Search Results for 'spam'
-
AuthorSearch Results
-
May 15, 2010 at 3:11 pm #78296
In reply to: Here come the spammers!!!
Jeff SayreParticipantThe issue of spam will be one of the topics discussed at this week’s dev chat on Wednesday. There should be more to report after that chat.
May 15, 2010 at 2:18 pm #78294In reply to: Here come the spammers!!!
Hugo AshmoreParticipantIt’s my belief that the footer link plays a bigger part in the problem than is given credit for at least it was the last thing I implemented (removing) and appeared to have a significant impact. One thing I think people should stop putting forward is this notion that adding custom fields to sign up makes a difference, it doesn’t! and is obviously and emphatically demonstrated by the fact that spam bot signups manage to fill all fields with garbage including user created ones but as you would expect.
May 15, 2010 at 1:53 pm #78291In reply to: Here come the spammers!!!
rich! @ etivitiParticipantinteresting:
2) How do spammers find BP communities?
Using Google.
Example: http://www.google.ca/search?hl=en&q=%2B”is+proudly+powered+by+WordPress+and+BuddyPress”; (front page of every BP site on the net)
Example: http://www.google.ca/search?hl=en&q=inurl:%22/community/members/%22+%2Bbuddypress (members page of every BP site on the net)
I have two open test BP installs (one wp_user linked to my blog domain) and changed the standard footer. Not a single spam sign-up (just hashcash installed)
May 15, 2010 at 12:48 pm #78277In reply to: Here come the spammers!!!
Arx PoeticaParticipantHas there been any more movement on this front?
May 14, 2010 at 9:56 am #78130In reply to: some members’ profile data display incorrectly!
Jeff SayreParticipantThe issue of spam registration and posting is well discussed. If you want to learn more about some proposed measures, please read this thread: https://buddypress.org/community/groups/requests-feedback/forum/topic/here-come-the-spammers/
May 14, 2010 at 9:36 am #78129In reply to: some members’ profile data display incorrectly!
fox3manMemberWell! “SI CAPTCHA Anti-Spam” not really works. Spammers registration keep coming. The number of a day has been reduced but still can’t stop them. I assume the spammer bots may smart enough to OCR the words in CAPTCHA or could listen to the audio assist then they could generate a correct input to pass the registration. So I set CAPTCHA to “high” level and uncheck the audio option. The last 24 hours I got 10 spam registers. I wonder if a plug-in can spell check the field input may help eliminate most of these spammers.
May 14, 2010 at 8:23 am #78120In reply to: What do your spam signups look like?
Nick WatsonParticipant@stwc and everyone else.
I’ve been experiencing problems with spammers constantly, I would get about 11 a day, (at the minimum). I’ve tried several things, reCaptcha, email activation, email domain blocking, etc etc and nothing seemed to help with the bot spammers.
All they were doing was creating users with a few profile fields filled out, so there was no big issue, it was just annoying seeing so many fake users on the site.
So all I did out of the suggestions here was enter the code provided for the .htaccess file :
# BEGIN ANTISPAMBLOG REGISTRATION
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{REQUEST_URI} .yourbpsignupslug*
RewriteCond %{HTTP_REFERER} !.*yourhomedomain.* [OR]
RewriteCond %{HTTP_USER_AGENT} ^$
RewriteRule (.*) http://die-spammers.com/ [R=301,L]
# END ANTISPAMBLOG REGISTRATIONAnd it seemed to have worked. For the signup slug, I used wp-signup.php. And so far, for about a day and a half now I’ve only found 1 bot spammer. Drastically reduced, but not quite fixed.
But we’ll see. I’ll post back if there is any change, or after a few days of no spammers.
May 14, 2010 at 3:12 am #78096In reply to: Registration Approval Plugin
3sixtyParticipantIt blows my mind that this is not a core feature of WPMU, WP, or BuddyPress. It is the most obvious first defense against sploggers and spammer-members.
There is a plugin called Pie Registration that claims to do user moderation of unverified users before they are allowed to post. It seems to be a resurrection of an older (discontinued?) plugin called Register Plus. Find it here: https://wordpress.org/extend/plugins/pie-register/
Will check it out now.
EDIT: It says that the feature “Moderate all user registrations to require admin approval” will only work when Email Verification is DISABLED. I can’t get it to work, though.
Also found this:
“Register Plus plugin seemed to be working fine in 2.9.2, with custom logo and all, but now I’ve just discovered that it only sends the registration email if the registration is done in IE. In Firefox or Chrome the mail is not sent. How can this be?”
https://wordpress.org/support/topic/376015May 13, 2010 at 5:35 pm #78029In reply to: some members’ profile data display incorrectly!
