Spam insurgence
Jon Abbott (1421) 2651 posts |
What’s with the sudden increase in Spam accounts recently? It’s got so bad on my JASPP forum site, I’ve had to switch to Admin approved accounts for the time being. They’re managing to bypass both ReCAPTCHA and the Q&A which wasn’t solvable via Google searches, so real people must be involved at some point not just bots. In my case they’re all coming from IP ranges in Russia and the Ukrain and where there’s a spam bot creating multiple accounts, I’ve blocked the IP allocation range they’re on, as I can’t keep up with manually deleting them. Over Christmas I must have manually deleted close to 100 accounts, I’d hate to think how many there would be if I wasn’t also blocking Io ranges! |
Steve Pampling (1551) 8172 posts |
Most of the cyber attacks hitting our exterior systems in recent months have been Russia and Ukraine sourced. According to the geolocation information the Ukrainian sources are located in the area bordering (annexed by) Russia. |
Dave Higton (1515) 3534 posts |
Spam on this site took a big upsurge a few weeks back. It’s become quite a chore to delete it all. We have a new moderator too, but my work doesn’t seem to have diminished much, so there must have been an even bigger increase. |
Rick Murray (539) 13850 posts |
I have a little server on my machine and I had noticed usual hack attempts from the famously leaky Great Firewall Of China. |
Jon Abbott (1421) 2651 posts |
Isn’t it about time this site did some kind of spam account filtering? Admin approved account activation worst case, or some kind of anti-bot check? Even reCaptcha would be better than the blanket approval that’s currently in place. |
David Feugey (2125) 2709 posts |
Could be a problem for RISC OS users. |
Rick Murray (539) 13850 posts |
Do you speak Ruby? It’s the usual reason – developer time. Probably why there’s no admin approval (if the forum is smart enough to support that), it would need admins to make fairly quick decisions for the many signups that happen each day. I think my suggestion of silently dropping messages with URLs in the subject would help a lot…but I don’t speak Ruby so…….. |
Clive Semmens (2335) 3276 posts |
Even URLs in the body of the first post, unless they’re internal to this site, could be blocked. But sadly I don’t speak Ruby either. |
Steve Pampling (1551) 8172 posts |
It might be more relevant to talk about the number of valid signups over a day, week, or month. 1 Certainly not a match for the family history group in Sheffield which took over a year to respond with the approved status message. |
Rick Murray (539) 13850 posts |
How does one determine what is “valid”? Look what happened with the oddball that believed in the power of Quick question for the person that deletes the spam accounts – is there any pattern in the email addresses given? I have heard of places, for example, that used to reject all new user signups from AOL. |
Jon Abbott (1421) 2651 posts |
That’s what reCaptcha and Q&A’s are for. That said, I’m getting so many spam accounts on JASPP I’ve been forced to manually approve new accounts as neither of those were 100% successful, but they did filter out 99% of them. The approach I’m using is:
I’ve also blocked all IP ranges that have generated more than one spam account – which are all UA, MD or RU domains. |
Kevin (224) 322 posts |
The trouble is, is that the forum software is out of date and no longer supported, so getting spam protection updates is a problem. But I have found Altered Beast a rewrote of Beast which claims to have spam protection https://github.com/kad3nce/altered_beast If possible perhaps update the forum to this? |
Jon Abbott (1421) 2651 posts |
Perhaps its time to archive this forum and switch to something that’s maintained, such as phpBB. It’s probably worth doing just to get rid of Textile, which is a steep learning curve for new members. |
Steve Pampling (1551) 8172 posts |
I have found Altered Beast a rewrote of Beast which claims to have spam protection Perhaps a query somewhere other than Aldershot might get an answer.
Not as steep as the cliff most of us would lie to drop it off :) |