Skip to:
Content
Pages
Categories
Search
Top
Bottom

Search Results for 'spam'

Viewing 25 results - 1 through 25 (of 3,143 total)
  • Author
    Search Results
  • #263078

    In reply to: Spam via messages.

    Profile photo of djsteveb
    djsteveb
    Participant

    something like the https://buddydev.com/plugins/bp-private-message-rate-limiter/ may be helpful if you really want to stop 99.9% of it.. that one is premium / costs $19.. but it’s more of a hindrance to the spammers than just the spamshield.. which I use and think it stops 90% of them.. so is the other 9.9% worth the premium.. situations vary..

    #263014

    In reply to: Spam via messages.

    Profile photo of danbp
    danbp
    Moderator
    #263008

    Topic: Spam via messages.

    in group forum Requests & Feedback
    Profile photo of Salvatore
    Salvatore
    Participant

    Yesterday an user registered via facebook (social login) has sent dating messages to many users!
    Is there any way to limits messages to x number?
    Or only if friends?
    Or only if user has other messages /comments approved in community blog?

    So, is there something i can do to defense my community for this problem?

    Thanks,
    S.N. (laltroweb.it)

    #262784

    Hi @djsteveb:

    Thanks for the awesome feedback! We always want to improve the plugin. If you could contact us via our support form, it would allow us to look into that. With a little modification on our end we should be able to auto-detect, and make it so no one has to tweak any settings.

    – Scott

    #262761
    Profile photo of djsteveb
    djsteveb
    Participant

    ip geo block plugin best dam thing ever.

    shield firewall plugin just to disable xmlrpc or a disable xmlrpc plugin

    “good question” (https://wordpress.org/plugins/good-question/) or similar – adds a question that must be answered to finish registering

    wp spmashield

    limit login attempts

    sucuri hardening

    audit log and multisite register ips (for the manual dedicated spammers)

    this mix seems to make like tough for them – especially the ip geo block stopping several countries from abusing the site..

    ymmv
    dj Steve

    ps

    @redsand – good to see you active in bp threads! your plugin is a miracle, especially since akismet changed – one on bp site I did have to fiddle with the settings for forms or something recently – vaguely remember users having trouble sending pms were getting the you cant do that permissions thing until I messed with it a bet.. just like 2 weeks ago.

    #262754

    WP-SpamShield will take care of all of that for you. 🙂

    Full disclosure: I’m the developer.

    Profile photo of donburikun
    donburikun
    Participant

    Thank you for your reply and solution. It would be great however if an option for this was officially implemented in Buddypress as it is an issue that allows malicious users to spam many users in one shot.

    #262330
    Profile photo of grantbrown
    grantbrown
    Participant

    I help run a close-knit community site running BuddyPress. Due to the nature of the community, our users are very sensitive to perceived censorship and react strongly when their messages are blocked. I am running into two issues because of this.

    1. BuddyPress appears to have a built-it activity feed spam filter (Akismet?). I can’t figure out any way to disable this, which means I have to manually approve messages that have been automatically marked as spam. We’ve had very few issues with spammers on our activity feed and I want to disable this spam filter entirely. It’s doing more harm than good.

    2. We are trying to block spammers from registering on the site. We use WangGuard and Google reCAPTCHA to accomplish this but they are still getting in somehow. They typically don’t cause any harm outside of creating spammy groups but they are a nuisance. Any suggestions on how to better lock down our registration page?

    Profile photo of tommyhares
    tommyhares
    Participant

    Hello, I am trying to edit my theme to enclose the Delete button and Mark as Spam button into a custom drop-down box. How can I add these buttons into another area? Also, how do I remove these buttons from the do_action( ‘bp_activity_entry_meta’ ); ?> action? Thanks for any help!

    #262044
    Profile photo of modemlooper
    modemlooper
    Moderator

    There are some plugins, do a google search.

    you can also use this code but you will get spam if they can get in without email conformation.

    add_filter( 'bp_registration_needs_activation', '__return_false' );

    Profile photo of donburikun
    donburikun
    Participant

    How can I configure Buddypress to prevent users from adding more than 1 recipient to the “Send To (Username or Friend’s Name)” field on the compose private message page? I would like to do this to reduce the ability of users to spam multiple users at once.

    #261920
    Profile photo of ico33
    ico33
    Participant

    Hello Guys!

    I have a WordPress site with Buddypress. User registration is managed by WordPress or Buddypress?

    This is the problem: in my site there is a spammer (not a robot, but a person!) that registers a lot of users and uses them for creating flames. Blocking IP is useless because he has different connections (mobile, etc) and the IP changes always. He create new emails, and makes registrations.

