HE needs your help. Unfortunately, we get hit with spam bots more than we’d like. I’m away from my personal computer a lot during the day, so I don’t have the ability to monitor the site as much as I’d like and to ban the bots and delete the spam threads.
This is one of the reasons Jordan created the upvote/downvote option. This is where you all come into play. When you see a spam thread, please downvote it. If a thread or comment gets 5+ downvotes, it will be hidden.
We have implemented captcha and a few other anti-spam measures, but the bots keep getting through. So until further measures are taken, please help out the site by downvoting a spam thread or comment rather than just ignoring it. This will help maintain the integrity of the site and make HE look much better.
Yeah, I kick a lot of spambot ass, I don’t remember it ever being this bad before. I was wondering if maybe one of the Mods has malware on their pc that they are unaware of because for the bots to fly under captcha and other measures sounds like it may be something deeper.
It’s cool. I still regard you as being very wise in other areas. Everyone is computer savvy or illiterate at some level. My mom for example doesn’t even know how to turn off the computer; so yea.
Malware is any type of malicious software that can do harm to a system. Another way to look at it – fruit is to malware, as apples are to viruses. Apples, oranges, tomatoes, etc. are all fruit. Viruses, trojans, spyware, etc. are all malware.
I’m a little web savvy and have actually been thinking of some ways that might help lesson the spam.
1. Block ip addresses of spam accounts
This could be done in a couple of ways. When users create their account, be sure to grab their IP when they do. That can easily be done with some php. Then once their account has been identified as malicious, you could add that IP to some kind of blacklist. So, when accounts are created you check them against that blacklist. If a match is found, put some kind of lock on that account until further notice.
To reinforce that method, you could place a cookie on their computer to check for blacklisting too. Maybe when they try to access the site, have the site check their browser for a “banishment cookie”, and if they have it, don’t allow them access to the site. This reinforces the previous method be insuring even if they spoof their IP, you still have some kind of way to check their ban status.
2. String recognition
This is a little more difficult to implement I think. Basically once a spam post is found, grab all the text from it and store it in some kind of “spam list”. Whenever users try to post anything new, use string recognition or maybe some regular expressions to check the contents of their post against the spam list. If enough words match up, automatically make that post hidden from the get go until further notice.
The difficult thing about this is its not just enough to use string recognition. You would need some kind of pattern recognition as well. Just matching strings would be too “broad” I guess because users use a lot of the same strings. You could also check the links in a post too, just in case the strings are different but hyperlinks are the same.
3. Frequency of post
If someone makes 5 post in under a minute, 8 times out of 10, probably a spammer. In which lock the account from making anymore post until further notice so it stops them from spreading more spam.
If any of these ideas are in consideration for use, I’d recommend deleting this post so exploits can’t be thought of.
I’ve just activated a new spam plugin, crossing my fingers. FYI currently we have a visible CAPTCHA, an invisible honeypot, IP blocking, ASKIMET and Honeypot spam databases being referenced, AND an email confirmation upon signup. These bots are getting really smart…
No joke. It’s basically a game of chess – the anti spam measures are created, then the spammers create something to get around it, then additional anti spam measures are created, then more getting around it, and so on and so on. Good ol’ internet chess.
1. Look, banning the IP won’t accomplish anything when you’re dealing with botnets. If it was one person/computer doing the spamming it would work, but that’s never the case.
Not only do new nodes arrive continuously, they all go through serial scrambling and cloaking.
It’s really not difficult at all. Especially not when the spam is as uniform as it is with these bots.
3. This often works too.
Only problem is, with so many bots it would be a big chore to check that list. Which means that the rare actual member who posts rapidly will be locked for quite some time.