Signup abuse detection and blocking

Signup abuse detection and blocking [Paid] 1.8.12

No permission to buy ($45.00)

Xon

Well-known member
Xon submitted a new resource:

Signup abuse detection and blocking - Provides a toolkit to reduce signup spam

From (simple) multiple accounts detection to isp/connection fingerprinting with score-based moderating/rejecting logic. These are very effective low-hanging fruit at reducing spam.

Supports migration configuration from the following XF1 add-ons;
  • TPU Spam Detect
  • Alter ego Detector
For multiple account detection, supports reporting to reports/threads. And will send reports to the same report/thread. To send to thread you must select the "Multi-account to thread" extra...

Read more about this resource...
 

Alpha1

Well-known member
Some suggestions:
  1. Block disposable email.
  2. Validate email address.
  3. Moderate users with homepage filled in or links in profile fields.
  4. Moderate users with keywords in profile fields.
  5. Auto-fill location based upon IP.
Those are amazingly effective methods.
 

Alpha1

Well-known member
I prefer this way
I think a combination of whitelist and blacklist makes more sense. I use that for XF1. Any new domain is pushed to the moderation queue first. But I considered that may be out of scope for this addon.
However, using API services has proved to be very effective and free.
 

Xon

Well-known member
Hey @Xon i have Created thread checked but don't work, reports are fine.
The create thread option requires the extra "Multi-account to thread" add-on. I've been meaning to release it as a free add-on on here, but haven't gotten around to it yet. Please me aware that the 'merge thread' option doesn't cause multiple account tracking to consider them to be merged, it'll just recreate the thread :(

If you don't have that extra, open a ticket on my site and I can assign it to you.
 
Last edited:

Rhodium

Active member
The create thread option requires the extra "Multi-account to thread" add-on. I've been meaning to release it as a free add-on on here, but haven't gotten around to it yet. Please me aware that the 'merge thread' option doesn't cause multiple account tracking to consider them to be merged, it'll just recreate the thread :(

If you don't have that extra, open a ticket on my site and I can assign it to you.

Im geting some errors in admin panel, maybe tapatalk?

Code:
XF\Db\DuplicateKeyException: MySQL query error [1062]: Duplicate entry '41d9420f7dbf95a7da9c7338ceb4c4ea' for key 'token' src/XF/Db/AbstractStatement.php:212
Generado por: escoces 2 Dic 2018 a las 00:20
Seguimiento
INSERT  INTO `xf_sv_multiple_account_token` (`user_id`, `active`, `token`, `token_id`, `token_date`) VALUES (?, ?, ?, ?, ?)
------------

#0 src/XF/Db/Mysqli/Statement.php(196): XF\Db\AbstractStatement->getException('MySQL query err...', 1062, '23000')
#1 src/XF/Db/Mysqli/Statement.php(77): XF\Db\Mysqli\Statement->getException('MySQL query err...', 1062, '23000')
#2 src/XF/Db/AbstractAdapter.php(79): XF\Db\Mysqli\Statement->execute()
#3 src/XF/Db/AbstractAdapter.php(160): XF\Db\AbstractAdapter->query('INSERT  INTO `x...', Array)
#4 src/XF/Mvc/Entity/Entity.php(1403): XF\Db\AbstractAdapter->insert('xf_sv_multiple_...', Array, false)
#5 src/XF/Mvc/Entity/Entity.php(1135): XF\Mvc\Entity\Entity->_saveToSource()
#6 src/addons/SV/SignupAbuseBlocking/XF/Entity/User.php(78): XF\Mvc\Entity\Entity->save()
#7 src/XF/Mvc/Entity/Entity.php(142): SV\SignupAbuseBlocking\XF\Entity\User->getAccountDetectionToken()
#8 src/XF/Mvc/Entity/Entity.php(95): XF\Mvc\Entity\Entity->get('AccountDetectio...')
#9 src/addons/SV/SignupAbuseBlocking/Repository/MultipleAccount.php(425): XF\Mvc\Entity\Entity->__get('AccountDetectio...')
#10 src/addons/SV/SignupAbuseBlocking/XF/ControllerPlugin/Login.php(42): SV\SignupAbuseBlocking\Repository\MultipleAccount->detectMultipleAccounts(Object(SV\IgnoreUserLimit\XF\Entity\User), NULL)
#11 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(248): SV\SignupAbuseBlocking\XF\ControllerPlugin\Login->completeLogin(Object(SV\IgnoreUserLimit\XF\Entity\User), false)
#12 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(221): MbqRdEtUser->doFinalLogin(23358)
#13 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(148): MbqRdEtUser->doLogin(23358, false)
#14 mobiquo/mbqFrame/mbqBaseAction/MbqBaseActSignIn.php(200): MbqRdEtUser->loginDirectly(Object(MbqEtUser), NULL)
#15 mobiquo/mbqFrame/mbqBaseAction/MbqBaseActSignIn.php(100): MbqBaseActSignIn->loginUser(NULL)
#16 mobiquo/mbqAction/MbqActSignIn.php(20): MbqBaseActSignIn->actionImplement(Object(stdClass))
#17 mobiquo/mobiquoCommon.php(117): MbqActSignIn->actionImplement(Object(stdClass))
#18 mobiquo/mobiquo.php(19): MbqMain::action()
#19 {main}
Estado de la solicitud
array(4) {
  ["url"] => string(10) "/index.php"
  ["referrer"] => bool(false)
  ["_GET"] => array(0) {
  }
  ["_POST"] => array(1) {
    ["TapatalkParamsLog"] => array(7) {
      [0] => string(32) "9D3B6C2983C6B4BB011C04AA3E3BF185"
      [1] => string(8) "********"
      [2] => string(0) ""
      [3] => string(7) "escoces"
      [4] => string(8) "********"
      [6] => string(8) "********"
      ["useragent"] => string(117) "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.86 Safari/537.36 Tapatalk/8.0.10"
    }
  }
}
 

