I am running reCaptcha and honeypot on my registration pages. It stemmed the tied of bogus login attempts but somehow they have started again. I am up to date on the modules. I am running Drupal 7 which is up to date. I get about 10 per day. I have the registration page set for recaptcha. But are there any other settings I can tweak in honeypot or recaptcha?
I can supply any info that is needed to help with this.
I use Mollom and see 1-10 a week, but they are all legitimate in the sense that some real person actually went through the process of registering, even verifying their email address by clicking on a link sent to them. They then may proceed to spam comments. If I look at their registration pages they have even bothered filling in some of the name and address fields. We are a regional org so address outside NY of NJ are rare but they are from everywhere. There is no way short of inspecting every registrant's info to guess their intentions (good or bad) until they prove who they are by spamming. We do have a special state called registering that new registrants are in until they verify their email. They have no more access than anonymous until they verify so they can't spam as anonymous cannot post anything on the site. Of course if you want to buy something from the store or pay dues, then you are registered with no hassle. We have not seen anyone take this route to get access.
On Sun, Mar 30, 2014 at 2:18 PM, john boris jborissr@gmail.com wrote:
I am running reCaptcha and honeypot on my registration pages. It stemmed the tied of bogus login attempts but somehow they have started again. I am up to date on the modules. I am running Drupal 7 which is up to date. I get about 10 per day. I have the registration page set for recaptcha. But are there any other settings I can tweak in honeypot or recaptcha?
I can supply any info that is needed to help with this.
-- John J. Boris, Sr. Online Services www.onlinesvc.com
-- [ Drupal support list | http://lists.drupal.org/ ]
I use the spambot module. It can check against email addresses and IPs.
Ken
On Sunday, March 30, 2014, Walt Daniels wdlists@gmail.com wrote:
I use Mollom and see 1-10 a week, but they are all legitimate in the sense that some real person actually went through the process of registering, even verifying their email address by clicking on a link sent to them. They then may proceed to spam comments. If I look at their registration pages they have even bothered filling in some of the name and address fields. We are a regional org so address outside NY of NJ are rare but they are from everywhere. There is no way short of inspecting every registrant's info to guess their intentions (good or bad) until they prove who they are by spamming. We do have a special state called registering that new registrants are in until they verify their email. They have no more access than anonymous until they verify so they can't spam as anonymous cannot post anything on the site. Of course if you want to buy something from the store or pay dues, then you are registered with no hassle. We have not seen anyone take this route to get access.
On Sun, Mar 30, 2014 at 2:18 PM, john boris <jborissr@gmail.comjavascript:_e(%7B%7D,'cvml','jborissr@gmail.com');
wrote:
I am running reCaptcha and honeypot on my registration pages. It stemmed the tied of bogus login attempts but somehow they have started again. I am up to date on the modules. I am running Drupal 7 which is up to date. I get about 10 per day. I have the registration page set for recaptcha. But are there any other settings I can tweak in honeypot or recaptcha?
I can supply any info that is needed to help with this.
-- John J. Boris, Sr. Online Services www.onlinesvc.com
-- [ Drupal support list | http://lists.drupal.org/ ]
May I suggest a module that I wrote and get positive feedback for? It can be found at http://drupal.org/project/spaces_enforced. It has a success rate of 99%. On 30 Mar 2014 21:48, "Ken Robinson" kenrbnsn@gmail.com wrote:
I use the spambot module. It can check against email addresses and IPs.
Ken
On Sunday, March 30, 2014, Walt Daniels wdlists@gmail.com wrote:
I use Mollom and see 1-10 a week, but they are all legitimate in the sense that some real person actually went through the process of registering, even verifying their email address by clicking on a link sent to them. They then may proceed to spam comments. If I look at their registration pages they have even bothered filling in some of the name and address fields. We are a regional org so address outside NY of NJ are rare but they are from everywhere. There is no way short of inspecting every registrant's info to guess their intentions (good or bad) until they prove who they are by spamming. We do have a special state called registering that new registrants are in until they verify their email. They have no more access than anonymous until they verify so they can't spam as anonymous cannot post anything on the site. Of course if you want to buy something from the store or pay dues, then you are registered with no hassle. We have not seen anyone take this route to get access.
On Sun, Mar 30, 2014 at 2:18 PM, john boris jborissr@gmail.com wrote:
I am running reCaptcha and honeypot on my registration pages. It stemmed the tied of bogus login attempts but somehow they have started again. I am up to date on the modules. I am running Drupal 7 which is up to date. I get about 10 per day. I have the registration page set for recaptcha. But are there any other settings I can tweak in honeypot or recaptcha?
I can supply any info that is needed to help with this.
-- John J. Boris, Sr. Online Services www.onlinesvc.com
-- [ Drupal support list | http://lists.drupal.org/ ]
-- Sent from Gmail Mobile
-- [ Drupal support list | http://lists.drupal.org/ ]
-
john boris -
Ken Robinson -
Muzaffer Tolga Ozses -
Walt Daniels