vBulletin Mods

The Official vBulletin Modifications Site
https://www.vbulletin.org/forum/showthread.php?t=248042

kaposer 04 Apr 2011 11:14

[QUOTE=GlowHost.com;2179750]Did you upload functions_ghsom.php into your includes folder?

Somehow, I forgot to upload that file. It's working for 10 minutes and has stopped a few spammers already. Marked as installed and MOM. Thanks for your efforts

janvm 04 Apr 2011 13:29

After using GlowHost with V 4.1.2 the didnt show at newest Posts any new post.
And at the AdminCP on every page I can only scroll to the half of Page.

GlowHost.com 04 Apr 2011 14:21

Quote:

Originally Posted by janvm (Post 2180713)
After using GlowHost with V 4.1.2 the didnt show at newest Posts any new post.
And at the AdminCP on every page I can only scroll to the half of Page.

I doubt its directly related to this mod. Does anyone else have this problem?

Only Username Check?
by Olli0815
05 Apr 2011 10:45

Hi,
why is only the username checked and not the combination of both - username and ip or username and email?
We got false positives on common usernames like "honey" and "einstein".
Olli

GlowHost.com 05 Apr 2011 16:23

Quote:

Originally Posted by Olli0815 (Post 2181041)
Hi,
why is only the username checked and not the combination of both - username and ip or username and email?
We got false positives on common usernames like "honey" and "einstein".
Olli

Those are the default settings. If you want to change the default settings that are checked, or even make it so that the options you want are always checked/unchecked and not changeable by other admins or mods, then edit your settings in the admin area for this mod.

landstalker 05 Apr 2011 16:57

Hi, after I installed this mod, the "what's going on" section had all its stylevar options returned to the default values, ignoring the current ones. Is there anyway to avoid that?

Strange link to Chinese website after install. Java script code found.
by camoit
06 Apr 2011 01:11

4 Attachment(s)
OK now check this out.
I just installed the Spam-O-Matic. Now just above the main logo in the header I find A little box. 2pixel by 2 pixel. You can't see it with IE. unless you high light that area. It will show up with Fire fox. But if you have an I Pad you get an Icon that links you to a statical site in China. I will show the line of code in another post. Right now the code and information taken is being analyzed by my IT guy. The line of code will be posted later.
I'm not pointing fingers at this but I did want you to be aware that the download may have been compromised by someone.
I will upload the code later on so you can look to see if you have it also. This was installed on 4-2-11

Things that came up right after the install.

Here are the links to where the icon takes you. Click if you dare..
http://countt.51yes.com/index.asp?Id=485085618
http://www.cnzz.com/stat/website.php?Web_id=2858758

Phaedrus 06 Apr 2011 15:45

I noticed that once the spammers figure out your board isn't a slut any more they drop off in number of attempts. When I first installed it I stopped over 500 spammers in a day well over 800 in a week, I upgraded and installed this version which restarted my counter and I've yet to reach 100...

I'm definitely going to nominate this one for MOM, it flat just does the job. Especially if they give me back my reporting options in the AdminCP. ;)

camoit 07 Apr 2011 20:35

All right.. Here is the offending line of code that was causing the little box and all the spy ware to give red flags.


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

This line was injected some how.
It's path in the root folder \clientscript\yui\connection\connection-min.js
It is the very last line of code. Please look to see if you have been injected with this. If so remove this line..
Thankyou.

Joey805 07 Apr 2011 20:47

Quote:

Originally Posted by camoit (Post 2182052)
All right.. Here is the offending line of code that was causing the little box and all the spy ware to give red flags.


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

This line was injected some how.
It's path in the root folder \clientscript\yui\connection\connection-min.js
It is the very last line of code. Please look to see if you have been injected with this. If so remove this line..
Thankyou.


What the heck!? is there a security hole in this mod?

BirdOPrey5 07 Apr 2011 21:36

\clientscript\yui\connection\connection-min.js is a standard vBulletin file in every vBulletin installation - why do you think the problem is with this mod?

rolfw1 07 Apr 2011 21:50

Not got that on mine, file is clean, you should look around for other possible exploits, mods etc which may have inserted the code.

Phaedrus 07 Apr 2011 22:17

Quote:

Originally Posted by Joey805 (Post 2182057)
What the heck!? is there a security hole in this mod?

Not from the mod.

Feature Request
by cfish
07 Apr 2011 22:26

For the next version of Spam-O-Matic I'd like to be able to edit the error message that registrants see if they are prevented from registering. Currently, the message is non-specific, just saying that they are a spammer and this is resulting in many emails. I'd like to give a little more information to help them recover without resorting to email.

It would be great if the message could be edited in settings so I could say something like "try a different username..."

I realise I could edit the XML file but it's a bit of a pain reloading that just to change the message.

Thanks

BirdOPrey5 08 Apr 2011 01:32

Quote:

Originally Posted by cfish (Post 2182090)
For the next version of Spam-O-Matic I'd like to be able to edit the error message that registrants see if they are prevented from registering. Currently, the message is non-specific, just saying that they are a spammer and this is resulting in many emails. I'd like to give a little more information to help them recover without resorting to email.

It would be great if the message could be edited in settings so I could say something like "try a different username..."

I realise I could edit the XML file but it's a bit of a pain reloading that just to change the message.

Thanks

This mod, like many, uses "phrases"- you can easily edit them via your Admin CP -> Phrase Manager. The one you're looking for I believe is called glowhostspamomatic_reject, otherwise you can "search in phrases" to find it.

cfish 08 Apr 2011 07:08

Quote:

Originally Posted by BirdOPrey5 (Post 2182141)
This mod, like many, uses "phrases"- you can easily edit them via your Admin CP -> Phrase Manager. The one you're looking for I believe is called glowhostspamomatic_reject, otherwise you can "search in phrases" to find it.

