HTML portion

Chilly8

"Jerry Stuckle" <> wrote in message
news:. ..
> Chilly8 wrote:
>> "Jerry Stuckle" <> wrote in message
>> news:. ..
>>> Chilly8 wrote:
>>>> X-No-Archive: Yes
>>>>
>>>> "Jerry Stuckle" <> wrote in message
>>>> news:. ..
>>>>> Chilly8 wrote:
>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>> news:. ..
>>>>>>> Chilly8 wrote:
>>>>>>>> How to I change the HTML portiion of a PHP script? I want to modify
>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>> StatCounter
>>>>>>>> record hits to that part of my web site. I already have the main
>>>>>>>> web
>>>>>>>> site logged with StatCounter, but I would like to be able to modify
>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>
>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>> to change the HTML portion of the code
>>>>>>>>
>>>>>>>>
>>>>>>> You need to ask in the PhpBB support forums, not here. It's more
>>>>>>> complicated than just changing text files.
>>>>>> I have figured out one way to do it, which works with ANY
>>>>>> PHP page. Just load it into your browser, select the option
>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>> index.html page, then have the web crawlers crawl that
>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>> on my domain to take users to the HTML-translated
>>>>>> version of the page. Then you can put in things like
>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>> the original php version, so that users can login. If the
>>>>>> index.php file has been erased or renamed, a user will
>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>> back to the main page, open the source in your browser,
>>>>>> and then save the HTML-translated page, then submit
>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>> so that users get directed to that, instead of the PHP
>>>>>> version of the page.
>>>>>>
>>>>>>
>>>>> And pretty soon you'll figure out why that doesn't work.
>>>> Its so far worked for me. Just have the original PHP version
>>>> of the page, so that users can log in, if logins are required.
>>>>
>>> Keep it up. You'll find why it doesn't work. Then you can come back
>>> here and look at the advice given you in this thread.
>>
>> Its already bearing fruit. I have found two networks, one in Germany
>> and one in Ukraine, where a lot of the **** links are coming from, and
>> have already blocked them at the firewall level, so I won't see any more
>> from those networks. Statcounter is already revealing to me where these
>> *******s are coming from.
>>
>>
>>
>>
>
> And if you chase them down, chances are you'll find they are coming from
> anonymous proxies.

I dont know, some seem to come from whole class C IP blocks.
I have had to block entire class C IP blocks to shut off the
worst offenders, which are coming from server colocation
facilities in Germany and Ukraine. Just blocking those two, at
the firewall level, has shut mot of those that create screen names,
put **** links in the profile, and then dissapear. You create a
profile when you register, so someone could register, put their
****, or other spam link in the profile, and never come back.
They don't even have to login, one they have registered, and
placed the **** link in their profile.
>
> One non-PhpBB board I manage had a major problem with Spam until we
> implemented CAPTCHA. We were getting 200-400 spam posts per hour at
> times, and every one of them came from a different IP address. But the
> content was always the same.


Well, what they are doing is creating accounts, and then putting
**** links in the profile. The create the accounts and then
never return, and I then have to edit those profiles to get rid
of the spam, and then ban them, on the off chance the do
decide to try and come back.

Some of the scrren names that are created, I can Google,
and find them on a number of phpBB, vBulletin, and punBB
boards.

Google any of these strange screen names that appear, and
post **** links in their profiles, and chances are you will
find it being done to other boards running vBulletin,. phpBB,
or punBB.

