Re: signup bots

This WebDNA talk-list message is from

2006

It keeps the original formatting. numero = 66927
interpreted = N
texte = DanMy system is far simpler than that, for the tech savvy hacker, they would be able to bust it fairly easily.I knocked this together in an hour or so to try to solve a problem, so far it has been successful. Have a look at the technique, I am sure you will be able to improve on it fairly easily.Stuart Tremainidfk web developments, sydney, australiaOn 27 Apr 2006, at 1:38 AM, Dan Strong wrote:> I can envision a scenario where ImageMagick is not required:>> 1) Create images in Photoshop for 0-9> 2) Name them randomly ("fhyeRy.gif", etc.)> 3) Create images.db which ties 0-9 to the current names of the images> 4) Upon loading the form, generate a random string of numbers, > write number to temp.db or cart header> 5) [lookup] or [search] to match current corresponding image name > to each number> 6) Display correct images> 7) Check user input for validity against temp.db/cart header> 8) Change image names in directory> 9) Change image names to correspond in images.db> 10) Rinse, lather, repeat>> Obviously, this could be expanded to add letters, etc and the > entire thing could be automated fairly easily> Am I on track with what you've done, Stuart?>> -Dan>> On Wed, 26 Apr 2006 06:50:07 -0500> Clint Davis wrote:>> Stuart,>> I'd like to see the code for this. I assume you're using ImageMagick?>> On 4/25/06 6:27 PM, "Stuart Tremain" wrote:>>> Email me if you want the code for this>>> http://development.idfk.com.au/numbers.html>>> Stuart Tremain>>> idfk web developments, sydney, australia>>> On 26 Apr 2006, at 1:03 AM, devaulw@onebox.com wrote:>>>> What I have seen on other sites is either a CAPTCHA or an email>>>> confirmation with an opt-in link. CAPTCHA are those pictures with>>>> distorted letters and numbers that have to be typed in. Eventually>>>> the bots will catch up, but for now CAPTCHA seems to be in>>>> widespread use.>>>> The email opt-in requires that the user click a link in an email>>>> that you send. The problem with this is bots can easily do this.>>>> This only keeps out the malicious non-techie.>>>> Bill>>>> -----Original Message----->>>> From: Lester >>>> Sent: Tue, 25 Apr 2006 05:12:35 -0700 (PDT)>>>> To: "WebDNA Talk" >>>> Subject: signup bots>>>> I have a signup form on a site that gets hit 3-4x a>>>> day by some kinda splog bot (used to be 1x every week>>>> or so).>>>> It sets up a profile and links to seo sites, all of>>>> which are plain old link farms.... I manually approve>>>> each signup, so it never becomes an active member...>>>> I know Yahoo uses text and number graphics randomly>>>> generated as a final item to be entered on a signup,>>>> and I've seen that same technique in php based message>>>> boards....>>>> Anyone doing anything with webdna to prevent auto>>>> signups in forms?>>>> lester>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com>> Web Archive of this list is at: http://webdna.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: signup bots ( Stuart Tremain 2006)
Re: signup bots ( "Dan Strong" 2006)
Re: signup bots ( Clint Davis 2006)
Re: signup bots ( Stuart Tremain 2006)
Re: signup bots ( devaulw@onebox.com 2006)
Re: signup bots ( Kenneth Grome 2006)
signup bots ( Lester 2006)

DanMy system is far simpler than that, for the tech savvy hacker, they would be able to bust it fairly easily.I knocked this together in an hour or so to try to solve a problem, so far it has been successful. Have a look at the technique, I am sure you will be able to improve on it fairly easily.Stuart Tremainidfk web developments, sydney, australiaOn 27 Apr 2006, at 1:38 AM, Dan Strong wrote:> I can envision a scenario where ImageMagick is not required:>> 1) Create images in Photoshop for 0-9> 2) Name them randomly ("fhyeRy.gif", etc.)> 3) Create images.db which ties 0-9 to the current names of the images> 4) Upon loading the form, generate a random string of numbers, > write number to temp.db or cart header> 5) [lookup] or [search] to match current corresponding image name > to each number> 6) Display correct images> 7) Check user input for validity against temp.db/cart header> 8) Change image names in directory> 9) Change image names to correspond in images.db> 10) Rinse, lather, repeat>> Obviously, this could be expanded to add letters, etc and the > entire thing could be automated fairly easily> Am I on track with what you've done, Stuart?>> -Dan>> On Wed, 26 Apr 2006 06:50:07 -0500> Clint Davis wrote:>> Stuart,>> I'd like to see the code for this. I assume you're using ImageMagick?>> On 4/25/06 6:27 PM, "Stuart Tremain" wrote:>>> Email me if you want the code for this>>> http://development.idfk.com.au/numbers.html>>> Stuart Tremain>>> idfk web developments, sydney, australia>>> On 26 Apr 2006, at 1:03 AM, devaulw@onebox.com wrote:>>>> What I have seen on other sites is either a CAPTCHA or an email>>>> confirmation with an opt-in link. CAPTCHA are those pictures with>>>> distorted letters and numbers that have to be typed in. Eventually>>>> the bots will catch up, but for now CAPTCHA seems to be in>>>> widespread use.>>>> The email opt-in requires that the user click a link in an email>>>> that you send. The problem with this is bots can easily do this.>>>> This only keeps out the malicious non-techie.>>>> Bill>>>> -----Original Message----->>>> From: Lester >>>> Sent: Tue, 25 Apr 2006 05:12:35 -0700 (PDT)>>>> To: "WebDNA Talk" >>>> Subject: signup bots>>>> I have a signup form on a site that gets hit 3-4x a>>>> day by some kinda splog bot (used to be 1x every week>>>> or so).>>>> It sets up a profile and links to seo sites, all of>>>> which are plain old link farms.... I manually approve>>>> each signup, so it never becomes an active member...>>>> I know Yahoo uses text and number graphics randomly>>>> generated as a final item to be entered on a signup,>>>> and I've seen that same technique in php based message>>>> boards....>>>> Anyone doing anything with webdna to prevent auto>>>> signups in forms?>>>> lester>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com>> Web Archive of this list is at: http://webdna.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Stuart Tremain

DOWNLOAD WEBDNA NOW!

Re: signup bots

2006

Top Articles:

Related Readings: