:16 pm

Star Way wrote:Hello all- this isn't a real update, just an announcement regarding the spam robots that have been popping up on the forum as of late.

It seems that this problem is attributed to the current version of phpBB. Apparently somehow there's a vulnerability which allows spam bots to bypass the e-mail registration and begin posting. Other forums are also having this issue, and phpBB is aware of the problem and I believe that they're working on it.

In the mean time, I know it's annoying, but there's not a whole lot we can do about it (besides changing the registration type to admin, inwhich case I'd have to approve every single person who joins here, and that would be *such* a pain in the eye.)

It would be nice if everyone would try to ignore the bots. When they post, instead of making a reply, either ignore it, or notify a mod. One way or another someone will take care of it, but there's no point in paying any attention to their useless ramblings, wouldn't you say? (Unless, of course, you are indeed interested in purchasing Viagra... inwhich case, I would ask that you do that via other means, please, and without telling us, because I don't think anyone wants to know. ;) )

Thanks so much for your patience and cooperation. I know it sucks, but we just gotta deal with it I'm afraid.

Erynn


I wouldn't mind doing that...

and something MUST be done. These spambots are destroying the boundaries of BKO... in effect.
How to write an infinite Jesus pwns loop in PHP:
while($_SERVER[PHP_SELF])
{
echo "Jesus pwns!";
}
User avatar
Lyokofreak offline
Star Fighter
Star Fighter
 
Posts: 1123
Joined: Sun Oct 09, 2005 10:41 am

Next

Who is online

Users browsing this forum: No registered users and 14 guests

cron