David Pyles

On 12/3/2007 4:54 PM, Chilly8 wrote:
> "Jerry Stuckle" <> wrote in message
> news:. ..
>> Chilly8 wrote:
>>> "Jerry Stuckle" <> wrote in message
>>> news:. ..
>>>> Chilly8 wrote:
>>>>> X-No-Archive: Yes
>>>>>
>>>>> "Jerry Stuckle" <> wrote in message
>>>>> news:. ..
>>>>>> Chilly8 wrote:
>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>> news:. ..
>>>>>>>> Chilly8 wrote:
>>>>>>>>> How to I change the HTML portiion of a PHP script? I want to modify
>>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>>> StatCounter
>>>>>>>>> record hits to that part of my web site. I already have the main
>>>>>>>>> web
>>>>>>>>> site logged with StatCounter, but I would like to be able to modify
>>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>>
>>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>>> to change the HTML portion of the code
>>>>>>>>>
>>>>>>>>>
>>>>>>>> You need to ask in the PhpBB support forums, not here. It's more
>>>>>>>> complicated than just changing text files.
>>>>>>> I have figured out one way to do it, which works with ANY
>>>>>>> PHP page. Just load it into your browser, select the option
>>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>>> index.html page, then have the web crawlers crawl that
>>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>>> on my domain to take users to the HTML-translated
>>>>>>> version of the page. Then you can put in things like
>>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>>> the original php version, so that users can login. If the
>>>>>>> index.php file has been erased or renamed, a user will
>>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>>> back to the main page, open the source in your browser,
>>>>>>> and then save the HTML-translated page, then submit
>>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>>> so that users get directed to that, instead of the PHP
>>>>>>> version of the page.
>>>>>>>
>>>>>>>
>>>>>> And pretty soon you'll figure out why that doesn't work.
>>>>> Its so far worked for me. Just have the original PHP version
>>>>> of the page, so that users can log in, if logins are required.
>>>>>
>>>> Keep it up. You'll find why it doesn't work. Then you can come back
>>>> here and look at the advice given you in this thread.
>>> Its already bearing fruit. I have found two networks, one in Germany
>>> and one in Ukraine, where a lot of the **** links are coming from, and
>>> have already blocked them at the firewall level, so I won't see any more
>>> from those networks. Statcounter is already revealing to me where these
>>> *******s are coming from.
>>>
>>>
>>>
>>>
>> And if you chase them down, chances are you'll find they are coming from
>> anonymous proxies.
>
> I dont know, some seem to come from whole class C IP blocks.
> I have had to block entire class C IP blocks to shut off the
> worst offenders, which are coming from server colocation
> facilities in Germany and Ukraine. Just blocking those two, at
> the firewall level, has shut mot of those that create screen names,
> put **** links in the profile, and then dissapear. You create a
> profile when you register, so someone could register, put their
> ****, or other spam link in the profile, and never come back.
> They don't even have to login, one they have registered, and
> placed the **** link in their profile.
>> One non-PhpBB board I manage had a major problem with Spam until we
>> implemented CAPTCHA. We were getting 200-400 spam posts per hour at
>> times, and every one of them came from a different IP address. But the
>> content was always the same.
>
>
> Well, what they are doing is creating accounts, and then putting
> **** links in the profile. The create the accounts and then
> never return, and I then have to edit those profiles to get rid
> of the spam, and then ban them, on the off chance the do
> decide to try and come back.
>
> Some of the scrren names that are created, I can Google,
> and find them on a number of phpBB, vBulletin, and punBB
> boards.
>
> Google any of these strange screen names that appear, and
> post **** links in their profiles, and chances are you will
> find it being done to other boards running vBulletin,. phpBB,
> or punBB.
>
>
If you want to keep the **** bots out of your phpBB 2 board, log ontp
phpBB's community forum and search on GMT-12. You will find an answer
there that stops them flat.

As to adding your counter, you can do that by editing the
overall_footer.tpl file in your style template. Just read through the
file and you should be able to find a place to put your counter.

