Hackers/Proxies. Help?

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • Timeout 19
    Member
    • Sep 2008
    • 36
    #1

    Hackers/Proxies. Help?

    Hi, my site has been getting multiple code of content offenders that post pornographic images and other bad content. We have been banning them, but we think they are using proxies. It hasnt gotten too bad up to now.

    Somebody has made a thread with a title like "windows^&$#$@". Im not sure what font was after the windows but it was weird. Well, when you click on the title, it gives you a Db error, but I went to my downstairs computer and the site worked. Its probably a cache attack or something. The user name was winrembo if that helps.

    Can somebody tell/show me how I can protect myself from all of this? We did update the vB software we had when the security hole was found by vB a few weeks ago.

    We turned off the forums for now until we can be more protected, so if I could get some help soon, it would be great.

    Thanx in advance!



    EDITED
    Actually I found some strange things in his banned user profile.

    Username: winrembo
    Email: [email protected]
    Home Page: http://gostrf.ru
    Sig: Куплю ЛИЦЕНЗИОННЫЙ Windows
    Ip: 94.102.60.68
    Gamertag: winrembo
    Location: Ð*SHAZAAM!*оссия
    Biography: Man
    Occupation: Ð*SHAZAAM!*оссия
    Playlist: winrembo

    Hope that can help too.
    Last edited by Timeout 19; Mon 6 Oct '08, 11:54am.
    Tags: None
    • Jake Bunce
      Senior Member
      • Dec 2000
      • 46598
      • 3.6.x
      #2
      There seems to be a spam campaign going on the last couple of days. Lots of forums are getting hit.

      The ideal is to stop the spam bots from even registering. You can use one of the human verification options:

      Admin CP -> vBulletin Options -> Human Verification Manager (on the left, not the right)

      The Q&A option can be very effective.

      On my forum I just moderate all new users. I created a profile field for the registration form which asks them why they want to join.

      Note that the "image verification" option isn't very effective anymore since some bots are programmed to read those images.

        Comment

        • Timeout 19
          Member
          • Sep 2008
          • 36
          #3
          Okay, I have looked at the past banned users and the information looks identical. Same email (.ru) and alike profile fields. I think you are right.

          Im a little confused on the Q & A. How does that work? Whats the purpose of it and how does it differ from the image verification?

          Thanx

            Comment

            • Chelf12
              Senior Member
              • Jun 2008
              • 187
              • 3.8.x
              #4
              Originally posted by Timeout 19
              Okay, I have looked at the past banned users and the information looks identical. Same email (.ru) and alike profile fields. I think you are right.

              Im a little confused on the Q & A. How does that work? Whats the purpose of it and how does it differ from the image verification?

              Thanx
              It works like this. You enter a question and an answer. The user trying to register sees the question, and must enter the answer. I find that the NoSPAM! MOD on vBulletin.org works effectively with this.

                Comment

                Previous template Next
                widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                Working...