Search Results for 'spam'
-
AuthorSearch Results
-
April 3, 2010 at 5:31 am #71548AntonParticipant
One problem I noticed
On the invite email that gets sent out this is the link, http://yourbpsite.com/register/accept-invitation/test%40test.com
I’m now using a different register page to prevent spam. If I change $accept_link in invite-anyone/invite-anyone/by-email.php to reflect my register page, will it break the plugin?
April 3, 2010 at 2:35 am #71539In reply to: Adding validation in registration form?
arezkiParticipantr-a-y, FYI and for what it’s worth for others looking for a similar concept. There is a tiny plugin called “Invitation Code Checker.” By installing it and then putting a code in it, say ‘fifty three’, and changing “enter validation code” in the registration form to “what is fifty and three in letters” – seems to be working so far. Spams have slowed, though I expect they will catch up. By then it is a matter a matter of changing the code like what is the capital of china? In my case, it is a foreign language site, which I hope would add more difficulty to those punks.
Thanks for the help!
April 2, 2010 at 5:44 pm #71460Boone GorgesKeymasterhnla – Would you mind checking to see whether the table wp_bp_invite_anyone exists in your database? The “sent invites” information comes from there.
I didn’t know about the spammer issue!! I will have a look at it.
April 2, 2010 at 5:23 pm #71457Hugo AshmoreParticipantGreat stuff!
Installed ‘bleeding’ on live test site running BP 1.2.3 / WPMU 2.9.2
Installed smoothly – previous version didn’t exist fresh install (production site has older version )
Things noted:
The group send invite that was part of the original plugin function allows to select from all members including members marked as spammers! (am logged in and working as admin)
Having sent email invite from my account I’m returned to a ‘Sent invites’ (‘You have sent invitations to the following people.’) but there is no data available.
No email has been received, but tested setting up new account and that hasn’t been emailed either so think this is a BP 1.2.3 issue as all was working earlier today *sigh*
Looking pretty good though.
April 2, 2010 at 5:10 pm #71456In reply to: Spam, Spam and more spam
3sixtyParticipant15 hours since Hashcash 4.5.1 was installed and still no new splogs registered. This compares with about 40 splogs over the preceding 3 days.
April 2, 2010 at 2:55 am #71391In reply to: Spam, Spam and more spam
3sixtyParticipantThe plugin wordpress Hashcash (updated today to 4.5.1) should now work for BuddyPress registration but it stops EVERYBODY from registering.
This is not true for me. I just registered a test user with Hashcash 4.5.1 installed. Though still waiting to see if it stops BP splog spammers.
April 1, 2010 at 11:00 pm #71352In reply to: Ignore and Report function in the activity stream.
dre1080Memberwhats the status on this? would also like to find a way for an ignore user or report this/mark as spam in my activity stream
April 1, 2010 at 4:19 am #71211In reply to: E-mail domains blacklist doesn't work
djsteveParticipantI added captcha – and I still get multiple signups from the same dozen or so email-domains, even though they are already in my blacklist..
I am checking on another hunch today… I think there is a possibility that maybe having the same entry twice in the blocked domains could be causing an issue with it not working – that seemed to make it fail once before… I just pasted the domains I had banned into a spreadsheet and then sorted it alpha – and I had the same domain listed several times in several instances… now to clean it up and try it again.. I now have 437 banned domains in my list.. maybe there is an issue there?
Maybe these qualifiers should be added to the trac for fixing? on buddypress and maybe mu?
I will read the spam spam spam thread and see if there is anything else I can do as well.
March 31, 2010 at 8:54 pm #71137In reply to: Spam, Spam and more spam
Gene53ParticipantThe best trick I learned for fighting spam bots is to ask a question that only a human can answer and making them type it into a text box. If you change the question daily or randomize it, it makes it even tougher. Don’t do anything like math or captcha or something that a bot can calculate or decipher. Ask a question like “What color is snow?” or “How many sides does a triangle have?”