If you are using phpBB 3 the above advice may not apply.
Dave Pyles

Michael

Chilly8 wrote:
> "macca" <> wrote in message
> news:...
>>> PHP for Windows has no seperate HTML template, I looked. And
>>> there are none in phpBB or WikiMedia
>> Not php's templates, theres no such thing. Your applications HTML
>> templates.
>>
>> Look again. I have used phpBB myself
>>
>> if I remember correctly the templates are in something like phpBB2-
>>> templates and the default is SuubSilver, so, if i wanted to add some
>> HTML to the index page i would edit phpBB2->templates->SubSilver-
>>> index_body.tpl or something
>
> There is an index.htm there all right, but if you edit that file, phpBB will
> just ignore the edits. For some reason, the changes I make to the index.htm
> file in that directory are being ignored. I even tried rebooting the
> computer,
> to restart everything, no dice, so using to HTML-translated version of the
> page appears to be the only thing that is going to work. I absoluitely
> must find out where the *******s that are creating accounts and posting
> **** links are coming from. I can edit the profiles to remove the ****
> links,
> and ban the users, but they keep coming back. All the firewall logs will
> tell me is that there were hits to port 80, they won't tell me which part of
> my site was accessed, while StatCounter can.
>
>

What about apache access logs? Also, 'PHP for Windows' doesn't change
whether phpBB or WikiMedia uses templates or not. phpBB uses templates,
like Jerry said, find the right one and add your code.

Saving it as a static HTML file and serving that up completely defeats
the purpose of it being dynamic. And one big extra step for no reason.

Also there are far better ways to deal with spam than block there IPs.
Most spam is distributed through proxies, and 'zombies'. You might see
reduced spam for a few days or weeks, but it will be back.

Chilly8

"Jerry Stuckle" <> wrote in message
news:. ..
> Chilly8 wrote:
>> "Jerry Stuckle" <> wrote in message
>> news:. ..
>>> Chilly8 wrote:
>>>> X-No-Archive: Yes
>>>>
>>>> "Jerry Stuckle" <> wrote in message
>>>> news:. ..
>>>>> Chilly8 wrote:
>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>> news:. ..
>>>>>>> Chilly8 wrote:
>>>>>>>> How to I change the HTML portiion of a PHP script? I want to modify
>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>> StatCounter
>>>>>>>> record hits to that part of my web site. I already have the main
>>>>>>>> web
>>>>>>>> site logged with StatCounter, but I would like to be able to modify
>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>
>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>> to change the HTML portion of the code
>>>>>>>>
>>>>>>>>
>>>>>>> You need to ask in the PhpBB support forums, not here. It's more
>>>>>>> complicated than just changing text files.
>>>>>> I have figured out one way to do it, which works with ANY
>>>>>> PHP page. Just load it into your browser, select the option
>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>> index.html page, then have the web crawlers crawl that
>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>> on my domain to take users to the HTML-translated
>>>>>> version of the page. Then you can put in things like
>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>> the original php version, so that users can login. If the
>>>>>> index.php file has been erased or renamed, a user will
>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>> back to the main page, open the source in your browser,
>>>>>> and then save the HTML-translated page, then submit
>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>> so that users get directed to that, instead of the PHP
>>>>>> version of the page.
>>>>>>
>>>>>>
>>>>> And pretty soon you'll figure out why that doesn't work.
>>>> Its so far worked for me. Just have the original PHP version
>>>> of the page, so that users can log in, if logins are required.
>>>>
>>> Keep it up. You'll find why it doesn't work. Then you can come back
>>> here and look at the advice given you in this thread.
>>
>> Its already bearing fruit. I have found two networks, one in Germany
>> and one in Ukraine, where a lot of the **** links are coming from, and
>> have already blocked them at the firewall level, so I won't see any more
>> from those networks. Statcounter is already revealing to me where these
>> *******s are coming from.
>>
>>
>>
>>
>
> And if you chase them down, chances are you'll find they are coming from
> anonymous proxies.


Nearly all of it was coming from compromised machines on just three
data centers, around the world, Inhoster in Dnreproretrovsk,
Ukraine, Keymachine, in Berlin, Germany, and FDC Servers
in Chicago. Blocking the IP blocks for these data centers has
stopped a lot of it. I might see a couple a day now, but not
at as many as 50 a day like I was seeing.

It seems that every machine at these data centers were compromised,
so blocking everything from these data centers stops 99.9 percent
of the ****-bots, so I don't think I will be seeing much of them
anymore.

Chilly8

"David Pyles" <> wrote in message
news:fj2307$3ij$.net...
> On 12/3/2007 4:54 PM, Chilly8 wrote:
>> "Jerry Stuckle" <> wrote in message
>> news:. ..
>>> Chilly8 wrote:
>>>> "Jerry Stuckle" <> wrote in message
>>>> news:. ..
>>>>> Chilly8 wrote:
>>>>>> X-No-Archive: Yes
>>>>>>
>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>> news:. ..
>>>>>>> Chilly8 wrote:
>>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>>> news:. ..
>>>>>>>>> Chilly8 wrote:
>>>>>>>>>> How to I change the HTML portiion of a PHP script? I want to
>>>>>>>>>> modify
>>>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>>>> StatCounter
>>>>>>>>>> record hits to that part of my web site. I already have the main
>>>>>>>>>> web
>>>>>>>>>> site logged with StatCounter, but I would like to be able to
>>>>>>>>>> modify
>>>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>>>
>>>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>>>> to change the HTML portion of the code
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>> You need to ask in the PhpBB support forums, not here. It's more
>>>>>>>>> complicated than just changing text files.
>>>>>>>> I have figured out one way to do it, which works with ANY
>>>>>>>> PHP page. Just load it into your browser, select the option
>>>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>>>> index.html page, then have the web crawlers crawl that
>>>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>>>> on my domain to take users to the HTML-translated
>>>>>>>> version of the page. Then you can put in things like
>>>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>>>> the original php version, so that users can login. If the
>>>>>>>> index.php file has been erased or renamed, a user will
>>>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>>>> back to the main page, open the source in your browser,
>>>>>>>> and then save the HTML-translated page, then submit
>>>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>>>> so that users get directed to that, instead of the PHP
>>>>>>>> version of the page.
>>>>>>>>
>>>>>>>>
>>>>>>> And pretty soon you'll figure out why that doesn't work.
>>>>>> Its so far worked for me. Just have the original PHP version
>>>>>> of the page, so that users can log in, if logins are required.
>>>>>>
>>>>> Keep it up. You'll find why it doesn't work. Then you can come back
>>>>> here and look at the advice given you in this thread.
>>>> Its already bearing fruit. I have found two networks, one in Germany
>>>> and one in Ukraine, where a lot of the **** links are coming from, and
>>>> have already blocked them at the firewall level, so I won't see any
>>>> more
>>>> from those networks. Statcounter is already revealing to me where these
>>>> *******s are coming from.
>>>>
>>>>
>>>>
>>>>
>>> And if you chase them down, chances are you'll find they are coming from
>>> anonymous proxies.
>>
>> I dont know, some seem to come from whole class C IP blocks.
>> I have had to block entire class C IP blocks to shut off the
>> worst offenders, which are coming from server colocation
>> facilities in Germany and Ukraine. Just blocking those two, at
>> the firewall level, has shut mot of those that create screen names,
>> put **** links in the profile, and then dissapear. You create a
>> profile when you register, so someone could register, put their
>> ****, or other spam link in the profile, and never come back.
>> They don't even have to login, one they have registered, and
>> placed the **** link in their profile.
>>> One non-PhpBB board I manage had a major problem with Spam until we
>>> implemented CAPTCHA. We were getting 200-400 spam posts per hour at
>>> times, and every one of them came from a different IP address. But the
>>> content was always the same.
>>
>>
>> Well, what they are doing is creating accounts, and then putting
>> **** links in the profile. The create the accounts and then
>> never return, and I then have to edit those profiles to get rid
>> of the spam, and then ban them, on the off chance the do
>> decide to try and come back.
>>
>> Some of the scrren names that are created, I can Google,
>> and find them on a number of phpBB, vBulletin, and punBB
>> boards.
>>
>> Google any of these strange screen names that appear, and
>> post **** links in their profiles, and chances are you will
>> find it being done to other boards running vBulletin,. phpBB,
>> or punBB.
>>
>>
> If you want to keep the **** bots out of your phpBB 2 board, log ontp
> phpBB's community forum and search on GMT-12. You will find an answer
> there that stops them flat.

It appears that by simply blocking incoming traffic from the networks
of three data centers around the world has stopped it. I have only see
one "phony" registration all day, coming from China. Blocking all
traffic from inHoster in Ukraine, Keymachine in Germany, and
FDC servers in Chicago has pretty much stopped the **** bots.

Jerry Stuckle

Chilly8 wrote:
> "David Pyles" <> wrote in message
> news:fj2307$3ij$.net...
>> On 12/3/2007 4:54 PM, Chilly8 wrote:
>>> "Jerry Stuckle" <> wrote in message
>>> news:. ..
>>>> Chilly8 wrote:
>>>>> "Jerry Stuckle" <> wrote in message
>>>>> news:. ..
>>>>>> Chilly8 wrote:
>>>>>>> X-No-Archive: Yes
>>>>>>>
>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>> news:. ..
>>>>>>>> Chilly8 wrote:
>>>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>>>> news:. ..
>>>>>>>>>> Chilly8 wrote:
>>>>>>>>>>> How to I change the HTML portiion of a PHP script? I want to
>>>>>>>>>>> modify
>>>>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>>>>> StatCounter
>>>>>>>>>>> record hits to that part of my web site. I already have the main
>>>>>>>>>>> web
>>>>>>>>>>> site logged with StatCounter, but I would like to be able to
>>>>>>>>>>> modify
>>>>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>>>>
>>>>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>>>>> to change the HTML portion of the code
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>> You need to ask in the PhpBB support forums, not here. It's more
>>>>>>>>>> complicated than just changing text files.
>>>>>>>>> I have figured out one way to do it, which works with ANY
>>>>>>>>> PHP page. Just load it into your browser, select the option
>>>>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>>>>> index.html page, then have the web crawlers crawl that
>>>>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>>>>> on my domain to take users to the HTML-translated
>>>>>>>>> version of the page. Then you can put in things like
>>>>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>>>>> the original php version, so that users can login. If the
>>>>>>>>> index.php file has been erased or renamed, a user will
>>>>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>>>>> back to the main page, open the source in your browser,
>>>>>>>>> and then save the HTML-translated page, then submit
>>>>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>>>>> so that users get directed to that, instead of the PHP
>>>>>>>>> version of the page.
>>>>>>>>>
>>>>>>>>>
>>>>>>>> And pretty soon you'll figure out why that doesn't work.
>>>>>>> Its so far worked for me. Just have the original PHP version
>>>>>>> of the page, so that users can log in, if logins are required.
>>>>>>>
>>>>>> Keep it up. You'll find why it doesn't work. Then you can come back
>>>>>> here and look at the advice given you in this thread.
>>>>> Its already bearing fruit. I have found two networks, one in Germany
>>>>> and one in Ukraine, where a lot of the **** links are coming from, and
>>>>> have already blocked them at the firewall level, so I won't see any
>>>>> more
>>>>> from those networks. Statcounter is already revealing to me where these
>>>>> *******s are coming from.
>>>>>
>>>>>
>>>>>
>>>>>
>>>> And if you chase them down, chances are you'll find they are coming from
>>>> anonymous proxies.
>>> I dont know, some seem to come from whole class C IP blocks.
>>> I have had to block entire class C IP blocks to shut off the
>>> worst offenders, which are coming from server colocation
>>> facilities in Germany and Ukraine. Just blocking those two, at
>>> the firewall level, has shut mot of those that create screen names,
>>> put **** links in the profile, and then dissapear. You create a
>>> profile when you register, so someone could register, put their
>>> ****, or other spam link in the profile, and never come back.
>>> They don't even have to login, one they have registered, and
>>> placed the **** link in their profile.
>>>> One non-PhpBB board I manage had a major problem with Spam until we
>>>> implemented CAPTCHA. We were getting 200-400 spam posts per hour at
>>>> times, and every one of them came from a different IP address. But the
>>>> content was always the same.
>>>
>>> Well, what they are doing is creating accounts, and then putting
>>> **** links in the profile. The create the accounts and then
>>> never return, and I then have to edit those profiles to get rid
>>> of the spam, and then ban them, on the off chance the do
>>> decide to try and come back.
>>>
>>> Some of the scrren names that are created, I can Google,
>>> and find them on a number of phpBB, vBulletin, and punBB
>>> boards.
>>>
>>> Google any of these strange screen names that appear, and
>>> post **** links in their profiles, and chances are you will
>>> find it being done to other boards running vBulletin,. phpBB,
>>> or punBB.
>>>
>>>
>> If you want to keep the **** bots out of your phpBB 2 board, log ontp
>> phpBB's community forum and search on GMT-12. You will find an answer
>> there that stops them flat.
>
> It appears that by simply blocking incoming traffic from the networks
> of three data centers around the world has stopped it. I have only see
> one "phony" registration all day, coming from China. Blocking all
> traffic from inHoster in Ukraine, Keymachine in Germany, and
> FDC servers in Chicago has pretty much stopped the **** bots.
>
>
>
>

For now. But how many legitimate users might you be blocking, also?

Blocking an entire range of addresses is almost never the right answer.
Just the expedient one.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.

==================

The Natural Philosopher

Jerry Stuckle wrote:
> Chilly8 wrote:
>> "David Pyles" <> wrote in message
>> news:fj2307$3ij$.net...
>>> On 12/3/2007 4:54 PM, Chilly8 wrote:
>>>> "Jerry Stuckle" <> wrote in message
>>>> news:. ..
>>>>> Chilly8 wrote:
>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>> news:. ..
>>>>>>> Chilly8 wrote:
>>>>>>>> X-No-Archive: Yes
>>>>>>>>
>>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>>> news:. ..
>>>>>>>>> Chilly8 wrote:
>>>>>>>>>> "Jerry Stuckle" <> wrote in message
>>>>>>>>>> news:. ..
>>>>>>>>>>> Chilly8 wrote:
>>>>>>>>>>>> How to I change the HTML portiion of a PHP script? I want to
>>>>>>>>>>>> modify
>>>>>>>>>>>> the HTML portion of phpBB, and the code in there to have
>>>>>>>>>>>> StatCounter
>>>>>>>>>>>> record hits to that part of my web site. I already have the
>>>>>>>>>>>> main web
>>>>>>>>>>>> site logged with StatCounter, but I would like to be able to
>>>>>>>>>>>> modify
>>>>>>>>>>>> the HTML portion of PHP scripts for WikiMedia and phpBB, so
>>>>>>>>>>>> I can have those logged by phpBB as well
>>>>>>>>>>>>
>>>>>>>>>>>> I can see the HTML portion when I ask for the source in my
>>>>>>>>>>>> browser, but I cannot find the place in any of the PHP scripts
>>>>>>>>>>>> to change the HTML portion of the code
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>> You need to ask in the PhpBB support forums, not here. It's
>>>>>>>>>>> more complicated than just changing text files.
>>>>>>>>>> I have figured out one way to do it, which works with ANY
>>>>>>>>>> PHP page. Just load it into your browser, select the option
>>>>>>>>>> for viewing the source, and then save that as an index.htm or
>>>>>>>>>> index.html page, then have the web crawlers crawl that
>>>>>>>>>> instead of the php file. I have so far gotten this to work with
>>>>>>>>>> my phpBB and Wiki pages, then just change the redirects
>>>>>>>>>> on my domain to take users to the HTML-translated
>>>>>>>>>> version of the page. Then you can put in things like
>>>>>>>>>> Statcounter, or banner ads into WikiMedia, PhpBB,
>>>>>>>>>> VBulletin, or anything else. Now, you will need to have
>>>>>>>>>> the original php version, so that users can login. If the
>>>>>>>>>> index.php file has been erased or renamed, a user will
>>>>>>>>>> not be able to log on, but if anyone else asks about this,
>>>>>>>>>> that is how you do it. Log off and delete all cookies. Go
>>>>>>>>>> back to the main page, open the source in your browser,
>>>>>>>>>> and then save the HTML-translated page, then submit
>>>>>>>>>> the HTML version of hte page to Google and Yahoo
>>>>>>>>>> so that users get directed to that, instead of the PHP
>>>>>>>>>> version of the page.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>> And pretty soon you'll figure out why that doesn't work.
>>>>>>>> Its so far worked for me. Just have the original PHP version
>>>>>>>> of the page, so that users can log in, if logins are required.
>>>>>>>>
>>>>>>> Keep it up. You'll find why it doesn't work. Then you can come
>>>>>>> back here and look at the advice given you in this thread.
>>>>>> Its already bearing fruit. I have found two networks, one in Germany
>>>>>> and one in Ukraine, where a lot of the **** links are coming from,
>>>>>> and
>>>>>> have already blocked them at the firewall level, so I won't see
>>>>>> any more
>>>>>> from those networks. Statcounter is already revealing to me where
>>>>>> these
>>>>>> *******s are coming from.
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>> And if you chase them down, chances are you'll find they are coming
>>>>> from anonymous proxies.
>>>> I dont know, some seem to come from whole class C IP blocks.
>>>> I have had to block entire class C IP blocks to shut off the
>>>> worst offenders, which are coming from server colocation
>>>> facilities in Germany and Ukraine. Just blocking those two, at
>>>> the firewall level, has shut mot of those that create screen names,
>>>> put **** links in the profile, and then dissapear. You create a
>>>> profile when you register, so someone could register, put their
>>>> ****, or other spam link in the profile, and never come back.
>>>> They don't even have to login, one they have registered, and
>>>> placed the **** link in their profile.
>>>>> One non-PhpBB board I manage had a major problem with Spam until we
>>>>> implemented CAPTCHA. We were getting 200-400 spam posts per hour
>>>>> at times, and every one of them came from a different IP address.
>>>>> But the content was always the same.
>>>>
>>>> Well, what they are doing is creating accounts, and then putting
>>>> **** links in the profile. The create the accounts and then
>>>> never return, and I then have to edit those profiles to get rid
>>>> of the spam, and then ban them, on the off chance the do
>>>> decide to try and come back.
>>>>
>>>> Some of the scrren names that are created, I can Google,
>>>> and find them on a number of phpBB, vBulletin, and punBB
>>>> boards.
>>>>
>>>> Google any of these strange screen names that appear, and
>>>> post **** links in their profiles, and chances are you will
>>>> find it being done to other boards running vBulletin,. phpBB,
>>>> or punBB.
>>>>
>>>>
>>> If you want to keep the **** bots out of your phpBB 2 board, log ontp
>>> phpBB's community forum and search on GMT-12. You will find an
>>> answer there that stops them flat.
>>
>> It appears that by simply blocking incoming traffic from the networks
>> of three data centers around the world has stopped it. I have only see
>> one "phony" registration all day, coming from China. Blocking all
>> traffic from inHoster in Ukraine, Keymachine in Germany, and
>> FDC servers in Chicago has pretty much stopped the **** bots.
>>
>>
>>
>>
>
> For now. But how many legitimate users might you be blocking, also?
>
> Blocking an entire range of addresses is almost never the right answer.
> Just the expedient one.
>
In almost all matters concerning humans, there are no right answers,
only expedient ones.

