Register Members List Search Today's Posts Mark Forums Read

Reply
 
Mod Options
Is Bot: Registration Time Check Details »
Is Bot: Registration Time Check
Mod Version: 1.0.0, by calorie (Coder) calorie is offline
Developer Last Online: Jun 2013 I like it Show Printable Version Email this Page

vB Version: 3.6.8 Rating: (67 votes - 4.88 average) Installs: 733
Released: 30 Dec 2006 Last Update: Never Downloads: 3478
Not Supported Uses Plugins Template Edits  

This mod calculates the time it takes to go between these two pages:
  • /forum/register.php?do=register
  • /forum/register.php?do=addmember
The point is to try and prevent bots from registering at your forum when the time between the two pages is humanly impossible, assuming that humans actually take the time to complete the registration page.

Should a user be blocked from registering at your forum, an email will be sent to your vB webmasteremail address and the user will see the vB noregister phrase message, so no screenshot is necessary.

Download Now

Only licensed members can download files, Click Here for more information.

Show Your Support

  • To receive notifications regarding updates -> Click to Mark as Installed.
  • This modification may not be copied, reproduced or published elsewhere without author's permission.
  #451  
Old 19 Dec 2012, 16:44
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Originally Posted by toneloc View Post
I installed this plugin 24hrs ago, right after installing vbstopforumspam and enabled it. I can see on vbstopforumspams log that they blocked 367 users so far, but I haven't received a single email about Is bot blocking any spam.

Spam is being blocked, so I'm happy about that. I just don't know if Is Bot is working on my boards.

Any other way to check?

Thanks
This solution was updated with more features...

http://www.vbulletin.org/forum/showthread.php?t=289463
Reply With Quote
  #452  
Old 19 Dec 2012, 18:05
Lynne's Avatar
Lynne Lynne is offline
 
Join Date: Sep 2004
Real name: Lynne
Originally Posted by sv1cec View Post
Back in the days of vB 3.0.xx when I first dealt with vB, purchased my first license and started my first site, I spend quite some time to learn php and vB's coding scheme. Seeing the various things that could be improved in the code, and after years of work, I've ended up with a heavily patched version of vB, which included a mod I published in here, called AWS (for Advanced Warning System). That mod included a number of anti-spam traps, a time limit for the registration process (just like this mod), comparison between the country entered by the member vs the location indicated by his IP address, comparison of the time zone he entered with the time zone of the country indicated by his IP address etc.

So vB knows about these things, since version 3.0. Why they do not bother to include them in their software?

The obvious answer is, because they do not care.
That may be an obvious answer to you, but it is wrong. As soon a vB includes something like this in the default software, the spammers will just catch on and change their scripts to 'break' this. Spam is better dealt with through the many different modifications around.
__________________
Former vBulletin.org Staff Member

Try a search before posting for help. Many users won't, and don't, help if the question has been answered several times before.
W3Schools -
Online vBulletin Manual
If I post some CSS and don't say where it goes, put it in the additional.css template.
I will NOT help via PM (you will be directed to post in the forums for help.)
Reply With Quote
  #453  
Old 19 Dec 2012, 19:31
sv1cec sv1cec is offline
 
Join Date: May 2004
Real name: John
Really?

That's a pretty lame excuse considering what the user experience is, as expressed in this thread.

Let's see what Jelsoft could add to vB, which won't be breakable by spammers.

- Time limit registration option (like "Is Bot")? A spammer doesn't know the limit I've set, so they can't fight that. And their scripts are tailored for speed, they won't wait 1 minute per registration.
- Checking of validity of email address. Not very efficient but it still traps spammers.
- Matching of entered Country with IP address Geolocation information. The ability to exclude some countries would be also welcome.
- Matching of entered Time Zone with the Time Zones of the country derived from the IP address?
- Check of registering IP address against known spammers IP addresses such as spamhaus.org or sorbs.net etc.

Care to tell me how a spammer would break through a spamhaus.org check?