AnointedParticipantHad the same problem on all of my installs last night. Temp solution was to shut down all registrations while bp works this out. Between my network of sites, I would estimate 150+ spam registrations. Once in, they were also abusing the pm system. It’s ok though, I’d rather shut it all down for now then to have to manually keep deleting pm’s from the db all day long.
I know you guys are working hard on this issue. It is much appreciated!
May 13, 2010 at 3:41 pm #78004In reply to: some members’ profile data display incorrectly!
fox3manMemberYeah! I believe they are spam accounts. They are keep coming from all over the world. I have just install plugin “SI CAPTCHA Anti-Spam” on all three wpmu web sites. It should stops the spam bots if you are not “human”….lol. Thanks all you guys!
May 13, 2010 at 12:53 pm #77979In reply to: some members’ profile data display incorrectly!
Jeff SayreParticipantAs @r-a-y suggests, these look like spam accounts to me.
May 13, 2010 at 7:39 am #77941In reply to: some members’ profile data display incorrectly!
gibbyeslMemberI guess these could be spam bots inputting data to pass the registration
I know a lot of work is going on now in the background to help stop this
Stay tunedMay 13, 2010 at 4:46 am #77925In reply to: some members’ profile data display incorrectly!
r-a-yKeymasterCould be spam accounts. Are these users doing anything weird on your site?
May 13, 2010 at 1:29 am #77904In reply to: email notification – changing the "from" setting
kellyvbrownMemberOk, I had the same problem, and I got that “Mail From” plugin and it works as far as the From line coming from the community name instead of from “WordPress.” However, emails are still going to the spam folder. Is there no way around this at all?
May 12, 2010 at 9:18 pm #77881r-a-yKeymasterI see you simply copied and pasted my previous code without adding the rest of the function!
Here’s the full function:
http://pastebin.com/5Pb5VpSz (updated to check if spamlist is filled in)I think I’ve written the majority of your plugin! lol
May 12, 2010 at 9:09 pm #77878ToshParticipant@r-a-y Thanks for that! Getting some errors.
This shows in the admin
Warning: Invalid argument supplied for foreach() in /home/me/public_html/mysite/wp-content/plugins/cubepoints-buddypress-integration/cubepointsBP.php on line 74
This shows on the front end when I go to the activity page
Warning: Invalid argument supplied for foreach() in /home/me/public_html/mysite/wp-content/plugins/cubepoints-buddypress-integration/cubepointsBP.php on line 74
Line 74 is:
foreach ( $bpcpspamlist as $spammer_id ) {This is what I put in.
May 12, 2010 at 8:14 pm #77868ToshParticipant@r-a-y This is what I came up with and the echo prints out this “Banned Users: Array” am I even close? lol
function my_bp_update_post_add_cppoints() {
global $bp;
$bpcpspam = array($bpcpspamlist);$getspamlist = get_option( ‘bp_spammer_cp_bp’ );
$bpcpspamlist = explode(“,”, $getspamlist);echo(‘Banned Users: ‘ . $bpcpspamlist . “
“);if ($bp->loggedin_user->id != get_option( ‘bp_spammer_cp_bp’ ) ) {
foreach ($bpcpspam as $bpcpspamlist) {
if( function_exists(‘cp_alterPoints’) ){
cp_alterPoints($bp->loggedin_user->id, get_option(‘bp_update_post_add_cp_bp’) );
cp_log(‘Comment’, $bp->loggedin_user->id, get_option(‘bp_update_post_add_cp_bp’), BuddyPress);
}
}
}
}
add_action(‘bp_activity_posted_update’,’my_bp_update_post_add_cppoints’);May 12, 2010 at 5:45 pm #77823ToshParticipantTried going about this another way. Still not working correctly. Says user id 59 is not a spammer, but that user is marked as so. Any ideas?
I tried to echo it out. Nothing comes out for the user id ..
echo(‘User ID: ‘ . $bp->loggedin_user->id . “n”);/* *********************** START Spammmer! ********************************* */
global $bp;
// 59 for testing
// if( $bp->loggedin_user->id == get_option(‘bp_spammer_cp_bp’)){global $current_user;
global $user_id;if ($userinfo->ID == 59) {
function my_bp_update_post_add_cppoints() {
if( function_exists(‘cp_alterPoints’) && is_user_logged_in() ){
cp_alterPoints(cp_currentUser(), 0 );
cp_log(‘Comment’, cp_currentUser(), 0, BuddyPress);
echo ‘spammer
‘;
echo(‘User ID: ‘ . $user_info->ID . “n”);
}
}
add_action(‘bp_activity_posted_update’,’my_bp_update_post_add_cppoints’);} else {
// Add Points for a update
function my_bp_update_post_add_cppoints() {
if( function_exists(‘cp_alterPoints’) && is_user_logged_in() ){
cp_alterPoints(cp_currentUser(), get_option(‘bp_update_post_add_cp_bp’) );
cp_log(‘Comment’, cp_currentUser(), get_option(‘bp_update_post_add_cp_bp’), BuddyPress);
echo ‘spam free
‘;
echo(‘User ID: ‘ . $user_info->ID . “n”);
}
}
add_action(‘bp_activity_posted_update’,’my_bp_update_post_add_cppoints’);}
/* *********************** END Spammmer! ********************************* */May 12, 2010 at 5:23 pm #77818ToshParticipantI tried this as well. Not the desired outcome.
if ( !$no_grav ) {
Went back to this, because I’m sure I am getting closer .. When I test this with an account has an existing avatar, it still gives me points.
// Avatar Anti-Spam
global $bp;
$avatar_dir = ‘avatars’;
$avatar_dir = apply_filters( ‘bp_core_avatar_dir’, $avatar_dir, $object );
$item_id = $bp->displayed_user->id;
$object = ‘user’;$avatar_folder_url = apply_filters( ‘bp_core_avatar_folder_url’, str_replace( WP_CONTENT_DIR, BP_AVATAR_URL, BP_AVATAR_UPLOAD_PATH ) . ‘/’ . $avatar_dir . ‘/’ . $item_id, $item_id, $object, $avatar_dir );
$avatar_folder_dir = apply_filters( ‘bp_core_avatar_folder_dir’, BP_AVATAR_UPLOAD_PATH . ‘/’ . $avatar_dir . ‘/’ . $item_id, $item_id, $object, $avatar_dir );if ( file_exists( $avatar_folder_dir ) ) {
// Avatar has been upload so zero points// ZERO Points for Avatar Upload if they already uploaded at least 1
function my_bp_avatar_add_cppoints() {
if( function_exists(‘cp_alterPoints’) && is_user_logged_in() ){
cp_alterPoints(cp_currentUser(), 0 );
cp_log(‘Avatar Uploaded’, cp_currentUser(), 0, BuddyPress);
echo ‘zero points’;
}
}
add_action(‘xprofile_avatar_uploaded’,’my_bp_avatar_add_cppoints’);} else {
// Add Points Avatar Upload
function my_bp_avatar_add_cppoints() {
if( function_exists(‘cp_alterPoints’) && is_user_logged_in() ){
//cp_alterPoints(cp_currentUser(), get_option(‘bp_avatar_spam_add_cp_bp’) );
cp_alterPoints(cp_currentUser(), get_option(‘bp_avatar_add_cp_bp’) );
cp_log(‘Avatar Uploaded’, cp_currentUser(), get_option(‘bp_avatar_add_cp_bp’), BuddyPress);
echo ‘add points’;
}
}
add_action(‘xprofile_avatar_uploaded’,’my_bp_avatar_add_cppoints’);}
May 12, 2010 at 4:57 pm #77811In reply to: Here come the spammers!!!
r-a-yKeymasterThis thread should be developer-focused and less “why aren’t you guys doing anything about it?”.
I don’t want to start moderating this thread, but please keep comments focused on combatting spam instead of bickering about it.
We are all aware of the problem.May 12, 2010 at 4:39 pm #77807In reply to: Here come the spammers!!!
zageekParticipantI must say the SPAM problems are real pain, and for a long time people have been complaining about the SPAM and its been brushed off. I have laid off the complaining and tried to be proactive to fight the spammers off but its really hard to keep up with them.
I think the admins and developers need to start a working group or something and start giving this a lot of attention because if they remain nonchalant about it, it will eventually work enough people’s nerves to chase them away to use some other solution.
The other day I was talking to someone who played with BP a while ago and then dropped it in favour of another solution after the sploggers started coming in.
I have created a group called SPAM Eater where members who are pissed off about SPAM can gather and vent our frustration a bit
May 11, 2010 at 4:54 pm #77684In reply to: Recommended Hosting for BuddyPress site?
edelwaterParticipantI am with many sites on MediaTemple Grid and it is pretty good. However some applications really have an impact on your usage. For instance the chatbar scripts really have an high impact. When I started using them I had to pay $150 in overusage each month.
