WrongPlanet is UNDER ATTACK! You may get DDoS warnings.

Page 3 of 4 [ 57 posts ]  Go to page Previous  1, 2, 3, 4  Next

Pikachu
Veteran
Veteran

User avatar

Joined: 24 Mar 2005
Age: 44
Gender: Male
Posts: 2,434
Location: half way up a big hill

28 Jan 2013, 10:48 am

That explains a lot

I'd just moved over to using RISC OS on a Raspberry Pi, and had no problems whatsoever accessing other phpBB and PHP-Nuke based sites using the supplied Netsurf browser, but could not get onto here because of CloudFlare, as it requires Javascript and Netsurf doesn't support it for some strange reason, so to get on here I have to use a hideously horrible port of Firefox, which appears to crash randomly while on WrongPlanet (but that's for another thread entirely) though not on my personal blog when updating it which is the only reason I installed it onto RISC OS in the first place.

hopefully these lazy a*** people will stop sending bots in here, and the mods have an easier time of it, and normal service resumed


_________________
Thanks Tinkerbell.

Allegedly away with the fairies for 6-7 years


Cornflake
Administrator
Administrator

User avatar

Joined: 30 Oct 2010
Gender: Male
Posts: 73,342
Location: Over there

28 Jan 2013, 11:21 am

Tequila wrote:
I'm amazed that Mamadou, Vladimir or Raj seriously think that people will fall for that kind of crap any more.
Don't forget Miss Honey, Sweetie, and a boat-load of other dubiously salacious types. :lol:
But, it's something of a truism: if it didn't work then it wouldn't be happening.

Quote:
It must be very cheap and painless to do that kind of spam.
Unfortunately it is.
If they're able to get away with mass mailing 100,000 addresses and only 500 respond and get drawn in before the free mail account gets shut down - it was worth doing. Then they simply set up another free account and do it all over again...
Better, use a botnet to do the mailing via compromised accounts. Just send out the job once to the botnet controller and sit back.


_________________
Giraffe: a ruminant with a view.


mfs1013
Deinonychus
Deinonychus

User avatar

Joined: 11 Dec 2012
Gender: Male
Posts: 324
Location: New Jersey

28 Jan 2013, 9:51 pm

[img][800:777]http://i270.photobucket.com/albums/jj108/mfs1013/WPnobodygottime_zps046cec9b.jpg[/img]


_________________
Just have to have patience, it will come when you least expect it to

http://www.okcupid.com/profile/mfs1013

http://soundcloud.com/DJMFS
http://mixcloud.com/DJMFS


TallyMan
Veteran
Veteran

User avatar

Joined: 30 Mar 2008
Gender: Male
Posts: 40,061

29 Jan 2013, 4:09 am

Brilliant! Someone has f****d up and turned the CloudFlair protection off! We are now getting swamped with fake members again. 100 already and counting. Looks like they are registering even faster than last time i.e. more than around 1000 per day. Well I aint cleaning the mess up this time. :x


_________________
I've left WP indefinitely.


TallyMan
Veteran
Veteran

User avatar

Joined: 30 Mar 2008
Gender: Male
Posts: 40,061

29 Jan 2013, 4:40 am

Now 150 spam accounts and rising...


_________________
I've left WP indefinitely.


TallyMan
Veteran
Veteran

User avatar

Joined: 30 Mar 2008
Gender: Male
Posts: 40,061

29 Jan 2013, 5:04 am

Sliqua have turned the protection back on again now. Spammer stopped dead in his tracks.


_________________
I've left WP indefinitely.


FMX
Veteran
Veteran

User avatar

Joined: 16 Mar 2012
Gender: Male
Posts: 1,319

29 Jan 2013, 9:22 am

If registrations are the problem is it possible to turn on this CloudFlare protection only for the registration page? Also, I guess the bot can solve the existing CAPTCHA? Is it time for a more complex one? (Human users hate them, too, I know, but you only have to do it once.)



TallyMan
Veteran
Veteran

User avatar

Joined: 30 Mar 2008
Gender: Male
Posts: 40,061

29 Jan 2013, 9:33 am

FMX wrote:
If registrations are the problem is it possible to turn on this CloudFlare protection only for the registration page? Also, I guess the bot can solve the existing CAPTCHA? Is it time for a more complex one? (Human users hate them, too, I know, but you only have to do it once.)


The captcha's that WP uses are very simple as captchas go. Some members (me included) find even the "simple" ones difficult sometimes. The trouble is there are automated bots that can solve the simple captchas nowadays so the only way forward has to be either to remove the URL field from the members profile or put a restriction on it that it only becomes available after members have made x posts. This will make spamming WP less desirable. Only Alex can decide what course of action to take. This DDoS CloudFlare protection is really only intended for short term attacks, not an ongoing solution to the problem.