One more thing: if Jelsoft thinks that an anti-spam strategy should include as many traps as possible (and I agree on that), how come it only offers one of Image Verification, Question & Answer Verification and reCAPTCHA™? Why not all? Let the admins select as many as they like.
__________________

John
SV1CEC

Last edited by sv1cec; 19 Dec 2012 at 19:41.
Reply With Quote
  #454  
Old 19 Dec 2012, 19:57
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Originally Posted by sv1cec View Post
- Time limit registration option (like "Is Bot")? A spammer doesn't know the limit I've set, so they can't fight that. And their scripts are tailored for speed, they won't wait 1 minute per registration..
Sure they will. Using the automated programs like XRumer and literally thousands of botnet zombie computers, programming a 60 second stall between filling out the form and clicking "submit" won't be all that difficult and really, won't hurt spamming efficiency. It hasn't happened yet because time checks such as this - which have been around in one form or another for years - just haven't been in widespread use.

If vBulletin or any major message board software has this time check in its native code, it won't be long at all before the botnet administrators start programming a delay into their systems.
Reply With Quote
  #455  
Old 19 Dec 2012, 20:08
sv1cec sv1cec is offline
 
Join Date: May 2004
Real name: John
That's exactly the point. More, many more options to trap spammers. Not just one, several. And of various intelligence. Of different nature. Selectable by the admin with various courses of action. Instead of spending time integrating social networks, I would have preferred more and more secure antispam options.

Of course, that's a personal opinion and as we know each one has his own.
__________________

John
SV1CEC
Reply With Quote
  #456  
Old 19 Dec 2012, 20:49
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Originally Posted by sv1cec View Post
That's exactly the point. More, many more options to trap spammers. Not just one, several. And of various intelligence. Of different nature. Selectable by the admin with various courses of action. Instead of spending time integrating social networks, I would have preferred more and more secure antispam options.

Of course, that's a personal opinion and as we know each one has his own.
Can never have too many rounds in the anti-spam magazine, that is for sure.
Reply With Quote
  #457  
Old 19 Dec 2012, 20:50
BirdOPrey5's Avatar
BirdOPrey5 BirdOPrey5 is offline
 
Join Date: Jun 2008
Real name: Joe D.
Originally Posted by sv1cec View Post
Really?

That's a pretty lame excuse considering what the user experience is, as expressed in this thread.

Let's see what Jelsoft could add to vB, which won't be breakable by spammers.

- Time limit registration option (like "Is Bot")? A spammer doesn't know the limit I've set, so they can't fight that. And their scripts are tailored for speed, they won't wait 1 minute per registration.
- Checking of validity of email address. Not very efficient but it still traps spammers.
- Matching of entered Country with IP address Geolocation information. The ability to exclude some countries would be also welcome.
- Matching of entered Time Zone with the Time Zones of the country derived from the IP address?
- Check of registering IP address against known spammers IP addresses such as spamhaus.org or sorbs.net etc.

Care to tell me how a spammer would break through a spamhaus.org check?

One more thing: if Jelsoft thinks that an anti-spam strategy should include as many traps as possible (and I agree on that), how come it only offers one of Image Verification, Question & Answer Verification and reCAPTCHA™? Why not all? Let the admins select as many as they like.
1) Jelsoft hasn't been the owner/publisher of VB in years
2) Time plays no real factor in registration because they can hit multiple boards at once... Whether it takes 10 seconds to register or 60 on any one site is no big deal. So long as they set their delay equal to a human it is easily defeated
3) Again it would be minor edits to make sure timezone, location and IP match- the only reason these checks may work is because they are rare
__________________
-Joe
Former vb.org Moderator. Retired.

@BirdOPrey5 | All Things BOP5 | Joe's Ultimate Off Topic
Note - I no longer making new VB mods, sorry.
Reply With Quote
  #458  
Old 19 Dec 2012, 21:10
sv1cec sv1cec is offline
 
Join Date: May 2004
Real name: John
Originally Posted by Max Taxable View Post
Can never have too many rounds in the anti-spam magazine, that is for sure.
You got that right my friend.

Originally Posted by BirdOPrey5 View Post
1) Jelsoft hasn't been the owner/publisher of VB in years
You are right, I just learned that so I have to apologize for my mistake.

Originally Posted by BirdOPrey5 View Post
2) Time plays no real factor in registration because they can hit multiple boards at once... Whether it takes 10 seconds to register or 60 on any one site is no big deal. So long as they set their delay equal to a human it is easily defeated
Indeed, but that is only if they know that this antispam measure is in effect in the site they visit. If they do it for every site their bot visits, their productivity goes down.

