[RFC] Anti-spam features

Note: We are moving the topics of this forum and it will be deleted at some point

Publish your own request for comments/change or patches for the next version of phpBB. Discuss the contributions and proposals of others. Upcoming releases are 3.2/Rhea and 3.3.
User avatar
Pony99CA
Registered User
Posts: 986
Joined: Sun Feb 08, 2009 2:35 am
Location: Hollister, CA
Contact:

Re: [RFC] Anti-spam features

Post by Pony99CA » Wed Mar 27, 2013 2:57 am

Maybe we should borrow a feature from vBulletin and create a pre-defined Banned group. Banning a user would just put them in that group instead of denying them access completely.

As for the Advanced Block MOD, my understanding is that it just allows defining and weighting multiple Black Lists. So why can't we add something similar to phpBB instead of relying on the hard-coded Black List used today?

Steve
Silicon Valley Pocket PC (http://www.svpocketpc.com)
Creator of manage_bots and spoof_user (ask me)
Need hosting for a small forum with full cPanel & MySQL access? Contact me or PM me.

User avatar
wintstar
Registered User
Posts: 108
Joined: Sun Dec 02, 2012 1:38 pm
Location: Lanngöns/Hessen Germany
Contact:

Re: [RFC] Anti-spam features

Post by wintstar » Wed Mar 27, 2013 5:09 pm

Why should Spamer register yet. It would be better to close the door before registry.
Greeting Stephan :-)

Quote: "To achieve the possible, the impossible has to be tried again and again" (Hermann Hesse (1877-1962)).
A look into the future phpBB 3.1.0 - Board, current Builds
A look into the future phpBB 3.1.0 - Board-Plus, Extensions in the test

User avatar
EXreaction
Registered User
Posts: 1555
Joined: Sat Sep 10, 2005 2:15 am

Re: [RFC] Anti-spam features

Post by EXreaction » Fri Mar 29, 2013 1:55 am

Pony99CA wrote:Maybe we should borrow a feature from vBulletin and create a pre-defined Banned group. Banning a user would just put them in that group instead of denying them access completely.

As for the Advanced Block MOD, my understanding is that it just allows defining and weighting multiple Black Lists. So why can't we add something similar to phpBB instead of relying on the hard-coded Black List used today?

Steve
A pre-defined banned group may be useful, but that's a large shift in policy from the current way things are done. I'm not sure how most board owners handle banned users.

Some sort of plugin system for content analysis might be more useful; then it would be relatively easy to create a plugin for checking against a user generated blacklist and for other things such as using Akismet.
wintstar wrote:Why should Spamer register yet. It would be better to close the door before registry.
Yes, that would be nice, but someone needs to figure out a way to differentiate spammers from legitimate users when they try to register. Current methods to attempt to block people from registering if they are spammers either do not catch many and/or are too broad and can block too many legitimate users.

User avatar
Pony99CA
Registered User
Posts: 986
Joined: Sun Feb 08, 2009 2:35 am
Location: Hollister, CA
Contact:

Re: [RFC] Anti-spam features

Post by Pony99CA » Fri Mar 29, 2013 2:55 am

EXreaction wrote:
Pony99CA wrote:Maybe we should borrow a feature from vBulletin and create a pre-defined Banned group. Banning a user would just put them in that group instead of denying them access completely.

As for the Advanced Block MOD, my understanding is that it just allows defining and weighting multiple Black Lists. So why can't we add something similar to phpBB instead of relying on the hard-coded Black List used today?
A pre-defined banned group may be useful, but that's a large shift in policy from the current way things are done. I'm not sure how most board owners handle banned users.
I presume that the Banned group would basically be No Access by default. You would still keep the ability to save a ban message which would be displayed to users in the Banned group.
EXreaction wrote:Some sort of plugin system for content analysis might be more useful; then it would be relatively easy to create a plugin for checking against a user generated blacklist and for other things such as using Akismet.
Content analysis is a great idea (and discussed -- at length -- in the "Official" integration with Akismet topic), but it's not the same as blacklisting. Blacklisting takes place in session.php before the user is even completely logged in; content analysis is only done for users who are already logged in (unless you allow guest posting) and posting or sending a PM.

