UKC

Hi guys,

I'm a moderator on another forum and we're experiencing a spam attack at the moment. We're not sure why but every morning at about 0700 we get around 20 posts about kitchens. I'm pretty certain that they're human spammers as we've recently implemented a number of ways to stop a Spambot. Some of these are: Two different questions with text box answers and e-mail activation.

We're running a PHPBB forum.

If you need any further information please ask.

Rich

In reply to Richiehill: No body have any suggestions?

In reply to Richiehill:
Do they come from specific ip addresses? Or a specific block of ip addresses?
In which case simply block those addresses at the firewall / client software?
Although if it's not your firewall / server that could be problematic....

In reply to Richiehill:

Put in a question that changes all the time, as well as the text box name. So something like enter the middle number with the numbers and field ames randomly generated on at the server end.

It's php so use the mt_rand function.

Works on our phpbb.

In reply to pneame: If you do end up banning a block of IP addresses dont forget to unblock them later.

In reply to Richiehill:

Most PHP-BB forums I've seen get the occasional spam posting that requires deletion by the moderators. Stopping spambots is relatively easy: https://www.phpbb.com/community/viewtopic.php?t=2122696 for the latest versions. Also I presume you've seen this - https://www.phpbb.com/customise/db/mod/advanced_block_mod/faq/f_548

Do you have the means to limit new users to what they can post? I'm thinking of something along the lines of not being able to post URIs for the first X posts or first month. Basically a new user has to show a level of trustworthyness before being allowed full rights, a bit like an L plate for drivers.

ALC

In reply to a lakeland climber: Cheers for the suggestions fellas. Yeah I've seen both of them and implemented them too, which is what leads me to believe they are Human Spammers.

For the suggestion of randomly generated questions I'll give that one a go. I'm going to try to put the question in a .jpg or similar so that even if a computer tries to read it and make sense of it, all it will see is *.jpg.

We do actually, although for some strange and rather idiotic reason it never occurred to me to stop them from posting hyperlinks. So I'll definitely give that one a go.

For blocking IP addresses, we also carry this out but only for individuals. I'll have to start taking notes on what IPs are being used although I have a feeling they'll be connecting via TOR or some other form of VPN.

Cheers anyway guys, more suggestions the merrier!

Rich