Originally Posted by BirdOPrey5 View Post
3) Again it would be minor edits to make sure timezone, location and IP match- the only reason these checks may work is because they are rare
Of course, but if the admin has the option to permanently ban countries or IP ranges, that could limit his exposure. I've banned whole C-class addresses from China, I do not expect my site to have Chinese members, so I do not care. If that makes my site more secure for my membership, I have no problem doing it.

That's the reason I said in a previous comment, that the admin should have statistics from such add-ons. I add every IP that gets banned from my site, in a table in the database and I have a small program to get statistics from this log. I then enter the appropriate addresses in the ban IPs list.

Each one of the above measures I suggested, by itself, may have a minor effect on the number of spammers you avoid, all of them (or some of them) together can make a significant difference.
__________________

John
SV1CEC
Reply With Quote
  #459  
Old 25 Dec 2012, 15:04
sv1cec sv1cec is offline
 
Join Date: May 2004
Real name: John
OK folks, for those who want to automatically enter the spam bot IP address in their banned IPs list, here is a version of the plug-in that should do it for you. It's been tested on vBulletin 4.2, I am not sure if it will work on previous versions.

----- code section ------
$vbulletin->input->clean_array_gpc('p', array(
'isbot_time1' => TYPE_UINT
));

$ipaddress = IPADDRESS;

if ($vbulletin->GPC['username'] && $vbulletin->GPC['email'])
{
$isbot_time1 = $vbulletin->GPC['isbot_time1'];
$isbot_time2 = TIMENOW;
$isbot_timediff = intval($isbot_time2 - $isbot_time1);


if ($isbot_timediff <= 15) // difference in seconds
{
$isbot_username = htmlspecialchars_uni($vbulletin->GPC['username']);
$isbot_email = htmlspecialchars_uni($vbulletin->GPC['email']);

$isbot_subject = $vbphrase['isbot_user_blocked_from_registering'];
$isbot_message = $vbphrase['isbot_the_following_name_email_blocked']
. '
User Name : ' . $isbot_username . '
Email : ' . $isbot_email . '
Time to fill registration form : ' . $isbot_timediff . ' ' . $vbphrase['isbot_seconds_transpired'] . '
IP Address : ' . $ipaddress . ' ';

vbmail($vbulletin->options['webmasteremail'], $isbot_subject, $isbot_message, true);

if ($vbulletin->options['enablebanning'] == 1 AND $vbulletin->options['banip'] = trim($vbulletin->options['banip']))
{
$banned = $ipaddress . " " . $vbulletin->options['banip'];
$db->query_write("UPDATE " . TABLE_PREFIX . "setting SET value = '" . $banned . "' where varname='banip'");
require_once(DIR . '/includes/adminfunctions.php');
build_options();
}

eval(standard_error(fetch_error('noregister')));
}
}
-------------

Copy the above code and enter it in AdminCP/Plug-in Manager/Is Bot. Just click on Edit next to the "register_addmember_process", highlight the Plugin PHP code and paste the above code in there. Click on "Save and Reload" and you are done.

To verify it's working, next time you receive an email from this plugin, compare the IP shown in the email you got, with the IPs in your banned IPs list. The newly banned IP is entered in the beginning of the list, so it should be easy to spot.

My Christmas gift to you guys.
__________________

John
SV1CEC

Last edited by sv1cec; 27 Dec 2012 at 10:23.
Reply With Quote
  #460  
Old 14 Mar 2013, 15:03
makaiguy's Avatar
makaiguy makaiguy is offline
 
Join Date: May 2004
Still using the same IsBot I installed in 2008. Recently updated the board to vB 3.8.7 PL2 and wanted to check if IsBot works in this version. Un-remmed the line that sends the email. Received 5 emails of blocked registrations in under 4 minutes, and then remmed out the email line again.

So it's confirmed that IsBot 1.0 works with vB 3.8.7.
Reply With Quote
  #461  
Old 10 May 2013, 03:40
kpmedia's Avatar
kpmedia kpmedia is offline
 
Join Date: Jan 2008
Originally Posted by StephenKay View Post
Hi,
I'm having problems with spambots submitting multiple requests to register.php?do=addmember; thousands per day.
Of course, since I use the human verification option with graphics etc., they are unsuccessful in completing any registrations. But the traffic is slowing down the server greatly and my ISP is pissed off.
Will this mod do anything to alleviate that issue? Once they are detected by this, does that in any way stop them from making more requests to register.php?do=addmember?
So few people seem to realize the resource hit spammers make.

