nesdev.com
http://forums.nesdev.com/

Spam. Seriously. WTF.
http://forums.nesdev.com/viewtopic.php?f=13&t=4413
Page 1 of 6

Author:  loopy [ Sun Sep 28, 2008 11:46 am ]
Post subject:  Spam. Seriously. WTF.

Is anyone EVER going to do something about it?

Author:  tepples [ Sun Sep 28, 2008 11:50 am ]
Post subject: 

When I see obvious spam, I delete it and block the account. But I don't know of anything I could do to prevent spam from being posted between when I check the board and when I check the board again.

We could try preventing spammers from registering. But CAPTCHA and e-mail activation are already turned on. If I were to turn on administrator activation of all new accounts, how would I distinguish requests on behalf of spammers from requests on behalf of legitimate users?

Author:  loopy [ Sun Sep 28, 2008 11:58 am ]
Post subject: 

Then I'll ask this: who CAN fix it? And how do we get their attention?

You don't know what else to do about it, apparently. Someone thinks they do, let him have a shot at it. I know, I know... you don't have access to do it. Who does? Whose balls do we have to bust to get some action? We've been going around in circles about this for MONTHS.

Author:  Bregalad [ Sun Sep 28, 2008 12:41 pm ]
Post subject: 

I guess Memblers is the administrator, but he's not very active.

And I guess asking people to compute something like 23 + 17 and inputl the answer (but with randomly selected numbers) when registering should get most spammers away.
I've also commonly seen strings of letters and numbers randomly arranged in an image created on the fly and the user has to decode them, something automated spammers can't do unless they have very complex AI in them. The server has to support this things I guess, but I know nothing about servers and all.

Author:  tepples [ Sun Sep 28, 2008 1:08 pm ]
Post subject: 

Bregalad wrote:
I've also commonly seen strings of letters and numbers randomly arranged in an image created on the fly and the user has to decode them, something automated spammers can't do unless they have very complex AI in them.

NESdev already tries to do this, but the standard phpBB 2 CAPTCHA is weak. There appears to be a reCAPTCHA mod for phpBB 2, but you need FTP privileges (a step up from admin) to install it.

Author:  tokumaru [ Sun Sep 28, 2008 1:52 pm ]
Post subject: 

tepples wrote:
If I were to turn on administrator activation of all new accounts, how would I distinguish requests on behalf of spammers from requests on behalf of legitimate users?

The problem with CAPTCHAs is that the answer is sent along with the question. Maybe you could generate a code, and the user uses it to find the respective word in a table found somewhere else, and provide textual instructions on how to find that table. The moderator would then compare the code and the word to see if they match. Only a human could pass through that that, because a computer would not be able to follow written instructions of where to find the answer. I don't know if it would work, but is the best I can think of right now.

Author:  loopy [ Sun Sep 28, 2008 2:06 pm ]
Post subject: 

tepples wrote:
There appears to be a reCAPTCHA mod for phpBB 2, but you need FTP privileges (a step up from admin) to install it.

Ok, so who has FTP privileges?

Author:  BMF54123 [ Sun Sep 28, 2008 2:15 pm ]
Post subject: 

tepples wrote:
If I were to turn on administrator activation of all new accounts, how would I distinguish requests on behalf of spammers from requests on behalf of legitimate users?

Perhaps a field could be added to the registration page/profile that simply asks: "In 10 words or less, why are you joining this board? (REQUIRED)" OR perhaps just "Are you a spammer? Type YES or NO."

Spambots obviously aren't equipped to handle unique fields like those, and you can visually weed out spam accounts based on their replies (or lack thereof). If a human should happen to ignore the warnings and big red (REQUIRED)s, well, maybe they shouldn't be posting here in the first place.

If you don't have the privileges to do this, tepples, why not find the person who does and ask them nicely? No other phpBBs I frequent have spambot problems like this one because they've actually done something about it at the code level. You can't fix this problem by twiddling with the pre-installed features.

Author:  Xkeeper [ Sun Sep 28, 2008 2:20 pm ]
Post subject: 

Or trying to warn them. "Don't do that spamming thing, please! :("

Just turn on email validation or something already ffs.

Author:  blargg [ Sun Sep 28, 2008 2:37 pm ]
Post subject: 

Between spam and jargon, I'm about ready to find a new NES development forum.

Author:  BMF54123 [ Sun Sep 28, 2008 2:40 pm ]
Post subject: 

blargg wrote:
Between spam and jargon, I'm about ready to find a new NES development forum.

I knew there was something I was forgetting in my reply.

Author:  Xkeeper [ Sun Sep 28, 2008 2:40 pm ]
Post subject: 

I would be more than happy to help accomodate you.

Author:  tepples [ Sun Sep 28, 2008 3:51 pm ]
Post subject: 

Xkeeper wrote:
Just turn on email validation or something already ffs.

tepples wrote:
But CAPTCHA and e-mail activation are already turned on.

Author:  BMF54123 [ Sun Sep 28, 2008 5:21 pm ]
Post subject: 

Is this the kind of activation that sends new members an e-mail, in which they have to click a link or copy a code to activate their account? If so, how are spambots circumventing this?

Author:  Zepper [ Sun Sep 28, 2008 5:44 pm ]
Post subject: 

blargg wrote:
Between spam and jargon, I'm about ready to find a new NES development forum.


Same here.

Page 1 of 6 All times are UTC - 7 hours
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/