_________________
I've left WP indefinitely.


The_Walrus
Veteran
Veteran

User avatar

Joined: 27 Jan 2010
Age: 31
Gender: Male
Posts: 8,878
Location: London

29 Jan 2013, 6:16 pm

TallyMan wrote:
Tequila wrote:
Cornflake wrote:
^ Those types generally join to PM members directly and they either ask for the member's EMail address - which should never be given - or invite the member to mail them directly (usually at a free, throw-away EMail address), or to "check out my picture" on some dubious website link.


I'm amazed that Mamadou, Vladimir or Raj seriously think that people will fall for that kind of crap any more.

Perhaps they think that there might be 1 person out of 500 that is that desperate that they'll answer or something.

It must be very cheap and painless to do that kind of spam.


From the feedback we get now and then, some WP members ARE naive enough to send the scammers an email and get into dialogue with them; though most (as far as people have admitted) quickly realise it is a scam; but by that time they've given them their email address so continue getting spammed directly. There are some real horror stories associated with these people.

Next time a WP member gets scammed like this, could you PM me the email address?

I'm sure I could find some people who would be more than happy to cause some trouble for these lowlifes, particularly if they are targetting disabled people.

<snipped to protect my privacy>



Last edited by The_Walrus on 30 Jan 2013, 11:01 am, edited 1 time in total.

Cornflake
Administrator
Administrator

User avatar

Joined: 30 Oct 2010
Gender: Male
Posts: 73,342
Location: Over there

29 Jan 2013, 6:26 pm

^ Have you seen this site? - the amusing results of scam-baiting: http://www.scamorama.com/


_________________
Giraffe: a ruminant with a view.


FMX
Veteran
Veteran

User avatar

Joined: 16 Mar 2012
Gender: Male
Posts: 1,319

29 Jan 2013, 7:19 pm

TallyMan wrote:
The captcha's that WP uses are very simple as captchas go. Some members (me included) find even the "simple" ones difficult sometimes. The trouble is there are automated bots that can solve the simple captchas nowadays so the only way forward has to be either to remove the URL field from the members profile or put a restriction on it that it only becomes available after members have made x posts. This will make spamming WP less desirable. Only Alex can decide what course of action to take. This DDoS CloudFlare protection is really only intended for short term attacks, not an ongoing solution to the problem.


Yes, good point about the CAPTCHAs. AI will soon be better at solving them than humans - which is exciting from a computer science point of view, but not good for spam prevention. There are other anti-bot measures (like honeypot input fields), but those won't work if the attack is specifically customised for WP.

Restricting the URL profile field sounds like a very good idea. From what I've seen very few members use it anyway and I can't see a legitimate reason for a new member needing it.



xmh
Deinonychus
Deinonychus

User avatar

Joined: 25 Jun 2011
Age: 42
Gender: Male
Posts: 335

30 Jan 2013, 2:00 pm

Are they targeting Wrongplanet for any specific reason (other than because it has limited security)?

FMX wrote:
If registrations are the problem is it possible to turn on this CloudFlare protection only for the registration page?


To do this the registration page would need to be on a separate domain.



Cornflake
Administrator
Administrator

User avatar

Joined: 30 Oct 2010
Gender: Male
Posts: 73,342
Location: Over there

30 Jan 2013, 2:16 pm

^ Stuffing URLs into WP means they will be picked up by Google and therefore promote those sites' Google ratings.
It's a cheap and thoroughly fraudulent way of achieving the same result in Google as lots of people visiting the sites: they appear popular.


_________________
Giraffe: a ruminant with a view.


sliqua-jcooter
Veteran
Veteran

User avatar

Joined: 25 Jan 2010
Age: 38
Gender: Male
Posts: 1,488
Location: Burke, Virginia, USA

30 Jan 2013, 9:37 pm

xmh wrote:
To do this the registration page would need to be on a separate domain.


That's not nearly as onerous as you make it sound.

Everyone involved in working this issue understands that the cloudflare protection is a temporary one - and we're working on potential long-term solutions.


_________________
Nothing posted here should be construed as the opinion or position of my company, or an official position of WrongPlanet in any way, unless specifically mentioned.


bcousins
Veteran
Veteran

User avatar

Joined: 1 May 2011
Age: 31
Gender: Male
Posts: 809
Location: On a failed Tangara set at Blacktown

01 Feb 2013, 2:21 am

xmh wrote:
To do this the registration page would need to be on a separate domain.


And it'd be href'd into the existing site, redering your point invalid


_________________
Want another alternative to WrongPlanet?
https://aspergers.network/forums/ <- New Version Coming (hopefully) soon.


momsparky
Veteran
Veteran

User avatar

Joined: 26 Jul 2010
Gender: Female
Posts: 3,772

04 Feb 2013, 6:56 pm

Just FYI, and I appreciate everything you are doing to stop spammers, but I've been unable to access the site for two full days, and have been trying repeatedly over that time. The "few minutes" on the warning page has been on a repeating cycle that lasts a considerable amount of time, and simply repeats when I try again.

Sorry if this is already noted upthread; I scrolled through but didn't see that anyone had posted this issue.