The best way is to customize the register.php, and outright block IP ranges you don't need. For me, that's China, Russia, USA proxy/VPS servers, etc. I don't get any legit traffic from the places so it's blocked.

Use mods like this to get ones you miss or haven't added yet. Also use something like stopforumspam.com. The best anti-spam practices implore several concurrent methods to thwart junk.
__________________
FAQ: What are some HostGator alternatives? And who is EIG?
FAQ: What are the best web hosts and why?
And to all the vB plugin authors ... Thanks for making this a great app!
Reply With Quote
  #462  
Old 11 May 2013, 15:47
Max Taxable's Avatar
Max Taxable Max Taxable is offline
 
Join Date: Feb 2011
Originally Posted by kpmedia View Post
So few people seem to realize the resource hit spammers make.

The best way is to customize the register.php, and outright block IP ranges you don't need. For me, that's China, Russia, USA proxy/VPS servers, etc. I don't get any legit traffic from the places so it's blocked.

Use mods like this to get ones you miss or haven't added yet. Also use something like stopforumspam.com. The best anti-spam practices implore several concurrent methods to thwart junk.
It's all about layers, that's right. Tools in the toolbox.
Reply With Quote
  #463  
Old 30 May 2013, 15:45
tsptom tsptom is offline
 
Join Date: Jan 2006
I really like this mod. Thanks!
Reply With Quote
  #464  
Old 28 Aug 2013, 07:55
Sonic625 Sonic625 is offline
 
Join Date: Jun 2002
Originally Posted by sv1cec View Post
OK folks, for those who want to automatically enter the spam bot IP address in their banned IPs list, here is a version of the plug-in that should do it for you. It's been tested on vBulletin 4.2, I am not sure if it will work on previous versions.

----- code section ------
$vbulletin->input->clean_array_gpc('p', array(
'isbot_time1' => TYPE_UINT
));

$ipaddress = IPADDRESS;

if ($vbulletin->GPC['username'] && $vbulletin->GPC['email'])
{
$isbot_time1 = $vbulletin->GPC['isbot_time1'];
$isbot_time2 = TIMENOW;
$isbot_timediff = intval($isbot_time2 - $isbot_time1);


if ($isbot_timediff <= 15) // difference in seconds
{
$isbot_username = htmlspecialchars_uni($vbulletin->GPC['username']);
$isbot_email = htmlspecialchars_uni($vbulletin->GPC['email']);

$isbot_subject = $vbphrase['isbot_user_blocked_from_registering'];
$isbot_message = $vbphrase['isbot_the_following_name_email_blocked']
. '
User Name : ' . $isbot_username . '
Email : ' . $isbot_email . '
Time to fill registration form : ' . $isbot_timediff . ' ' . $vbphrase['isbot_seconds_transpired'] . '
IP Address : ' . $ipaddress . ' ';

vbmail($vbulletin->options['webmasteremail'], $isbot_subject, $isbot_message, true);

if ($vbulletin->options['enablebanning'] == 1 AND $vbulletin->options['banip'] = trim($vbulletin->options['banip']))
{
$banned = $ipaddress . " " . $vbulletin->options['banip'];
$db->query_write("UPDATE " . TABLE_PREFIX . "setting SET value = '" . $banned . "' where varname='banip'");
require_once(DIR . '/includes/adminfunctions.php');
build_options();
}

eval(standard_error(fetch_error('noregister')));
}
}
-------------

Copy the above code and enter it in AdminCP/Plug-in Manager/Is Bot. Just click on Edit next to the "register_addmember_process", highlight the Plugin PHP code and paste the above code in there. Click on "Save and Reload" and you are done.

To verify it's working, next time you receive an email from this plugin, compare the IP shown in the email you got, with the IPs in your banned IPs list. The newly banned IP is entered in the beginning of the list, so it should be easy to spot.

My Christmas gift to you guys.
Confirmed working with 3.8.7
Reply With Quote
  #465  
Old 12 Nov 2015, 04:21
vsd vsd is offline
 
Join Date: Nov 2005
Any possibility someone can show me how to stop the emails that are being sent with this plug-in. I read in a reply, someone said they did it, but not how exactly.
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Mod Options

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 15:23.

Layout Options | Width: Wide Color: