Jump to content
Chapala.com Webboard

Recommended Posts

I was able to intercept an attack around 10PM but they came back this morning with 4 new IDs.  Interestingly they are using email addresses from places like Gabon and New Zealand.  The IP addresses are known sites hosting spammers.

We'll stay on it as best as possible and keeping telling Admin to deal with it at the board host level.

CG I can copy and list the spammer IP addresses.  Can these be of any use?

 

Link to post
Share on other sites

No, I don't have the kind of reverse-hacking software to uncover what are undoubtedly what are called "spoofed" email addresses. And even if I did, they wouldn't help, because they are paying anonymizer sites to hide their tracks, most likely.

I translated one message; it was just the name of some casino repeated over and over.

Link to post
Share on other sites

This is very interesting.  The user names they create are a dead giveaway.  When I spaminate each one, they disappear and then come back about 15 minutes later apparently checking to see if they've been deleted.  Then shortly after, new ones show up.

CG, do bots really do stuff like this or is this some incredibly stupid spammers who can't seem to figure out they are spamming a board where it is not very likely anyone speaks or reads Korean?

 

Link to post
Share on other sites

Certainly the company supplying the forum software will have a fix for this, if not, bring someone in to twiddle the server. For example, switch to Linux Apache as the server system. Put in some geographical bans, from known spammer countries, who have no interest at all in Lake Chapala.

I personally think they are targeting Chapala.com because it looks big enough to have credit card numbers. When they find the cupboard is bare, they will move on.

Link to post
Share on other sites

Now it appears individual members have had their email address hacked.  Looks like they are looking at personal profiles and if you have an email address enabled there, they spam it.

I suggest updating profile to remove or hide email address.

Link to post
Share on other sites

This is not a problem for me anywhere else on the internet.  Why can't you guys get this kind of thing under control?  Even if it costs you money you have a reputation and this type of problem will take it away very quickly.  Protect yourself and you protect us a bit more than you have been doing.

 

  • Like 3
Link to post
Share on other sites

Give them a break. They are not in the "business" of server-side anything. They haven't had to deal with this before, either. Not to mention, it's provided to us with no membership charge. Give them a chance to regroup a little.

  • Like 1
Link to post
Share on other sites

Are you kidding? This forum has been down at least 6 times this year alone. Look at the prices for Invision Community - they are paying top dollar, and not getting their moneys worth (in my opinion). They have to pay a local network tweaker to maintain and update the system/server. I know they have someone, but that person, after ten years, does still not know how to remove a member from the member's list upon a member's request. The member's list alone must take up a huge amount of server/storage, yet many of the names are obviously obscene, offensive or have never been used. It needs to be purged, which is done on other forums all the time.

No matter how nice or expensive your car is, you still need a good mechanic to keep an eye on things.

  • Like 4
  • Haha 1
Link to post
Share on other sites
 

Are you kidding? This forum has been down at least 6 times this year alone. Look at the prices for Invision Community - they are paying top dollar, and not getting their moneys worth (in my opinion). They have to pay a local network tweaker to maintain and update the system/server. I know they have someone, but that person, after ten years, does still not know how to remove a member from the member's list upon a member's request. The member's list alone must take up a huge amount of server/storage, yet many of the names are obviously obscene, offensive or have never been used.

No matter how nice or expensive your car is, you still need a good mechanic to keep an eye on things.

display.jpg

  • Like 1
Link to post
Share on other sites
 

How about getting someone in who actually understands this post about securing your invision community server. I know someone who does, he already manages three or four servers here and speaks excellent Linux.

https://invisioncommunity.com/forums/topic/416413-how-to-secure-your-forum-server/

That is an excellent suggestion.  Please send it to Chapala(at)chapala(dot)com.

 

Link to post
Share on other sites
 

Are you kidding? This forum has been down at least 6 times this year alone. Look at the prices for Invision Community - they are paying top dollar, and not getting their moneys worth (in my opinion). They have to pay a local network tweaker to maintain and update the system/server. I know they have someone, but that person, after ten years, does still not know how to remove a member from the member's list upon a member's request. The member's list alone must take up a huge amount of server/storage, yet many of the names are obviously obscene, offensive or have never been used. It needs to be purged, which is done on other forums all the time.

No matter how nice or expensive your car is, you still need a good mechanic to keep an eye on things.

No, they haven't had to deal with this kind of spam attack. "Being down" is a different problem altogether". I don't know who, or if, they pay anyone. (Member lists take up no space at all.) As for the rest, I can't comment, but as for the spam, it's new to them.

Cripes, I won't ever run a board again myself; it's a painful, difficult, thankless job. That is no excuse, of course.

  • Like 2
Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...