+1If threads cannot be created without membership (assumed), then the membership admission process warrants closer scrutiny/tighter buttoning down.
Just my $0.02.
+1If threads cannot be created without membership (assumed), then the membership admission process warrants closer scrutiny/tighter buttoning down.
Just my $0.02.
Tricky buggers aren't they?So what you see is a drop in the bucket!
This spammer is quite clever and likely uses automated tools to post so rapidly. Usually our spam filters catch such attempts but this one is written in Chinese and the filters for that don't seem to work. He comes and goes though. So I suspect he will get bored and leave us for a while again.
FYI we delete dozens of spam logins and messages per day that are caught by our spam filters (and hence invisible to membership). So what you see is a drop in the bucket!
Yep exactly this. The whole point is to get around basic spam filters.They start out by making several posts with simple titles and messages like
thread title: kj
and
body of message: wvw
Then after a few minutes they go back and edit each of the posts with copy-and-paste spam messages.
I've seen the exact same spam messages on another forum, a few years ago, with the exact same technique.
A google search of some of the text shows that they're hitting other forums too, almost every day.
No it’s a Xenforo framework. I’m on this site a lot and I see very little spam. If you see it click the report link it’s handled quickly.I'm guessing the ASR site uses the WordPress framework?
Perhaps @amirm or @Thomas savage can confirm.
I just tried a fresh signup and it seems to me that the reCAPTCHA checkbox ("I am not a robot") would be super-easy for spambots to defeat.
As in, "why bother", easy...
So, a couple of suggestions from here:
1) use the CAPTCHA option requiring new users answer a simple arithmetic question, or
2) use the Honeypot feature (invisible widget to lure spambots into completing it), or
3) have new-user submissions go to human moderators for approval/admission
1) or 2) are cheap to try, requiring a small investment in an admin's time.
3) is significantly more demanding of resources.
I can get him some cheap Chinese shoes...Whoever is the Mod, Someone needs to send him a coupon for a Free Steak dinner or something.
Getting rid of a rash of attacks like the present one takes one step.