![]() |
![]() ![]() |
![]() |
Guest_speedmeup_* |
![]()
Post
#1
|
Guests ![]() |
Hi,
I just received some spam addressed to the email address I registered here with. I only used this particular address to register here - it's something like dvbowners@mydomain.com so I can be fairly sure the spammer got my address here. Does the forum default to allow other members access to each others' registration email addresses? or was there some form of security compromise that allowed spammers access to email addresses? I just changed a profile setting which seems to stop users sending me email via the web interface this is overkill but I certainly wouldn't expect my email address used for registration to be this freely disclosed by default. There's no need if mail is sent via the web forum. BTW, the spam message was received from uocwb.0naj7y7.optonline.net (c-71-204-28-190.hsd1.ga.comcast.net [71.204.28.190]) and read as follows: Hello. |
|
|
![]()
Post
#2
|
|
Forum Regular Group: Members Posts: 1,581 Joined: 8-October 03 From: Adelaide Member No.: 185 Card: DNTV Live! DVB-T ![]() |
I got the same message....
-------------------- |
|
|
Guest_speedmeup_* |
![]()
Post
#3
|
Guests ![]() |
|
|
|
![]()
Post
#4
|
|
Web Scheduler Developer Group: Developers Posts: 4,495 Joined: 9-July 03 From: Melb Member No.: 9 Card: None ![]() |
yep, me to, got a few of these today
![]() |
|
|
![]()
Post
#5
|
|
Participant Group: Members Posts: 50 Joined: 8-April 04 From: Melbourne Member No.: 713 Card: VisionPlus DVB-t ![]() |
|
|
|
![]()
Post
#6
|
|
Forum Regular Group: Members Posts: 640 Joined: 13-July 03 Member No.: 57 Card: DNTV tinyUSB ![]() |
The problem is happening with multiple forums, seems like the spammers have added more forums as new address list sources. I've also received email to the address that I used on this forum but email is turned off, which suggests a hack has been used to harvest the addresses.
More concerning is that I've had spam delivered to addresses specifically generated to register for purchases at web based shops. Fortunately none of them have ever blinked sideways at my credit card numbers, but personal address info - now that's a worry. This post has been edited by DrP: Jul 21 2006, 08:13 AM -------------------- Looking for an alternative to TV Scheduler Pro? Take a look at dvscheduler for Windows or tvheadend for linux.
|
|
|
![]()
Post
#7
|
|
Forum Regular ![]() Group: Admin Posts: 872 Joined: 8-July 03 From: Sydney Member No.: 2 Card: VisionPlus DVB-t ![]() |
We apologise for any inconvenience it may cause.
We're looking into this. I know how much spam hurts and would never do anything that could give your emails away. I hate it as much as the next person. Bare with us, hopefully any issues that allow this will be fixed shortly. |
|
|
Guest_sobriquet_* |
![]()
Post
#8
|
Guests ![]() |
I'll add myself to the list of users receiving spam at my DVBOwners address (something like dvbowners@mydomain.com). As far as I can remember, I've ALWAYS hidden my email address from users of the forum.
I hope you guys figure this out soon... I'm probably going to have to block email sent to the address I have registered here now, but I don't want to change my email till we know it won't happen again! I'm happy to provide any details that might help with your investigation. |
|
|
Guest_Holli_* |
![]() ![]()
Post
#9
|
Guests ![]() |
Hi, I just received some spam addressed to the email address I registered here with. I only used this particular address to register here - it's something like dvbowners@mydomain.com so I can be fairly sure the spammer got my address here. Does the forum default to allow other members access to each others' registration email addresses? or was there some form of security compromise that allowed spammers access to email addresses? I just changed a profile setting which seems to stop users sending me email via the web interface this is overkill but I certainly wouldn't expect my email address used for registration to be this freely disclosed by default. There's no need if mail is sent via the web forum. BTW, the spam message was received from uocwb.0naj7y7.optonline.net (c-71-204-28-190.hsd1.ga.comcast.net [71.204.28.190]) and read as follows: Hello. I have the same problem arose( ![]() |
|
|
Guest_sobriquet_* |
![]()
Post
#10
|
Guests ![]() |
Good to see this issue is being taken seriously, and the forum admins are so involved in this topic
</sarcasm> |
|
|
![]()
Post
#11
|
|
Forum Regular Group: Members Posts: 875 Joined: 8-November 04 Member No.: 1,988 Card: DVICO FusionHDTV ![]() |
To be fair I think that Null is doing most of the forum administering these days.