Now I moved to MediaTemple Virtual Server dedicated virtual base and I have endless problems. The main problem is with the “othersockbuf” which has a soft limit of 1.433.738 and a hard limit of 2.662.538. Each time it hits that border the server dies. Which is NOW multiple times a day that I have to reboot the virtual server.
I’ve looked around the web but I could not find a solution. I really have no clue. So maybe i have to to somewhere without this limit.
UPDATE: I have simply clicked “update server from BASE to RAGE” and it seems all my problems are over…. (I also changed the mysql.cnf, killed spamassasin, killed watchdog, killed dns server, smb, secure SMTP…)
A simple solution but it works grin (although it now costs me $100 a month to run a buddypress site).
I also ran: http://kb.mediatemple.net/questions/816/%28dv%29+3.5+Auto-Tuning+your+server (MT has some great amount of docs on performance tuning)
May 10, 2010 at 2:43 pm #77465In reply to: Here come the spammers!!!
PJParticipantThere are some good exhaustive posts about spammers on this site… but what will change from the server level? I have gotten a few spam messages too and there’s nothing I can do except for delete them. Could the site setup a recaptcha required box before sending messages? Would that be effective?
If Buddypress can create a proactive plugin or core feature to mitigate spam that many of us are receiving, it will improve our confidence in the service (privacy and security is a common mantra in the forums). If buddypress.org finds a plugin works well, please share which one it is in a sticky post so we all see it and it won’t get lost between many posts. When there are multiple suggestions to a specific problem then it shows that there really isn’t a solution at this time. Thank you.
May 10, 2010 at 6:40 am #77424Hugo AshmoreParticipantMy great worry these days is that the dev community is being compelled to fix problems with usability of core BP, as much or more so than extending what’s there.)
And which is one of my concerns too, and is evident in many posts on this site with developers rushing out fixes to usernames for example as is perceived as being a problem highlighted by one person.
What worries me is that moving forward in this manner is not necessarily the best approach to developing a rock solid core app as you have perceived issues being dealt with in a slightly haphazard manner and the setting up or configuring of BP dependent on finding many and various disparate third party snippets of code.
I’m sure Andy&co are focused too an extent on fixing problems but also it may well be a case that ‘Problems’ are not necessarily perceived as problems- part of the reason I thought that this thread was a necessity; to try and flesh out what were considered existing UI/design flaws and provide that as good solid feedback to work from. I note that in the ‘roadmap’ it states that there are periods of consultation? to garner feedback for version features, I would like to see that process in action and to see developers helping guide these future releases; as I agree that it’s now not simply about adding ‘Features’ but far more importantly on providing a core that works and that developers may extend upon.
It feels as though BP is reaching a momentous milestone or crux point in it’s development, and that perhaps the core dev team ought to take a breather, take time out and review what is right and what is wrong and that needs addressing. Foxly made the point well in his ‘ spammers are coming'(sic) thread discussing his suggested approach to tackling the spam issues surrounding BP where he asserts that BP is reaching this crux point where if it wants to grow from simply a “Science project for hobbyist sites” to a fully mature app that can serve business / enterprise it has to tackle certain issues and is why he considers taking some time to tackle this issue he sees with spam is of paramount importance. I would not disagree with Foxly for one moment and what he has reported on thus far on the issue is commendable but I do not think a developer should be tackling this, taking time out from working on hugely useful ‘Feature’ plugins to work on something that – if is agreed to be an issue that must be dealt with – is essentially a core development issue and really ought to be handled by the core development team not by a third party developer (Obviously this is not to say it won’t be as things are in early stages and speculative at this point)
So, yes extending must slow down for a while and issues of a UI / design nature must be thrust to the fore and I would hope there is a means of collating some of the very apposite and useful comments and suggestions that have appeared so far in this thread.
May 10, 2010 at 3:26 am #77416In reply to: Here come the spammers!!!
Arx PoeticaParticipantBtw, I really didn’t mean to dig on *anyone* –> I think WP and BP is BRILL, to say the least, but I do get frustrated @ how spammy it all can be. THAT SAID, I should just keep my mouth shut from here on out (ha), since I’m not really contributing to the solution.
SO.
@foxly I still need to read through all your suggestions, but the few I did read seemed spot on.
I do think it’s important to note: this thread becomes documentation for would-be spammers. Sad to say, as @andrea_r has noted many a time, when it’s documented, the evil-doers will read it and then find a way around. So how does your solution work in spite of the documentation herein? Or do we need to take some of this offline, into a more hushed conversation, i.e., email (gasp!) or some other less porous document? Google docs?
-
AuthorSearch Results