httpBL

[EL34]

I also have a moderator that accesses the forum from a university
He gets flagged as a spammer because of the IP's he is forced to use.

Some way to white list him and others would be great.

[snoopy_virtual]

That feature was done since version 2.4 last October.

The white list is not done by IPs as they can change very often if you got a dynamic one. It's done by membergroups.

Just go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod, edit the permissions for that group and you will find that permission there. It's the first one in the left hand side (if I remember correctly).

You can have as many "trusted" groups as you want.

If you only trust one guy and don't trust the whole group, make a new group, change the permission for just that group, and put your friend in that group (not as his primary group, but as one of the "additional groups")

[ms_ukyankee]

Yes I understand and have done that much, but this requires that they don't log out, which in a multi-user environment is potentially not secure, if you see what I mean.

[snoopy_virtual]

If I put a white list by IP and they are coming from a multi-user environment it's even worse.

Everybody coming from that IP will be able to do whatever they want in the forum at any time.

If the mod is stopping that IP the most likely reason is they may have a trojan in the computer.

We already had that problem a couple of times here. I don't remember what companies they were (I think one of them was from somebody working in the Yankees Stadium in New York or something like that). They ended up explaining the problem to the IT responsible there, doing a check up and finding a big trojan hiding in one of the computers. They wouldn't have known about the trojan if it wouldn't have been for this problem.

[snoopy_virtual]

Anyway, if an IP is blacklisted in Project Honey Pot, you can always go to their site, explain the problem to them and ask them to white list that particular IP.

If they know something about that IP that prevent them from white list it they will tell you.

[ms_ukyankee]

I'm sorry, you're right actually, I told them before that they only needed to visit the ProjectHoneyPot ip search page from the offending ip to get whitelisted themselves without bothering the IT Dept (according to the Project website) and they didn't bother looking at it as far as I know, so nevermind. Thank you for the quick response though.

Love this mod, between it and stopforumspam, I have had only one spam post in a month, instead of the previous few daily.

[snoopy_virtual]

If you are using SMF 2 go to Admin => Security and Moderation => Anti-Spam => Verification Questions

If you are using SMF 1 add the mod http://custom.simplemachines.org/mods/index.php?mod=1516

Set at least 1 Verification Question.

Since I did that 3 months ago (on top of the other 2 mods) I haven't had any spammer yet. 

[EL34]

Just go to Admin => Permissions, choose what membergroup you don't want to be checked by the mod

Thanks Snoop
I changed my moderators to not be checked by httpbl

[henrik1782]

Hi

Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

Best regards
Henrik Poulsen

[snoopy_virtual]

Have anyone experienced that a user got a warning screen when loggin in and next time they login everything is fine...?

The system used by Honey Pot is dynamic and it's changing every day. You need to check in your logs to see the actual figures, but let's say for example you have configured your mod like this:

Allow in all the users with Threat Level less than 10
Show a warning page with captcha to all the users with Threat Level between 10 and 30
Stop completely all the users with Threat Level higher than 30

Now let's say a user with Threat Level 11 arrives to your forum. They will see the warning with a captcha.

Now imagine this IP is not doing anything wrong any more. The Threat Level will go down every day. So lets say the next day the Threat Level is only 9. They will pass with no problem.

===============

This is only one case, but there are a lot more possibilities for this to happen. The only way to know exactly which one of them is happening in your forum will be to see your logs.

[EL34]

SMF 1.1.12
httpBL 2.5.1

Yo Snoop,
I am seeing the errors below in the forum log, not the httpBL error log.

Both errors below were for the same Guest, not a forum member.
Saw a bunch of these errors yesterday, all for guest,  but did not have time to report them.

8: Undefined variable: ip
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 519

2: Missing argument 1 for httpbl_look_for_empty_ip()
File: D:\hshome\xxxx\xxxx.com\Forum\Sources\httpBL_Subs.php
Line: 517

[snoopy_virtual]

Hi EL34

I have been trying to duplicate those errors you have seen, but I cannot do it.

I don't get any errors at all in any of my forums.

You must have something else interfering with mod httpBL, but I cannot find out what it may be.

If you are still getting those errors try to contact me to see if we can sort it.

[EL34]

Hey Snoop,
It only happened on two days and has not happenned since.

If I see it happen again I'll report back.

Here is a screen shot of my package screen.

[Sea Mac]

I have administrative access to FIVE SMF 1.1.12 forums that use the httpBL MOD (3 I own and 2 I've been left in charge of) and the Stop Spammer MOD. Since installing this MOD May 24th 44436 Bad IPs have been spit out of those forums: and about 500 stopped by Stop Spammer!

Thank You. I wish I could have donated 10 times as much!

[snoopy_virtual]

Thank You. I wish I could have donated 10 times as much!

Hey Sea Mac. Every little helps ... Thank You. 

[Lou69]

Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

[snoopy_virtual]

Just noticed today that when looking at the warning screen that the spammer will see, I see our old logo.

When viewing the information on the image, I see that it is url linked back to our old list site. Not sure how that is happening other than we did try 3 or so themes before settling on one theme.

What do I need to edit to get the current logo to display on the warning page?

thanks

Open the page warning.php

Look for this code:

Code Select Expand


    <div id="warn_logo" class="catbg">';

// You can change all the staff here inside the div id="warn_logo" to whatever you want
// Just be sure you don't put here any links at all, just pictures or text.
if (empty($settings['header_logo_url']))
echo '
<span style="font-family: Verdana, sans-serif; font-size: 140%; ">', $context['forum_name'], '</span>';
else
echo '
<img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';

echo '
</div>';


It is from line 306 to 318. All that div id="warn_logo" is the stuff on top of your warning page.

For example, in this page:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:

Code Select Expand


    <div id="warn_logo">
<img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
</div>';


For example in this other page:

http://www.snoopyvirtualstudio.com/miel/warning.php

I have changed that code to:

Code Select Expand


<div id="header">
  <div id="head-l">
  <div id="head-r">
<span id="logo"> </span>
</div>
  </div>
</div>';


In both of them I have also made a few changes to the file warning_css.css to get exactly the effect I wanted.

If you know a little of HTML and CSS you should be able to see what you need to do to get what you want. If you cannot manage contact me through Skype.

Anyway, whatever you do, don't puy any links in your warning page.

[Lou69]

Hi Snoopy,

I do not have Skype and am not familar with HTML.

I will guess that from your example,

Code Select Expand

echo '
               <img src="', $settings['header_logo_url'], '" style="margin: 4px;" alt="', $context['forum_name'], '" />';

the url for the old site image is declared in the 'header_logo_url'.

Any idea what file that is declared in?

[snoopy_virtual]

It's inside the database, in the table settings, but you don't need that. Just take for example the first one I gave you:

http://www.snoopyvirtualstudio.com/foro/warning.php

I have changed that code to:

Code Select Expand


       <div id="warn_logo">
         <img src="http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg" alt="Snoopy Virtual Studio" border="0" />
      </div>';


Even easier:

Send me a link to your warning page (just here or in a PM) so I can see the way it is just now, and tell me where do you have the logo you want to display in there and I will send you a warning.php file already modified.

When I said "where do you have the logo" I mean the full url. For example my logo is this one: http://www.snoopyvirtualstudio.com/images/logo-18-2.jpg

I do not have Skype

I suggested Skype because it's the one I use normally, but as you can see inside the httpBL help page I have added in the last version, I have also open all day Yahoo and MSN.

[EL34]

Hey snoop, the errors showed up again in the main forum log again.
The same errors I talked about in post #470

The undefined variable and missing argument errors show up together in pairs.
There were four pairs in the log this morning.