Okay, I'm stopping with fbhp updates for a while now.
It's stable, works and picks up the new wave of js enabled bots that bypass the core honeypots, bypass the reg timer and don't get detected by APIs..... my job here is once again done (hopefully the core wont copy again).
Tenants:2 SpamBots:0
If you find a bug, or see a bot get through, let me know, send me the fingerprint and I'll update it.... other than that, I don't believe it needs anymore work.
View attachment 149951 View attachment 149952View attachment 149953View attachment 149954
okay, no issues on install now then?
I'll send it out to the packs quickly
No Bot Triggers Found
FoolBotHoneyPot: Detected As Human - Registration Allowed
Tuesday at 02:01 : 49.35.15.86:41486
Username: Ams khan
Email: Amskhan007@gmail.com
Host: 49.35.15.86
User Agent: Mozilla/5.0 (Linux; Android 7.0; Moto G (4) Build/NPJ25.93-14) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36
Time taken to register: 18 (seconds)
JavaScript Enabled Browser: TRUE
Core Classical Honeypots: 0
FBHP Classical Honeypots: 0
Basic Proxy Detection: Possibly Forged IP Address, ipAddress (49.35.15.86) == ReverseDNS (49.35.15.86)
Browser Plugins Detected: None
Hidden Fields Modifed,
FoolBotHoneyPot: Detected As A Bot - Registration Blocked
Tuesday at 02:00 : 49.35.15.86:41486
Username: Amskhan007
Email: Amskhan007@gmail.com
Host: 49.35.15.86
User Agent: Mozilla/5.0 (Linux; Android 7.0; Moto G (4) Build/NPJ25.93-14) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36
Time taken to register: 84 (seconds)
JavaScript Enabled Browser: TRUE
Core Classical Honeypots: 0
FBHP Classical Honeypots: 1
Basic Proxy Detection: Possibly Forged IP Address, ipAddress (49.35.15.86) == ReverseDNS (49.35.15.86)
Browser Plugins Detected: None
Interesting behaviour ...
Code:No Bot Triggers Found FoolBotHoneyPot: Detected As Human - Registration Allowed Tuesday at 02:01 : 49.35.15.86:41486 Username: Ams khan Email: Amskhan007@gmail.com Host: 49.35.15.86 User Agent: Mozilla/5.0 (Linux; Android 7.0; Moto G (4) Build/NPJ25.93-14) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36 Time taken to register: 18 (seconds) JavaScript Enabled Browser: TRUE Core Classical Honeypots: 0 FBHP Classical Honeypots: 0 Basic Proxy Detection: Possibly Forged IP Address, ipAddress (49.35.15.86) == ReverseDNS (49.35.15.86) Browser Plugins Detected: None Hidden Fields Modifed, FoolBotHoneyPot: Detected As A Bot - Registration Blocked Tuesday at 02:00 : 49.35.15.86:41486 Username: Amskhan007 Email: Amskhan007@gmail.com Host: 49.35.15.86 User Agent: Mozilla/5.0 (Linux; Android 7.0; Moto G (4) Build/NPJ25.93-14) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36 Time taken to register: 84 (seconds) JavaScript Enabled Browser: TRUE Core Classical Honeypots: 0 FBHP Classical Honeypots: 1 Basic Proxy Detection: Possibly Forged IP Address, ipAddress (49.35.15.86) == ReverseDNS (49.35.15.86) Browser Plugins Detected: None
... spammer used an automated tool, which was picked-up and failed. Then one min later, registered manually (or bypassed FPHB), and successfully registered.
Sent.Can I see the fingerprint for this one
Yes, they're the only ones.It possibly implies no bots have recently attempted (lucky you)
Are they really the only bots in your cache??? Usually people have 30 - 100
Nervously, just tested my site and registration is working fine.There may be a bug with this. Can it be that it also clears the real password field? My users are no longer getting through the registration as they are getting the invalid password error.
Ahh, no. 'Avoid All Password Managers' is unticked.Did you activate the password manager setting?
We use essential cookies to make this site work, and optional cookies to enhance your experience.