Please start any new threads on our new site at https://forums.sqlteam.com. We've got lots of great SQL Server experts to answer whatever question you can come up with.

 All Forums
 Site Related Forums
 Site Related Discussions
 Fighting spam

Author  Topic 

graz
Chief SQLTeam Crack Dealer

4149 Posts

Posted - 2009-05-25 : 10:22:23
As you have noticed we've been hit pretty hard by spammers over the last month or two. In response I've taken the following steps.

1. All members with more than 10,000 posts can remove spam threads and lock user accounts. This doubles the number of people that are able to moderate spam. This should result in us getting it deleted that much sooner.

2. I've eliminated the extended profiles for members with fewer than 50 posts. The clever spammers figured out that they could create profiles with links to their sites and never post in the forums. I discovered these by accident. If you view a member and THAT member has less then 50 posts or their account is locked I only show the most basic information. I've also made the same changes now when you register or edit your profile. Hopefully they will figure out they can't to this anymore and move on.

3. I'm working on additional code that will block two classes of spammers: bots and actual people. Based on logs and post times on the site I need to go after both groups. I have a couple of strategies around both of these that I'm going to try. Bots are fairly easy to break. Actual people are much harder.

4. And before you ask, no I don't want to use a CAPTCHA. It seems most of the common ones are broken. Using common forum software like Snitz means that bots can attack every Snitz site very easily. I need to customize my defenses so that these attacks will fail.

5. No, I probably won't tell you what I've done for a while. Nothing I'm doing is hard to circumvent if you know what I'm doing. I may write a blog post at some point in the future if I'm successful.



=================================================
Creating tomorrow's legacy systems today. One crisis at a time.

nr
SQLTeam MVY

12543 Posts

Posted - 2009-05-26 : 01:05:51
Is it possible to make the spam bucket forum non-display?



==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.
Go to Top of Page

khtan
In (Som, Ni, Yak)

17689 Posts

Posted - 2009-05-26 : 04:12:32
quote:
Originally posted by nr

Is it possible to make the spam bucket forum non-display?

==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.


I know where you are coming from.... Those nuked spam will appear in the Active Topics lists. Well i guess just need ignored these.
Actually the spam bucket was initially not visible to non mod, but you will get some error message like unable to display the thread after you nuke the spam.


KH
[spoiler]Time is always against us[/spoiler]

Go to Top of Page

Transact Charlie
Master Smack Fu Yak Hacker

3451 Posts

Posted - 2009-05-26 : 05:21:41
quote:
1. All members with more than 10,000 posts can remove spam threads and lock user accounts. This doubles the number of people that are able to moderate spam. This should result in us getting it deleted that much sooner.

I for one welcome our new 10,000 post+ overlords, and I remind them that as a member of the media, I could be useful in convincing people to toil in their underground SQL mines" -- Kent Brockman.




Charlie
===============================================================
Msg 3903, Level 16, State 1, Line 1736
The ROLLBACK TRANSACTION request has no corresponding BEGIN TRANSACTION
Go to Top of Page

graz
Chief SQLTeam Crack Dealer

4149 Posts

Posted - 2009-05-26 : 08:42:03
quote:
Originally posted by nr

Is it possible to make the spam bucket forum non-display?



==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.




I'll think about it but I'm not sure it's easy to do. I could remove your permissions from that forum. You'd still be able to moderate spam but after you moved the spam you'd get an error saying that you didn't have access to the spam forum.

=================================================
Creating tomorrow's legacy systems today. One crisis at a time.
Go to Top of Page

nr
SQLTeam MVY

12543 Posts

Posted - 2009-05-26 : 08:55:19
That's ok - I thought it happened to everyone. If it's just those with nuke permissions then it's not so much of a problem.

Looks like the spammers are having a field day - got over 700 junk emails in my public email address today.

==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.
Go to Top of Page

graz
Chief SQLTeam Crack Dealer

4149 Posts

Posted - 2009-05-26 : 09:15:20
They might be having a field day elsewhere but our spam is down considerably. I know it's early but I'm hopeful. We'll see how the day turns out.



=================================================
Creating tomorrow's legacy systems today. One crisis at a time.
Go to Top of Page

khtan
In (Som, Ni, Yak)

17689 Posts

Posted - 2009-05-28 : 00:32:30
Congratulation ! As of now we have been spam free for more than 24 hours




KH
[spoiler]Time is always against us[/spoiler]

Go to Top of Page

blindman
Master Smack Fu Yak Hacker

2365 Posts

Posted - 2009-05-29 : 09:39:00
Well done, khtan! I am happy for you!
www.viagraforkhtan.com


________________________________________________
If it is not practically useful, then it is practically useless.
________________________________________________
Go to Top of Page
   

- Advertisement -