Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 5 of 5
  1. #1
    Registered User
    Join Date
    Oct 2004
    Posts
    592
    Thanks
    0
    Thanked 1 Time in 1 Post

    Defeating Botmaster Spamming Bot

    Dear all


    Recently I've faced a very powerful software that can act like a real human.
    It can spam on guestbooks, forums of various types like PhpBB, YaBB, BulletinBoard.

    The url is www.botmaster.net

    I knew it since a bad guy started spamming on my forum: http://forum.flashband.net

    Now I have to currently disable the forum.

    That bot ware is able to recognize cache image validation and check emails for "Activating account"; it can automatically create thousands of accounts and can over flow the database with the aid of multithreading features.

    See its demo features:
    http://www.botmaster.net/movies/XFull.htm
    http://www.botmaster.net/movies/XDemo.htm

    I'd like to defeat it and wanna be away from its threat.

    Any ideas?

    Thank you so much with Happy New Year.

    iota

  • #2
    ess
    ess is offline
    Regular Coder
    Join Date
    Oct 2006
    Location
    United Kingdom
    Posts
    866
    Thanks
    7
    Thanked 30 Times in 29 Posts
    Happy New Year to you too.

    I am not sure if this is going to be helpful...but here are a couple of ideas that I would consider.

    1- Use a captcha
    2- All submitted data must be approved.
    3- Only allow one submission from a given IP for every 30 minutes or so.
    4- use email validation for every submission by a new user.
    5- Use Spam Assassin. http://spamassassin.apache.org/

    Hope that helps.

    Cheers,
    Ess

  • #3
    Master Coder felgall's Avatar
    Join Date
    Sep 2005
    Location
    Sydney, Australia
    Posts
    6,593
    Thanks
    0
    Thanked 645 Times in 635 Posts
    One thing I have implemented that I have found to be quite effective at blocking spam (in addition to those things already mentioned) is to include an extra field somewhere in the form that must be left blank. Most of the spambots fill out all of the fields in the form with something and so would fail that test.
    Stephen
    Learn Modern JavaScript - http://javascriptexample.net/
    Helping others to solve their computer problem at http://www.felgall.com/

    Don't forget to start your JavaScript code with "use strict"; which makes it easier to find errors in your code.

  • #4
    ess
    ess is offline
    Regular Coder
    Join Date
    Oct 2006
    Location
    United Kingdom
    Posts
    866
    Thanks
    7
    Thanked 30 Times in 29 Posts
    That sounds like a good idea there by felgall.

    I shall try it out myself

    Cheers and Happy new Year to Everyone

    Ess

  • #5
    Registered User
    Join Date
    Oct 2004
    Posts
    592
    Thanks
    0
    Thanked 1 Time in 1 Post
    But the bot has also self-learning features which can defeat your suggestions.
    Thanks so far.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •