|
Joined: Oct 2006
Posts: 358
enthusiast
|
enthusiast
Joined: Oct 2006
Posts: 358 |
This happened last November and now it's started again today. I have a posting from ANONYMOUS unregistered (221.130.193.14) with garbage and xxx listings. All postings to my forum require a registered account. So how is this happening? Any ideas?
--BIll B
|
|
|
|
Joined: Apr 2007
Posts: 3,940 Likes: 1
Former Developer
|
Former Developer
Joined: Apr 2007
Posts: 3,940 Likes: 1 |
|
|
|
|
Joined: Mar 2008
Posts: 326
Enthusiast
|
Enthusiast
Joined: Mar 2008
Posts: 326 |
Bill from the Quah is running 7.4.1.
|
|
|
|
Joined: Jun 2006
Posts: 9,242 Likes: 1
Former Developer
|
Former Developer
Joined: Jun 2006
Posts: 9,242 Likes: 1 |
I'd do a search for that IP and see if it's been used by a registered user.
select USER_ID
from ubbt_USER_DATA
where USER_LAST_IP = '221.130.193.14'
select USER_ID
from ubbt_POSTS
where POST_POSTER_IP = '221.130.193.14'
and USER_ID <> 1
select USER_ID
from ubbt_USERS
where USER_REGISTRATION_IP = '221.130.193.14'
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
HERE is a site I use for checking spam IP numbers.
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
You need to go back and check your forum permissions. I just posted a new topic in 1916-1922. I did not go through all your forums but permissions allow guests to post at least on that one. HERE is my post at your site.
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
Looks like you changed the permissions now
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Oct 2006
Posts: 358
enthusiast
|
enthusiast
Joined: Oct 2006
Posts: 358 |
Thanks everybody... yes, the very first thing I did was check the IP address.
It turns out that I had ONE forum which allowed GUEST postings. So, I fixed that, and haven't had any further weirdo postings.
--BIll B
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
I've been getting quite a few spam posts from IP addresses originating in China. They actually register and everything it seems! Or are they smart bots getting around the CAPTCHA and authenticating their registration emails? Seems it'd be a PITA for them to do all that manually...
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
Unless you have a hole somewhere in your forum permissions Like Bill did. Then they would be registered to post. One site I use for validating spammers is: http://www.stopforumspam.comBut I block them in the htaccess file not in the ubb control panel.
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
Likely they're just users manually registering then spamming; you'll find this the case if it actually takes them time to start posting and posts aren't immediately one after another
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
Yeah, it seems manual. They must have some patience! Is the payoff that good for them to waste so much time/effort?? And great link, Ruben, thanks! [offtopic] Wow - I just noticed Ruben register here 3 years before Rick, David, Giz -- and even before Allen! Must be old school. Sorry don't recognize the name, and I started with UBB in '01 or maybe even '00 through work. I then noticed that I registered 08/08/06 and thought it'd be cool if it was 08/08/08 THEN I noticed Giz registered 06/05/06 and he probably wishes he registered a day later! [/offtopic]
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
'eh our reg dates are from the migration of classic i think; never found out exactly what the date is here... I was regged here before ubbdev, and my reg date there is like 99 ... And yeh they must be patient; but think about it, they likely turn in a paper saying where they spammed, and get a payout for every batch of 100-1000 messages; likely small dividends, but if you look at it, most are from other countries which have no minimum wage, so to them it could be living it rich...
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
I think the registration dates had to do when this site went to EVE and back to threads. I recall I had problems logging in back then. Maybe there were some conversion issues so someone just took a stab at dates. All our old posts are probably all in the anonymous group now. But that could be a good thing since we would have a member number of #1. HE HE I also know my user name is a email address now, it never was before back then.
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Oct 2004
Posts: 4
stranger
|
stranger
Joined: Oct 2004
Posts: 4 |
I get a lot of spam in my 6.5.4. version and i thougth it was a security issue in older versions, now i see that its still a problem in newer versions.
|
|
|
|
Joined: Dec 2003
Posts: 6,562 Likes: 78
|
Joined: Dec 2003
Posts: 6,562 Likes: 78 |
With the 7.x version it is more secure that the 6.x series. But!!! It all depends on what your security settings are. The more open you make your board the more you expose yourself to spammers. Nothing will stop a person not a bot, from registering on your board and posting spam. Even if you moderate registrations, How are you to know a person is a spammer. In BILL B's issue he missed a setting to disallow guests to post in one forum. If you enable all the security settings today it will not eliminate all spammers but will minimize it quite a bit. But like anything else the more security you add the more it will make it difficult for users to register. I currently am using 7.5.2. Coming from a Classic Version point of view I could not be happier that I made the change.
Also for jgeoff he is using 7.3 on his board I believe.
Last edited by Ruben; 04/19/2009 3:30 PM. Reason: Added Comment
Blue Man Group There is no such thing as stupid questions. Just stupid answers
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
Manual registrations would effect any system, regardless of how secure it is or what system it was (vBulletin, IPV, SMF, etc); it'd be a user manually registering and posting spam.
v7 is far better with automated registrations than prior versions.
|
|
|
Bots
by Outdoorking - 04/13/2024 5:08 PM
|
|
|
|
|
|
1 members (Geoff),
1,018
guests, and
215
robots. |
Key:
Admin,
Global Mod,
Mod
|
|
|
|