Welcome, Guest!!
follow us on... rss

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Mike

Pages: 1 [2] 3 4 ... 20
16
BotScout Discussion / Re: IP address of API server
« on: October 20, 2013, 09:38:40 AM »
What is the IP address of the API Server to make sure my Firewall is not blocking it.

# ping botscout.com
PING botscout.com (96.44.142.138) 56(84) bytes of data.
64 bytes from quad1.bscout.com (96.44.142.138): icmp_req=1 ttl=64 time=0.021 ms
64 bytes from quad1.bscout.com (96.44.142.138): icmp_req=2 ttl=64 time=0.016 ms
64 bytes from quad1.bscout.com (96.44.142.138): icmp_req=3 ttl=64 time=0.015 ms

17
BotScout Discussion / Re: Invision Power Board 3.x
« on: September 07, 2013, 05:19:13 PM »
If there's no plugin for it then you may be able to use the General Code package. It's a fairly simple modification in most cases- find the page the registration form submits to and place the intercept code in the section where the form variables are validated (but place them before the original validation code).



Hello guys,
I was reading over the documentation and I was curious if anyone has successfully installed botscout on IPS v 3.x ?

I would love to know how to enhance IPS spam service with botscout.

Best Regards,

Erich

18
To work, the BotBuster code needs to be able to "see" the submitted form variables for the user's name, email address, and IP. In some cases you might need to build a little bit of code separate from the native code in order to expose these variables so the BotBuster code can make use of them.

In your form the code needs to placed such that it can determine if it's being submitted or not. The easiest way to do this might be to check to see if those vars were present or not.


Code: [Select]
if (!empty($_SERVER['HTTP_CLIENT_IP']))
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }

//////////////////////////////////////////

// are we viewing the form or submitting it?
if ( !empty($_POST['request_ip'])  &&  !empty($_POST['form_id']) &&  !empty($_POST['form_name']) ){

// submitting...
// at this point you'll need to alias the incoming vars to match the ones
// used in the botbuster code, or modify the the botbuster code directly.


      // BotScout.com "BotBuster" check
      include('/path/to/my/directory/BotScout.php');



}
//////////////////////////////////////////

19
BotScout Discussion / Re: Bots that just register not being caught?
« on: March 14, 2013, 05:40:18 PM »
Many of the IP addresses of these bots are NOT showing up in the Botscout database.

That's because new IPs are constantly being used and discarded; it's literally impossible for anyone or any service to keep up with it 100% because there is no way to predict in advance what IP or IP range the spammers will use next.


I suspect that they're being used only to create accounts, so they're not triggering the honeypots.  The botters presumably use other bots to attempt to create the spam.

That's also possible.

Some samples of these registration bots:  113.212.71.10, 86.178.209.126, 188.126.69.148 (in DB), 66.249.73.237, 198.167.239.164, 188.142.16.131 (in DB), 108.20.177.249. 192.95.38.127.

As you can see, only a quarter of the bots are in the Botscout database.

Yes, please see above. As new IPs are caught they're added, but there will always be a lag regardless of how you do it or what service you use. It's simply not always possible to tell if a given registration event is from a bot or a real person (who may in fact be a spammer).


This isn't going to stop the spammers from clogging my user database with their crap.  Any idea what's going on here?  Is a honeypot based on user registrations a good idea?

Nothing will prevent all bots or humans acting in concert with bots. You may want to add some additional layers of spam or bot protection (hidden fields, time-gating, stronger CAPTCHAs, etc). But nothing will completely stop spam registrations, the best you can hope to do is reduce it radically. In some cases manual validation of registrations may be necessary.



Is reporting the IP addresses at http://www.botscout.com/bot_submitter.htm a good idea?  I tried entering some IP addresses there (no e-mail or name is available), but there is no acknowledgement after I submit the form, so it's hard to tell if that does anything.

You need all 3 items (IP, e-mail, and name) for a valid entry.

20
BotScout Discussion / New Code Added: MyBB Forum
« on: January 19, 2013, 02:25:43 PM »
Thanks to Jimmy Pena, there is now a BotScout plugin for the MyBB Forum.

Thanks, Jimmy!

21
BotScout Discussion / Re: botscount api mod for smf
« on: December 25, 2012, 03:17:56 PM »
Yes, you'll probably want to get an API Key.

You enter it in the SMF control panel settings for Botscout, in the "API Key" field.


once I install this mod, do I need to do something else? enter an api key? if so where do I enter it?

thanks.

22
BotScout Discussion / Re: Error message showing on SMF
« on: May 03, 2012, 08:50:39 AM »
Thank you for posting the solution here, I'm sure other people will find this useful.

Found it!

It was in the Modifications.english.php file in the theme folder.