Brilliant. Thank you very much.

dr1 08 Apr 2011 14:15

I just installed this on a clean install of 4.1.3 and it messes up the footer.
Basically the footer disappears.

Is anyone else having this problem?

wipedout 08 Apr 2011 23:57

after upgrading to 4.1.3 i get this error



Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.


camoit 09 Apr 2011 07:39

I don't know for sure how or what happened. I'm NOT a coder. I'm just letting you know what happened to me and what to look for. It might just be a coincidence. Just before I put in the mod A known spamer got in. That is why I put in the mod. They were in for only 5 minutes before I saw them and baned them. Now that I have upgraded to 4.1.3 I have reinstalled the mod but I keep a sharp eye on the file listed above to see if it changes. So far so good.

They might have used the exploit that 4.1.2 had. Here is the spamers information. Be on the look out for them.

: [email protected]
Birthday : April 13, 1961
Referrer: N/A
IP Address: 69.197.186.218

Location : Ethiopia
Year. : 3rd
Make. : WokskidaWeima
Gender : Female

camoit 09 Apr 2011 07:44

I un installed the mod then did my upgrade. Then reinstalled it. No problems with it. But I only have 3 mods installed. I try to keep it light just for upgrade reasons.

EDCPunk 10 Apr 2011 13:18

I just installed this last night to my recently upgraded 4.1.3 board. Everything looked fine and then a member tried to post and got this message;

Warning: require_once(includes/functions_ghsom.php) [function.require-once]: failed to open stream: No such file or directory in [path]/includes/functions_newpost.php(443) : eval()'d code on line 5

Fatal error: require_once() [function.require]: Failed opening required 'includes/functions_ghsom.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /includes/functions_newpost.php(443) : eval()'d code on line 5


I turned off this plugin and now members can post. I am new to running a board like this, so any help would be greatly appreciated.

rolfw1 10 Apr 2011 14:18

@ EDCPunk - See this post: http://www.vbulletin.org/forum/showp...&postcount=792

EDCPunk 10 Apr 2011 14:57

Quote:

Originally Posted by rolfw1 (Post 2182967)

Awesome. Thank you for the heads up. I will try that and see if it works. :D

EDCPunk 10 Apr 2011 15:07

OK. The .php file is in the Includes folder. Any other suggestions? Thanks.

EDCPunk 10 Apr 2011 15:42

OK, it is fixed. The file was not in the right "includes" folder on the server. Thank you for the help with this.

ubeaut 10 Apr 2011 22:43

Just wondering. The below lines appear at the bottom of our main forum page, the represent the entire 5 days Spam-O-Matic has been online on our updated forum.

15 Spammers Denied Registration
66 Spammy Posts Automatically Moderated

Two questions:
  1. Prior to Glowhost we used vbStopForumSpam with results of around 250 spammers per day rejected. Why does there seem to be such a big difference with only 15 rejected/denied registration in 5 days?
  2. The 66 Spammy Posts Automatically Moderated... Where on earth do they go when moderated? we can't find them anywhere and I have mods who are going stir crazy because they can't find then to delete.
My guess was they are being automatically reported then banned but we don't know who, what, where or when they were banned.

Maybe we're missing something. All I can say is I'm getting a bit of a laugh from it as it's messing with the brains of a couple of my moderators.

Cheers - Neil :D

PS Excellent mod, I love it. Saves a heap of time and gives me great enjoyment watching mods and admins chasing their tails trying to figure out where the moderated posts have gone.

camoit 10 Apr 2011 23:38

Look in your ACP on the first page. there you will see on the right side at the top. messages needing moderation. Just click that and you can see all of them.

ubeaut 11 Apr 2011 00:40

Thanks for the reply camoit.

Moderating them isn't a problem, we know where moderated threads/posts reside and how to moderate them been doing it for over 12 years. The problem is that the numbers mentioned of 66 don't show anywhere and have never appeared in Moderation that any of my moderators or administrators have seen. They seem to be phantoms, untouchables, unfindables. Gone without a hint they ever existed.

Cheers - Neil :)

ubeaut 11 Apr 2011 07:56

OK so no one seems to want to satisfactorily answer the two questions in my previous post. Let's try another.

This is part of a post I made at vBulletin.com (full post HERE) So far no response to that one either.

I currently have an instances where one new member (spammer from China) has been able to register his username twice within 1 minute. He then proceeded to do 3 spam posts and then went on to changed his email address in second registration.

First registration was deleted as spam and reported to Stop Forum Spam after he had posted.

The second registration was then banned by moderator.... However it did not show as banned in his profile, but did in Banned Users list, whilst the first registration does not show up in the Banned Users list at all.


Today this person appears to have registered again. Different username, same IP address different email address.

Still shouldn't have got through Spam-O-Matic his ip is 220.179.121.198 and can be found in a search at SFS. There must be a glitch somewhere to allow this to happen.

We do have Name Check disabled in Spam-O-Matic for obvious reasons, as we had in VBStopForumSpam prior. Still I would think it shouldn't let a banned IP through though.

Cheers - Neil

Phaedrus 11 Apr 2011 15:00

There's a timeout setting. If your site cannot contact the StopForumSpam site for a certain period you either allow registration or deny it. In this case it seems that this may have been the cause of your spammer getting through with a tagged IP. I can't be certain without reading the stats, but that is the most likely culprit.

dannefaerd 11 Apr 2011 22:34

Hey all.

We've been getting some new spammers registering - no worries, their IP/email/username doesn't appear in the database.

Now they're not posting threads/posts, but are adding user notes to their own profile with links to spam sites. (gambling, etc). These notes are getting moderated into a queue, but I cannot find an option to report them via the Spam-O-Matic links.

To date we're just banning or deleting the users which are doing this - but any help so we can assist in improving the database would be welcome.

