Not logged inOpenClonk Forum
Up Topic General / General / Spam protection
- - By Caesar [de] Date 2014-01-29 17:56 Edited 2014-01-31 06:08
TL;DR: Someone who hasn't played OpenClonk may be unable to post here.

From #openclonk-dev
16:44:42 < pheonton> sry anyone who can help me with the anti spam question on the OpenClonk forums? What the heck is a boompack?
17:06:31 < JCaesar> :D
17:06:44 < JCaesar> A rocket.
17:06:55 < JCaesar> Kind of like a jetpack.
17:07:19 < JCaesar> I guess those questions are mean if you haven't played the game yet because you can't start it…
17:13:01 < pheonton> well, i still don't get what the sport should be where you race on top of a rocket...
17:13:26 < pheonton> :/
17:17:49 < JCaesar> hmm. Do you have radio options?
17:18:25 < JCaesar> The answer might me Parkour…
17:29:17 <!Mortimer> yep.. It keeps out people in general, not just bots :v
17:40:54 < pheonton> mhm, im still failing the anti spam test...
17:41:01 < pheonton> What is the English name for the parkour in which you race on top of boompacks?
17:42:33 < pheonton> The thing is, not only OpenClonk has this questions, i was trying to register to a some game forums today and one question was harder than the other...
17:43:18 < JCaesar> xxxxxxxxxxxxxxxx
17:44:32 < pheonton> ;) xxxxxxxxxxxxxxxx is the correct answer.... i wonder how i should have guessed that....
17:48:56 < JCaesar> By playing the game.
17:49:04 < pheonton> thanks
Parent - By Pyrit Date 2014-01-29 18:29 Edited 2014-01-31 11:09
And he isn't the only one.
I don't think the first thing new people do in OpenClonk is to play xxxxxxxxxxxxxxxxx...
Parent - - By Newton [th] Date 2014-01-30 06:21
I am open to suggestions for other security questions.
Parent - - By Clonkonaut [de] Date 2014-01-30 12:40
What is this game called? -> Open Clonk

Should be enough for any bot, don't you think?
Reply
Parent - By Pyrit Date 2014-01-30 19:58
Or is it OpenClonk? Or OPEN CLONK, like the titlebar suggests? Or openclonk, OPENCLONK, Openclonk...?
Parent - By Sven2 [de] Date 2014-01-30 13:05
Something simple like "What's the name of the month between January and March"?

I also don't see the big deal. We've had like three spam posts a year without the security question. A mod can just delete them.
Parent - By Clonkonaut [de] Date 2014-01-30 13:44
Also, please make at least the security question in German, too. We've had some people not understanding because of lack of English skills. Since we do have a German subboard, registration could be German-native friendlier.
Reply
Parent - By Pyrit Date 2014-01-30 19:58
Why not a normal captcha?
Parent - - By Newton [th] Date 2014-01-31 06:06
Ok so I need to mention one thing or two:

1. No, we had lotsa more spam, you just don't see it when I deleted it already.
2. Now that the forum registration works with all subsystems, I want higher security to keep bots out
3. To keep bots out, the question may of course not be googable (f.e. Matthes Bender).
4. Recaptchas were not a barrier for bots. I don't know why but they didn't hold off the spambots.

Also, and that is the worst thing, there seem to be maintainers of bot nets which actively try to overcome those security questions if they are worth the effort / easy enough. The question once was "Whats the name of this game" and later "The icon of OpenClonk shows a musket and a ...?". I think the second one worked for only a week or so and the first spambots arrived.
That is why I chose a word that would require people to install the game to find out. So far, we had no spam whatsoever. I mean, there are not that many people who have not played the game but still want to post here, or are there?
Parent - - By Sven2 [de] Date 2014-01-31 10:28

>  I mean, there are not that many people who have not played the game but still want to post here, or are there?


There are those who have trouble starting the game; especially Linux people seem to have trouble with dependencies quite often. Some of them come to IRC and complain that they cannot post on the forums.
Parent - By Newton [th] Date 2014-01-31 11:11 Edited 2014-01-31 11:14
True. I changed the security question to hint where to get the info from.

Also, please refrain from writing out the answer here. The answer should not turn up in google.
Parent - - By Clonkonaut [de] Date 2014-01-31 16:08

> Recaptchas were not a barrier for bots. I don't know why but they didn't hold off the spambots.


Isilkor said that many illegal websites (e.g. streaming sites) present their users with captchas to solve and use the answers to break in. Works especially well with standardised captcha services.
Reply
Parent - - By Sven2 Date 2014-01-31 17:54
That's cool! We should create lots of honeypot forums for spam bots then and put advertisement for OpenClonk into the captchas. Spammers will make sure to spread them all over the interwebz.
Parent - By Caesar [de] Date 2014-01-31 19:27

>:D This is abusing abuse. Genius.

Parent - By Pyrit Date 2014-01-31 18:56
Then an own captcha image could do the trick?
Parent - - By ala [de] Date 2014-01-30 11:57
yes, pluto and me didn't know that either..

If you want to stick to those questions, make them easy - like: Who invented Clonk? - with a hinting link to clonk.de ;)?
Parent - - By Matthias [de] Date 2014-01-30 17:48
Yeah, or even easier "what was the first mission set password in clonk 3?"
I mean come on, everybody knows THAT one
Reply
Parent - - By Sven2 [de] Date 2014-01-30 18:12
Was it "wipfemonsterschnee"?
Parent - By Matthias [de] Date 2014-01-30 18:25
Yes - at least, that's the one I remember from those ;)
Reply
Up Topic General / General / Spam protection

Powered by mwForum 2.29.7 © 1999-2015 Markus Wichitill