^ I'd suggest to try
signup questions plugin (alternative for security questions plugin) & use your own set of questions
I changed the answers to be wrong and meaningless - they still got in.
Something has been hacked - either in MyBB or the "Registration Security Question v1.1 by -G33K"
Would someone mind changing their registration security question answers to gibberish just to see if they are still getting in?
It would indicated a hack somewhere.
I HAVE custom questions, questions that people need to read and truly know as its very specific...
Something has happened and yes I just got another registration today.
I was getting 5-10 every hour until I put in the fassim api stop spam plugin, the stop forum spam for mybb plugin does NOTHING and doesn't work. Now one to two a day are registering... which is still bad.
Can you state what kind of spam is being received? I've had some credit card spammers where I've had to use Labroccas
hot words plugin to get rid of them. You'd have to be a subscriber ($10) to download it, but it's worth it if you're getting spammers that are oriented towards one subject.
No they are fake accounts, just many different fake accounts a lot of them from china some from russia, all different IP addreses, all that are listed on stopforumspam.com
I only had two that bombed the forum with posts rest of them register but i get to delete the accounts in time.
The posts were related to drug sales (viagra, etc... that kind of crap)
I've even tried htaccess... still getting in. We're constantly getting around 10 fake accounts every hour. They are bypassing image verification, security questions, and htaccess.
Is there a plugin where the activation email send the user a code that he needs to enter manually on the forum to activate his/her account?
On another note... If hacker groups need something to do... there are these servers that attack our forums with spam they can look at
Well, I think it's MyBB bug. Because on the forum
mentioned earlier there was no plugin except MyShoutbox and the antispam plugins I tried in different combinations (which seem to be effective on bigger forums than that one). And as I see already 7 people complained about this issue in this thread.
SFS
suffered from a DDoS attack. During these occurrences the plugin will automatically allow through a user who registers.
Note that this doesn't affect other spam plugins. They should continue working as normal.
You can use ACP Views to see users who registered in a defined period (a week, 2 weeks etc.).
(2013-11-24, 11:31 PM)CloudyBright Wrote: [ -> ]I changed the answers to be wrong and meaningless - they still got in.
Something has been hacked - either in MyBB or the "Registration Security Question v1.1 by -G33K"
Would someone mind changing their registration security question answers to gibberish just to see if they are still getting in?
It would indicated a hack somewhere.
That stopped them. . .so far.
I'm using the Registration Security Question.
It has six questions - the questions are all meaningless and the answers are jumbled letters.
Soooo . . .it would seem that the spammers are using some type of rudimentary intelligence system.
I wonder if their algorithm take the question and plugs it into Google for an answer?
Still getting one to two registrations per day, still better and more manageable than 10-20 a day but this is still ridiculous hope someone comes to the bottom of this.
They are bypassing custom security questions.
Only the fassim stop spam plugin has helped so far reducing the number down to one to two registrations.