+1 for that idea, I had this on 2 SMF forums and it does work. While it doesn’t stop the odd human Spammer from registering, it stops bots dead in their tracks.
Maybe a coder would consider making such a BP plugin.
March 31, 2010 at 7:56 pm #71125In reply to: Spam, Spam and more spam
peterverkooijenParticipantAre there any downsides to blocking proxy servers?
March 31, 2010 at 4:47 pm #71077In reply to: E-mail domains blacklist doesn't work
David LewisParticipantThere are multiple entry points for SPAM bots… so any one measure probably won’t accomplish much. I posted a list of everything I did in the “Spam, Spam and more Spam” thread. Worse case… you could try captcha.
March 31, 2010 at 4:44 pm #71076In reply to: Spam, Spam and more spam
David LewisParticipant@Magganpice: I’ve had two SPAM registrations since banning proxy connections.
March 31, 2010 at 3:59 pm #71068In reply to: E-mail domains blacklist doesn't work
djsteveParticipantThis has been a wordpress mu issue for a while off and on.. I discussed an idea about at mu forums:
https://mu.wordpress.org/forums/topic/13982
[blockquote]
I too have noticed that even putting domains in the block list seems to not stop future registrations. Here is a thought of mine.
MAYBE a spammer actually signs up 100 new accounts, and then only activates one a day. So even though we have added his domain to the ban list for signups, he still has 99 more that have been signed up, but not yet activated?
If this is the case I would like to see MU add core code that checks to see upon activation if the domain they originally used to signup has since been banned, and then prevent them from activating if it has.
Just a thought, not sure if this is the case – but it may be worth looking into.
[/blockquote]
It was suggested that I add this suggestion to the trac, ( https://core.trac.wordpress.org/ )
but I really don’t know how to use that thing…
not sure that it is a buddypress specific issues, but I DO believe that the spammers are looking for buddypress phrases when compiling their lists of sites to hit…
March 31, 2010 at 3:55 pm #71066In reply to: E-mail domains blacklist doesn't work
Hugo AshmoreParticipantBut there are many steps one can initiate to stem that tide of spammers, although the domain blacklist is an issue in not apparently working I have still had reasonable success in reducing spam signups to around a dozen a day and still have one or two steps that I haven’t taken yet
March 31, 2010 at 3:49 pm #71065In reply to: Spam, Spam and more spam
gregfieldingParticipantI’m seeing the same thing you are….
Is there any way to get buddypress registration to reference the banned domain list?
March 31, 2010 at 3:27 pm #71061In reply to: Spam, Spam and more spam
Sam SteinerParticipantI’m having 300 spam registrations a day and having to mark them all as spam manually 15 in one go in the user list. The plugin wordpress Hashcash (updated today to 4.5.1) should now work for BuddyPress registration but it stops EVERYBODY from registering.
David Lewis, one week later, is your solution still working for you?
March 31, 2010 at 2:38 pm #71054In reply to: E-mail domains blacklist doesn't work
gregfieldingParticipantI can’t experiment either and am getting 10+ spam signups an hour. yikes.
March 27, 2010 at 11:29 am #70388In reply to: BP mark as spammers acts wierd in 1.2.2.1
brianterry10MemberI totally agree with this. It’s quite confusing. I think more than a rewording of the text is needed.
Perhaps you can give people a series of simple steps they should go through to complete setting up their membership?
Step 1: Activate your membership
You give them instructions to visit their email account then click on the activation link in the email.
When they click on the activation link they’re taken to the next step page…
Step 2: Customize your avatar
They do this then press the button to complete, then they’re taken to the final step…
Step 3: They’re then directed to the activity page, at the top of this page could be a message to tell them their account is now active and they can start posting.
This 3 step process gives people a clear path to follow taking them to the page where they can then see what’s going on and begin taking part.
Each step page is nice and simple.
What do you think?
March 27, 2010 at 12:54 am #70351In reply to: closed registrations… apparently not
djsteveParticipantI have similar issues, and I have been pondering possible reasons this occurs.
