SitePoint Sponsor

User Tag List

Results 1 to 17 of 17

Thread: Site protection

  1. #1
    SitePoint Member
    Join Date
    Apr 2009
    Posts
    2
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Site protection

    Hello

    Im running a web site with videochat and I would like to keep this chat as non adult. Apparently im having problems with people, who think that its an adult chat and keep getting naked on their webcams. I have system to block users based on IP address and cookies. But many of them are able to clean cookies and change IP address and come back again and again. I would like to ask if there is any possibility to identify users according something else then IP and cookie. (MAC address, Unique number of operating system, trace root protocol, etc.)

    Here is example of IPís range with trouble users. :
    91.32.0.0-91.63.255.255
    91.127.0.0 - 91.127.127.255
    91.127.0.0 - 91.127.127.255
    78.99.0.0 - 78.99.255.255
    78.99.0.0 - 78.99.255.255
    78.102.0.0 - 78.102.127.255
    84.47.96.0 - 84.47.127.255

    If some one had idea how I can block these users let me know here or on my email hrdlo79@gmail.com

    Thanks in advance

  2. #2
    SitePoint Evangelist achintya's Avatar
    Join Date
    Apr 2005
    Location
    Chandannagar(India)
    Posts
    459
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    You can think of installing some software on your hosting server or may use htaccess to block ip's. You can check this out

  3. #3
    SitePoint Enthusiast the-webber's Avatar
    Join Date
    Mar 2009
    Posts
    82
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    but if the problem is that the trouble makers are changing their ip's it won't matter whether use .htaccess to do the blocking.

  4. #4
    SitePoint Evangelist achintya's Avatar
    Join Date
    Apr 2005
    Location
    Chandannagar(India)
    Posts
    459
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Do you think that people keep changing their ip addresses? How's that possible?

  5. #5
    SitePoint Addict
    Join Date
    Apr 2009
    Posts
    248
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Since most ISPs function as little more than private networks, renewing your DHCP lease with your ISP should result in a new public IP.

  6. #6
    SitePoint Enthusiast the-webber's Avatar
    Join Date
    Mar 2009
    Posts
    82
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    to be honest with you. I don't know. i'm just going by the OP's facts words. i'd be curious to know how it's done. from my personal experience running a family friendly forum, i have been frustrated by being unable to prevent users from posting porn. I continually ban these people based on IP but the same people keep posting porn --i assume it's porn because it's the exact same graphic images that link to the exact same porn sites!

  7. #7
    SitePoint Member
    Join Date
    Apr 2009
    Posts
    2
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thanks for the answers. I already have that kind of protection uve told me about. But its very simple to change IP only by switching on and off the rooter and ISP will give you new IP address, so simple blocking of IP adresses is not the best idea.

  8. #8
    SitePoint Zealot
    Join Date
    Apr 2009
    Location
    South Florida
    Posts
    187
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I would do something like this.

    1. Allow only registered users to enter to chat
    2. Registration required captcha image verification
    3. Use IP2Location to determine new user location (or ISP information), if those are coming from suspicious location (need to have a list..) need admin approval
    4. New users need to wait certain period of time to post any URL or images
    5. Have spam button option, if user receive lot of spam from other users, block that user and notify admin for review

  9. #9
    PHP Guru lampcms.com's Avatar
    Join Date
    Jan 2009
    Posts
    921
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by SituationSoap View Post
    Since most ISPs function as little more than private networks, renewing your DHCP lease with your ISP should result in a new public IP.
    Try to renew your IP and see what happends. Most of the time you would get the same IP

  10. #10
    John 8:24 JREAM's Avatar
    Join Date
    Sep 2007
    Location
    Florida
    Posts
    1,508
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    You could get some Admins for the chats who can shut off offenders sessions.
    You could only allowed registered users, then ban offenders.
    I would think this would be a problem with a lot of sites just like spam.

    I was told not to block ip addresses, But this was the .htaccess thing I saw on a site:
    Code:
    order allow,deny
    deny from some-evil-isp.com
    deny from subdomain.another-evil-isp.com
    allow from all

  11. #11
    SitePoint Enthusiast the-webber's Avatar
    Join Date
    Mar 2009
    Posts
    82
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Try to renew your IP and see what happends. Most of the time you would get the same IP
    this is exactly what's been my experience at 3 different ISP's which is why I didn't think you could change IP's by restarting your router. i know that i can't get a new IP that way. maybe some ISP's operate differently than the ones that i've used the last few years?

  12. #12
    PHP Guru lampcms.com's Avatar
    Join Date
    Jan 2009
    Posts
    921
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by the-webber View Post
    this is exactly what's been my experience at 3 different ISP's which is why I didn't think you could change IP's by restarting your router. i know that i can't get a new IP that way. maybe some ISP's operate differently than the ones that i've used the last few years?
    This is normal for a dhcp server. It will try to give you the same ip as you had before unless that ip is no longer available (was given to some other user), then it will give you a diffferent IP.

    Anyway, the most common way to get different ip is to use public proxy server.
    Attackers and spammer use proxy server and may get different ip for every new action they perform.

    Protecting against proxy server requires to examine the request header. Some proxy servers will hide the fact that they are proxy server, in which case request header will not contain any useful info. You will also need a list of all known publicly available proxy server. Such lists exist on the Internet, but a new proxy is born every day

    Protecting against spammers is not an easy task my friend. Some of the best minds have been working on it for the past 20 years and we still have spam in our emails.

  13. #13
    SitePoint Wizard
    Join Date
    Mar 2008
    Posts
    1,149
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    If it's always the same people, then you should do some/all of what lphy suggested.

    If it's always new people, then it's a problem of psychology here. Reduce their desire of using your site for such purposes, somehow. If people are coming to your site for that reason, that means there are other like-minded people coming there for the same reason, and somehow you will have to marginalize those people. Doing what lphy will help towards this, but then you also need moderators.

    Either way, to reduce any sort of activity, you just need to remove the incentive. Otherwise you will never win.

  14. #14
    SitePoint Enthusiast the-webber's Avatar
    Join Date
    Mar 2009
    Posts
    82
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    sk89q, i agree with you about trying to eradicate the incentive and I don't want to hijack this post, but this thread hits too close to home.

    Here's the scenario. I run a high traffic , family friendly educational site (about 15-29K a day). I use simple machines forum as part of the site and i integrate recent forum posts into the larger site, so that every page includes recents posts--this feature has enabled my site's forum to actually gain some momentum. however, some spammers seem to have realized that they can register, post their porn and have links broadcast to about 15K people a day! For the past four mothts or so, it's just gotten worse and worse. Captcha does not stop them. No matter how many I ban, they keep coming back--several times a day, and I know that some of htese spammers are the same because they always post the same links/images--often very explicit porn. Banning by IP or email does not do anything, they just keep coming back, probably using a proxy server as someone else has suggested.

  15. #15
    SitePoint Member
    Join Date
    Apr 2009
    Posts
    2
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    This is not a good idea, many places dynamic ip only use.

  16. #16
    SitePoint Enthusiast the-webber's Avatar
    Join Date
    Mar 2009
    Posts
    82
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    true dynamic IP's could lead to innocent people being banned. I guess that I should just ban by email and username? it's a very frustrating situation.

  17. #17
    SitePoint Zealot
    Join Date
    Apr 2009
    Location
    South Florida
    Posts
    187
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by the-webber View Post
    they keep coming back--several times a day, and I know that some of htese spammers are the same because they always post the same links/images--.
    In this case you should maintain a database table with stop word list, which contain some of the domain name or key words containing in their URLs. Using this DB table you can block any post easily.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •