1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

My phpbb is being spammed like a pig farm, please advice?

Discussion in 'phpBB' started by 123GoToAndPlay, Nov 3, 2006.

  1. #1
    Hi all,

    I am having problems keeping my phpbb forum clean. Somehow spammers have found my little place on the web and leave their erection problems and all the other "good" stuff on my forum.

    How can prevent this and fix this???

    regards

    btw this is my little forum
     
    123GoToAndPlay, Nov 3, 2006 IP
  2. NiB

    NiB Peon

    Messages:
    36
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #2
    I can recommend spamark (http://www.stud.uni-karlsruhe.de/~uxhz/spamark/). This has saved my lots of time and I can even allow guests to post to my forum and 99,9% of the spam is filtered once you've trained it. It works like email based spam filters.
     
    NiB, Nov 3, 2006 IP
  3. albemarle24

    albemarle24 Well-Known Member

    Messages:
    244
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    138
    #3
    albemarle24, Nov 3, 2006 IP
    orlady likes this.
  4. 123GoToAndPlay

    123GoToAndPlay Peon

    Messages:
    669
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #4
    tx for the advice and tips.

    I am going to check out your links.
     
    123GoToAndPlay, Nov 3, 2006 IP
  5. accel

    accel Well-Known Member

    Messages:
    142
    Likes Received:
    5
    Best Answers:
    1
    Trophy Points:
    133
    #5
    Have you switched on the image verification for user sign up?

    Does anyone else know if there are any other config settings that can help prevent spam on phpBB?

    Rgds
     
    accel, Nov 3, 2006 IP
  6. 123GoToAndPlay

    123GoToAndPlay Peon

    Messages:
    669
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #6
    123GoToAndPlay, Nov 3, 2006 IP
  7. albemarle24

    albemarle24 Well-Known Member

    Messages:
    244
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    138
    #7
    123

    Let's see how this works out for each of us. I have visual confirmation and admin approval on and spammers still get in by using a script that bypasses the normal process and writes directly to the database. All they can do is create a profile, not post, but its still a major problem.

    I too am in the process of installing one of those mods. I will try to update as progress is made.
     
    albemarle24, Nov 4, 2006 IP
  8. orlady

    orlady Peon

    Messages:
    126
    Likes Received:
    30
    Best Answers:
    0
    Trophy Points:
    0
    #8
    Thanks to albemarle24 for posting that link to the Preventing SPAM - Bots and Humans thread at phpbb.com. :)

    Ideally, phpbb would have made that thread sticky, but they didn't...
     
    orlady, Nov 4, 2006 IP
  9. orlady

    orlady Peon

    Messages:
    126
    Likes Received:
    30
    Best Answers:
    0
    Trophy Points:
    0
    #9
    LOL, I just noticed the list of thread links at the bottom of this thread:

    Drawing Site (Similar to Draw a Pig)
    Draw a pig type site wanted
    Advice for farm on sale blog
    Another example of DMOZ pig-headedness
    im a pig​
     
    orlady, Nov 4, 2006 IP
  10. napaspa

    napaspa Peon

    Messages:
    9
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #10
    Add a hidden field, this will stop many bots.

    Open up your profile_add_body.tpl and add the following on line 3 (just below the <form> command):

    <input type="hidden" name="mysecretvariable" value="1">

    Next, open up includes/usercp_register.php and find this bit around line 255:

    $passwd_sql = '';
    if ( $mode == 'editprofile' )
    {
    if ( $user_id != $userdata['user_id'] )
    {
    $error = TRUE;
    $error_msg .= ( ( isset($error_msg) ) ? '
    ' : '' ) . $lang['Wrong_Profile'];
    }
    }
    else if ( $mode == 'register' )
    {

    Just below that, add these lines:

    //First, weed out any remote register scripts. Easily identifyable since they have no mysecretvariable set
    if( !isset($_POST['mysecretvariable']) )
    {
    message_die(GENERAL_ERROR, 'Die, you F__king spammer :mad: ');
    }

    You should replace 'mysecretvariable' with your own variable name.
     
    napaspa, Nov 8, 2006 IP
  11. 123GoToAndPlay

    123GoToAndPlay Peon

    Messages:
    669
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #11
    @albemarle,

    I too visual confirmation on with user approval and I have toolkit to delete all bots at once. But as you pointed out spambots can directly access our db.

    I am going to try napaspa suggestion.(tx for the little mod)

    btw: Still haven't decided which other mod is usefull for my forum.
     
    123GoToAndPlay, Nov 8, 2006 IP
  12. napaspa

    napaspa Peon

    Messages:
    9
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #12
    proper attribution

    http://jdstiles.com/fightforumspam.html

     
    napaspa, Nov 12, 2006 IP
  13. scribby

    scribby Active Member

    Messages:
    497
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    65
    #13
    I tried so many things to stop spam its a pain in the a$$, I ended up switching to myBB to solve the problem.

    Hope you get it sorted.
     
    scribby, Nov 13, 2006 IP