Thanks!
Martin

ubeaut 11 Apr 2011 23:57

Quote:

Originally Posted by Phaedrus (Post 2183382)
There's a timeout setting. If your site cannot contact the StopForumSpam site for a certain period you either allow registration or deny it. In this case it seems that this may have been the cause of your spammer getting through with a tagged IP. I can't be certain without reading the stats, but that is the most likely culprit.

G'day Phaedrus - Thanks for the reply. Please don't get me wrong and I'm not trying to be rude, but that really does sound a bit suspect to me. :rolleyes: I'll admit it is possible if there's a timeout setting. But that's not very reassuring when one is relying on a fix that doesn't appear to work as it should.

But maybe this timeout setting is the reason why only 15 Spammers Denied Registration for an entire 5 day period when prior to that there were approx 250 per day, (that's1,250 for the same time period) or maybe the spammers have just stopped trying. Certainly haven't on my other forum where we are still running at around 250-300 per day being denied access using vbStopForumSpam and we have never had a problem with anyone ever getting back in with the same IP after banning them via SFS.

I fear there may be a serious problem or at least a better explanation than a timeout, especially with the dramatic drop on denied registrations.

Still looking for an answer to Question 2 above in the original post.

Cheers - Neil :D

DannyITR 12 Apr 2011 00:39

I have legit users that are being denied registration using a hotmail account. How come? How can I allow them to register?

GlowHost.com 13 Apr 2011 01:26

1) Because the orginal mod did not count correctly. This has been answered in this thread many times. SOM counts only the users who manage to get past vBulletin's built in registration form. The original mod checked the users before they tried to register on the built in vB form.

There is no reason to waste resources and connections to SFS by checking every bot that may not even get past the built-in vB validation.

2) They end up in the moderated posts as every other moderated thread would. If you are not seeing them then there is an unreported bug or you have another mod which is playing games, or your vB install is corrupt.

Phaedrus 13 Apr 2011 03:33

Quote:

Originally Posted by ubeaut (Post 2183605)
G'day Phaedrus - Thanks for the reply. Please don't get me wrong and I'm not trying to be rude, but that really does sound a bit suspect to me. :rolleyes: I'll admit it is possible if there's a timeout setting. But that's not very reassuring when one is relying on a fix that doesn't appear to work as it should.

But maybe this timeout setting is the reason why only 15 Spammers Denied Registration for an entire 5 day period when prior to that there were approx 250 per day, (that's1,250 for the same time period) or maybe the spammers have just stopped trying. Certainly haven't on my other forum where we are still running at around 250-300 per day being denied access using vbStopForumSpam and we have never had a problem with anyone ever getting back in with the same IP after banning them via SFS.

I fear there may be a serious problem or at least a better explanation than a timeout, especially with the dramatic drop on denied registrations.

Still looking for an answer to Question 2 above in the original post.

Cheers - Neil :D

You can change the setting to disallow registration.

ubeaut 14 Apr 2011 00:04

Quote:

Originally Posted by GlowHost.com (Post 2184018)
1) Because the orginal mod did not count correctly. This has been answered in this thread many times. SOM counts only the users who manage to get past vBulletin's built in registration form. The original mod checked the users before they tried to register on the built in vB form.

There is no reason to waste resources and connections to SFS by checking every bot that may not even get past the built-in vB validation.

2) They end up in the moderated posts as every other moderated thread would. If you are not seeing them then there is an unreported bug or you have another mod which is playing games, or your vB install is corrupt.

Thank you for that. Greatly appreciated and makes sense. However.....

I have banned all moderators and administrators from moderating threads/posts etc to make sure no one is sneaking in and approving, deleting anything from the Moderated thread/post section. Since that time there have been according to the notice on the forum home page 75 Spammy Posts Automatically Moderated (9 more than when I posted originally) but only 2 have gone into the Moderation section leaving 7 more mysteries that have never been seen by us and they join the rest that are lost somewhere.

I have been able to find the moderated posts in the GlowHost - Spam-O-Matic Log Viewer but haven't been able to moderate them as the bulk of them just don't show anywhere other than in that viewer and the links go to an empty Moderation box.

Also on the forum homepage the only stats from SOM are:

Spam-O-Matic StatisticsSpam-O-Matic Statistics

23 Spammers Denied Registration

75 Spammy Posts Automatically Moderated (to date we've only found around 12 of them

We were running v4.1.2 and have updated to v4.1.3 but nothing has changed. vB instalation is not corrupt.

Other mods installed and running are:
Skimlinks Plugin 2.0.7
Tab And Link Manager 4 4.2.0
vBulletin Blog 4.1.3
vBulletin CMS 4.1.3
vBSEO 3.5.2

Cheers - Neil :D

GlowHost.com 14 Apr 2011 00:27

Does anyone else have this problem?

I can't duplicate it on our boards. I don't run any of the mods you have nor blog or CMS.

Boofo 14 Apr 2011 00:29

I would venture to say that maybe vBSEO 3.5.2, or Skimlinks Plugin 2.0.7, are what might be causing some of it.

DannyITR 14 Apr 2011 01:54

Guys I get email every day now from people who can't register. I'll have to uninstall if I can't figure this out. Please help.

ubeaut 14 Apr 2011 07:07

Quote:

Guys I get email every day now from people who can't register. I'll have to uninstall if I can't figure this out. Please help.
The one thing I can maybe help with a little.

Taking name recognition off may help, as there are many many people with the same username around the world and just because one is reported, doesn't tar them all with the same brush. We have something like 20 odd Robbo's registered on one of our forums alone, all with variations of the name but you can bet they nearly all tried plain old Robbo to begin with.

Hope this is of some help.

Quote:

I would venture to say that maybe vBSEO 3.5.2, or Skimlinks Plugin 2.0.7, are what might be causing some of it.
Will disable everything for a few days and see what happens then slowly reintroduce them one at a time over a week or so and see what happens.

Cheers - Neil :D

DannyITR 14 Apr 2011 14:21

Ok thanks. I took off name recognition and IP as well but this leaves only email as the way to protect the forum. Kind of silly no? I will there was a registration time check to see if it's a bot or not.

sportsfroma2 14 Apr 2011 16:10

Running this on my 4.0.7 board no issues, but want to upgrade to vb 4.1.3- I've read a few vague comments about people having trouble with 4.1.2 and 4.1.3 but they certainly didn't seem conclusive.. Just wondering how many people out there are/aren't having issues with this mod and 4.1.3

thanks

for what it's worth I'm only using e-mail blocking for now

Omniverse 15 Apr 2011 01:37

Does this hack work with 4.1.2? I need some repellant bad. My forum is infested with spammers. Like 12+ registrations a day.

blue6995 15 Apr 2011 07:36

I had to uninstall this because for some reason, when I tried to delete more than one post in a thread, it wouldn't let me. Once I removed it, I found I could delete posts as normal.

mmackinnon 15 Apr 2011 17:23

Hmm

Ok i am running vb 4.1 and have just upgraded today to this spam version.

I noticed a number of things which are confusing.

When i look at a user in the admin panel i no longer have the option at the bottom of their user profile which allowed to delete posts, ban user remover user and submit to stopforum spam.com That box has disappeared. Is that supposed to happen?

Second, I was looking at the picture examples in this posts showing the ability to click on moderation tools and choose spam-o-matic. I do not have this option nor can i see it anywhere except when looking at thread lists (not for individual spammers) and even then under the moderation tools button there is no spam-o-matic.

One of the things about this app which i really liked was the admin panel function stuff which has disappeared.

Any ideas?

Upgraded to 4.1.3 last night.
by BillHeaton
15 Apr 2011 21:03

Posts result in a blank page.
Turn Spam-o-matic off and problem goes away.
Turn Spam-o-matic on and problem comes back.

Doing more research.

BillHeaton 15 Apr 2011 21:33

Duh... Operator Error... Reloaded Spam-o-matic files and it works!

Quote:

Originally Posted by BillHeaton (Post 2185049)
Posts result in a blank page.
Turn Spam-o-matic off and problem goes away.
Turn Spam-o-matic on and problem comes back.

Doing more research.


Phaedrus 16 Apr 2011 01:39

Quote:

Originally Posted by DannyITR (Post 2184420)
Guys I get email every day now from people who can't register. I'll have to uninstall if I can't figure this out. Please help.

What are they getting blocked on most often? You can turn off checks in that specific area and leave the IP and email checks... Basically You decide where your own cut off is.

Phaedrus 16 Apr 2011 01:44

I'm wondering when we get our AdminCP reporting options back... Most of my spammers are of a type that do not post, but need to be reported. Basically using the "my home page" link on the profiles of my site to backlink to porn, male enhancement and other stuff that has nothing at all to do with my site, never posting.

IndigoSociety 16 Apr 2011 19:48

If a legitimate user is denied registration what is the proper procedure? And I've had this happen several times now so I'm a little confused if this script is too aggressive.

oddmud 17 Apr 2011 17:04

Quote:

Originally Posted by Phaedrus View Post

What happened to the selection in the User Profile area in the Admin CP? I have a ton of spambots that don't post, but use the forum for backlinks in the member pages and I'd like to be able to easily remove them and report them at the same time. I mean, it is clearly just as "spammy" to register just to create a backlink to a male enhancement site which has nothing to do with our forum. I wouldn't care what they put in as their home page if they contribute, but allowing backlinks for free with no writing contributions?

Quote:

Originally Posted by GlowHost.com (Post 2179008)
This one is one of the favorite questions that people like to ask. The short answer is it will be re-introduced in a later version.

This is needed now, this is the most common way the bots spam now. I never get posts, I rarely get IP denies, but they're still able to sneak in and post links in their user profile.

oddmud 17 Apr 2011 17:07

Quote:

Originally Posted by KW802 (Post 2160373)
+1 for purging visitor message. Most of the spam I see these days making it through registration is in the user profile messages.

Amen Brother!

mmackinnon 18 Apr 2011 05:10

Ok, I waited over a week with no real response to these issues. I am uninstalling the product.

GlowHost.com 18 Apr 2011 05:46

Quote:

Originally Posted by sportsfroma2 (Post 2184585)
Running this on my 4.0.7 board no issues, but want to upgrade to vb 4.1.3- I've read a few vague comments about people having trouble with 4.1.2 and 4.1.3 but they certainly didn't seem conclusive.. Just wondering how many people out there are/aren't having issues with this mod and 4.1.3

thanks

for what it's worth I'm only using e-mail blocking for now

We upgraded to latest when the security release was announced and have no issues. check your other plugins perhaps.

Quote:

Originally Posted by mmackinnon (Post 2184969)
Hmm

When i look at a user in the admin panel i no longer have the option at the bottom of their user profile which allowed to delete posts, ban user remover user and submit to stopforum spam.com That box has disappeared. Is that supposed to happen?

Yes, check the FAQ on the first page. It will be introduced in a later version. There were problems with this section on the 4.0 boards and it was not a very popular feature. Though, some people in this thread are really vocal about adding it back, and that is why it is planned for the next version...2.5

Quote:

Originally Posted by mmackinnon (Post 2184969)
Second, I was looking at the picture examples in this posts showing the ability to click on moderation tools and choose spam-o-matic. I do not have this option nor can i see it anywhere except when looking at thread lists (not for individual spammers) and even then under the moderation tools button there is no spam-o-matic.

