Author Topic: Security measures  (Read 1920 times)

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Security measures
« on: November 29, 2009, 03:20:31 am »
Hi all,

As a growing forum, we have received our first spammers! In the future, spammer's accounts will be deleted ASAP. I will also install an anti-spam feature, as soon as I have decided which option is the best. The safest one would convert any link posted by new members (let's say people that posted less than 5 posts) to xxx.xxxxxxxx.xxx type invalid links. There are other options too, which I will look at tomorrow when I have more time.

I will also try to keep this forum free from advertisements as, if I understood it correctly, that is what brought e-sangha down and got the Buddhist-Community blacklisted at Google. We also try to make frequent backups.

I'm also continously looking at other security features to make your stay here as secure as possible. :) If you have security concerns, please let me know.
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Re: Security measures
« Reply #1 on: November 30, 2009, 03:54:54 am »
I added an extra random question at the registration page that hopefully should keep spambots away. Let's see how well that works and if we need to add countermeasures for human spammers as well.
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Re: Security measures
« Reply #2 on: December 01, 2009, 11:13:33 pm »
I haven't seen any new spammer signups here since I installed that extra question at registration. Apparently most spammer accounts are created by automated bots that can't handle that extra verification. Also, I just upgraded to the latest version of SMF to keep this site more secure. *Someone* out there is spreading rumors that this forum is malware-infested among other silly claims. If people are already trying to slander us we are apparently doing something right!  ;D
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Re: Security measures
« Reply #3 on: December 08, 2009, 09:39:51 am »
New security feature installed! After 3 failed login attempts you have to wait 15 minutes until you can try again, and the account owner is emailed about failed logins. In your account settings, you can now (but don't have to) define secure IP addresses that your account should only be accessible from, if you're afraid that someone will try to hijack your account.
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline WonderlandAlli

  • Vipassana & Simplicity
  • Member
  • Posts: 219
  • I love the smell of turpentine in the morning...
    • View Profile
Re: Security measures
« Reply #4 on: December 10, 2009, 12:13:19 am »
Sounds good!
sÄ«la ♥ samādhi  ♥ paññā

♥ Please consider donating to my fundraiser for Out of the Darkness, for suicide awareness and prevention. ♥ 
http://afsp.donordrive.com/index.cfm?fuseaction=donorDrive.participant&eventID=1088&participantID=108712

Offline Ron-the-Elder

  • Member
  • Posts: 4474
  • May all beings live rightly and harmoniously.
    • View Profile
Re: Security measures
« Reply #5 on: January 09, 2010, 10:24:10 am »
Very much appreciate your hard work and effort. 

I used to be The Computer Mommy for our environmental, safety and health workgroup before I retired, so I have a personal appreciation for the amount of work you are doing.

Thanks again.
What Makes an Elder? :
A head of gray hairs doesn't mean one's an elder. Advanced in years, one's called an old fool.
But one in whom there is truth, restraint, rectitude, gentleness,self-control, he's called an elder, his impurities disgorged, enlightened.
-Dhammpada, 19, translated by Thanissaro Bhikkhu.

Offline DrJonno

  • Member
  • Posts: 55
    • View Profile
Re: Security measures
« Reply #6 on: January 09, 2010, 01:04:31 pm »
Thanks for all your efforts :-)

Metta,

Jon
"If McBuddha serves dogma-free dharma then make mine a super-size"

Offline Karma Sonam

  • Member
  • Posts: 97
    • View Profile
Re: Security measures
« Reply #7 on: January 09, 2010, 01:57:24 pm »
I suppose you should be flattered that you have caught the spammers attention! ;D
Om Tare Tutare Ture Soha

Don't forget to stop and smell the daisies.

and then the monkey pushed the button

Offline AWMGolfer

  • Member
  • Posts: 22
    • View Profile
Re: Security measures
« Reply #8 on: January 09, 2010, 10:12:46 pm »
Gotta love the spammers! I would look into using recaptcha instead of just basic captcha as it is much better.

http://custom.simplemachines.org/mods/index.php?mod=1044

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Re: Security measures
« Reply #9 on: January 13, 2010, 12:45:18 am »
Gotta love the spammers! I would look into using recaptcha instead of just basic captcha as it is much better.

http://custom.simplemachines.org/mods/index.php?mod=1044

I just installed it! Let's hope it keeps the spammers away. Apparently there have been problems for some users with the built-in visual verification and anti-bot registration puzzle had a few questions and puzzles that were a bit hard or confusing. Hopefully recaptcha will do the job on it's own.
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline poto

  • Member
  • Posts: 45
    • View Profile
    • Poto's Blog
Re: Security measures
« Reply #10 on: January 13, 2010, 02:43:48 am »
Sorry to be the bearer of bad news, but captchas and recaptchas won't work. You're up against XRumer. No captcha will protect you.

Using a custom registration question can help. For a little while anyways.

Dealing with spam is just something that you have to do. It's a daily chore when running a forum.
...

Offline Wonky Badger

  • Administrator
  • Member
  • *****
  • Posts: 1439
    • View Profile
Re: Security measures
« Reply #11 on: January 13, 2010, 03:07:55 am »
OK, I'll add another anti-bot measure if needed then. As I've understood it, it's enough (for now) that the registration template deviates from the standard, to make the bots confused.
My actions are my only true belongings.
I cannot escape the consequences of my actions.
My actions are the ground on which I stand.
---
What would Buddha do?

Offline Ron-the-Elder

  • Member
  • Posts: 4474
  • May all beings live rightly and harmoniously.
    • View Profile
Re: Security measures
« Reply #12 on: January 13, 2010, 03:21:30 am »

The process of genetically derived biological adaptation for the purpose of survival as the underlying cause of evolution continues just so.:  Predator adapts to newly arisen survivor skills of prey.  A few prey due to genetic diversity express superior survival skills allowing them to escape from superior predators and survive to procreate.  Predator evolves under adaptive pressures of an improved prey with superior adaptations also due to genetic diversity which allows offspring to kill the newly arisen superior prey......and so on, and so on.......so long as life exists.   

And just so this very same process spreads to cyberspace.   .....

"Adapt, overcome, and conquer".....Clint Eastwood playing a veteran Marine Gunney Seargent in "Heartbreak Ridge".

OK, I'll add another anti-bot measure if needed then. As I've understood it, it's enough (for now) that the registration template deviates from the standard, to make the bots confused.
What Makes an Elder? :
A head of gray hairs doesn't mean one's an elder. Advanced in years, one's called an old fool.
But one in whom there is truth, restraint, rectitude, gentleness,self-control, he's called an elder, his impurities disgorged, enlightened.
-Dhammpada, 19, translated by Thanissaro Bhikkhu.

Offline AWMGolfer

  • Member
  • Posts: 22
    • View Profile
Re: Security measures
« Reply #13 on: January 13, 2010, 09:49:49 am »
Definitely, none of it will work 100% but I have found on the number of sites I have ran that a combination or recaptcha and question/answer will cut down on most spam. At least stop what you can with those so instead of dealing with 20 spam posts it may be just a handful.

 


SimplePortal 2.3.3 © 2008-2010, SimplePortal