Need help thwarting spambots to speed up the forum again
-
- Posts: 603
- Joined: Mon Jan 31, 2011 2:07 am
How about putting the site behind cloudflare? www.cloudflare.com
Easy, free, and I believe it will take care of this.
Easy, free, and I believe it will take care of this.
-
- Posts: 267
- Joined: Fri Mar 02, 2012 5:29 pm
Hi Jacob,
If it is just the registration page (not the login), you can temporarily disable/remove/delete the page or form and put up a message and do registration manually via a temporary email address(yeah, sucky solution but it should immediately stop the problem)?
Not sure if you tried either of the two below articles, but hope this may help:
http://www.thesitewizard.com/apache/blo ... cess.shtml
http://en.linuxreviews.org/HOWTO_stop_a ... _.htaccess
If it is just the registration page (not the login), you can temporarily disable/remove/delete the page or form and put up a message and do registration manually via a temporary email address(yeah, sucky solution but it should immediately stop the problem)?
Not sure if you tried either of the two below articles, but hope this may help:
http://www.thesitewizard.com/apache/blo ... cess.shtml
http://en.linuxreviews.org/HOWTO_stop_a ... _.htaccess
-
- Site Admin
- Posts: 16001
- Joined: Fri Jun 28, 2013 8:38 pm
- Location: USA, Zone 5b, Koppen Dfa, Elev. 620ft, Walkscore 77
- Contact:
The IPs are mostly unique (probably dynamic). The IPs don't tend to repeat more than 10 times each, but there are thousands, so I don't think I can filter out individual ones. Even filtering out repeats would not solve the problem because most of the IPs are unique. I estimate ~5 bots based on the time-patterns (they're fairly regular) and how they identify themselves (they're all pretending to be browsers).
Some numbers for accessing the registration page
Bots: 1500
Unique IPs: 1200
Real users: 1-2
Some numbers for accessing the registration page
Bots: 1500
Unique IPs: 1200
Real users: 1-2
Ban by user agent:
RewriteCond %{HTTP_USER_AGENT} ^UserAgentHere [NC]
RewriteRule . abuse.txt [L]
Ban by uri request:
RewriteCond %{REQUEST_URI} page.html [NC]
RewriteRule . abuse.txt [L]
Ban by referrer:
RewriteCond %{HTTP_REFERER} !^http://(www\.)?spam\.com/ [NC]
RewriteRule . abuse.txt [L]
Ban by ip:
order allow,deny
deny from 192.168.0.1
allow from all
Ban by isp:
order allow,deny
deny from some-evil-isp.com
allow from all
Hope this helps. You have to find a pattern to avoid banning legitimate users.
Since it's only one page, you may consider renaming the actual page and all links to it (temporary fix) or secure the form with htpasswd and leave a notification near the registration link what the user and password is.
RewriteCond %{HTTP_USER_AGENT} ^UserAgentHere [NC]
RewriteRule . abuse.txt [L]
Ban by uri request:
RewriteCond %{REQUEST_URI} page.html [NC]
RewriteRule . abuse.txt [L]
Ban by referrer:
RewriteCond %{HTTP_REFERER} !^http://(www\.)?spam\.com/ [NC]
RewriteRule . abuse.txt [L]
Ban by ip:
order allow,deny
deny from 192.168.0.1
allow from all
Ban by isp:
order allow,deny
deny from some-evil-isp.com
allow from all
Hope this helps. You have to find a pattern to avoid banning legitimate users.
Since it's only one page, you may consider renaming the actual page and all links to it (temporary fix) or secure the form with htpasswd and leave a notification near the registration link what the user and password is.
-
- Posts: 603
- Joined: Mon Jan 31, 2011 2:07 am
-
- Posts: 603
- Joined: Mon Jan 31, 2011 2:07 am
-
- Site Admin
- Posts: 16001
- Joined: Fri Jun 28, 2013 8:38 pm
- Location: USA, Zone 5b, Koppen Dfa, Elev. 620ft, Walkscore 77
- Contact:
Cloudflare is now Active.
But that broke the blog! I get a "Firefox has detected that the server is redirecting the request for this address in a way that will never complete." which I think has to do with some mix up between .htaccess and WP settings. I'm trying to figure out how to access the blog without getting caught in the loop.
But that broke the blog! I get a "Firefox has detected that the server is redirecting the request for this address in a way that will never complete." which I think has to do with some mix up between .htaccess and WP settings. I'm trying to figure out how to access the blog without getting caught in the loop.
-
- Posts: 5406
- Joined: Wed Jul 28, 2010 3:28 am
- Location: Wettest corner of Orygun
-
- Site Admin
- Posts: 16001
- Joined: Fri Jun 28, 2013 8:38 pm
- Location: USA, Zone 5b, Koppen Dfa, Elev. 620ft, Walkscore 77
- Contact:
Yeah, it seems to be a DNS issue, where the automatic setup included a bunch of www's that should be there and wp being set up to redirect www.early... to early... thus looping infinitely.
Fixing this (without screwing it up) is beyond me so I'll wait for support to get back to me on this. Lets hope the world does end in the mean time.
Fixing this (without screwing it up) is beyond me so I'll wait for support to get back to me on this. Lets hope the world does end in the mean time.
-
- Posts: 603
- Joined: Mon Jan 31, 2011 2:07 am
-
- Posts: 1659
- Joined: Fri Dec 02, 2011 1:24 am
-
- Posts: 1659
- Joined: Fri Dec 02, 2011 1:24 am
So... not to prod or anything, but I'm still experiencing constant hanging, slowness, and the "Cloudflare back-up" page that George described upthread while navigating the forum. Much as I like ya all, ten minutes of waiting/refreshing to move from page to page on the forum is becoming not worth it. :/
In fact I'm going on ten minutes just trying to post this...
In fact I'm going on ten minutes just trying to post this...