Very nice (Score: 1) by nightsky30@pipedot.org on 2014-09-05 11:33 (#2S35) I might not run this on my box constantly, but it's handy as a live distro for pen testing or hacking competitions :) Re: Very nice (Score: 1) by zafiro17@pipedot.org on 2014-09-05 12:11 (#2S36) For me it was a learning experience to see how many different software tools have been developed for the purpose of brute forcing a poorly defended system. Holy crap. In the same way I've seen both sides of forum spam. I run http://gotonicaragua.com and battling forum bot-spam has been a problem since day one. But as sysadmin on that machine I also get tons of email offering the services of guys who have developed and run custom blog-posting and forum-posting software whose purpose obviously is to deliver exactly what I hate. Interesting to see both sides of the equation.This penetration testing stuff is powerful stuff. Interesting to me to see just how well-developed it is. forum spam (Score: 3, Informative) by tdk@pipedot.org on 2014-09-05 20:17 (#2S3S) From your site:Opened up the board, and in less than 24 hours, dozens of spammer robots autoregistered and started spewing their usual crap.All the popular cms's have antispam features built in.I use a combination of automatically looking up posters on http://www.stopforumspam.com/ (using a drupal module) and blocking IP addresses based on a simple honeytrap. This is very effective, even with anonymous posting there are maybe one or two spam posts a week.There is similar code that just uses php. Re: forum spam (Score: 1) by zafiro17@pipedot.org on 2014-09-06 13:00 (#2S40) Appreciated! I had the SMF forum hooked up to SFS at one point, but we finally just went to "closed registration" and a note saying, 'email us and convince us you're not a bot.' Any legitimate user gets connected with a single email. Bots don't make it through the system.
Re: Very nice (Score: 1) by zafiro17@pipedot.org on 2014-09-05 12:11 (#2S36) For me it was a learning experience to see how many different software tools have been developed for the purpose of brute forcing a poorly defended system. Holy crap. In the same way I've seen both sides of forum spam. I run http://gotonicaragua.com and battling forum bot-spam has been a problem since day one. But as sysadmin on that machine I also get tons of email offering the services of guys who have developed and run custom blog-posting and forum-posting software whose purpose obviously is to deliver exactly what I hate. Interesting to see both sides of the equation.This penetration testing stuff is powerful stuff. Interesting to me to see just how well-developed it is. forum spam (Score: 3, Informative) by tdk@pipedot.org on 2014-09-05 20:17 (#2S3S) From your site:Opened up the board, and in less than 24 hours, dozens of spammer robots autoregistered and started spewing their usual crap.All the popular cms's have antispam features built in.I use a combination of automatically looking up posters on http://www.stopforumspam.com/ (using a drupal module) and blocking IP addresses based on a simple honeytrap. This is very effective, even with anonymous posting there are maybe one or two spam posts a week.There is similar code that just uses php. Re: forum spam (Score: 1) by zafiro17@pipedot.org on 2014-09-06 13:00 (#2S40) Appreciated! I had the SMF forum hooked up to SFS at one point, but we finally just went to "closed registration" and a note saying, 'email us and convince us you're not a bot.' Any legitimate user gets connected with a single email. Bots don't make it through the system.
forum spam (Score: 3, Informative) by tdk@pipedot.org on 2014-09-05 20:17 (#2S3S) From your site:Opened up the board, and in less than 24 hours, dozens of spammer robots autoregistered and started spewing their usual crap.All the popular cms's have antispam features built in.I use a combination of automatically looking up posters on http://www.stopforumspam.com/ (using a drupal module) and blocking IP addresses based on a simple honeytrap. This is very effective, even with anonymous posting there are maybe one or two spam posts a week.There is similar code that just uses php. Re: forum spam (Score: 1) by zafiro17@pipedot.org on 2014-09-06 13:00 (#2S40) Appreciated! I had the SMF forum hooked up to SFS at one point, but we finally just went to "closed registration" and a note saying, 'email us and convince us you're not a bot.' Any legitimate user gets connected with a single email. Bots don't make it through the system.
Re: forum spam (Score: 1) by zafiro17@pipedot.org on 2014-09-06 13:00 (#2S40) Appreciated! I had the SMF forum hooked up to SFS at one point, but we finally just went to "closed registration" and a note saying, 'email us and convince us you're not a bot.' Any legitimate user gets connected with a single email. Bots don't make it through the system.