XF 1.5 Recaptcha and security question as an option request.

Shipside

Shipside

Member
I wish to have security question and recaptcha.

Lately we have had hundreds of korean spam accounts that have found a way to exploit Recaptcha no captcha.
 
Sort by date Sort by votes
It would need custom development as we only display one type of CAPTCHA at a time.

In general, I think you get massively diminishing returns from multiple CAPTCHAs. If you think the Q&A would help, then that is probably all you need (at least in the short term, you may need to rotate the questions).
 
Upvote 0 Downvote
assemblergames said:
Already blocked the subnet. We do have korean users.

I'm worried because the mass spam would imply that recaptcha nocaptcha is broken.
Click to expand...

You are looking at the problem wrong. Human's are generating very large amounts of spam. They get paid to do it. Sounds crazy right? Captcha's can't keep humans out. We had spam coming from India and Pakistan but only 2 isp's in each country. Plus VPS providers in america. Blocked all of that. I see a spammer once every 6 months now. We haven't had any koreans yet. Maybe 2 false positives a month get moderated.

I don't run a captcha period. It's useless. 99.9% of our machine generated spam was getting blocked by a honeypot addon. Once Xenforo got honeypots we dropped it. We no longer have logs for those potential spammers but trust me they still try. Adding a captcha for us wouldn't make a difference. Our spammers were human.
 
Upvote 0 Downvote
rainmotorsports said:
You are looking at the problem wrong. Human's are generating very large amounts of spam. They get paid to do it. Sounds crazy right? Captcha's can't keep humans out. We had spam coming from India and Pakistan but only 2 isp's in each country. Plus VPS providers in america. Blocked all of that. I see a spammer once every 6 months now. We haven't had any koreans yet. Maybe 2 false positives a month get moderated.

I don't run a captcha period. It's useless. 99.9% of our machine generated spam was getting blocked by a honeypot addon. Once Xenforo got honeypots we dropped it. We no longer have logs for those potential spammers but trust me they still try. Adding a captcha for us wouldn't make a difference. Our spammers were human.
Click to expand...

Any suggested honeypot?
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

polle
  • Question Question
XF 2.2 Rule to block spam accounts using gmail
Replies
3
Views
175
Ozzy47
Ozzy47
MapleOne
Contact & Registration spam stopped almost 100% at zero cost
2
Replies
23
Views
1K
Zardoz43
Zardoz43
S
  • Question Question
XF 2.2 How to revert user profile changes done by spam?
Replies
0
Views
149
Sadiq6210
S
K
Can't register without accepting third party cookies
2
Replies
33
Views
3K
Chris D
Chris D
PumpinIron
  • Question Question
XF 2.2 Is there a way to lock an account after X amount of failed login attempts?
Replies
13
Views
706
PumpinIron
PumpinIron
Top Bottom