If it is installed properly then it will appear provided some other mod is not interfering with it's display. Do the usual thing which is make sure it is installed correctly, if it is, disable all mods and see if it works, if it does, then re-enable each mod one at a time and check again until you find the mode/mod that breaks it.

Quote:

Originally Posted by Phaedrus (Post 2185104)
I'm wondering when we get our AdminCP reporting options back... Most of my spammers are of a type that do not post, but need to be reported. Basically using the "my home page" link on the profiles of my site to backlink to porn, male enhancement and other stuff that has nothing at all to do with my site, never posting.

Soon, its a lot of time and money to release a new version. I don't see a lot of reciprocation through donations or orders on our site from this mod though.

Revisions have been slowed down a bit because of this. As it turns out, we get a lot of PMs for free private installation requests, PMs for complaints, PMs from people that want us to hide their website links in the mod, and the list of other strangeness goes on.

Quote:

Originally Posted by IndigoSociety (Post 2185350)
If a legitimate user is denied registration what is the proper procedure? And I've had this happen several times now so I'm a little confused if this script is too aggressive.

It is only as aggressive as your settings. Try studying those and adjusting them to what suits your board. It is really quite flexible.

Quote:

Originally Posted by mmackinnon (Post 2185837)
Ok, I waited over a week with no real response to these issues. I am uninstalling the product.

This would be a good example of what I wrote above. vBulletin.org hasn't emailed me that their were responses to this thread in over a week....sorry I could not accommodate everything you needed in the specific time frame you wanted.

IndigoSociety 18 Apr 2011 11:47

Quote:

Originally Posted by GlowHost.com (Post 2185844)
We upgraded to latest when the security release was announced and have no issues. check your other plugins perhaps.



Yes, check the FAQ on the first page. It will be introduced in a later version. There were problems with this section on the 4.0 boards and it was not a very popular feature. Though, some people in this thread are really vocal about adding it back, and that is why it is planned for the next version...2.5



If it is installed properly then it will appear provided some other mod is not interfering with it's display. Do the usual thing which is make sure it is installed correctly, if it is, disable all mods and see if it works, if it does, then re-enable each mod one at a time and check again until you find the mode/mod that breaks it.



Soon, its a lot of time and money to release a new version. I don't see a lot of reciprocation through donations or orders on our site from this mod though.

Revisions have been slowed down a bit because of this. As it turns out, we get a lot of PMs for free private installation requests, PMs for complaints, PMs from people that want us to hide their website links in the mod, and the list of other strangeness goes on.



It is only as aggressive as your settings. Try studying those and adjusting them to what suits your board. It is really quite flexible.



This would be a good example of what I wrote above. vBulletin.org hasn't emailed me that their were responses to this thread in over a week....sorry I could not accommodate everything you needed in the specific time frame you wanted.

I don't think it's that flexible if there isn't a threshold setting. Needs to be a little smarter. I already had over 10 complaints of people getting denied registration. That's not good. Sounds like the system needs some type of calibration.

Boofo 18 Apr 2011 11:49

Uninstalled since GlowHost.com can't seem to find the time to answer any of my questions in this thread.

GlowHost.com 18 Apr 2011 18:34

Quote:

Originally Posted by IndigoSociety (Post 2185923)
I don't think it's that flexible if there isn't a threshold setting. Needs to be a little smarter. I already had over 10 complaints of people getting denied registration. That's not good. Sounds like the system needs some type of calibration.

Whats a "threshold setting?"

What do your logs reveal? Its probably hits on usernames. You should be focused on IPs, then email addresses, then usernames.

I would turn off username and email checking as someone else mentioned and then turn the cache down to like a a couple days or so. As I said it is only as aggressive as you set it up to be. Holding an IP for a day or so as a known spammer is rarely going to result in a false positive.

mmackinnon 18 Apr 2011 18:42

Hey

Thanks for the reply, it isnt your fault VB was not sending you email

I attempted to reinstall it today got everything uploaded but the xml importer just hangs and never competes. Very odd. I was able to import other mods no problem after this to test it and it works fine...

ever seen this?

GlowHost.com 18 Apr 2011 19:24

Nope, never seen that before. Perhaps you have some security settings on the server that are preventing upload or do not like the code in the XML file. You can ask your host if there is anything in the error log.

GlowHost.com 18 Apr 2011 19:27

Quote:

Originally Posted by Boofo (Post 2185927)
Uninstalled since GlowHost.com can't seem to find the time to answer any of my questions in this thread.

Most of your questions are already answered or you seem to have resolved them.

Keep in mind I am not a free answer robot, please excuse me for missing something in the near 900 posts in this thread.

mmackinnon 18 Apr 2011 19:56

2 Attachment(s)
No worries I got it. Just uploaded and important from the includes/xml folder.

I have gone through every plugin and disabled but this one and just cant seem to find why i dont have the ability to actually use the functions of the app.

How with this upgrade, do I now ban someone, submit them to the stopforumspam site, remove their posts, calendar & blog posts with one button? I cannot find the option to do that anywhere. The only way I can ban a user now is to goto the admin panel and choose ban. Is there something im missing?

As i look at a thread i attached a paste of exactly what I see. I do not see the the moderation box with spam-o-matic for individual posts (which is what id need) or on user profiles or anywhere actually. And when i got to the view of various threads in a forum i do see the moderation box but spam-o-matic is not listed there. (i added a pic of this as well).

Ideas?


Quote:

Originally Posted by GlowHost.com (Post 2186034)
Nope, never seen that before. Perhaps you have some security settings on the server that are preventing upload or do not like the code in the XML file. You can ask your host if there is anything in the error log.


GlowHost.com 18 Apr 2011 20:14

Send me a screenshot of the moderation tools menu when you have selected a post in a thread.

mmackinnon 18 Apr 2011 20:18

Well that is sortof the thing. I cannot find a moderation tools menu for individual posts or even see a way to select an individual post except to 'edit post'. The i have options to delete etc but nothing to ban and no stop forum. Am i missing some sortof function somehow?

mmackinnon 18 Apr 2011 20:20

Ahhhh I see now.

When in threaded mode the option isnt there. When i switch to hybrid or linear it is. Is this a problem on your end or mine or just how it is?

GlowHost.com 18 Apr 2011 20:22

I have never checked all modes actually. Remind me where to find the setting and I will take a look on my end.

mmackinnon 18 Apr 2011 20:26

Hey

Weird eh?

When yer in a thread top right of the screen are the options like thread tool, administrative, search etc. Also up this is display. Click on it for the drop down and select threaded mode. The option to choose individual posts disappears so you cannot access the moderation tool box. at least for me

Boofo 18 Apr 2011 22:30

Quote:

Originally Posted by GlowHost.com (Post 2186036)
Most of your questions are already answered or you seem to have resolved them.

Keep in mind I am not a free answer robot, please excuse me for missing something in the near 900 posts in this thread.

You seem to be doing fine when others have asked things. No problem, though, IsBot seems to work well enough, anyway. It never lets anything past to get to your mod.

GlowHost.com 18 Apr 2011 22:48

Quote:

Originally Posted by mmackinnon (Post 2186050)
Hey

Weird eh?

When yer in a thread top right of the screen are the options like thread tool, administrative, search etc. Also up this is display. Click on it for the drop down and select threaded mode. The option to choose individual posts disappears so you cannot access the moderation tool box. at least for me

I guess it is not just you. I don't have moderation tools available in that view either.

IndigoSociety 18 Apr 2011 23:59

Quote:

Originally Posted by GlowHost.com (Post 2186017)
Whats a "threshold setting?"

What do your logs reveal? Its probably hits on usernames. You should be focused on IPs, then email addresses, then usernames.

I would turn off username and email checking as someone else mentioned and then turn the cache down to like a a couple days or so. As I said it is only as aggressive as you set it up to be. Holding an IP for a day or so as a known spammer is rarely going to result in a false positive.

Thanks, that helps in giving me an example. I appreciate it.

Trek 19 Apr 2011 03:10

I've been running this for a bit now (a few weeks) and already have blocked 1255 spammers, good stuff. However, I'm seeing people that I KNOW are spammers signing up and making it through, but I have no way to manually say "This dude is a spammer" as they haven't posted yet.

Is there anyway to submit them and do all the ban type stuff as if they were automatically detected, but when they haven't posted?

QuickQuestion 20 Apr 2011 00:06

I had Spam-O-Matic for a few days, and it really rocks for stopping spammers. But I came across a problem where no one can create threads or post when this mod is activated. VB 4.1.2

Can anyone toss me pointers? This is the message error that we get.

Warning: require_once(includes/functions_ghsom.php) [function.require-once]: failed to open stream: No such file or directory in [path]/includes/functions_newpost.php(443) : eval()'d code on line 32

Fatal error: require_once() [function.require]: Failed opening required 'includes/functions_ghsom.php' (include_path='.:/usr/local/php5/lib/php') in /home/content/74/7532774/html/includes/functions_newpost.php(443) : eval()'d code on line 32

oddmud 20 Apr 2011 01:42

Quote:

Originally Posted by Trek (Post 2186160)
I've been running this for a bit now (a few weeks) and already have blocked 1255 spammers, good stuff. However, I'm seeing people that I KNOW are spammers signing up and making it through, but I have no way to manually say "This dude is a spammer" as they haven't posted yet.

Is there anyway to submit them and do all the ban type stuff as if they were automatically detected, but when they haven't posted?

I want to be able to do this based on their visitor links they're posting.

I want to be able to just click "SPAMMER" button on their profile and auto submit.

Umit 20 Apr 2011 13:07

Hello, my website got attacked by a bot with a injection, I found a way to block it, and for SPAM i bought a pro key from Akesmet.
I installed and configured this mod, but I want to see the statistics. Well in the first screenshot it should be in tab Statistics & Logs, however my isn't ? Where can I find it? Also the mainpage of my forum I see I have a "Spam-O-Matic Statistics", this is empty.

WorldCraft 20 Apr 2011 13:11

This mod is fantastic! An absolute lifesaver! Thankyou!
MOTC (century)

Alan_SP 20 Apr 2011 14:20

I have a bit of a strange problem.

Before I had vBStopForumSpam mod and it worked fine. In logs I saw that there was about 9 to 10 spamers to every new user registered. Now, I see no spamers at all in logs, but only users. There's no reason why spamers should now avoid my site, so I assume this mod just don't log them.

Also, I see there are new users, but this doesn't get reflected in WGO, in part for welcoming our latest member. Something with this mod blocks showing who latest member is. Strange...

Alan_SP 20 Apr 2011 17:41

Ok, I just reenabled vBStopForumSpam and yes, Spam-O-Matic doesn't log rejeceted spamers. Already I have one spamer logged with vBSFS, but none with SOM.

I'll test further having this two mods on, to see what's going on in WGO and last member.

amd2010 20 Apr 2011 19:52

الهاك زفت

TeknoSounds 20 Apr 2011 19:54

Please read previous posts, SFS was making too many uncessary queries to the SFS database, and so now they're supposed to first hit the vB verification first, then hit SOM.
If spammers are still getting by, might need to adjust thresholds.

GlowHost.com 20 Apr 2011 20:13

Quote:

Originally Posted by oddmud (Post 2186476)
I want to be able to do this based on their visitor links they're posting.

I want to be able to just click "SPAMMER" button on their profile and auto submit.

Per previous posts this will be in 2.5

Quote:

Originally Posted by WorldCraft (Post 2186622)
This mod is fantastic! An absolute lifesaver! Thankyou!
MOTC (century)

Glad you like it :)

Quote:

Originally Posted by Alan_SP (Post 2186696)
Ok, I just reenabled vBStopForumSpam and yes, Spam-O-Matic doesn't log rejeceted spamers. Already I have one spamer logged with vBSFS, but none with SOM.

I'll test further having this two mods on, to see what's going on in WGO and last member.

Quote:

Originally Posted by TeknoSounds (Post 2186725)
Please read previous posts, SFS was making too many uncessary queries to the SFS database, and so now they're supposed to first hit the vB verification first, then hit SOM.
If spammers are still getting by, might need to adjust thresholds.

TeknoSounds is correct.

GlowHost.com 20 Apr 2011 20:15

Quote:

Originally Posted by QuickQuestion (Post 2186454)
I had Spam-O-Matic for a few days, and it really rocks for stopping spammers. But I came across a problem where no one can create threads or post when this mod is activated. VB 4.1.2

Can anyone toss me pointers? This is the message error that we get.

Warning: require_once(includes/functions_ghsom.php) [function.require-once]: failed to open stream: No such file or directory in [path]/includes/functions_newpost.php(443) : eval()'d code on line 32

Fatal error: require_once() [function.require]: Failed opening required 'includes/functions_ghsom.php' (include_path='.:/usr/local/php5/lib/php') in /home/content/74/7532774/html/includes/functions_newpost.php(443) : eval()'d code on line 32

You can search this thread for your answer, but basically it means you didn't install it correctly and do not have functions_ghsom.php uploaded to your includes/functions_ghsom.php directory.

StonePilot 20 Apr 2011 20:19

GOOD WORK! In the first 20 minutes it's already blocked 7 spammers.

Question: Do you have Mod tools to help delete existing spammers (slepping spammers) so I can get rid of them? I have probably 1,000 sleppers on my site that have zero form posts and zero blog posts.

Let me update my problem: I have at least 1,000 "sleepers" on the site with no way to quickly ban them. They have no blog posts and no forum posts - they appear to have been created so they can spam inside the User Profile and they also will spam people's Visitor Messages on other members User Profiles. There is an instant-ban tool that I can get installed into the user profile but I'd rather not have to do that if I don't have to.

GlowHost.com 20 Apr 2011 21:03

See that answer 2 posts above or check the FAQ on the first page.

Alan_SP 21 Apr 2011 02:17

Quote:

Originally Posted by GlowHost.com (Post 2186732)
TeknoSounds is correct.

Thank you, I didn't realize that. :)

What about this part of my problems:

Quote:

Also, I see there are new users, but this doesn't get reflected in WGO, in part for welcoming our latest member. Something with this mod blocks showing who latest member is. Strange...
With vBSFS enabled I see last registered user, with only SOM don't. I'll test further without vBSFS turned on.

Trek 21 Apr 2011 02:56

Quote:

Originally Posted by Trek (Post 2186160)
I've been running this for a bit now (a few weeks) and already have blocked 1255 spammers, good stuff. However, I'm seeing people that I KNOW are spammers signing up and making it through, but I have no way to manually say "This dude is a spammer" as they haven't posted yet.

Is there anyway to submit them and do all the ban type stuff as if they were automatically detected, but when they haven't posted?

Anyone reply to this? I'd like to be able to click a button on their profile to say "spammer" or whatnot. If this was already asked and answered, sorry but I couldn't find it in the thread and the thread is almost 900 replies now. =)

GlowHost.com 21 Apr 2011 03:34

Quote:

Originally Posted by Alan_SP (Post 2186835)
With vBSFS enabled I see last registered user, with only SOM don't. I'll test further without vBSFS turned on.

Not sure what you are referring to. Screenshots might help.

Quote:

Originally Posted by Trek (Post 2186839)
Anyone reply to this? I'd like to be able to click a button on their profile to say "spammer" or whatnot. If this was already asked and answered, sorry but I couldn't find it in the thread and the thread is almost 900 replies now. =)

It's been answered at least 2 times on this page alone, it is also in the FAQ on the first page.

giskard 21 Apr 2011 04:04

This has been installed for just over a month now and I think this quote from the bottom of my forum says it all.

"5436 Spammers Denied Registration"

Thank you Glowhosts, we had a very bad spammer problem before installing your software, since then only 1 has gotten through.

StonePilot 21 Apr 2011 14:10

Quote:

Originally Posted by GlowHost.com (Post 2186842)
It's been answered at least 2 times on this page alone, it is also in the FAQ on the first page.

I think there is a communication problem here. We need to define what we are talking about as some people talk about visitor links, some people talk about profile spam and there are a few other ways that this same problem is being talked about. -- Profile Page Ban would be something that would catch my attention, with benefits for that following.

Anyhow, this is a very effective piece of code, donation coming for sure!

Also, the list goes primary, secondary, tertiary and quaternary.

StonePilot 21 Apr 2011 14:34

Quote:

Originally Posted by GlowHost.com (Post 2186752)
See that answer 2 posts above or check the FAQ on the first page.

Just to clarify, it would be nice to have a tool that would ban all users that are associated with an IP. So, enter an IP and ban 300 spam account. Enter another IP and ban 250 spam accounts.

* I sent in an PP donation, but I guess I didn't realize until now that this is a company-sponsored mod so my $5 doesn't mean anything. I'll consider allowing one of the links going up on the site.

GlowHost.com 21 Apr 2011 19:41

Quote:

Originally Posted by StonePilot (Post 2186993)
Just to clarify, it would be nice to have a tool that would ban all users that are associated with an IP. So, enter an IP and ban 300 spam account. Enter another IP and ban 250 spam accounts.