I take the time to copy domain names that spammers com from, and add them to the mu-options as domains that are not allowed to create an account. I find that even after doing this, sometimes I get several more members with those email addys.. sometimes not.. the past week has seen a lot.
There was a time a few months ago when it was a known bug for this, but I am guessing it’s been fixed in mu by now – (I’m using 2.92 I think).
This is what I am thinking MAY be happening, and I’d love a way to update MU to close this loophole, if indeed it exists.
I am thinking that the spammers actually created a dozen or more accounts, and only activated one at a time. I am thinking that perhaps by the time I add the bad domain to the list of no-signups-allowed, they have already created several others – and simply activate them later.
If this is true, I would love for MU / Buddypress to do a check, when a member actually does this activation, and tell them sorry – the email domain is now on the bad list, and they can not activate.
Not sure if this is true, just a thought.
March 27, 2010 at 12:41 am #70348In reply to: Admin user management issues
snarkParticipantStill looking for help on this. My new BP site finally went live today — http://www.wordlab.com/ — and I’m getting a couple signups per hour that never click on the activation link. Some may be legit but can’t figure out the activation process, but from email correspondence I’ve only found one who fit that bill — the others never respond to me, so I’m guessing a fair percentage of them are spambots using fake email addresses.
So it would be great to have these improved User sorting options in the WP Admin, so I could track down bogus registrations, perhaps those that haven’t been activated after a set amount of time, and delete those users in batches. An alternate strategy would be to have the system auto delete (or delete en masse on command) any registrations that are never confirmed after a set period (10 days, 30 days, etc.)
March 26, 2010 at 7:52 pm #70320In reply to: BP mark as spammers acts wierd in 1.2.2.1
AnointedParticipantI’ve run into a similar problem but it’s not related to the emails not going through.
In testing, I have found that almost without exception, that no one pays attention to the text above the crop avatar to check their email for the validation.
The system takes the user to the crop avatar portion, which they do, but after submitting their new avatar, they are left on the same screen, with just a small text warning above the avatar to activate their account.
Actually, it even caught me off guard a few times, not realizing I needed to activate a new account.
Maybe in the future make this much more obvious?
March 26, 2010 at 7:14 pm #70315In reply to: BP mark as spammers acts wierd in 1.2.2.1
brianterry10MemberI think this problem is connected with the mailing settings of my server. I’ll investigate this more.
March 26, 2010 at 4:58 pm #70300In reply to: BP mark as spammers acts wierd in 1.2.2.1
brianterry10MemberHi Andy
Thanks for your reply.
I think the problem is the email isn’t being sent out to the new members with the link for them to activate their account.
I’ve checked everywhere including spam folder to see if the message has been received at all but I just can’t find it.
New members are being given the roll of “members”.
Could you possibly tell me where within WordPress I would set up outbound email configuration?
I’m going to turn off all the plugins (except BuddyPress) to see if there’s a plugin conflict that’s causing this problem.
Do you have any suggestions?
Many thanks!
March 26, 2010 at 2:20 pm #70286In reply to: BP mark as spammers acts wierd in 1.2.2.1
Andy PeatlingKeymasterThis means that the user hasn’t activated their account yet. I need to change the message.
March 26, 2010 at 2:15 pm #70285In reply to: BP mark as spammers acts wierd in 1.2.2.1
brianterry10MemberHello
Do you have any suggestions on a fix so new members aren’t always marked as spammers?
This is for a new installation of BuddyPress and they are the only 2 members I’ve added myself to test out membership to the site.
Here’s the message I’m getting when I visit a new members profile page from the admin area:
“This user has been marked as a spammer. Only site admins can view this profile.”
I’m using BuddyPress 1.2.3.
How do you unmark someone as a member?
Why is it that new members are marked as a spammer, how does the software decide this?
How can this be fixed or controlled?
Thanks for any help you can give on this.
Brian
-
AuthorSearch Results