bbAntiSpam: Discuss how to stop web spam

The forum is retired.

bbAntiSpam Forum Index - Textual Confirmation - what do the bots answer?

Author Message
carolyn81



Joined: 22 Dec 2006
Posts: 2
Location: Washington, D.C.
Posted: Sat Dec 23, 2006 2:31 am    Post subject: what do the bots answer?  
I'm curious to see what the spam bots are entering in the textual confirmation field. Might there be a way to include that information in the spam registration email? It might help give us better ideas for more effective questions.

I love this mod! At least five spam bots tried to register today, and all failed. I also had one real registration, and it worked! I'll post a testimonial thread. Smile
_________________
Come Together
admin
Site Admin


Joined: 18 Apr 2006
Posts: 805
Location: Saint-Petersburg, Russia
Posted: Sat Dec 23, 2006 5:31 am    Post subject:  
Quote:
I'm curious to see what the spam bots are entering in the textual confirmation field. Might there be a way to include that information in the spam registration email?

I think that bots write nothing to the field. However, if you are curious, you can edit the code. (Warning: do it only if you know PHP.)

Find
Code:
function tc_bad_answer() {

After, add:
Code:
global tc_answer;

Find
Code:
'NAME'      => $username,

Change to:
Code:
'NAME'      => $username . "\nTC answer: " . tc_answer,


Quote:
I love this mod! At least five spam bots tried to register today, and all failed. I also had one real registration, and it worked!

I'm very happy to hear it!
mezmorizing



Joined: 03 Jan 2007
Posts: 6
Posted: Wed Jan 03, 2007 8:00 pm    Post subject:  
admin wrote:
Quote:
I'm curious to see what the spam bots are entering in the textual confirmation field. Might there be a way to include that information in the spam registration email?

I think that bots write nothing to the field. However, if you are curious, you can edit the code. (Warning: do it only if you know PHP.)

Find
Code:
function tc_bad_answer() {

After, add:
Code:
global tc_answer;

Find
Code:
'NAME'      => $username,

Change to:
Code:
'NAME'      => $username . "\nTC answer: " . tc_answer,


Quote:
I love this mod! At least five spam bots tried to register today, and all failed. I also had one real registration, and it worked!

I'm very happy to hear it!


Hmmm, that code does not work.

Quote:
Find
Code:
function tc_bad_answer() {

After, add:
Code:
global tc_answer;


This will bring an error. The following code will not create an error...

Find
Code:
function tc_bad_answer() {

After, add:
Code:
global $tc_answer;


However, the email recieved says the imputed answer is TC answer: tc_answer even when the question was not answered.
admin
Site Admin


Joined: 18 Apr 2006
Posts: 805
Location: Saint-Petersburg, Russia
Posted: Fri Jan 05, 2007 4:16 am    Post subject:  
Sorry for delay, I had a nice offtime time.

You are right that the correct string is not
Code:
global tc_answer;

but
Code:
global $tc_answer;


By analogue, instead of
Code:
'NAME'      => $username . "\nTC answer: " . tc_answer,

the correct code is
Code:
'NAME'      => $username . "\nTC answer: " . $tc_answer,


Please notify if this change works.
SuperHebbe



Joined: 08 Mar 2007
Posts: 2
Posted: Thu Mar 08, 2007 9:31 pm    Post subject:  
Hi

I just tested this code, but it returns nothing.. Maybe you need to make a new variable and then copy $tc_answer and $answer to the new variable before calling the tc_bad_answer function...
_________________


SuperHebbe
admin
Site Admin


Joined: 18 Apr 2006
Posts: 805
Location: Saint-Petersburg, Russia
Posted: Fri Mar 09, 2007 5:15 am    Post subject:  
I'll look at it, but not now. I'll drop a note here when ready.
_________________
Oleg Parashchenko, bbAntiSpam
Do you love our tools? Please sponsor further development!
asuter



Joined: 29 Nov 2006
Posts: 9
Location: Fribourg, Switzerland
Posted: Sat Mar 10, 2007 4:47 pm    Post subject: How to get the entered answer...  
Hello everybody

I think, that the answer is very easy. Instead of
Code:
global $tc_answer;

add the following
Code:
global $HTTP_POST_VARS;
$tc_answer = $HTTP_POST_VARS['tc_answer'];


All the post variables of the register form should be available. So you could also get the id of the TC question that had been asked, using
Code:
$tc_question_id = $HTTP_POST_VARS['tc_question_id'];


Clearly, most of the spam bots wouldn't post these TC specific variables (yet). But a human would - so you could see, whether or not the notification came because of a spam bot or because of a wrong answer!

By the way, the other line of code
Code:
'NAME'      => $username . "\nTC answer: " . $tc_answer,

is okay.

That should work. Please let me know, if it does so.

TC is great....
admin
Site Admin


Joined: 18 Apr 2006
Posts: 805
Location: Saint-Petersburg, Russia
Posted: Sun Mar 11, 2007 5:25 am    Post subject:  
Thanks! I haven't checked yet, but it seems working.
_________________
Oleg Parashchenko, bbAntiSpam
Do you love our tools? Please sponsor further development!
asuter



Joined: 29 Nov 2006
Posts: 9
Location: Fribourg, Switzerland
Posted: Mon Mar 12, 2007 10:21 pm    Post subject: Non-empty answers  
Most of the time, the bots send nothing as TC answer. Today my forum received two non-empty answers from spambots (Sureness of spambot: 99%).

    69.50.164.10-custblock.intercage.com (69.50.164.10)
    69.50.164.14-custblock.intercage.com (69.50.164.14)

Both have sent within 1 second the answer "0".

One should have given the result of three plus three and the other the name of the capital city of Switzerland. Well, 0 is clearly wrong in both cases.

Best regards
Adrian

Ok.