XF 1.4 no time limit between two messages

[Emrah Özdemir]

Hi
i set a value to a time limit between 2 messages but registered users can not post before this time limit but unregistered users can post by bypassing time limit.

How can i solve this problem?

 

[Martok]

I assume you mean the "Bypass flood check" permission. You also need to set this for the Unregistered/Unconfirmed group - set it to Not Set (No)

 

[Emrah Özdemir]

it is set to no

 

[AndyB]

It's nice not having a "Bypass flood check" so we can post without waiting, but be careful a spammer could post thousands of threads in a very short time using a program. In order to prevent this I use the following add-on:

https://xenforo.com/community/resources/new-thread-limit.3439/

 

[Marcus]

it is set to no

Actually then it sounds like it might be a bug in the forum software. You could open a bug report and link to this thread.

 

[Amaury]

Actually then it sounds like it might be a bug in the forum software. You could open a bug report and link to this thread.

Should make sure an add-on isn't at play first, though, by disabling all add-ons.

 

[Martok]

It's nice not having a "Bypass flood check" so we can post without waiting, but be careful a spammer could post thousands of threads in a very short time using a program. In order to prevent this I use the following add-on:

https://xenforo.com/community/resources/new-thread-limit.3439/

Which is why "Bypass flood check" should be set to Not Set (No) for Unregistered and Registered groups and only set to Allow for trusted groups within a community.

 

[Emrah Özdemir]

It's nice not having a "Bypass flood check" so we can post without waiting, but be careful a spammer could post thousands of threads in a very short time using a program. In order to prevent this I use the following add-on:

https://xenforo.com/community/resources/new-thread-limit.3439/

ı set bypass fload check to no. İt was already setted to no but guests still bypass the flood check. Thats my problem.

 

[Martok]

How do you know they are bypassing the flood check? Are you sure it's the same guest that's bypassing it, or could it be multiple guests posting at the same time?

Having said that, I don't know if the flood check works for guests - it might do but only if it logs the IP address of a guest. The XenForo team should be able to confirm its functionality.

 

[Emrah Özdemir]

I have tried it. Also you can try

sosyal.globaldusunce.com

Go into a thread and paste something many times

 

[CTXMedia]

Done some test posts here (that need deleting): http://sosyal.globaldusunce.com/index.php?threads/yeni-ford-focus.7/#post-373

You appear to be using an add-on to allow guests to post - perhaps that is the source of the problem?

 

[AndyB]

You appear to be using an add-on to allow guests to post

No this is a default feature of XenForo, you can allow "Post Relies" for the Unregistered / Unconfirmed group in the Node Permissions setting.

 

[Emrah Özdemir]

Done some test posts here (that need deleting): http://sosyal.globaldusunce.com/index.php?threads/yeni-ford-focus.7/#post-373

You appear to be using an add-on to allow guests to post - perhaps that is the source of the problem?

I allow Thé guests to post but cannot prevent message flood. Bypass flood check is set to no

 

[CTXMedia]

No this is a default feature of XenForo, you can allow "Post Relies" for the Unregistered / Unconfirmed group in the Node Permissions setting.

Hmmm ... fair enough. I though the default XF guest post just used 'Guest' as the username for all guest posts - rather than asking you to enter a username (which is why I though it was an add-on in this case)?

 

[Paul B]

The flood check doesn't apply to guests as they don't have a user ID.

The code could be changed to do so but imagine you have 10 guests posting simultaneously - it would be a bit of an issue if they were being warned for flooding without having made any posts.

 

[Marcus]

I guess every guest gets a session cookie and then for each cookie the time limit applies. Same could go for IP addresses and so on. It is really complicated and it's also easy to just open up different browsers ...

 

[Emrah Özdemir]

The flood check doesn't apply to guests as they don't have a user ID.

The code could be changed to do so but imagine you have 10 guests posting simultaneously - it would be a bit of an issue if they were being warned for flooding without having made any posts.

But flood check is a must for guests more than registered users.