Unless you claim papal infallibility?

Chilly8

"Jerry Stuckle" <> wrote in message
news:...


>> It appears that by simply blocking incoming traffic from the networks
>> of three data centers around the world has stopped it. I have only see
>> one "phony" registration all day, coming from China. Blocking all
>> traffic from inHoster in Ukraine, Keymachine in Germany, and
>> FDC servers in Chicago has pretty much stopped the **** bots.
>>
>>
>>
>>
>
> For now. But how many legitimate users might you be blocking, also?
>
> Blocking an entire range of addresses is almost never the right answer.
> Just the expedient one.


I doubt I would be blocking any legitimate users, as those sites I mentioned
are all server colocation facilities. It appears that somoene has
compromised
all the machines at least two of those server farms. It might be possible
that
some users, trying to use a proxy from work to acoid detection by the
boss, might be affected by blocking FDC servers, since a couple of
popular anonymity services use FDC for their server needs, but
beyond that, I don't think many legitimate users will be affected, but
there really is no other answer to the problem.

Jerry Stuckle

Chilly8 wrote:
> "Jerry Stuckle" <> wrote in message
> news:...
>
>
>>> It appears that by simply blocking incoming traffic from the networks
>>> of three data centers around the world has stopped it. I have only see
>>> one "phony" registration all day, coming from China. Blocking all
>>> traffic from inHoster in Ukraine, Keymachine in Germany, and
>>> FDC servers in Chicago has pretty much stopped the **** bots.
>>>
>>>
>>>
>>>
>> For now. But how many legitimate users might you be blocking, also?
>>
>> Blocking an entire range of addresses is almost never the right answer.
>> Just the expedient one.
>
>
> I doubt I would be blocking any legitimate users, as those sites I mentioned
> are all server colocation facilities. It appears that somoene has
> compromised
> all the machines at least two of those server farms. It might be possible
> that
> some users, trying to use a proxy from work to acoid detection by the
> boss, might be affected by blocking FDC servers, since a couple of
> popular anonymity services use FDC for their server needs, but
> beyond that, I don't think many legitimate users will be affected, but
> there really is no other answer to the problem.
>
>
>

There are lots of other answers to the problem. Some have been listed
right here. And none of them involve blocking a whole range of IP
addresses.

But it's your site, and your potential customers you're losing. No skin
off of our backs.

Just don't come running back here when things crap out.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.

==================

Michael

Chilly8 wrote:
> "Jerry Stuckle" <> wrote in message
> news:...
>
>
>>> It appears that by simply blocking incoming traffic from the networks
>>> of three data centers around the world has stopped it. I have only see
>>> one "phony" registration all day, coming from China. Blocking all
>>> traffic from inHoster in Ukraine, Keymachine in Germany, and
>>> FDC servers in Chicago has pretty much stopped the **** bots.
>>>
>>>
>>>
>>>
>> For now. But how many legitimate users might you be blocking, also?
>>
>> Blocking an entire range of addresses is almost never the right answer.
>> Just the expedient one.
>
>
> I doubt I would be blocking any legitimate users, as those sites I mentioned
> are all server colocation facilities. It appears that somoene has
> compromised
> all the machines at least two of those server farms. It might be possible
> that
> some users, trying to use a proxy from work to acoid detection by the
> boss, might be affected by blocking FDC servers, since a couple of
> popular anonymity services use FDC for their server needs, but
> beyond that, I don't think many legitimate users will be affected, but
> there really is no other answer to the problem.
>
>

With your logic, why don't you block the entire internet... you know,
seeing a majority of spam comes from the internet and all.

Granted this is where your spam is coming from RIGHT NOW, it wont be in
a few weeks time. But thats okay, you will just block those IPs as well!
When you have thousands of blocked IP ranges, are you going to
periodically check them, to see if they have been re-allocated to some
poor ISP?

It is your site, but you should really consider other options.

- Michael