first post - hi all!

Printable View

July 14th, 2007, 03:20 PM
jeremykGG

first post - hi all!

Gidday there.
it is my first post on this website!

I spent 8 days looking in google to find this forum

very nice site.

see ya all

jeremy

________________________
deserts
July 14th, 2007, 06:22 PM
striker0204

nice to meet you jeremy!

ao has one of the greatest selections ive ever seen. many many members, MANY WELL EDUCATED MEMBERS to be exact.

there are definitely nerds on this forum :)

enjoy, and uhhh put us to use with your questions :)
July 15th, 2007, 02:35 PM
JPnyc

Welcome to AO, Jeremy!
July 15th, 2007, 04:13 PM
Moira

Welcome jeremykGG :) hope you enjoy your stay here!
July 15th, 2007, 11:43 PM
nihil

OK, maybe I am not going to win the "Mr. Niceguy award this year?"

http://mindlessselfindulgence.com/bo...rofile;u=55487

Check "position" entry ??????????

And from the "BollyWoodMantra" site:

http://www.bollywoodmantra.com/modul...0c35eb5beb456b

It would that seem that young "jeremy" has his intro text jammed in an infinite do loop?

I have to kill this one out of deference to my Australian friends......... "Gidday" rather than "G'day"........... really! :eek:

Hello Mr. Spambot............ and goodbye ;)

EDIT: Actually, this bot is a bit smarter than a lot we have to deal with. Please look at this membership and note how it subtly changes the text so that a straight pattern matching filter would be circumvented?

http://www.gamblingonlinemagazine.co...ad.php?t=15057
July 16th, 2007, 12:01 AM
striker0204

haha nihil your a spoil sport >.<

hey! check out the post im ABOUT to post in something like random discussions. ill title it "Google Yourself" check it out :)
July 16th, 2007, 10:10 AM
nihil

Hi Striker,

The current trend seems to be developing towards spamming forums, blogs, and social networking (Myspace etc.) sites.

I have yet to see anything informative on the infrastructure, methodology and economics of this activity.

Straight mail spam is pretty easy to figure:

You send 100,000 spams and get a 1% takeup. You make $50 on a transaction and you pay the spammer 1 cent per spam............ $50,000 - $1,000 = $49,000 profit. That's easy to figure out a business model with whatever numbers work for you. I guess you have to factor in the e-mail addy "harvesters" fees as well? :D

The thing with site spamming is that it is a much more drawn out process, as you actually have to create and validate an account that will only work once. Compare this to an e-mail addy that will work until the account is closed?

Also, given even the basic protections that site software provides, there has to be human input to get the registrations to work?

It is an interesting subject?

:)
July 16th, 2007, 12:25 PM
WolfeTone

VB has a feature where you can implement a security question which has helped me prevent bot registration successfully.

E.g. What is the third letter of the word: antionline.

If the answer is not t, then you can't register.
July 16th, 2007, 01:22 PM
nihil

Hmmm,

That's an interesting suggestion. OK we have the obvious:

1. e-mail confirmation, where they have to provide a valid e-mail and respond to the welcome.

2. Captchas.............

But they seem to get round those, which makes us suspect that the whole process must be partly human-supported?

A security question would be an additional layer, but would need to be complex and variable to avoid easy circumvention by a bot. By that I am suggesting that it would probably defend a specific site/group. However if a human looked at it they could determine the rules, and automate the response.

I guess that a lot of blocking is still down to manual verification. Hopefully the botmaster doesn't worry about the ones that fail so long as he is getting sufficient successes.

Another method is to measure the minimum amount of time that a real human would take to fill out the registration form. A bot will generally take far less than that so you bounce those applications.
July 16th, 2007, 01:36 PM
WolfeTone

Bots are standardised per forum type.

So a VB Bot is programmed to respond to the email address verification field as each VB forum presents itself the same.

Captchas are easily circumvented by bots also.

So an option is an additional random security question.

Bots at present do not bypass these, so the only option would be human verification.

I'd suggest that bot writers don't care about the few that fail as long as there bot registers on 90% of forums.

Might be worth implementing and keeping an eye on the registrations.
July 16th, 2007, 03:26 PM
nihil

Hmmm,

I think that we now have multiformat bots from what I have been seeing. Shouldn't be that difficult I would have thought..........some sort of initial probe would then activate the appropriate subroutine?

The captcha thing is interesting as I suspect that the botmasters must have copies of the normally available fonts. It would be intersting to see what effect a custom captacha font had?............... I know, I know "security through obscurity" :D
July 16th, 2007, 03:39 PM
striker0204

ok i get how hes spamming, what if he really is just trying to find new forums? how do you know hes spamming? i dun get it!!!

andddd i still dont get how the hell anyone benefits as far as gaining monetary value by registering for a forum...
July 16th, 2007, 04:12 PM
nihil

Quote:

what if he really is just trying to find new forums?

Oh but he is..............to spam them ;)

Quote:

andddd i still dont get how the hell anyone benefits as far as gaining monetary value by registering for a forum...

Neither do I, as I stated in post #7 to this thread. But they obviously are making money out of it or they wouldn't do it?
July 16th, 2007, 05:38 PM
Moira

Quote:

Originally Posted by nihil

Hi Striker,

The current trend seems to be developing towards spamming forums, blogs, and social networking (Myspace etc.) sites.

Tell me about it :mad: I'm forever removing spam guestbook comments from my own site - when the subscription is next due I'll think twice about renewing it unless they come up with something better than their current defense, which is to allow a person to globally block an IP, then when that IP reaches a score of 10, they're banned from any guestbook (from that company). Trouble is you can only block an IP address once which is ridiculous - if someone leaves a spam message twice on your site, then why shouldn't you add another point to their score?
July 16th, 2007, 08:33 PM
mungyun

Nobody mentioned anything about his signature. It links to some jeremy guy's site on mit.edu - Has to be a real person also because how would a bot find the roll call forum to say hi. But then again if he goes to mit, he would probably be smart enough to make a 'smart' bot. Interesting either way.

Edit: Actually i think that might be open to anybody but im not sure. havent found a register page

Edit:Edit: Ok nevermind, it is only for students.
July 16th, 2007, 09:41 PM
nihil

I really don't care, a bot is a bot no matter who wrote or is using it. The Mods at SuSE Linux forum think the same way:

http://www.suseforums.net/index.php?showuser=32586

:spank:

:D