Navigation
Subscribe
Recent blog posts
New forum topics
Active forum topics
Recent comments
- 2 weeks 5 days ago
- 6 weeks 6 days ago
- 8 weeks 10 hours ago
- 8 weeks 10 hours ago
- 15 weeks 5 days ago
- 18 weeks 6 days ago
- 31 weeks 1 day ago
Website updates
Our website was under attack by drones of spambots. Hundreds of fictitious users were registering each day just to post a meaningless comment with obscure links to some dubious websites. Log analysis showed these all were automated/script/spambot activities. Somehow they were bypassing CAPTCHA tests.
I scrambled to find a solution. I ended up writing a module I call "botcha" that filters form submissions based on anti-spambot principles. It works quite nicely, allowing real users to register without any additional burden. I kept CAPTCHA on the registration form for it remains proven technique for blocking over 95% of spammers.
- admin's blog
-
- Login or register to post comments
Comments
Re: Website updates
Thu, 04/28/2011 - 9:01pm — Ronald IbarakiHow safe are our login accounts and passwords?
ron
Re: Website updates
Mon, 05/02/2011 - 6:33am — adminSpambot attacks had nothing to do with user passwords. Attacks were trying to register for a multiple user accounts, so that they could post back-linking content to the website.
Re: Website updates
Mon, 05/02/2011 - 6:31am — adminUser passwords are stored with strongest encryption.