Who keeps registering on my site?
I have observed a rather awkward thing about my drupal site. Every single day someone tries to register on the site with some made up details (sometimes five or six times a day). I suspect its not human am I right? I suspect I am doing something wrong, but what, I don't know. Can someone please shed some light on what is happening to my sight? Is this a quirk in drupal that I have not realised yet. Please help me out; the client has realised and I can't seem to find the answers to the problem.
Recent comments
- Like sports clubs
2 days 23 hours ago - Style Guides
4 days 2 hours ago - IIRC, that's correct and
6 days 23 hours ago - Making sure that there are
1 week 6 hours ago - Unincorporated = can't sign contracts?
1 week 8 hours ago - Debit card
1 week 1 day ago - Not much, as it's basically a
1 week 1 day ago - The benefit might be a bank
1 week 1 day ago - DUKNA? :)
1 week 2 days ago - Debit Card
1 week 2 days ago
New forum topics
Who's new
Syndicate
Mollom
It's an automated spam bot trying to create an account so that it can post spam on your site.
Best way to deal with it is to install the Mollom module.
http://drupal.org/project/mollom
Spam
I have forms that check that appropriate text is filled in, can I still go on and install mollom?
Mollom
Yes, still well worth installing.
Mollom compares input across the thousands of site it's installed on to find spamming patterns, so it can catch spammers even if what they are inputing seems innocent.
It can also be enabled for individual forms, such as the registration form.
Thanks for the laugh honey
Thanks for the laugh honey !
It is not about what you have done wrong but what you have neglected to do. Is your site a community site or inviting contribution from several persons ? If it is not then disable user registration at admin>>user management >>user settings and set it to "Only site administrators can create new user accounts."
However if public contributions are allowed then install Captcha or Mollom and it will frustrate most spammers away. If these don't work contact me.
carelees management
<!-- @page { margin: 0.79in } P { margin-bottom: 0.08in } -->
Completely my own fault. I quickly set up a non-profit site and stupidly I left an option in forums for anonymous users to upload content, without administrator approval. As the site contained mostly static information I did not look at it for maybe two months ( I hear you groan ) and lo and behold I had more than a thousand nodes of the usual junk ranging from porn to pills. I started to delete them, but what a job, so my solution was I completely wiped the site and the database, and made a new installation, even with a new ip address.
One of the first things I did on the new sites is I made sure that EVERYBODY had to logon to post comments or content, secondly, I installed Mollom ( thanks Dries!) , and then the Security Review module. However, this did not stop the automated spambots from attempting to login to the site, as evidenced in the site log. It was simply incredible, and also the 'page not found error' up to 3-4 times a minute expecting to find the junk that was already there. The 'hit' count was incredible! I then decided to ban their ip addresses using 'access rules' & I applied it to any address that was obviously a spambot, plus those guys who tried to be clever and type in such things as /php, /css, /user/user, the list is endless...Eventually I've banned about 35 ip addresses, often using % as many of them have multiple addresses. Out of curiosity, I looked up a lot of the addresses and found most came from russia, followed by the old 'east bloc' , a particularly active one in Holland who I actually sent an email to, China & the states. Now I check my log files everyday, to protect the site and secondly I feel vindictive!A lesson learned, luckily on a non-profit site & the damage was quickly fixed, and in fact just installing 'captcha' onto everything that can be posted will cut out quite a lot of stuff.
check out http://buytaert.net/ten-ugly-comment-spam-techniques boz
If the names are really made
If the names are really made up, you'll know it because of the username.Spambots will use usernames that are not "human-like". The best thing to do is install Mollom as it is the best anti-spam plugin in drupal out there.Hope this helped.
Regards,
Mitch Buchannan - Millionaire Mind Intensive - Reviewer
I then decided to ban their
I then decided to ban their ip addresses using 'access rules' & I applied it to any address that was obviously a spambot, plus those guys who tried to be clever and type in such things as /php, /css, /user/user, the list is endless...Eventually I've banned about 35 ip addresses, often using % as many of them have multiple addresses. Out of curiosity, I looked up a lot of the addresses and found most came from russia, followed by the old 'east bloc' , a particularly active one in Holland who I actually sent an email to, China & the states