Spambots on the rise.

DarkGizmo

DarkGizmo

Well-known member
I'm getting bombarded by spambots, they seem to be 'legit' users but if you look further you can tell they're spambots. I have a question at registration and they all use the same nearly identical answer. They also use a slew of weird email addresses.

What can be done to prevent this going forward? I have a slew of email addresses/IP addresses banned, I have bot protection turned on in cloudflare.....
 
In addition to using Turnstile and having bot protection turned on and blocking a bunch of email domains that look randomly generated, I block registrations from a lot of countries using my addon:

Geoblock Registration Sim

Geoblock Registration

Ban or moderate users from specific countries when registering using Maxmind's GeoLite2 Database

... doesn't stop everyone, but has slowed the rate down substantially.

I also block registrations from various data centres at the ASN level using Cloudflare - although you need to be careful you aren't blocking legitimate bots when doing this.

I get probably 4-8 registrations per day that are not legit users, the vast majority of which are held for moderation and never get to post - it's fairly rare that we get actual spam posted on our forums.
 
Max Taxable said:
I thought you were a Spaminator customer?
Click to expand...
I am. Still getting some it would seem, could be real people signing up, but with the emails and places they're coming from, they appear to be very sketchy, plus their initial posts read in a very.....spammy matter.

I have a question on my registration asking what their purpose for joining is, and all 4 of them pretty much copy/pasted their responses, which gave away they're probably bots.
 
Try @Xon's sign up an abuse and standard library add ons.
It might be the fact you need a combination of addons from a couple of people.
 
DarkGizmo said:
I am. Still getting some it would seem, could be real people signing up, but with the emails and places they're coming from, they appear to be very sketchy, plus their initial posts read in a very.....spammy matter.

I have a question on my registration asking what their purpose for joining is, and all 4 of them pretty much copy/pasted their responses, which gave away they're probably bots.
Click to expand...
With how easy it is to integrate an LLM model into any basic bot, that type of question is not really going to stop much.
 
I use nothing more than XF's built in spam catcher with the parameters turned up to max and that's enough to catch everything, for me. I've got a whole slew of rejected accounts sitting there in the ACP which I was advised on here not to delete as they're used to prevent further spam registrations, which indeed they do. Pretty annoying to have my members list cluttered up like this, but I see zero spam and I don't have to go through a manual approval process to reject them either, which was previously a pita in itself.
 
Last edited:
I get 700-1000 registrations a month. Maybe one spammer gets thru.

Signup abuse detection and blocking X

Signup abuse detection and blocking

Provides a toolkit to reduce signup spam

I get about 6-7 'approval que" catches a day, if their timestamp and last online stamp are within 3 minutes, they sit in the que for a week and then get Rejected. Others trip the Timezone trigger (easy catch) or fit into email patterns I've tracked over the years ie: mynameisalex316 @ gmail.com (the 3 numbers is common)

Pay attention to the patterns, they are there.
 
Last edited:
Forsaken said:
With how easy it is to integrate an LLM model into any basic bot, that type of question is not really going to stop much.
Click to expand...
Right, that's more for my own curiosity, not for spambot prevention :P

I do use Registration Spaminator from OzzModz, works well enough but I think the ones that are getting through are from actual people creating them.
 
DarkGizmo said:
I do use Registration Spaminator from OzzModz, works well enough but I think the ones that are getting through are from actual people creating them.
Click to expand...

That is most likely true. A human registers because they can fill everything correctly, then they hand it off to the bot program to post, or they do it themselves.
 
Ozzy47 said:
That is most likely true. A human registers because they can fill everything correctly, then they hand it off to the bot program to post, or they do it themselves.
Click to expand...
Exactly, one guy literally joined as his hosting company with the sole purpose to advertise it across my forum. I banned them and did some googling, seems they've done that across a few other larger forums too. I'm all for people making money but there's better ways to go about promoting your product, especially if you're claiming to be a professional webhosting company......
 
DarkGizmo said:
Exactly, one guy literally joined as his hosting company with the sole purpose to advertise it across my forum. I banned them and did some googling, seems they've done that across a few other larger forums too. I'm all for people making money but there's better ways to go about promoting your product, especially if you're claiming to be a professional webhosting company......
Click to expand...
Some are legitimate people trying to advertise. Their method isn't tactful but I often think of it this way: If it doesn't benefit my members, it's out.

Being an admin forum, a webhosting company does fit our general interest. As long as it's appropriate.
 
CedricV said:
Some are legitimate people trying to advertise. Their method isn't tactful but I often think of it this way: If it doesn't benefit my members, it's out.

Being an admin forum, a webhosting company does fit our general interest. As long as it's appropriate.
Click to expand...
While we have a large promotion section......it just felt.....super forced. It would be like if I registered to a forum like IGN or virtualpetlist as "Revillution.net" There's just a way of going about doing things. I'm sure it was a legitimate person but still, there's a way to do things. I could unban the account but.....I dunno.
 
You must log in or register to reply here.

Similar threads

bennylava
  • Question Question
XF 2.3 Add an Articles tab on the ribbon?
Replies
0
Views
37
bennylava
bennylava
Jwrbloom
  • Question Question
XF 2.1 On my forum, the styles options on the Rich Text Editor are grayed out...
Replies
2
Views
396
Jwrbloom
Jwrbloom
Jeffin
Is my forum on the right VPS?
2
Replies
31
Views
16K
WSWD
WSWD
AzzidReign
Ultimate DDoS Solution! Nice on the budget too!
2 3 4
Replies
75
Views
16K
eva2000
eva2000
Back
Top Bottom
OSZAR »