Home › Forums › Newsletter Plugin Support › Spammers hammering me
- This topic has 36 replies, 12 voices, and was last updated 6 years, 8 months ago by Anonymous.
-
AuthorPosts
-
March 14, 2018 at 8:57 pm #79130BrianMackParticipant
The Russian spammers are hitting our Newsletter subscriber widget very hard over the last 2 days. Its getting worse. Every few minutes another .ru subscriber with spammy name and email addy.
What can we do?
BrianMarch 14, 2018 at 9:34 pm #79140Louis RParticipantThis has been happening to me as well over the last 2 days. Is there a way to block certain country extensions?
Thanks for any assistance.
Louis
March 14, 2018 at 9:44 pm #79142StefanoKeymasterAsk the provider to block their IP address and rise the antflood time in the subscription settings.
Stefano.
March 14, 2018 at 10:14 pm #79155StefanParticipantPlease let me know if you get fixed the spam subscription problems. This happens also to me and there is no way to stop it. I deactivated the plugin now. Would be great if the developer make a recaptcha integration option to the plugin.
March 14, 2018 at 11:20 pm #79162BrianMackParticipantThe antiflood can only reach 5 minutes. Why not longer?
Does premium offer anti spam protection?
The .ru problem is growing exponentially 🙁March 15, 2018 at 1:00 am #79182BrianMackParticipantAnti flood is not helping!
The .ru spam is getting worse.
Looks like time for a new plugin sadly.March 15, 2018 at 1:03 am #79184Louis RParticipantI removed the subscribe widget completely and I put a password on the subscribe page to see if that stopped. It did not. The .ru subscribes are still coming through. There must be a back door that needs addressing I believe.
Thanks.
March 15, 2018 at 2:41 am #79207BrianMackParticipantWe had to remove the Newsletter widget from our site.
So sad it has come to this.March 15, 2018 at 5:31 am #79216BrianMackParticipantAfter removing all the Newsletter optins from our site the .ru spamming is still increasing at an alarming rate!!!
Can anyone give some support here?March 15, 2018 at 6:59 am #79225StefanParticipantstill the same on our site. I deactivated the plugin. If I turn it on spam starts immediatly. Hope there is a solution soon.
March 15, 2018 at 10:47 am #79275ImmoBulgarijeParticipantThis botnet that acts like it is Russian really is annoying.
No option available to prevent them from directly accessing the registration url?
Must be possible to prevent them subscribing.March 15, 2018 at 2:04 pm #79339pertzschcParticipantI have the same issue on my webside.
"No option available to prevent them from directly accessing the registration url?"
What is the registration url?Kind regards, Christoph
March 15, 2018 at 2:05 pm #79341Louis RParticipantI really like this plugin and have been using it for several years. It is rapidly becoming useless but I'm holding on hoping a fix is forthcoming. Not too much longer though.
Louis
March 15, 2018 at 2:09 pm #79345ImmoBulgarijeParticipantOr an option to temporarily prevent users with mail.ru addresses which gives more time to fix the issue
March 15, 2018 at 2:22 pm #79349ImmoBulgarijeParticipantMaybe a temporarily fix to prevent users to register with a mail.ru address? Gives more time to fix it.
March 15, 2018 at 2:40 pm #79356ImmoBulgarijeParticipanttemporarily block mail.ru subscribers to have more time for a fix?
All are mail.ru addressesMarch 15, 2018 at 3:05 pm #79381Louis RParticipantThis forum is only showing 12 posts and there seems to be no way to view all and follow the thread. No page 2, etc.
March 16, 2018 at 8:49 am #79572miwoParticipantSame happened to me - before I came to this forum I thought it was a personal attack to my homepage. Now I'm a bit calmed 🙂 Looked in the 'Newsletter Plugin' MySQL Table, I mentioned, that the first attack was at 2018-03-13 23:03:45
As I investigated in that issue, I found, that besides the inconvinience, there's a severe risk of our IP/Domain being blacklisted at SPAMHAUS. The only solution seems to me to include a captcha in the subscription process: https://blog.goolara.com/2016/12/21/defusing-subscription-bombs/
Because of the blacklist-risk, I have to change the automatic subscription form into a message to my potential readers: "Due to technical issues, we were forced to temporarily close automatic subscription to our newsletter service. Please send an email to me (xy@mydomain.de) and I will subscibe you to our newsletter personally." But this is of course no longterm-solution. Is there any chance to get the Captcha-feature in the near future?
Yours Michael
March 17, 2018 at 11:53 am #79779StefanoKeymasterHi, the antibot feature already does few things to block the bots, but they execute even javascript. Blacklist their ip address is a viable solution.
Stefano.
March 17, 2018 at 12:00 pm #79781StefanoKeymasterHi, the antibot feature already does few things to block the bots, but they execute even javascript. Blacklist their ip address is a viable solution.
Stefano.
March 20, 2018 at 7:16 am #80525miwoParticipantBlocking the IP adress wouldn't be an option. I selected all entries from today - all from the spammers and all come from different IPs: http://www.it-freelancer-magazin.de/wp-content/uploads/2018-03-20-07_12_02-IT-Freelancer-Magazin_db12908265-ifm_wp_newsletter_-HeidiSQL-9.3.0.4984.png
I think Captchas are the only and obvious solution to this. My hoster also give me that advice.
March 20, 2018 at 7:50 am #80536StefanParticipantThe Team needs to integrate a Captcha (Silent Recaptcha would work also)!!
THIS IS THE ONLY WAY!! Antiflod is no option or solution. The only way to stop it is to deactivat the plugin.
I will not renew my subscription in case there is a Captcha integrated.
So this makes me sad about this plugin. There is no quick solution if there is a big big problem like this!March 20, 2018 at 10:58 am #80569pertzschcParticipantHi all,
my (temporary) solution is, to block all "*mail.ru" adresses for subscription. If this fits for your needs, please adapt the following lines in the file: ..\wp-content\plugins\newsletter\subscription\subscription.php:search for this next comment statement in the file and insert the block "// begin patch for mail.ru"
...
// Shound never reach this point without a valid email address
if ($email == null) {
die('Wrong email');
}
// begin patch for mail.ru
$email_contains_ru = strpos($email, "mail.ru"); // outputs greater 0 if found
if ($email_contains_ru > "0") {
$this->logger->info('Subscription of "mail.ru" - address blocked: ' . $email);
die();
}
// end patch for mail.ru$user = $newsletter->get_user($email);
...Kind regards,
ChristophMarch 20, 2018 at 1:56 pm #80596ImmoBulgarijeParticipantFirst: For one reason or another I can only see the first 12 posts in this thread
Second: the new update for the plugin has some errors, css I think
Third: with version 5.2.6 I have not a single spammer subscribing... Maybe reversing to this version solves it?
March 20, 2018 at 3:59 pm #80641AnonymousInactiveSame with me, no chance to get rid of these russian Spammers, so I deactivated the Plugin...very sad 🙁
Hope there will be a solution soon, as I'd really like to use it again !March 20, 2018 at 4:23 pm #80650AnonymousInactiveI added this into the subscription.php
// begin patch for mail.ru
$email_contains_ru = strpos($email, “mail.ru”); // outputs greater 0 if found
if ($email_contains_ru > “0”) {
$this->logger->info(‘Subscription of “mail.ru” – address blocked: ‘ . $email);
die();
}
// end patch for mail.ruIt doesn't work, trying to reactivate the Newsletter Plugin I got the followig Error:
Parse error: syntax error, unexpected 'of' (T_STRING) in /homepages/..../wp-content/plugins/newsletter/subscription/subscription.php on line 399
Line 399 Contains $this->logger->info(‘Subscription of “mail.ru” – address blocked: ‘ . $email);
March 20, 2018 at 4:37 pm #80652pertzschcParticipantDJDaniel wrote:
I added this into the subscription.php
It doesn't work, trying to reactivate the Newsletter Plugin I got the followig Error:
Parse error: syntax error, unexpected 'of' (T_STRING) in /homepages/..../wp-content/plugins/newsletter/subscription/subscription.php on line 399
Line 399 Contains $this->logger->info(‘Subscription of “mail.ru” – address blocked: ‘ . $email);
Please check for your PHP-version, what is the regular character for define a string, as there are many possibilities:
"", '',, ‘‘.
I think, that the <‘> is causing your issue, please try <'> first.
ChristophMarch 20, 2018 at 4:46 pm #80660AnonymousInactiveThanks for helping, in fact I had to replace the <‘> by <'>
Now I'm curious if it worksDaniel
March 20, 2018 at 4:55 pm #80680AnonymousInactiveSo I tried to register to the Newsletter with a fictive "mail.ru" adress and the adress was registered in the database of my Newsletter-Plugin so it seems, that the patch won't work.
Daniel
March 20, 2018 at 5:27 pm #80702UAB "Delmoda"ParticipantSame for me. Why developers doesn't comment anything? Looks quite strange. Should I delete this plugin?
March 20, 2018 at 9:51 pm #80776rowaParticipantthe same on our side. I also deactivated the plugin. If I turn it on, spam starts immediately. Hopefully there will be a solution soon
March 21, 2018 at 12:51 am #80803pertzschcParticipantYesterday I did post a solution to patch subscription.php, now I will share an improved version:
...
// Shound never reach this point without a valid email address
if ($email == null) {
die('Wrong email');
}// begin patch for blocking all mail adresses ending with "*.ru"
$endStr = ".ru";
if (substr($email, strlen($email)-strlen($endStr), strlen($endStr)) === $endStr) {
$this->logger->info('Subscription of "*.ru" - address blocked: ' . $email);
die();
}
// end patch for blocking all mail adresses ending with "*.ru"$user = $newsletter->get_user($email);
...Please search the statements and copy in the // patch...
It will block all subscriptions with mail adresses ending with "*.ru".And no, it will not prevent to make a subscription with "mail.ru2" 😉
Christoph
March 21, 2018 at 9:48 am #80896AnonymousInactiveThere is a new Version (5.2.8) today
March 21, 2018 at 10:39 am #80905AnonymousInactiveThe Update 5.2.8 doesn't take an effect, Russian Spambots can subscribe anyway. Trying the Solution of Christoph now...
March 21, 2018 at 11:31 am #80918AnonymousInactiveUPDATE !
Adding the Patch from Christoph doesn't also take any effect, Spambots with .ru-Domains are not blocked. Seems that it's the only solution to deactivate the Newsletter Plugin :-/
Very sad that there is no Support from the Develloper-Team !Daniel
March 21, 2018 at 7:53 pm #81115Riversong UGParticipantSame problem here. It's annoying. Thanks for your help. Best regards.
March 24, 2018 at 3:20 pm #81991AnonymousInactiveWith the latest update 5.3.1 it works great again ...
-
AuthorPosts
- You must be logged in to reply to this topic.