Its a thankless task. I would suggest making it really hard to register as a new user - a bit like the Meedios forum for eg. Most people who want to register here won't mind jumping through a few hoops. There are a lot of BOT posts appearing on the forum these days. I even suspect Holli above of being a BOT. Its like living in bladerunner. |
|
|
![]()
Post
#12
|
|
Web Scheduler Developer Group: Developers Posts: 4,495 Joined: 9-July 03 From: Melb Member No.: 9 Card: None ![]() |
QUOTE There are a lot of BOT posts appearing on the forum these days. I am trying to keep on top of this, it is hard to know real people form bots these days, the bots are getting good. QUOTE I would suggest making it really hard to register as a new user - a bit like the Meedios forum for eg. Most people who want to register here won't mind jumping through a few hoops. I am not able to do this, I admin a few forums I dont have access or control over the system itself. |
|
|
![]()
Post
#13
|
|
Forum Regular Group: Members Posts: 875 Joined: 8-November 04 Member No.: 1,988 Card: DVICO FusionHDTV ![]() |
I am trying to keep on top of this, it is hard to know real people form bots these days, the bots are getting good. I am not able to do this, I admin a few forums I dont have access or control over the system itself. They sure are! Are you able to contact Rob S? Maybe we need some more forum admins? |
|
|
Guest_sobriquet_* |
![]()
Post
#14
|
Guests ![]() |
Hey null,
My post wasn't directed at you personally - hope you didn't take offense. Just that obviously email addresses have been "leaking" from this site for a while - not sure if it's related to bots joining or something else, but it's obviously an issue. I didn't realise how light-on for admins this place was, though! Sobriquet. |
|
|
![]()
Post
#15
|
|
Forum Regular ![]() Group: Admin Posts: 872 Joined: 8-July 03 From: Sydney Member No.: 2 Card: VisionPlus DVB-t ![]() |
We are running the latest version of Invision. Not sure how it's happening but it's perplexing. As is the bots registering. I have NFI how they manage to work things out, and IPB doesn't offer any harsher options apart from manual registration approval. We've been looking into it, but as mentioned, can't work out how they manage to continually get around things.
|
|
|
![]()
Post
#16
|
|
Forum Regular Group: Members Posts: 875 Joined: 8-November 04 Member No.: 1,988 Card: DVICO FusionHDTV ![]() |
Heres some discussion on the Meedio forum.
I'm with the administrator there, I think this forum should be difficult to join as there will be a lot more bots and legit users will put in some effort to join if they want to. Also I understand the bots are getting harder and harder to stop. |
|
|
Guest_sobriquet_* |
![]()
Post
#17
|
Guests ![]() |
We are running the latest version of Invision. Always good to know! ![]() |
|
|
![]()
Post
#18
|
|
Web Scheduler Developer Group: Developers Posts: 4,495 Joined: 9-July 03 From: Melb Member No.: 9 Card: None ![]() |
While I am deleting bot posts on a daily basis I can not ban bot accounts or mass delete bots posts, I do them one by one. I am not sure if this is due to my access level or the system just does not have the functionality to nuke a user and all its posts in one action.
This is becoming a bigger issue and I think needs looking at. Making it harder to register might be a good approach, how you achieve this I am not sure. Does anyone have any suggestions? |
|
|
![]()
Post
#19
|
|
Enthusiast Group: Members Posts: 6,668 Joined: 10-July 03 From: Canberra Member No.: 38 Card: None ![]() |
Don't let anyone post until they have been registered for a few days. That might stop some of them and might also encourage some user to read more before posting.
-------------------- Renura Enterprises Pty Ltd - Owner of DigitalNow and MediaNow- Importers, Distributors and Retailers of Digital TV and other Digital Multimedia Solutions
|
|
|
![]()
Post
#20
|
|
Forum Regular Group: Members Posts: 875 Joined: 8-November 04 Member No.: 1,988 Card: DVICO FusionHDTV ![]() |
Also as above the Meedios forums ask a number of questions before allowing signup.
It seems the captcha is not good enough to stop the bots anymore. |
|
|
![]() ![]() |
![]() |
Lo-Fi Version | Time is now: 20th February 2019 - 09:16 PM |