Log in | Register
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Robots skirting registration

Topic-icon Robots skirting registration

Active Subscriptions:

None
14 years 5 months ago #17218 by ryaarm
I've just recently moved my site to "live", and I am now getting multiple bot registrations every day. They are somehow bypassing recaptcha and the required fields on the registration form.

I'm a little baffled of how they are doing this. But, someone at Joomla mentioned that they may be getting through one of the programs that handles registration...and that it could be through the Facebook integration. Well, I have AEC to handle payments, JomSocial to handle to community, and JFBConnect to handle to Facebook integration. I've checked with the other two, and now I'm hoping you guys might have a solution.

So, any idea how they might be getting through JFBConnect? Has anyone else mentioned this problem?

Thanks :)
The topic has been locked.
Support Specialist
14 years 5 months ago #17221 by alzander
There's no way there getting through JFBConnect, or at least, not that we know of. Our registration flow requires that the user trying to create an account through us logged into Facebook already and has approved your application. Also, only one FB user can create an account, so unless they have mass fake FB accounts, that's not the problem.

What I would highly, highly, highly recommend, and what we use on this site, is Cedit Registration Validator ( JED link ). We use version 2 (like $20), but version 1 is free. No clue what the difference is.

Our site has at least 200 bogus registration attempts daily (we have a public forum, and are a decent size site), and Cedit catches almost all of them. It uses tools like Project Honeypot, StopForumSpam, Spamhaus, and some others to check the user's IP and email during the registration process and will block the attempt if its listed on any of those sites.

It's better than captcha or other means that can be automated. We actually removed captcha from our standard Joomla reg process about 6 months ago because it didn't do much and the plugin above closed the gap.

The only thing you'll need to look into is that the validator works with all your different registration extensions. It definitely does with Joomla. It doesn't with JFBConnect, which as mentioned above should be fine (it is on this site). I believe it works with JomSocial and not sure about AEC.

Anyways, hope that helps.. I haaaaattteee spammers, and it's a constant task staying vigil.

Alex
The topic has been locked.
Active Subscriptions:

None
14 years 5 months ago #17246 by ryaarm
Replied by ryaarm on topic Robots skirting registration
Hey Alex,

Thank you for that link. That is exactly what I need. However, it appears to only be available for Joomla 1.5. (FREE). If you want to use it on newer Joomla versions, you must go with the next version (PRO), which you have. Here is the link: Pro Version . I have installed, set to their specifications, and I am anxiously waiting to see if I get any more bots registering.

Thanks!!!!!!!!
The topic has been locked.
Support Specialist
14 years 5 months ago #17247 by alzander
Didn't know that about the free version, but it's well worth the $20.. trust me. We have the following settings, in case your curious:
Blacklisting of the following domains: .163.com, .21cn.com, .sohu.com, .tom.com, .yeah.net
Habitual spammers or worse. Nothing good ever comes from those domains, we've found, but your experiences may vary.

We use the following services:
Stopforumspam (reject any match)
Project Honeypot
Validate Email Domain
Spamhaus

No other settings are enabled. That config really works well for us. The Advanced tab lets you setup logging of passes/failures, so that's a good way to check how things are going.

Anyways, really hope that gets you going, and good luck!
Alex
The topic has been locked.
Active Subscriptions:

None
14 years 5 months ago #17249 by ryaarm
Replied by ryaarm on topic Robots skirting registration
Arrrgggh - it only works up to Joomla 1.6. (I'm on Joomla 1.7). It blocks EVERY attempt to register on my site, even if I whitelist my domains email addy. Crap! Are you guys still running Joomla 1.5?
The topic has been locked.
Support Specialist
14 years 5 months ago #17251 by alzander
Yes, we're still running Joomla 1.5. 1.6/1.7 doesn't offer anything that we need right now, but I'm sure over the course of 2012 we'll be updating to 2.5 (the release coming out in a few weeks that is the successor to 1.7).

That sucks about the validator not working in 1.7. I did find the JED link for the pro version ( here ). It does state 1.6 only, but I honestly haven't heard of many extensions not working in 1.7 when they worked in 1.6. I'd definitely contact support as their reviews seem to indicate that support is pretty good.. though there's not too many reviews. If not, you can hopefully get your money back.

Not to put you on a JED hunt, but I did a search there for stopforumspam (the service that works great for us through the Reg Validator plugin) and found only one other extension that states 1.7 support:
extensions.joomla.org/extensions/access-...ty/site-access/14027
Never used it, and not sure how it would integrate with JomSocial/AEC, but possibly worth looking into.

Good luck,
Alex
The topic has been locked.
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Robots skirting registration
From the Blog
Facebook | Twitter | LinkedIn | Blog RSS