PLEASE VERIFY NEW MEMBERS TO HELP AVOID SPAMMERS

It is targeted insofar as they seem to have found a way past the spam filters, and then can link to the sites using their twitter accounts. But nothing more nefarious than crass oppurtunism. They are bots, after all.

the entire board is spammed. Is the spam spread if we post to s thread that has been spammed?

I know this may sound anti-social and exclusionary which is not ideal on a generally socialist and inclusive site, but could we not close the door to new Babblers for a month, with a summary, explanatory note saying that this is a regretted, temporary action to cope with these attacks. Just a thought...

Catchfire said they asked the techies to temporarily halt new registrations, but it doesn't look like they did so.

One approach is to block IP addresses that seem to be originating spam. This is not perfect, but might cut down the intensity.

I co-own/moderate an online group on a non-political topic. It is  private (that is, posts are not visible to the general public) and our way of avoiding spam is as follows:

-- a person at the website who reads the description, or knows about if from others, or whatever, can click the button to join. S/he then has to enter an email address.

-- a guarded automated Welcome letter is sent to the email address, saying we are happy to have new members, the purpose of the group is such and such, if you are wanting to join please reply to this email with a brief explanatin of why you wish to join and your interest in the topic  [nb: it's not of general interest!] 

-- when they reply to the email, they are subscribed to the group. This means an actual person does the final step, but the earlier ones are automated.

It does not take long. The majority of people who click "join" never reply to the email. Sometimes we know from the email address that these ARE spammers.

Probably babble doesn't need anything this rigorous forever but might it not be a useful intermediate step?

So far we have had no spammers successfully get by our process. Ever.

infracaninophile wrote:

I co-own/moderate an online group on a non-political topic. It is  private (that is, posts are not visible to the general public) and our way of avoiding spam is as follows:

-- a person at the website who reads the description, or knows about if from others, or whatever, can click the button to join. S/he then has to enter an email address.

-- a guarded automated Welcome letter is sent to the email address, saying we are happy to have new members, the purpose of the group is such and such, if you are wanting to join please reply to this email with a brief explanatin of why you wish to join and your interest in the topic  [nb: it's not of general interest!] 

-- when they reply to the email, they are subscribed to the group. This means an actual person does the final step, but the earlier ones are automated.

It does not take long. The majority of people who click "join" never reply to the email. Sometimes we know from the email address that these ARE spammers.

 

Probably babble doesn't need anything this rigorous forever but might it not be a useful intermediate step?

So far we have had no spammers successfully get by our process. Ever.

 

Sometimes just having it set to send an email to a new registrant, who has to open the email and click the link to activate cuts down on spambot registrations.    even without being assigned to a group.      another step i've seen on other sites is a 5 post moderated minimum.    moderators have to view and approve 5 posts for each new registered member in order for the post to show up on the site.   

If moderators are visiting the site regularly, and it is a legitimate new poster, it really wouldn't take long to view and approve, and if it is a bot, go ahead and ban the user and block their IP.   

i haven't seen a spam attack like this on any site i've ever been on.  it was 5 pages in one section.

Well, its 11:20 ET on a Sunday night, and all is cleaned up and operational again on Babble. Congrats to whomever did all the dirty work. Must have felt like cleaning up after Woodstock .... without the chemical enhancements, of course. Now, let's see how long it lasts!  ( see one spammer still lurking as a 'Currently Active User' so am not too hopeful!)

is pogo real and why asb over and over again?

<a href="mailto:[email protected]">[email protected]</a> wrote:

is pogo real and why asb over and over again?

Pogo's real. Anti-spam bump. Took me a while to figure it out too.

<a href="mailto:[email protected]">[email protected]</a> wrote:

I do not understand the last few post. what I understood is the Pogo is a real person. what is an anti spam bump?

The spammers created so many new threads that they pushed most of the real threads off the active topics page, making it a lot harder to see where there was actual discussion happening. A bump is a post meant only to bring an older thread back to the top of the page. Pogo's asb posts were meant to bring real threads up, while pushing spam threads down.

Hahaha Pogo, I always discuss your posts in my head.

So, that was a terrible weekend. I'm not sure if I can effectively address the concerns here, but I want to point out that just last week our spam attacks, which used to average 1000 per day are now averaging 4000 per day -- and I'm guessing even more than that over this hellfire of a weekend. Those asking for email verification seem to be assuming that such a change would just automatically fix the spam attacks. I do not think that assumption is safe to make.

I can tell you that the two people we have working on this are waay more expert than I am on this and they are looking at a high number of changes that they think will work. One of the reasons they did not close registrations (other than the fact that it keeps the site from adding new writers and new events as well) is that they would be unable to test the new anti-spam things. Again, I want to remind everyone that we just don't have the resources big media sites have to fight spam, but we get traffic akin to many of them. So it's a pickle.

I know you all know this, and you have been amazing in bearing with us through this so thanks for that. And thanks for the anti-spam kills too. I will try to keep youse updated as best I can.

ETA. What I should have mentioned above is that new users are ALREADY asked to verify through email! And it still isn't working!

Well the weirdest example of this I have ever seen was someone who managed to hack into members' accounts and post in their names. So we may not have seen the half of it.

Well, probably. But who is going to pay those mods to wait for such emails with bated breath? If you say "infracaninophile," I will say: "DEAL."

Is it possible for me to be infected from the spam? I just looked at my trash file and found A very large number of duplicate E-mails I have sent in the last two days. To be clear, in my trash file I found 15 copies of four different e-mails. It looks like my Apple System designated the duplicates to be trash. This come from the spam?

Hmmm... not convinced, Unionist. You would probably be equally dismissive of this rather nasty rash that has developed upon a rather intimate part of my personage at the very same time that Babble was being swamped with spam.  (When my spouse inquired, I explained that it was all Catchfire's fault.)  

In addition to putting a hold on registrations, tech support is building a tool that will allow us to manually verify new user requests. Again not foolproof, but should significantly slow down spam traffic. Other tools are being put in place as well.

If Rabble was randomly targeted, the spammers will probably move on after a month or less. If they come back after registrations are unlocked, that suggests someone's specifically targeting this site for denial of service.

cco wrote:

If Rabble was randomly targeted, the spammers will probably move on after a month or less. If they come back after registrations are unlocked, that suggests someone's specifically targeting this site for denial of service.

The reason I think it is targetted is they know where to put up the most posts to get the greatest distraction from political discussion

Unionist wrote:

sherpa-finn wrote:

Hmmm... not convinced, Unionist. You would probably be equally dismissive of this rather nasty rash that has developed upon a rather intimate part of my personage at the very same time that Babble was being swamped with spam. 

Hard for me to diagnose definitively without a photo - please.