Hi:
As some of you may know, I am not a developer, but come up with some wonderful ideas. :)
So, I was using a wonderful mod I believe from AnTONLV called access management. This helps to block ip addresses. Can't we create something that blocks certain domains/exact characters at join.
For instance, can't we block the following spammers:
@yeah.net
@163.com
@homemailpro.com
**These spammers are killing me! Grrr....
When they try to join with anything after @(domain) they get blocked?
Thanks!
Racquel |
|
Add @hotmail.com to the list. BoonEx Certified Host: Zarconia.net - Fully Supported Shared and Dedicated for Dolphin |
mod_security + CSF firewall = no more spam
Set it and forget it.. no one can use @163.com ANYWHERE on my server.. not in Dolphin, not in Wordpress, in any contact form, not in any join form... not on a plain, not on a train, I will not eat green eggs and spam.
Hi:
As some of you may know, I am not a developer, but come up with some wonderful ideas. :)
So, I was using a wonderful mod I believe from AnTONLV called access management. This helps to block ip addresses. Can't we create something that blocks certain domains/exact characters at join.
For instance, can't we block the following spammers:
@yeah.net
@163.com
@homemailpro.com
**These spammers are killing me! Grrr....
When they try to join with anything after @(domain) they get blocked?
Thanks!
Racquel
BoonEx Certified Host: Zarconia.net - Fully Supported Shared and Dedicated for Dolphin |
mscott - can you elaborate on your fix? Not how to set your advised fix up.
rhimpr - This is great to know, but my join button became disabled when I tried the forum fix.
This is what was suggested. I also attached my design.inc file to make sure I inserted the code right if someone wouldn't mind taking a peek.
Step1.
/inc/ design.inc.php
at the end of the file find
bx_import('BxDolAlerts');
and add this ABOVE it.
function ForbidenEmailProvider($Email)
{
$ForbidenEmailProvider[] = "@163.com";
$ForbidenEmailProvider[] = "@sohu.com";
$ForbidenEmailProvider[] = "@21cn.com";
$ForbidenEmailProvider[] = "@gmx.com";
$ForbidenEmailProvider[] = "@126.com";
$ForbidenEmailProvider[] = "@qq.com";
$ForbidenEmailProvider[] = "@yahoo.cn";
$ForbidenEmailProvider[] = "@mx8168.net";
$ForbidenEmailProvider[] = "@110mail.net";
$ForbidenEmailProvider[] = "@buybrandshop.info";
$ForbidenEmailProvider[] = "@lenfos.com";
$ForbidenEmailProvider[] = "@mailinator.com";
$ForbidenEmailProvider[] = "@tom.com";
$ForbidenEmailProvider[] = "@hotmilitararygirls.com";
$ForbidenEmailProvider[] = "@speaktolearn.net";
$ForbidenEmailProvider[] = "@qtyhosting.com";
$ForbidenEmailProvider[] = "@12gohere.net";
$ForbidenEmailProvider[] = "@boxedchristmascards.ne";
$ForbidenEmailProvider[] = "@yeah.net";
$ForbidenEmailProvider[] = "@free-medicine.net";
$ForbidenEmailProvider[] = "@satiny.co.uk";
$ForbidenEmailProvider[] = "@energyforthehome.com";
$ForbidenEmailProvider[] = "@dunkssb.net";
$ForbidenEmailProvider[] = "@pumpkincarving.org";
$ForbidenEmailProvider[] = "@theory-test-practice.co.uk";
$ForbidenEmailProvider[] = "@cooljordanshoestore.com";
$ForbidenEmailProvider[] = "@betfairmethods.com";
foreach($ForbidenEmailProvider as $key => $value)
{
if ( strpos("zyx".$Email,$value) > 0 )
return false;
}
return true;
}
Step2.
in administration / builders / profile fields (join form)
edit the email field click on advanced and replace
return (bool) preg_match('/^([a-z0-9\+\_\-\.]+)@([a-z0-9\+\_\-\.]+)$/i', $arg0);
WITH THIS
return ( ForbidenEmailProvider($arg0) and preg_match('/^([a-z0-9\+\_\-\.]+)@([a-z0-9\+\_\-\.]+)$/i', $arg0) );
Step3.
in administration / settings / languages settings look for
_FieldError_Email_Check
and edit the error msg. that's displayed, the default one is (please enter correct email) change to something like this
Invalid email address / or the email provider you are using is blacklisted.
or whatever you like.
That's it you can add more email providers or remove some
$ForbidenEmailProvider[] = "@someprovider.";
Any other suggestions?
Thanks to ALL!
Racquel
|
Check to make sure you inserted above the correct
bx_import('BxDolAlerts');
look for the last one in the file.
|
Thank you rhimpr. :) You've been very helpful.
|
Hey Everyone:
So, I found this site, you all may know: http://www.joewein.de/sw/bl-text.htm
This site provides a list of domain spammers, which is critical to the Dolphin site. Why aren't we working with these guys to get a list we can make function at the back end of our platform? We should have something we could use for this.
Here is the list..So, I did get AntonLV to make something user friendly for me so I can input domains in moderation settings (excellent work). Looking at this list, I think it's something bigger...YIKES!!!
I counted about how many are on this list, it's about 50K...I'm gonna go hit something, then cry now... LOL
Racquel
|
Actually no one modification is needed to apply this, all you need is to enable the following:
Tools -> Antispam Tools -> URI DNS Blocklists -> Activate multi.surbl.org.
Settings -> Advanced Settings -> Security -> turn on Enable URI DNS Block Lists
As I see data from this site is sent to SURBL.ORG:
http://www.jwspamspy.com/features.htm#surbl
After enabling SURBL.ORG - every text entered in text/html areas will checked and if any of these spammer domain is found, then this action of data submission will be rejected or reported, depending on "Settings -> Advanced Settings -> Security -> Total block all spam content" setting option.
Hey Everyone:
So, I found this site, you all may know: http://www.joewein.de/sw/bl-text.htm
This site provides a list of domain spammers, which is critical to the Dolphin site. Why aren't we working with these guys to get a list we can make function at the back end of our platform? We should have something we could use for this.
Here is the list..So, I did get AntonLV to make something user friendly for me so I can input domains in moderation settings (excellent work). Looking at this list, I think it's something bigger...YIKES!!!
I counted about how many are on this list, it's about 50K...I'm gonna go hit something, then cry now... LOL
Racquel
Rules → http://www.boonex.com/terms |
Thanks AlexT. I need all the help that I can with this. Security is my site's main priority.
I tried using anti-spam on dolphin before. It just hangs. I will try your instructions and see how that works.
I have Akismet set on the site right now and of course ANTONLV's modification. This will be an additional security if I can get this to work.
:)
Racquel |