* I sent in an PP donation, but I guess I didn't realize until now that this is a company-sponsored mod so my $5 doesn't mean anything. I'll consider allowing one of the links going up on the site.

The donation counts, I have to pay our programmers to make the code so every little bit helps. Thanks a lot.

Regarding this idea, its a bit risky because its not uncommon for a legit user to have the same IP address as a spammer, especially in the entire history of the forum which for many boards would span several years. The odds of banning legit users would be pretty high, especially on large boards.

Quote:

Originally Posted by StonePilot (Post 2186993)
We need to define what we are talking about as some people talk about visitor links, some people talk about profile spam and there are a few other ways that this same problem is being talked about. -- Profile Page Ban would be something that would catch my attention, with benefits for that following.

Primary - visitor links
Secondary - profile spam
Tertiary - Profile Page Ban
Quaternary - ???

What was the fourth point?

Here is my shot at defining them:

Visitor links - These are handled by auto-moderation and newbies manager. Unregisterred or newbies post are moderated when a post with a link is found. Unless we are talking about some other area.

Profile spam - This should be addressed in 2.5 via a Profile Page Ban in admin cP or possibly on the menu that pops up when you click the username on the forum postbit (if hooks system supports it) which is my vote for placement instead of having to login to admin cP.

oddmud 21 Apr 2011 19:49

Quote:

Originally Posted by GlowHost.com (Post 2187095)
Profile spam - This should be addressed in 2.5 via a Profile Page Ban in admin cP or possibly on the menu that pops up when you click the username on the forum postbit (if hooks system supports it) which is my vote for placement instead of having to login to admin cP.

Thank you! This is probably the most common spam with vB v4.X, so it should be priority #1.

Do we have an estimated time of arrival for v2.5?

I will donate once this is completed, because I feel without this option it's not as affective as it should be.

Alan_SP 21 Apr 2011 21:48

Quote:

Also, I see there are new users, but this doesn't get reflected in WGO, in part for welcoming our latest member. Something with this mod blocks showing who latest member is. Strange...
Quote:

Originally Posted by GlowHost.com (Post 2186842)
Not sure what you are referring to. Screenshots might help.

Ok, I'm talking about:

When someone registers, he's seen as the latest registered member in WGO. And he stays there till new member registers and so on and on.

I noticed with SOM that latest registered member isn't shown in WGO, but a member before (not necessarily just before, there could be more of them between). Like for some reason SOM blocks latest registered member from showing on WGO.

I'll test it a bit more, to see if it is some problem with caching or something else.

EDIT: Here's an example:

SOM log (erased IPs and emails):

Quote:

2011-04-21 22:39:05 MALA GARA Passed StopForumSpam checks. Sent to vBulletin Registration System.
2011-04-21 18:43:58 nemiran
On WGO, now (22:55) you see: Welcome to our newest member, nemiran

Obviously MALA GARA registered after, but it's still not shown. It may be something related with caching, but I'll see. If it is just caching, it's not a problem.

GlowHost.com 21 Apr 2011 21:59

I don't know what WGO is.

TeknoSounds 21 Apr 2011 22:51

wgo = What's Going On?

Its that statistics box at the bottom of your main forum index page, listing who's online, forum stats, etc.

GlowHost.com 21 Apr 2011 23:09

I don't know, I never noticed it before. You are the first to report it if it exists.

Alan_SP 22 Apr 2011 01:44

Yes, WGO is What's Going On, you also use it for your statistics (if it's enabled). On forum home, go to bottom of your page and above footer there it is. :) And now I think that this is something related with caching, not with SOM. I'll test it a bit further.

AndrewRich 22 Apr 2011 04:20

Installed and set for SFS but not AKismet. Seems to work great!

dustoff99 22 Apr 2011 11:48

Question: If a user passes the initial check and still is able to register but didn't post, is there an option to report them?

I don't want to post this users info, but he appears to be a spammer by his email / and his website / info etc....I know my US gaming clan doesn't need acrylic chairs from Europe.

I know I can ban him after he post to report, just didn't know of an option before hand. I would be nice to have an option in the User Manager Screen to do this.

PS Only been using this mod for a few weeks and already denied 25 people already. Great MOD so far.

Alfa1 22 Apr 2011 12:44

I have two feature requests for this awesome modification:

1. IF the SFS server is unreachable, check again at a later time. My reason for requesting this, is that I see that some spammers get past SFS. I assume this this due to SFS being unreachable or my server maxing out.
2. Usergroup Permissions for showing 'Home Page URL'. (IF member is in the newbie usergroup, then do not show their 'Home Page URL' in postbit.)

I added this article to vb.com:
Bulletproof spam & scraper protection

Alan_SP 23 Apr 2011 00:25

Quote:

Originally Posted by Alfa1 (Post 2187349)
2. Usergroup Permissions for showing 'Home Page URL'. (IF member is in the newbie usergroup, then do not show their 'Home Page URL' in postbit.)

Couldn't you make your own edit of postbit(legacy) for Home Page URL? If someone is member of certain usergroup, just don't show it to the world.

Alfa1 23 Apr 2011 00:35

Quote:

Originally Posted by Alan_SP (Post 2187564)
Couldn't you make your own edit of postbit(legacy) for Home Page URL? If someone is member of certain usergroup, just don't show it to the world.

I think it would be beneficial for everyone. Not just me. The Homepage url field is one of the few places that spam bots place their links.

It would be easy for me to do that if the conditional would depend upon the reader, not the poster. But what I want to do is hide the homepage url if the poster is in usergroup X,Y,Z.


All times are GMT. The time now is 05:26.

Powered by vBulletin® Version 3.8.14
Copyright © 2022, MH Sub I, LLC dba vBulletin. All Rights Reserved. vBulletin® is a registered trademark of MH Sub I, LLC
Copyright ©2001 - , vbulletin.org. All rights reserved.