ep2012 — 2012-11-13T19:26:45-05:00 — #1
Hope you are doing well.
So I have several free lists on various sites, & one of my sites keeps getting bots or idiots signing up for the free list & then never confirming their signup. Actually I don't believe it's a bot, b/c there's a drop down menu they have to choose from so they have to be humans.
I got someone to put a captcha in the signup process thinking that would stop it, but no such luck.
Any idea why they are doing this & how to stop it?
dklynn — 2012-11-14T00:34:50-05:00 — #2
They do it to annoy you. Are they succeeding?
CAPTCHA is supposed to STOP spammers from starting the sign-up and you should have your server not inform you unless the second half (confirmation) is completed. Also, setup your database to require confirmation within a set period of time else delete the garbage.
ep2012 — 2012-11-14T02:25:29-05:00 — #3
Yes it is annoying b/c I don't know who's real & who's not, although I can tell most times now.
Unfortunately I'm still using a 3rd party hosted shopping cart that also runs my lists. Their code & features are sub par at best, so I doubt there's an option to self delete if they don't opt in. In fact I know there's not, as I've had to do it myself & have to do it soon, as I'm nearing my max.
I get notified of every signup whether it goes thru or not. Again, I doubt there's a feature that would ONLY let me know if they opted in.
This has been going on for months. I don't know if it's the same person or what's happening. I guess I could try to keep track of the IP addresses, but I just don't have time for that & they are probably using a proxy anyway.
technobear — 2012-11-14T09:31:41-05:00 — #4
If it's bots rather than human spammers, you could try adding something like this, and hope they fall into the trap before they reach the signup form. (Maybe add the trap at the start of the form.)
2ndmouse — 2012-11-19T15:45:32-05:00 — #5
I've had the same problem recently. I blocked the IP addresses and it seems to be working - no attacks in more than a week. They were coming through every day. Seems to work, for now anyway - apparently, they don't all use proxy servers. Just a thought.
You could also try adding a question to your forms, e.g. (4+9-3 = ?) or something similar and validate it on the action page. That will stop most bots, their automated processes aren't smart enough to answer questions.
P.S. I find CAPTCHA a pain in the neck when it appears on forms - it must put some people off completing the process. Just an opinion.
ep2012 — 2012-11-19T22:21:04-05:00 — #6
Thanks Bear, I have to get someone to do this for me of course. I'm just an entrepreneur.
Mouse, I have to see if I block the IP it will work. Unfortunately I use a hosted list builder & they suck. I can't change for various reasons.
I remember asking them a few years back if the blocking of the IP address worked on the list & I think they said no. Why they have it at all is beyond me, but I'll ask again.
What script do you use for the question? I hate some captchas b/c they don't work. The one that was put on my forms was a simple one as the guy said the Google one wouldn't work. Not sure why.
Is the Simple Site Audit yours?
2ndmouse — 2012-11-20T07:07:46-05:00 — #7
You need to ask your technical guy to add a question to your forms (unless you are familiar with form creation and have access to site via FTP), but it must be validated on the action page - there's no script involved.
Yes, simplesiteaudit is mine, all mine
ep2012 — 2012-11-23T03:22:29-05:00 — #8
I wish I had a "technical guy" to do this. It's even getting worse now over the last few days.
2ndmouse — 2012-11-24T04:00:26-05:00 — #9
Would you mind sending me the URL for the form that is being abused? I'll see if there's anything obvious that you can change.
ep2012 — 2012-11-24T17:08:59-05:00 — #10
Oh thank you.
I have 2 index pages. I'm giving you the 2nd one only b/c the list box drops down so it's easier for you to find. If you want the 2nd one, just remove everything after the .com. The box to click on to sign up is on the right side of the page
I will pm the link to you.
ep2012 — 2012-12-02T20:27:20-05:00 — #11
Hi 2nd mouse.
I sent you my URL a while ago & never heard back. Did yo not receive it?
ep2012 — 2012-12-02T22:03:01-05:00 — #12
I find it interesting that AFTER I posted the URL on this thread both the first time & just now, the amount of spam increased.
eastcoast — 2012-12-03T08:12:41-05:00 — #13
Do you have access to change
a) the html code that displays the sign up form
b) server side script that the form posts the data to
2ndmouse — 2012-12-03T13:41:38-05:00 — #14
Further to EastCoast's questions - if you don't have access to the nuts and bolts of the site, i.e. via FTP or a control panel or both, there's not much you can do to amend your form. Who looks after the site for you? How did it get created in the first place? Someone must've set it up for you.
Contact the people you are paying for the webspace and ask about access. Once you get access, it will be easier to advise you further.
2ndmouse — 2012-12-03T13:46:11-05:00 — #15
P.S. You might want to ask SP admin to remove the link from your site address in the post above.
samsishir — 2013-02-06T14:29:11-05:00 — #16
Captcha are annoying if we view from the eye of visitor.. but they are the protector too ,, noadays there are really amazing captcha puzzle which can be easily solved by human but not by bot .. try those...
ep2012 — 2013-02-06T21:47:28-05:00 — #17
Sorry, didn't see these responses until now since someone else posted.
Do you mean can I get something changed on my site?
I have to wait until I have some funds & then can maybe do it, yes.
I have access to everything, doing coding other than basic html is outside my skill set.
ep2012 — 2013-02-06T21:52:40-05:00 — #18
My site has been touched by many hands over the many years. Many of whom didn't know what they were doing. I haven't had a website coder in a while. I, like many other entrepreneurs hire a person to do one there here or one thing there b/c it's so stressful dealing with website coders. I did recently hire someone to do something small, but it wasn't really site related. I still don't know how good he is & may never know, as I never know until the next person tells me XYZ was done wrong or something breaks down & I remember who did it. He did help me fix an issue that even the company who provides the software didn't tell me, so that impressed me.
I don't need to ask anyone for access, I know how to load FTP. I didn't know the form was all JS.
Today I had someone (spam) signup to the list 4 times LOL Just nuts.