If anybody else is having issues, that's a place to check if you've gone through the other steps first.

23
BotScout Discussion / Re: Error message showing on SMF
« on: May 03, 2012, 07:50:17 AM »
I'd look in the index.php file for the current theme, or in the index.template.php file for the current theme and also in the default theme.

I suspect you'll find something right near the top of the file. If not, you can send us both files and we'll take a look. PM me if you need an email address to send to.

I've already uninstalled the BotScout mod, but I don't know where the error is coming from. I can't find the file that is still causing the error to trigger. Any ideas where I should be looking?

24
BotScout Discussion / Re: Error message showing on SMF
« on: May 03, 2012, 06:57:29 AM »
Weird...I don't know why the package manager would hiccup like that. (??)

If you can send us the file with the code in it, I'll edit it out for you.

It was installed through the package manager.

25
BotScout Discussion / Re: Error message showing on SMF
« on: May 03, 2012, 06:29:49 AM »
We've no way to know what the mod did in terms of changes, but it's possible that you'll need to manually edit out some code from the page. If you can send us the page or post it here, we'll take a look.

Looking at the page, it does look like the mod didn't install correctly (and I can see the code embedded in the page). Was it installed manually or through the Package Manager?



It sounds like

Well, I deleted the mod and cleared the forum cache, but the error code remains. I've installed version 1.3 and it seems to be working fine, but the error caused by version 1.1 remains.

26
BotScout Discussion / Re: Error message showing on SMF
« on: May 02, 2012, 03:02:16 PM »
It's tough to tell without seeing the file, but if I had to guess I'd say that the code you're seeing got inserted before the opening php tag, or between a closing tag and an opening tag. If you can post the modified file we'll take a look.

27
BotScout Discussion / Heads up: DNS Changer Alert
« on: April 20, 2012, 05:00:05 PM »
Not a joke.  Check your PC now. Forward this to people if you want.
 
 ---------------------------------------------------
There has apparently been a MAJOR stealth virus quietly infecting PCs for the last few months that has recently come to light.
 
The FBI is encouraging users to visit a website run by its security partner, http://www.dcwg.org, that will inform them whether they're infected and explain how to fix the problem. After July 9, infected users won't be able to connect to the Internet.
 
http://www.dcwg.org/
 
Click the 'detect' button and follow the steps.
 
You can also go here to do a double-check  http://dns-ok.ca/results-en.html

Again, this isn't some joke or funny trick page, this is legit. More information here:
 
http://townhall.com/news/us/2012/04/20/hundreds_of_thousands_may_lose_internet_in_july

28
BotScout Discussion / New plugin developed for Joomla
« on: April 10, 2012, 05:54:19 AM »
A new plugin developed by one of our users, Adrian Rosian, for Joomla:


http://extensions.joomla.org/extensions/access-a-security/site-security/spam-protection/19095

JJAntispam helps you prevent spam registration on your Joomla website by checking the spammer's signature against the spambusted.com spammer database. If the user that tries to register gets a positive hit, he is denied registration.

In version 1.3 if you block users you are automatically reporting them to SpamBusted. This way their IP will never bother you again.

In version 1.4 you can add an extra layer of security by checking against Botscout as well. Since version 1.4 uses Joomla transport layer for server-to-server communication, Joomla 2.5 is most recommended.

Author Website: https://www.joomlajingle.com

29
BotScout Discussion / Re: 2 email addresses in "BotScout.php"?
« on: March 21, 2012, 05:04:06 AM »
You can try separating the email addresses with a comma like this:

$toText = "you@YourEmail.com, me@myEmail.com";

I don't know if that will work. If not, you could add a BCC or CC address in the header section and modify the mail() line to look like this:

$bccText = 'me@myEmail.com <me@myEmail.com>';
mail($toText, $subjectText, $msgText, "To: $toText <$toText>\n" . "From: $fromText <$fromText>\n" . "Bcc: " . $bccText . "\n");




Hi

In the "BotScout.php" file is there any way to allow the bot emails to be sent to 2 email addresses? I have 2 administrator (including myself) on my forum and at present I am forwarding the email notifications I get to the other admin so he is aware the API is working.

I thinking specifically of the line:

// if sending alerts, send them to what email address?
$toText = "you@YourEmail.com";

Many thanks for a great service
Chris.


30
BotScout Discussion / Changes
« on: February 20, 2012, 09:49:54 AM »
We've instituted some changes at BotScout, some on the user side, some behind the scenes.

The most noticeable change for users is the removal of paginated results. The listing of bots page-by-page was of no real value except to other bots scraping our pages. This drove the server load up needlessly, and was most often used by bot-herders to see if a bot had been found.

Pages: 1 [2] 3 4 ... 20