×
Blue Eagle 5 v1.6.2 has been Released for Kunena 5.2 (20 Jan 2021)

The Kunena team has announce the arrival of Kunena template Blue Eagle 5 v1.6.2 which is now available for download. This version addresses most of the issues that were discovered in development.

REQUIREMENTS
Blue Eagle 1.6.x requires Kunena 5.2.x to work with

× This is for users to help other users, to discuss topics that are related to forum administration in general or problems in running Joomla. This is not the place to ask for Joomla support. If you want assistance with Joomla please ask at forum.joomla.org

Merged How to protect my forum from spam

More
7 years 8 months ago - 7 years 8 months ago #371 by DebraR
Hello,

I'm new to Kunena and need help with my forum. I've been fighting spammers non-stop for the past 6 hours. I have captcha, I've even turned off the forum yet they are still able to register. They can no longer post however.

What's the deal? Is there someone out there that can help me with better security. I used to be able to ban IPs in my old forum, but don't see that is is an option.

Please contact me via e-mail if you think you can help. [email protected] yahoo dot com
Last edit: 7 years 8 months ago by DebraR.

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #372 by sozzled

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #373 by mac123
Replied by mac123 on topic Spam/Xrumer attack
Hi everyone, My forum has been attacked by xrumer spam post. I have enabled recaptcha in the com_login / registration process and have added the stopforumpost API too in the kunena forum backend but those spamers are still able to post spam to the forum.
Any idea how to get rid of this?

Anyway how can I enable recaptcha for registered users just like this forum? In my forum, seems like the recaptcha function can be disabled for non registered user only

I use joomla 2.5.11, Kunena 2.0.4

Thanks alot

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #374 by sozzled
*** Topics merged by moderator ***

G'day, mac123, and welcome to the forum.

We are sympathetic to the issue of any web-based discussion forum being attacked by Xrumer (and other badly-behaving web agents) and Kunena is not more nor any less susceptible to such attacks.

This topic contains many ideas that people have used (with varying degrees of success) to counter such attacks by spam merchants. I am sure that you will find suggestions and possible solutions to your problem by browsing the pages in this topic.

In the first instance it is a must that you should attempt to prevent the source of spam by employing tighter controls around the user registration procedure. As mentioned many times in this forum , Kunena is not responsible for user registration. I hope that some of the information you will find in this topic will assist you.

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #375 by straetch
Replied by straetch on topic IP address tracking
I used to note the IP address of the spam message and include its inetnum range in the black list of the plug-in "Ban IP Address and Range".
Today the IP address is still not shown by Kunena. The plug-in seems not maintained anymore. So I gave up on that strategy.
Since some time I use the EasyCalcCheckPLUS plug-in. I include a small arithmetic test to differentiate humans from robots. I also use the black list of StopForumSpam.com, which you can activate from EasyCalcCheckPlus.
Since the I have no more trouble with spammers (keep fingers crossed).

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago - 7 years 8 months ago #376 by sozzled
I received a reply from DebraR to say that her problem has been fixed.
Last edit: 7 years 8 months ago by sozzled.

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #377 by sohopros
we've seen the same problem lately on a couple of sites through the com_contacts extension - had to change the captcha system from ReCaptcha to AreYouaHuman. That seemed to stop them cold.

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago - 7 years 8 months ago #378 by Phoenix
I've also been really impressed with areyouahuman.

I was getting up to about 1-200 spam registrations a day (this was with J1.5 before I could use a captcha with registration) and anywhere from a few to a dozen or more posted to the forum (which had email confirmation and first post recaptcha which many of them seemed to be able to crack). Since I migrated to J2.5 and added areyouahuman to the forum registration I haven't had a single successful spam registration much less a spam forum post in the two months or so I've been using it.

Phoenix
Last edit: 7 years 8 months ago by Phoenix.

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #379 by skybax
Replied by skybax on topic IP address tracking

straetch wrote: I used to note the IP address of the spam message and include its inetnum range in the black list of the plug-in "Ban IP Address and Range".
Today the IP address is still not shown by Kunena. The plug-in seems not maintained anymore. So I gave up on that strategy.
Since some time I use the EasyCalcCheckPLUS plug-in. I include a small arithmetic test to differentiate humans from robots. I also use the black list of StopForumSpam.com, which you can activate from EasyCalcCheckPlus.
Since the I have no more trouble with spammers (keep fingers crossed).


Same experience with EasyCalcCheckPlus, a very good plug-in it gets the job done

Please Log in or Create an account to join the conversation.

More
7 years 8 months ago #380 by rhunter
I have had a significant attack on one of our sites that uses Kunena.

This attack, being mounted by Bots originating mainly from China, has been able to persuade Kunena to forward spam emails, effectively allowing Kunena to act as an open relay, although spam emails are being forwarded using the site admin username rather than redirected.

I am working through how this exploit functions and will update, but if others have noticed this same effect, which started for me around 22nd June 2013, I would be interested to know.

Please Log in or Create an account to join the conversation.

  • Not Allowed: to create new topic.
  • Not Allowed: to reply.
  • Not Allowed: to edit your message.
Time to create page: 0.293 seconds