|5th January 2011||#1|
| || |
Mail.ru, ukr.net and Yandex.com email accounts banned
Yesterday around 20 accounts were opened with mail.ru or yandex.com addresses. All appear to be accounts set up to spam the site.
Thankfully things like the nursery period prevented the site from becoming awash with spam. Anyone curious as to how LFGSS might look if these defences were not in place need only look at the test forum where they are in fact not enabled:
Anyhow... to preclude the possibility of those accounts being used to get past the defences that I've put in place, I'm simply going to ban mail.ru and yandex.com accounts across the entire site. I feel that this is OK as being a London, UK focused site I can have a reasonable level of certainty that a majority of our users aren't from Russia.
However, if you happen to be someone who legitimately has an email address from one of those providers, you will need to let me know your username and the email address for that username... at which point if you also give me a new email address I can change it for you (you won't be able to change your own email address due to being banned).
The easiest way to do this is to email me at firstname.lastname@example.org from your existing mail.ru account and to let me know of the new email address I should use. This would verify that you have access to the mail.ru account, so I will happily update your LFGSS account.
|6th January 2011||#9|
| || |
I think it's unrelated... I just think Russian spammers have started the new year with a new found vigour and have changed their targets slightly, which now includes us.
|6th January 2011||#13|
| || |
|6th January 2011||#14|
| || |
It does. But they're actually using real people to register accounts. The IP addresses are all from Russia, Ukraine and Belize. I'm half considering bocking those country ip addresses since as we are a localised website this shouldn't impact any of our reals users. Seems a bit drastic though.
|6th January 2011||#27|
| || |
More anti-spam than racist.
It's these last few days... every minute on average another spam attack occurs, every 10 to 15 minutes another spammer registers. It's incredible.
I'll probably unblock the countries in time, but to stem the current attack I can't see what else to do.
|6th January 2011||#29|
| || |
I'm seeing 2 types of spam:
1) Fake profiles being registered by real people in the countries mentioned above.
2) Those profiles being user by botnets to try and post spam on the site.
The profiles were just about under control manually, but the botnet attacks were evolving. They hadn't figured out the nursery fully, and we are using Akismet too... but most were trying to start new threads which obviously was failing.
I've never seen such a high level of spam, but this is targeted at a website and not email stuff.
|7th January 2011||#44|
| || |
I"m wrong, blocking countries hasn't worked.
They're now using proxies in Belarus, Luxeumbourg and Denmark, and I'm pretty certain if I blocked those that they would switch to proxies in the USA.
So country banning helped, but hasn't solved it.
I have discovered from several admin forums that this is a very large problem that only appeared in the last 48/72 hours. So it's nice to know it's not just us. They've also shared that there are some solutions that are working better than others, and one of them is a system that spots spammers across multiple sites during registration and blocks registration if identified.
Basically it's a system in which all forum admins bang their heads together to try and stop the spammers and it apparently works pretty well.
So... as of tomorrow morning I'm going to try adding code to do that. It will be a change in the T&C's of the site, in that during registration *ONLY* your IP address and some other metadata about you will be looked up in a database held elsewhere to determine whether you are on a spam blacklist. After registration, this never happens, so it's a one-off thing for new members that we check whether they look like an obvious spammer.
|7th January 2011||#48|
| || |
spammers just employ people to sit there doing captchas, not that they are useless but as Hippy says easy to get round with cheap / slave labour.
Velocio what extra feature do you have on this site to the test site such that the test site is receiving more spam? Do you have a function turned off on the B.B forum or is it an extra bolt on you have on the main forum?
|Thread Tools||Search this Thread|
|Thread||Thread Starter||Forum||Replies||Last Post|
|Blue Hair Net||31t®um||Miscellaneous & Meaningless||20||17th November 2009 01:57|
|Offered: Net Gear wireless modem?||dayno||Components, clothing and miscellany||13||3rd September 2009 18:54|
|ping.chartbeat.net?||willo||Miscellaneous & Meaningless||3||14th August 2009 14:02|
|Behance.net anyone?||matt (baddesigner)||Miscellaneous & Meaningless||7||5th November 2008 12:26|
|Net at Home||dogsballs||Miscellaneous & Meaningless||55||3rd April 2008 14:50|