Bots on PPRuNe
Thread Starter
Join Date: Feb 2009
Location: Worldwide
Posts: 579
Likes: 0
Received 0 Likes
on
0 Posts
As in harvesting emails for future use?
There is nothing to see in the posts themselves.
When doing a posts search something does show up which is not visible in the post itself. Would you know what that is?
There is nothing to see in the posts themselves.
When doing a posts search something does show up which is not visible in the post itself. Would you know what that is?
Join Date: Aug 2002
Location: Earth
Posts: 3,663
Likes: 0
Received 0 Likes
on
0 Posts
As in harvesting emails for future use?
Would you know what that is?
I suspect the image filename of "avtar" gives a hint...it's a little icon, anything from a smilie to a small image meant to represent the user.
Join Date: May 2011
Location: Glasgow
Age: 40
Posts: 642
Likes: 0
Received 0 Likes
on
0 Posts
A number of them will be being used by search engines (such as google) to update their indexes of pprune. It is no surprise since pprune often appears high up on google searches... Google is also often quicker/easier (in my opinion) to find a long lost thread than the built in search tools. They wont be re-posting posts though (unless their design is flawed).
My memory is that you need to create an account to post here which bots have great difficulty doing. Could it be there are some pilots who are just a little too fatigued to function properly logging in?
My memory is that you need to create an account to post here which bots have great difficulty doing. Could it be there are some pilots who are just a little too fatigued to function properly logging in?
Thread Starter
Join Date: Feb 2009
Location: Worldwide
Posts: 579
Likes: 0
Received 0 Likes
on
0 Posts
I am getting curious now.
What would be the purpose of having a bot that posts parts of previous posts and includes a 1x1 pixel sized image that is not visible? If it was an attempt at spam would there not be links or something visible?
Riverrock,
You can see usernames registered in the last few days with names like "Claudette381" or "Curtis532" and so on, making posts that just include this little image file and snippets of previous posts on the same thread.
What would be the purpose of having a bot that posts parts of previous posts and includes a 1x1 pixel sized image that is not visible? If it was an attempt at spam would there not be links or something visible?
Riverrock,
You can see usernames registered in the last few days with names like "Claudette381" or "Curtis532" and so on, making posts that just include this little image file and snippets of previous posts on the same thread.
Join Date: May 2011
Location: Madison, WI
Posts: 299
Likes: 0
Received 0 Likes
on
0 Posts
A number of them will be being used by search engines (such as google) to update their indexes of PPRuNe.
What would be the purpose of having a bot that posts parts of previous posts and includes a 1x1 pixel sized image that is not visible? If it was an attempt at spam would there not be links or something visible?
This is the way with email spam anyways. Not sure if it works the same way with forum spam. With email spam, oftentimes each email has a slightly modified link all redirected to the same inviisible 1x1 image. That way they can know exactly which of their thousand spam Viagra emails has made it to human eyes.
Join Date: Apr 2010
Posts: 95
Likes: 0
Received 0 Likes
on
0 Posts
which means I was extra stupid to copy the link of the invisible pic to another window (got it from 'more posts by...' and Amazon books it was) - Clyde...whatevernumber it was, in "2 last letters start the next word", because the post was weird, as the next post is supposed to have the definite letters there.
(Clyde38, looked it up).
(Clyde38, looked it up).
Join Date: Dec 2011
Posts: 2,460
Likes: 0
Received 0 Likes
on
0 Posts
With email spam, oftentimes each email has a slightly modified link all redirected to the same inviisible 1x1 image.
Maybe M$ Outlook will... but I would be suprised if that was the default configuration nowadays. This is absolutely the oldest trick in the book for infecting email software... include a malformed jped/pdf/whatever in the email.
However, I recall there was a company making money out of a service whereby you included the 1-pixel image in your outgoing email(s) and that way you could tell when the recipient has read it. Without some trick like that, there is no way to tell if somebody has opened an email.
Hippopotomonstrosesquipidelian title
Join Date: Oct 2006
Location: is everything
Posts: 1,826
Likes: 0
Received 0 Likes
on
0 Posts
No URLs in posts by new users might be a start? There'd be no reason to post here. I guess you know the IP addresses, so it would be interesting to know if this is a dedicated guy in the US, or a work for hire done by an Indian or Chinese spam farm.
Join Date: Mar 2011
Location: El Segundo
Posts: 674
Likes: 0
Received 0 Likes
on
0 Posts
Bushfiva, it's actually not possible to restrict links within posts in vBulletin without unofficial hacks, which the tech team are reluctant to implement. We could restrict posting altogether by new users, but that's pretty drastic and hard to implement, given the dispersion of spammers across the forums. We'll focus on some back end tweaks to try to slow down these spammers from entering in the first place.
Hippopotomonstrosesquipidelian title
Join Date: Oct 2006
Location: is everything
Posts: 1,826
Likes: 0
Received 0 Likes
on
0 Posts
Well, you are the owners of vBulletin so you would be the right people to turn an unofficial hack into an official option.
How about a minimum image size in both terms of dimensions and kB? Then single-pixel images and blank images hiding at the end of the text wouldn't work.
How about a minimum image size in both terms of dimensions and kB? Then single-pixel images and blank images hiding at the end of the text wouldn't work.
Join Date: Aug 2002
Location: Earth
Posts: 3,663
Likes: 0
Received 0 Likes
on
0 Posts
Bushfiva,
You're missing the point.
The aim should be to catch them before they even have the opportunity to post. Not trying to catch them out at the posting stage, because they are only going to work around that.
Bring back captcha logins I say !
(plus a few additional tricks here and there....)
You're missing the point.
The aim should be to catch them before they even have the opportunity to post. Not trying to catch them out at the posting stage, because they are only going to work around that.
Bring back captcha logins I say !
(plus a few additional tricks here and there....)
Hippopotomonstrosesquipidelian title
Join Date: Oct 2006
Location: is everything
Posts: 1,826
Likes: 0
Received 0 Likes
on
0 Posts
No, I'm not missing the point. These aren't bots, they're people paid to get past the registration and login barriers, then start posting apparently reasonable postings but including a one-pixel link. You can try to block them at the point of entry by making the cost higher than the value in posting, agreed. But you can also stop them by making their postings readily detectable. You may not have noticed, but at least one of these "bots" has been creating threads. If images below a certain pixel size can't be posted, all the single-pixel issues go away. If images below a certain file size can't be posted, then most of the transparent-image-at-the-end-of-the-text issues go away, courtesy of Mr Huffman and friends.
In general, a blend of approaches probably works best. But these guys *are* vBulletin, so saying they don't like hacks is disingenuous. Don't make it a hack, make it part of the product. IB has more than 100 web sites; it's not just trying to fix PPRuNe, it's trying to fix their entire portfolio.
In general, a blend of approaches probably works best. But these guys *are* vBulletin, so saying they don't like hacks is disingenuous. Don't make it a hack, make it part of the product. IB has more than 100 web sites; it's not just trying to fix PPRuNe, it's trying to fix their entire portfolio.
Last edited by Bushfiva; 16th Mar 2012 at 12:14. Reason: Added two words for clarification