Spring RTS Engine

Open Source Realtime Strategy Game Engine
https://springrts.com/phpbb/

'Ethical Spammers' Spamming up the wiki.

https://springrts.com/phpbb/viewtopic.php?t=2711

Page 2 of 2

Posted: 04 Nov 2005, 16:52
by Fnordia
Guess I could do something like requiring a valid forum login cookie or something to edit pages.. But hopefully no further steps will be needed.

Posted: 06 Nov 2005, 06:29
by Dwarden
mael ... yes i got the idea what need to be done to get it work ... and definitely it's not "that" hard how You trying to say ...

anyway ... i'm not using phpbb for years (moved to IPB) because of many reasons (like constant security problems) ...

Posted: 14 Dec 2005, 06:33
by Maelstrom
They are back. People or bots are now registering to spam. Its only happened a little bit, but its happening. Ive blocked the accounts responsible, but it doesnt stop them.

http://taspring.clan-sy.com/wiki/Special:Ipblocklist For a list of the usernames

http://taspring.clan-sy.com/w/index.php ... oldid=1835 - an example of their work.

They seem to only target pages that do not exists, like the Units:Animation page, Zaphods and SmockingWrekage's User: pages, and a page called W:HTML Elements. Dunno whats with that one.

I dont think there is anything we can really do about this, but im just letting people know about it.

Posted: 14 Dec 2005, 10:39
by BvDorp
There are wiki extensions that only allow registred users that are aproved to edit the pages? So register -> approvement (Maelstrom/Fnordia?) -> editing

Problem is: you now have to have 3 accounts just to use the spring site:

- phpBB
- Mantis
- Wiki

I heard there are quite simple ways to use one acc for all the systems. Anyone know some more?

Posted: 14 Dec 2005, 17:50
by Fnordia
It would probably be good to add some sort of captcha to the wiki signup, just like the forum has. It could also be present on edit pages for unregistered users, so we could turn off the registration requirement. I didn't find any such addition to mediawiki though. Guess I could add one myself.

As for using just one accounts for all systems, that would require modifying all the account handling for two of them. That is probably a bit too much work, unless it's already been done by someone else already.

Posted: 14 Dec 2005, 19:21
by Tim Blokdijk
I like your "requiring a valid forum cookie" idea more.
It's not a captcha but it will fool bots I think.

Posted: 14 Dec 2005, 19:44
by Dwarden
Tim Blokdijk wrote:I like your "requiring a valid forum cookie" idea more.
It's not a captcha but it will fool bots I think.
all u need is give bot "valid" cookie and you are owned again ...
All times are UTC+02:00
Page 2 of 2

Powered by phpBB® Forum Software © phpBB Limited