    Now I am quite expert in looking at the emails he uses. So If I could “disable” the automatic registration, and enable each new user manually, it could be ok. I mean: a user makes the registration, but doesn’t receive the email for clicking. He has to wait for me, that I see the “pending” registration and approve them manually.

    Is this possible? Is this the best solution?

    #261509
    Profile photo of Venutius
    Venutius
    Participant

    I’m a bit uncertain about allowing users to change their Usernames, it means they lose connections with the past in so much as the activity table is static so the name does not change on past activity items and this throws some errors, also I think it may make the admin anti spam task harder, users posting stuff then changing their login name.

    #261412
    Profile photo of satus
    satus
    Participant

    Hi,

    When a new user registers using the standard Buddypress user form, they receive the activation email and that all works great! However, they are automatically logged in to the site when they click complete on the register form and can continue to use the site as a standard user. If they are to log out, they cannot get back in. But we recently had someone spam our site with logins and comments and votes using this exploit.

    Any ideas on where to look to solve this? Essentially, i don’t want the register form to automatically log the user in..

    Any help you be much appreciated. Thank you.

    #261337
    Profile photo of dunnjust
    dunnjust
    Participant

    I’ve installed Buddypress, Buddyblog and the latest version of BP Simple Front End Post: http://babyitsourworld.com

    1. When a user begins to create a post, they do not have an option to upload a featured image. How do I fix this? A featured image should be required – See Screenshot: http://bit.ly/2fNRlNU
    2. The style of the page is too long. How do we make the Category and Tags split the page 1/2 & 1/2 with contained list? This will shorten the page greatly – See screenshot: http://bit.ly/2fNRlNU
    3. One of our users tried to register and got the confirmation email in their spam folder. So can we edit the email copy to: “BTW: Be sure to add B.O.W. to your contacts in order not to get these emails to your spam folder or in any other dark corner of your inbox.”
    How do I do this for the BuddyPress email confirmation?
    4. How do I hide/remove ONLY the top left parts of the Admin from users? User should not be able to see the dashboard. Only the Admin. Screenshot: http://bit.ly/2g1aOxp

    Thanks in Advance.

    #261316
    Profile photo of ethernity4ever
    ethernity4ever
    Participant

    I suggest an anti spam plugin, the one im using is cleantalk

    #260827

    Hi @tranny,

    Trust me, I completely hear you. You’re right. Ideally anti-spam controls like that should be built-in.

    Those are great suggestions. We’ll take a hard look at possibly including those features in future versions of WP-SpamShield as well. One thing you’ll find by using a plugin like WP-SpamShield is that it will block 100% of bots, and it will prevent most human spammers from even registering (which keeps them from even getting to a place where they can spam other users), and it will make it difficult for them to post their spammy messages.

    Let us know if we can help in any way.

    – Scott

    #260826
    Profile photo of Tranny
    Tranny
    Participant

    Hey Scott @redsand

    Thank you for your message. I’m gonna take a look at the plugin you have suggested. I’m still hoping that BP developers will implement basic features that would help in countering spam. Some such features would be:

    1 – Ability to turn off email notifications for all existing users, and choose a default setting for new users
    2 – Ability to set a limit on how many members can be tagged per post
    3 – Ability to set a limit on how many friendship connections can a member make per day, and the ability to set after how many pending friendship requests the member can’t make any more requests
    4 – Ability to set a period in days after registration, during which a newly registered member will not be able to tag anyone or make friendship connections
    5 – Ability to force moderation on BP related posts similar to WP core, whereby a post would be held in moderation unless a user has an approved post

    Features like that would most certainly be welcome by owners of larger sites, and probably by owners of smaller sites too. They can be frequently encountered in other scripts.

    I do realize that fighting spam is a neverending battle, but features I’ve been talking about would make a significant impact on a webmaster’s ability to reduce it, especially since right now BP doesn’t have anything to mitigate it in any way.

    #260825
    Profile photo of Tranny
    Tranny
    Participant

    I have an ongoing problem with spammers, and whereas there is no adequate mechanism to control spam with BP, I proceeded to disable sending of email notifications. At least that’s what I figured the feature is about.

    Under “Emails >> All Emails”, I chose to Edit those that are abused by spammers, and deselected whatever was checked off under “Selection”, thinking that if no situation is selected for when the email should be triggered, then none will be triggered.

    Unfortunately, those I have deselected now disable the following error message on the All Emails page:

    Warning: Invalid argument supplied for foreach() in ../../wp-includes/functions.php on line 3508

    Warning: implode(): Invalid arguments passed in ../../wp-content/plugins/buddypress/bp-core/classes/class-bp-admin.php on line 1015

    I am up to date on WP and all plugins, and use Twenty Sixteen child theme slightly customized.

