SQL Server Forums
Profile | Register | Active Topics | Members | Search | Forum FAQ
 
Register Now and get your question answered!
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 Site Related Forums
 Site Related Discussions
 Fighting spam
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

graz
Chief SQLTeam Crack Dealer

USA
4138 Posts

Posted - 05/25/2009 :  10:22:23  Show Profile  Visit graz's Homepage  Reply with Quote
As you have noticed we've been hit pretty hard by spammers over the last month or two. In response I've taken the following steps.

1. All members with more than 10,000 posts can remove spam threads and lock user accounts. This doubles the number of people that are able to moderate spam. This should result in us getting it deleted that much sooner.

2. I've eliminated the extended profiles for members with fewer than 50 posts. The clever spammers figured out that they could create profiles with links to their sites and never post in the forums. I discovered these by accident. If you view a member and THAT member has less then 50 posts or their account is locked I only show the most basic information. I've also made the same changes now when you register or edit your profile. Hopefully they will figure out they can't to this anymore and move on.

3. I'm working on additional code that will block two classes of spammers: bots and actual people. Based on logs and post times on the site I need to go after both groups. I have a couple of strategies around both of these that I'm going to try. Bots are fairly easy to break. Actual people are much harder.

4. And before you ask, no I don't want to use a CAPTCHA. It seems most of the common ones are broken. Using common forum software like Snitz means that bots can attack every Snitz site very easily. I need to customize my defenses so that these attacks will fail.

5. No, I probably won't tell you what I've done for a while. Nothing I'm doing is hard to circumvent if you know what I'm doing. I may write a blog post at some point in the future if I'm successful.



=================================================
Creating tomorrow's legacy systems today. One crisis at a time.

nr
SQLTeam MVY

United Kingdom
12543 Posts

Posted - 05/26/2009 :  01:05:51  Show Profile  Visit nr's Homepage  Reply with Quote
Is it possible to make the spam bucket forum non-display?



==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.
Go to Top of Page

khtan
In (Som, Ni, Yak)

Singapore
17681 Posts

Posted - 05/26/2009 :  04:12:32  Show Profile  Reply with Quote
quote:
Originally posted by nr

Is it possible to make the spam bucket forum non-display?

==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.


I know where you are coming from.... Those nuked spam will appear in the Active Topics lists. Well i guess just need ignored these.
Actually the spam bucket was initially not visible to non mod, but you will get some error message like unable to display the thread after you nuke the spam.


KH
Time is always against us

Go to Top of Page

Transact Charlie
Flowing Fount of Yak Knowledge

United Kingdom
3451 Posts

Posted - 05/26/2009 :  05:21:41  Show Profile  Visit Transact Charlie's Homepage  Reply with Quote
quote:
1. All members with more than 10,000 posts can remove spam threads and lock user accounts. This doubles the number of people that are able to moderate spam. This should result in us getting it deleted that much sooner.

I for one welcome our new 10,000 post+ overlords, and I remind them that as a member of the media, I could be useful in convincing people to toil in their underground SQL mines" -- Kent Brockman.




Charlie
===============================================================
Msg 3903, Level 16, State 1, Line 1736
The ROLLBACK TRANSACTION request has no corresponding BEGIN TRANSACTION
Go to Top of Page

graz
Chief SQLTeam Crack Dealer

USA
4138 Posts

Posted - 05/26/2009 :  08:42:03  Show Profile  Visit graz's Homepage  Reply with Quote
quote:
Originally posted by nr

Is it possible to make the spam bucket forum non-display?



==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.




I'll think about it but I'm not sure it's easy to do. I could remove your permissions from that forum. You'd still be able to moderate spam but after you moved the spam you'd get an error saying that you didn't have access to the spam forum.

=================================================
Creating tomorrow's legacy systems today. One crisis at a time.
Go to Top of Page

nr
SQLTeam MVY

United Kingdom
12543 Posts

Posted - 05/26/2009 :  08:55:19  Show Profile  Visit nr's Homepage  Reply with Quote
That's ok - I thought it happened to everyone. If it's just those with nuke permissions then it's not so much of a problem.

Looks like the spammers are having a field day - got over 700 junk emails in my public email address today.

==========================================
Cursors are useful if you don't know sql.
DTS can be used in a similar way.
Beer is not cold and it isn't fizzy.

Edited by - nr on 05/26/2009 08:56:40
Go to Top of Page

graz
Chief SQLTeam Crack Dealer

USA
4138 Posts

Posted - 05/26/2009 :  09:15:20  Show Profile  Visit graz's Homepage  Reply with Quote
They might be having a field day elsewhere but our spam is down considerably. I know it's early but I'm hopeful. We'll see how the day turns out.



=================================================
Creating tomorrow's legacy systems today. One crisis at a time.
Go to Top of Page

khtan
In (Som, Ni, Yak)

Singapore
17681 Posts

Posted - 05/28/2009 :  00:32:30  Show Profile  Reply with Quote
Congratulation ! As of now we have been spam free for more than 24 hours




KH
Time is always against us

Go to Top of Page

blindman
Flowing Fount of Yak Knowledge

USA
2365 Posts

Posted - 05/29/2009 :  09:39:00  Show Profile  Reply with Quote
Well done, khtan! I am happy for you!
www.viagraforkhtan.com


________________________________________________
If it is not practically useful, then it is practically useless.
________________________________________________
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
SQL Server Forums © 2000-2009 SQLTeam Publishing, LLC Go To Top Of Page
This page was generated in 0.08 seconds. Powered By: Snitz Forums 2000