5887735Inactive
This same spammer showed up on my site today. It seems to me a bot figured out how to hack BP.
I have a site also receiving tons of activity stream spam and agree that an admin link with “Mark as Spammer” on the stream page is a great idea.
thanks for your advice and replies
my fear re being blacklisted was a bit exaggerated, I have checked lost lists and our domain/ip is OK (only one place has one blacklisted)
in April overall for every 5 users, 1 did not activate the account
I am sure at least half of them are not spammers, I had a look at their email addresses,
so, I can only guess, users are not computer savvy.. and did not look at their junk email box for activation email etc..
I have change the form, so it tells them now to check junk folders. maybe this will help!
something else occurred to me
where do I change the default email address the activations email are sent from?
maybe this will help and emails won’t land in spam folders..
kind regards
Kris
We are aware, and the fact you’ve just copied the spam into a forum post means a) you’re spamming and b) Google might rank those domains better.
My vote is for a report spam button. When any action (activity, forum post, message etc) by a user is marked as spam, an admin should be notified. If more than x actions within x time of the user are marked a spam, the user account is locked until the admin is able to review the offending account.
Currently only two people on this site can ban spammers; JJJ and Andy Peatling, and both are at Wordcamp SF this weekend.
Ray, Jeff and I will try to remain on top of things and we’ve already reported this to the guys, so we’re just waiting for them to check their email when they get a chance 
Yea shes a cheater man. Don’t trust her. She give her love to every thing that moves. Reminds me of a dog. I wounder? Can a male dog turn into a female spammer? Well at least she is helping us come up with different ways to ban people.
@anabel4you I can sort you with some good cheap Indian viagra if needed?
testing another delightful bug @buddypress.com
^^^ spurious atmention
I’m following anabel. I’m her first follower!
But apparently not the first to notice her in the past 2 hours, 30 minutes: https://buddypress.org/community/members/anabel4you/
Yo MODs… ban hammer??
Damn, think the biatch has been cheating on us…
Dang. I thought I was Anabel’s only true love.
You don’t want to just activate random accounts. You might be activating a bunch of spam accounts for emails that don’t exist.
Seems like these are the functions you’d need:
-Resend activation email (possibly customize the email to admin’s desires)
-Manual activation for individual users (for those that contact you directly about activation)
-Clear users that haven’t activated (filtered by date)
But while waiting for Boone to code a plugin (there is one for activating signups that I’ve used on test beds, which I’ll look up when I get home) You must try and establish what has occurred kriskl, if you fear your server might have been blacklisted then it might be worth checking your domain against the blacklists? then you’ll know if you have any remedial work to do to get removed from the lists,. Find a user that you can send test signups to or an account you can check and see where the email is landing up – is it being marked as spam.
Both questions you need to investigate, if either of those are true you need to establish why otherwise you will struggle to ever grow your community, I would test ferociously the sending and receiving of emails and how your server might be configured, you may need an SPF record available so certain email servers don’t flag as spam i.e the likes of your hotmail accounts etc
I’m not going to make any friends in here anyway, so I’ll say what others won’t: Andy Peatling is a PHP programmer, not an (interface) designer. This redesign is cluttered, hard to use. I see groups, forums, topics, community, support. I have no clue what’s what. Automattic should focus on core functionality (member management, security, privacy, spam, etc.), take out redundancies (less is more), separate script from layout as much as possible and leave design to theme developers.
Couldn’t find anything on this so I wrote something.
It seems to work for me.
I simply add this to the bp-custom.php
function update_friends_count( $user_id ) {
global $wpdb, $bp;
if ($friend_ids = BP_Friends_Friendship::search_friends( ”, $user_id )) {
foreach ($friend_ids AS $fid) {
$total_sql = “SELECT COUNT(id) FROM {$bp->friends->table_name} WHERE initiator_user_id = $fid OR friend_user_id = $fid”;
$total_friend_ids = $wpdb->get_var($total_sql);
update_usermeta($fid, ‘total_friend_count’, (int)($total_friend_ids) – 1);
}
}
do_action( ‘update_friends_count’, $user_id );
}
add_action( ‘wpmu_delete_user’, ‘update_friends_count’, 1 );
add_action( ‘delete_user’, ‘update_friends_count’, 1 );
add_action( ‘make_spam_user’, ‘update_friends_count’, 1 );
FYI, I’m running the following plugins and they seem to be stopping/slowing spammers:
Bad Behavior
WPMU-Block-Spam-By-Math
Also I use this in my .htaccess http://wpmututorials.com/how-to/spam-blogs-and-buddypress/
the hack adds “the new users’ e-mail address to the e-mail with the activation link. This way you’ll know which activation link belongs to which user.” This is really needed!
Is there another line to add to functions.php that will add the email address?
Actually what we need is a plugin that creates a pending membership panel in the admin so you can go in and active or mark as spam… just like comments!
AH! Got it http://buddypress.pastebin.com/LrQuRa9T
This will show you the number of pending (NOT SPAM) comments next to the menu for ‘Manage Comments (#)’. Whew. I’m going to fiddle and see if I can make something like the notifications alert show up. But this is mostly what I wanted
The /*disable blog signup for non logged in member*/ code from @sbrajesh didn’t work… it didn’t remove the create a blog from the signup page.. I got a spam blog within minutes.
ah well that’s it for this rainy Sunday afternoon…. When I get some time next I’ll start but updating to php5 and then I’ll check back with the forum. Thanks everyone!
~ Ruth
I have the same problem. 50% of my users are marked as spammers
I think they don’t get the activation email, or it gets thrown in their SPAM folders..
It would be nice to have a functionality in WP to send them another email with activation link..
It is the only activity in the forum
dissertation writing services aimee club zero 1 5 days, 22 hours
Missing usernames beside avatars for members who are not spammers and/or not bozos … at least that’s what I think they’re not
which one is it or is it gone now?