    Hope somebody can help me resolve the error issue.

    #260824

    Hey @danbp

    I just thought I’d jump in here real quick, as I think this will be beneficial to everyone in the thread including @tranny.

    And even if you would be a genius coder creator of an extra super original spam shield, you could be sure to became target #1 of all spammers, because in this case, you would represent the absolute challenger of all code breakers !

    We are that “genius coder creator of an extra super original spam shield” that you speak of. 🙂

    There is no miraculous plugin or trick to stop them.

    Ahh, but there is.

    It’s real, and it’s even called WP-SpamShield. LOL…you can’t make this stuff up. 🙂

    Check it out on WPorg. It’s been out for about two and a half years, and is forked from another plugin we developed almost a decade ago. It works perfectly and automatically on BuddyPress, bbPress, and pretty much everything else. You can also feel free to check out the plugin documentation here.

    …And for the record, we definitely are a huge target of spammers. 🙂

    dealing with spammers is a long run work, to not say a never ending work.

    True story!

    – Scott

    #260647
    Profile photo of casttime
    casttime
    Participant

    Hello Venutius,
    thank you for the fast reply. Now I use “Mass Messaging in BuddyPress” and it worked fine.
    Unfortunately, most Users have the problem that the emails end up in their spam folder.

    #260543
    Profile photo of danbp
    danbp
    Moderator

    @tranny,

    dealing with spammers is a long run work, to not say a never ending work. There is no miraculous plugin or trick to stop them.
    And even if you would be a genius coder creator of an extra super original spam shield, you could be sure to became target #1 of all spammers, because in this case, you would represent the absolute challenger of all code breakers !

    Back to real life.

    Most of updates spam comes directly into the DB. Bots are clever and don’t need to login to do that.
    Some spammers are real people, and once they are logged, they do their stuff manually. These people can be isolated, but to do this, you have to find them in the user list. Which is absolutely not easy and time comsumting. And of course, this is not prevention but intervention, after you where spammed.

    You could also track IP‘s, but again, this can be helpfull only AFTER you where spammed. But getting ip’s on admin user list is a great way to gain time. Once you have the IP, you can consult many anti spam sites who store any bot and user known to be attackers. And eventually ban them with this plugin.

    For now, first thing to do is to clean your user list. Whatever suspect username, like a589xdf or special to BP, Bill UNERHOOD, can be eliminated. The first example use alpha-numeric digits, the second a very well formed first and last name. It’s extremely rare that normal users enter such credentials. In addition to this, you can check their email. Why would you, for example, have members with a polish email (@blogmedykamenty.pl) if you’re in New Zeeland and your site relates about pets ? In this case, you can raisonably doubt about an interest between medicaments and pets ! You can fire such user.

    All this may be good and well, but you have also to hardening WP. This means using another table prefix as wp_ at very first. And second, to not use “admin” as user name. Never !
    Read also @venutius tutorial

    You have to clean out the existing spammers, unfortunately manually. And to avoid upcoming spam.

    To calm down the bots – in case you receive dozen of spam daily, close all comments and deactivate notices and messages component in bp settings for 2 or 3 weeks.

    Also, in case you’re on a dedicated server, you really need to enforce his security. But this is out of the scope of this forum.

    #260537
    Profile photo of Tranny
    Tranny
    Participant

    @kalico I have a serious problem with spammers, and BP doesn’t have any useful features to deal with spam. I have spammers manually posting activity updates in which they tag hundreds of random users in order to force them to receive email notification containing spam. Same with friend connections, which spammers use in order to force my site members to receive emails with their spam message (they change their display name into a message containing the URL to their site).

    #260473
    Profile photo of Tranny
    Tranny
    Participant

    Hello,

    I would like to request the ability to set restrictions on users’ actions in order to prevent spam. For example, the restriction on how many friend connections can a user request per day, or how many members can a user tag in a post, etc.

    Such features have been a standard part of many social networking scripts for years. I’m sure it would be appreciated by webmasters.

    #260351
    Profile photo of danbp
    danbp
    Moderator

    Spam is a serious subject, not a taboo. WordPress codex talks about. Why shouldn’t BP do the same, specially because it can drain spam which need special attention ?

    If you read Hardening WordPress, you will find a lot of references to third party plugin. I don’t believe there is an issue, if you mention wordpress plugins available on the plugin repo. Even premium plugins can be mentionned i think, as long as you specify they are premium.

Viewing 25 results - 1 through 25 (of 3,143 total)
Skip to toolbar