Steve
Silicon Valley Pocket PC (http://www.svpocketpc.com)
Creator of manage_bots and spoof_user (ask me)
Need hosting for a small forum with full cPanel & MySQL access? Contact me or PM me.

User avatar
EXreaction
Registered User
Posts: 1555
Joined: Sat Sep 10, 2005 2:15 am

Re: [RFC] Anti-spam features

Post by EXreaction » Mon Apr 01, 2013 4:19 pm

Two different kinds of blacklisting. You're talking about IP/email/username blacklisting, I'm talking about a word blacklist. In both situations it's a list of terms that cannot appear in a certain field (IP, email, username, post content, etc).

User avatar
Pony99CA
Registered User
Posts: 986
Joined: Sun Feb 08, 2009 2:35 am
Location: Hollister, CA
Contact:

Re: [RFC] Anti-spam features

Post by Pony99CA » Tue Apr 02, 2013 2:24 am

EXreaction wrote:Two different kinds of blacklisting. You're talking about IP/email/username blacklisting, I'm talking about a word blacklist.
Let's call that "word censoring" then, a feature that phpBB already supports and either expand that with an option to prevent posting or make it into a simple content analysis plug-in. Yes, it's a type of black list, but we do have a more specific name for it already.

In fact, I suggested having just such a simple word blocking plug-in in the content analysis topic that I linked to previously.

Steve
Silicon Valley Pocket PC (http://www.svpocketpc.com)
Creator of manage_bots and spoof_user (ask me)
Need hosting for a small forum with full cPanel & MySQL access? Contact me or PM me.

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: [RFC] Anti-spam features

Post by Master_Cylinder » Thu Aug 01, 2013 3:03 am

I found that Advanced Block Mod stopped almost all of my spam registrations so I'd love to see something like that added to the core as well as better administration tools like those found in Ban Hammer, Disallow links before x posts and Anti-Spam ACP.

User administration and blocking/deleting spam is something that every admin has to deal with so a better set of tools without having to install several mods would be appreciated. If they are optional then some admins could turn them on/off by checking a box but these should be in the core functionality.

I also like the idea of an *optional* Banned user group and an optional hidden "trash-can" forum for moderators/admins to discuss threads/users/etc and be able to recover the deleted topic if needed.

User avatar
Master_Cylinder
Registered User
Posts: 361
Joined: Wed Jul 31, 2013 9:54 pm

Re: [RFC] Anti-spam features

Post by Master_Cylinder » Wed Jan 01, 2014 4:30 am

EXreaction wrote:It seems to be the time to start thinking of adding further anti-spam helpers as the CAPTCHA alone is not enough with the newer methods spammers use.
Preventing users from posting links until they have X number of posts too... 8-)
These kids today...
Buy them books, send them to school and what do they do?

They eat the paste. :lol:

User avatar
naderman
Product Manager
Product Manager
Posts: 1727
Joined: Sun Jan 11, 2004 2:11 am
Location: Karlsruhe, Germany
Contact:

Re: [RFC] Anti-spam features

Post by naderman » Sat Oct 25, 2014 10:47 pm

There's an RFC for one of these proposed features: marking posts/users as spam at https://area51.phpbb.com/phpBB/viewtopi ... 08&t=44639 -

User avatar
jsebean
Registered User
Posts: 165
Joined: Wed Nov 17, 2010 1:40 am
Location: Atlantic Canada

Re: [RFC] Anti-spam features

Post by jsebean » Sun Oct 26, 2014 12:53 am

Master_Cylinder wrote:
EXreaction wrote:It seems to be the time to start thinking of adding further anti-spam helpers as the CAPTCHA alone is not enough with the newer methods spammers use.
Preventing users from posting links until they have X number of posts too... 8-)
That could be a simple permission that I proposed a while back that you could apply to the newly registered users group. A post links permission, and a "Can post links without approval" permission. Not sure where it is now, but could be quite useful for combating spam posts.

Additionally, wasn't there mention sometime of an official akismet plugin, similar to how MyBB does that. That could be useful for even 3.1 :)
-Jonah

Post Reply