Xon

Well-known member
Im geting some errors in admin panel, maybe tapatalk?

Code:
XF\Db\DuplicateKeyException: MySQL query error [1062]: Duplicate entry '41d9420f7dbf95a7da9c7338ceb4c4ea' for key 'token' src/XF/Db/AbstractStatement.php:212
Generado por: escoces 2 Dic 2018 a las 00:20
Seguimiento
INSERT  INTO `xf_sv_multiple_account_token` (`user_id`, `active`, `token`, `token_id`, `token_date`) VALUES (?, ?, ?, ?, ?)
------------

#0 src/XF/Db/Mysqli/Statement.php(196): XF\Db\AbstractStatement->getException('MySQL query err...', 1062, '23000')
#1 src/XF/Db/Mysqli/Statement.php(77): XF\Db\Mysqli\Statement->getException('MySQL query err...', 1062, '23000')
#2 src/XF/Db/AbstractAdapter.php(79): XF\Db\Mysqli\Statement->execute()
#3 src/XF/Db/AbstractAdapter.php(160): XF\Db\AbstractAdapter->query('INSERT  INTO `x...', Array)
#4 src/XF/Mvc/Entity/Entity.php(1403): XF\Db\AbstractAdapter->insert('xf_sv_multiple_...', Array, false)
#5 src/XF/Mvc/Entity/Entity.php(1135): XF\Mvc\Entity\Entity->_saveToSource()
#6 src/addons/SV/SignupAbuseBlocking/XF/Entity/User.php(78): XF\Mvc\Entity\Entity->save()
#7 src/XF/Mvc/Entity/Entity.php(142): SV\SignupAbuseBlocking\XF\Entity\User->getAccountDetectionToken()
#8 src/XF/Mvc/Entity/Entity.php(95): XF\Mvc\Entity\Entity->get('AccountDetectio...')
#9 src/addons/SV/SignupAbuseBlocking/Repository/MultipleAccount.php(425): XF\Mvc\Entity\Entity->__get('AccountDetectio...')
#10 src/addons/SV/SignupAbuseBlocking/XF/ControllerPlugin/Login.php(42): SV\SignupAbuseBlocking\Repository\MultipleAccount->detectMultipleAccounts(Object(SV\IgnoreUserLimit\XF\Entity\User), NULL)
#11 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(248): SV\SignupAbuseBlocking\XF\ControllerPlugin\Login->completeLogin(Object(SV\IgnoreUserLimit\XF\Entity\User), false)
#12 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(221): MbqRdEtUser->doFinalLogin(23358)
#13 mobiquo/mbqClass/lib/read/MbqRdEtUser.php(148): MbqRdEtUser->doLogin(23358, false)
#14 mobiquo/mbqFrame/mbqBaseAction/MbqBaseActSignIn.php(200): MbqRdEtUser->loginDirectly(Object(MbqEtUser), NULL)
#15 mobiquo/mbqFrame/mbqBaseAction/MbqBaseActSignIn.php(100): MbqBaseActSignIn->loginUser(NULL)
#16 mobiquo/mbqAction/MbqActSignIn.php(20): MbqBaseActSignIn->actionImplement(Object(stdClass))
#17 mobiquo/mobiquoCommon.php(117): MbqActSignIn->actionImplement(Object(stdClass))
#18 mobiquo/mobiquo.php(19): MbqMain::action()
#19 {main}
Estado de la solicitud
array(4) {
  ["url"] => string(10) "/index.php"
  ["referrer"] => bool(false)
  ["_GET"] => array(0) {
  }
  ["_POST"] => array(1) {
    ["TapatalkParamsLog"] => array(7) {
      [0] => string(32) "9D3B6C2983C6B4BB011C04AA3E3BF185"
      [1] => string(8) "********"
      [2] => string(0) ""
      [3] => string(7) "escoces"
      [4] => string(8) "********"
      [6] => string(8) "********"
      ["useragent"] => string(117) "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.86 Safari/537.36 Tapatalk/8.0.10"
    }
  }
}
Damn missed this just before I did a release. It shouldn't be doing that :(
 

Matt C.

Well-known member
I'll have to buy this when I get some extra cash. My site gets so many spam bots, it's ridiculous.
 
  • Like
Reactions: Xon

Xon

Well-known member
Im geting some errors in admin panel, maybe tapatalk?
Those errors aren't blocking logging in, but they are blocking the multiaccount detection from working. The error suggests the user is somehow either signing in twice or the tapatalk code is not interacting as expected with the login process.
 
Top