[OzzModz] Registration Spaminator Stop Spam Bot Registrations [Deleted]

That’s not something I’d like to add as IP’s can be reassigned and at some point be valid, or they are using a public WiFi.
 
unproperlypropagated said:
Can it ban the IP after x tries?
Click to expand...

Ozzy47 said:
That’s not something I’d like to add as IP’s can be reassigned and at some point be valid, or they are using a public WiFi.
Click to expand...
As every measure it can cause colateral damage but also as every measure one should know what one is doing anyway when it comes to blocking and locking out.
While there are no doubt dialups and cracked machines in the log the majority seem - at least with me - to be static IPs. Mostly servers that should (as no user uses them as their personal computer) not register on a forum anyway. Some may be proxies, some are VPN endpoints - but I had no issue locking out any of them before they even get in touch with the website. The discussion is basically the same one that has been going on for decades in terms of blacklists for mailservers.
unproperlypropagated said:
Maybe a timeout so they stop bombarding.
Click to expand...

Ozzy47 said:
Block unwanted IP’s at the server level or with Cloudflare
Click to expand...
I did block a bunch of very nasty ones via .htaccess, sometimes even whole IP ranges. No big deal for me as my userbase is pretty regional. So it would be really handy to have some sort of mechanism to make use of those IP addresses. In a perfect world they would be automatically fed to .htaccess for a couple of weeks, in a less perfect one one could export them in a more comfortable way than c+p.
 
smallwheels said:
not.com is a valid domain that belongs to "Next Online Technologies":


It also has a valid DNS entry for the mx:


$ dig -t mx not.com
; <<>> DiG 9.10.6 <<>> -t mx not.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55124
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;not.com. IN MX
;; ANSWER SECTION:
not.com. 300 IN MX 75 isaac.mx.cloudflare.net.
not.com. 300 IN MX 94 linda.mx.cloudflare.net.
not.com. 300 IN MX 30 amir.mx.cloudflare.net.

So the domain exists, the mx entry exists but the mailbox for the localpart of the address does not exist, thus you get a bounce. Completely different story from what you wrote in your last post.

Anyone can use any mailaddress during registration and as long as there's an mx entry for the domain the server will try to deliver the registrasion mail (as it does and can not know if the mailbox/mailaddress exists). A "mailfilter" whatever that may be cannot circumvent that - how should it do that?

First thing you should find out is wether the mails you get are caused by registration attemps or by the contact form. Should not be too difficult. If they come in masses it is probably automated and then the according spaminator variant could probably help.
Click to expand...
Had one today. Bounced email because the email address was incorrect. This was definitely someone trying to sign up as the bounced email was the activation email.
 
A little heads up:
smallwheels said:
Short update on how it is going nine days after the installation according to the logs:
- the registration spaminator has caught
• 82 registration attempts
Click to expand...
After three months the counter has risen to slightly more than 22.000 registration attempts (despite haven blocked some very nasty IPs via .htaccess in the meantime). A dramatic rise over the last weeks.
smallwheels said:
- the login spaminator has caught
• 107 login attempts
Click to expand...
This counter is at ~9.500 at the moment.
 
This addon has now "blocked" (we're invite-only so they couldn't register without a code anyway) 22,806 spam registration attempts on my site. If my site was open and I didn't have this addon I'd probably have abandoned being a forum owner by now due to these spam registrations and the extra work dealing with them.

This should be on everyone's essential addons buy list
 
Gemma said:
This addon has now "blocked" (we're invite-only so they couldn't register without a code anyway) 22,806 spam registration attempts on my site. If my site was open and I didn't have this addon I'd probably have abandoned being a forum owner by now due to these spam registrations and the extra work dealing with them.

This should be on everyone's essential addons buy list
Click to expand...
1300 so far for me
 
TCG2007 said:
1300 so far for me
Click to expand...
I bought this 5 years ago for a ridiculously low price (it is still ridiculously low now) when my site was an open site. The first 3 years it maybe caught 6,000 in total (I was disappointed :ROFLMAO:). In the last 2 years it has "blocked" 16,000 potential spam registrations and would be catching roughly 25 per day.

Even if it had only blocked 100 in total it would have more than paid for itself.
 
Almost 110,000 for me ......

OZZY47
allhail.gif


Screenshot 2025-03-30 at 8.53.21 AM.webp
 
TCG2007 said:
Yoooo what??
Click to expand...
Ozzy is singlehandely demonstrating the need for a better content delivery system so people don't miss anything...

Or...

Ozzy47

Thread 'Remove Addons'

Please delete all my addons on here.
  • Sad
  • Wow
  • Haha
Chris D

Post in thread 'Snogs Site was down, it is now back up ... move along, nothing to see here'

To be clear; he did not upset us and we didn't delete his resources as a result.

He was upset by an interaction with the XF staff and he requested his add-ons to be deleted on here and we obliged with his request, as is standard. @Ozzy47 is welcome to request his resources be undeleted if he has a change of heart.
  • Like

However, the world is still round...and spinning (apparently) so all is good

snogssite.com

OzzModz Is Here To Stay

We are not going anywhere, our addons will continue to be supported and available here for the foreseeable future. We have just left the XF forums, nothing else.
snogssite.com snogssite.com
 
You must log in or register to reply here.

Similar threads

Ozzy47
[OzzModz] Show Notice During Registration [Deleted]
Replies
1
Views
12
Ozzy47
Ozzy47
DaveM
How Do I Stop These Spam Registrations
Replies
7
Views
224
Dragonfruit
Dragonfruit
MapleOne
Contact & Registration spam stopped almost 100% at zero cost
2
Replies
37
Views
2K
MapleOne
MapleOne
AndyB
Paid registrations [Deleted]
Replies
16
Views
1K
vbresults
vbresults
Thangvip9x
How to guide only permits registration of usernames with the first letter capitalized for...
2
Replies
29
Views
316
Thangvip9x
Thangvip9x
Back
Top Bottom