Skip to content
Sudonix

Spam spam spam

Solved Configure
6 2 854 1
  • Pandaundefined

    My nodebb instance had 50 new joiners over a month, all posting spam.
    I had to turn on Admin approval to try and limit this.
    But Im still getting Spammers. Location of IP gives a clue as most of these accounts come from a certain area, but its impossible to know for sure.
    How to enable code that on registration they have to type why they want to join forum, so admin has more idea on what their motivations are?

    0
  • Pandaundefined Panda

    My nodebb instance had 50 new joiners over a month, all posting spam.
    I had to turn on Admin approval to try and limit this.
    But Im still getting Spammers. Location of IP gives a clue as most of these accounts come from a certain area, but its impossible to know for sure.
    How to enable code that on registration they have to type why they want to join forum, so admin has more idea on what their motivations are?

    phenomlabundefined

    @Panda the simplest way around this is to leverage the post queue in NodeBB. You could also have a look at nodebb-plugin-registration which asks a question which the user needs to answer before being able to proceed.

    Mark
    Founder - Phenomlab Ltd

    Executive Technology & Security Leadership

    1
  • Pandaundefined

    What do you mean by ‘leverage the post queue’?

    nodebb-plugin-registration doesnt seem to be on the ACP list of plugins?

    0
  • Pandaundefined Panda

    What do you mean by ‘leverage the post queue’?

    nodebb-plugin-registration doesnt seem to be on the ACP list of plugins?

    phenomlabundefined

    @Panda said in Spam spam spam:

    What do you mean by ‘leverage the post queue’?

    This specific feature allows you to vet all incoming post requests in the form of a queue before they are applied so you can decide if they are appropriate or not before releasing them.

    @Panda said in Spam spam spam:

    nodebb-plugin-registration doesnt seem to be on the ACP list of plugins?

    Correct. It needs to be installed using the CLI.

    Mark
    Founder - Phenomlab Ltd

    Executive Technology & Security Leadership

    1
  • Pandaundefined

    ok, yes Ive seen the queue, it shows IP, but doesnt have a field for comments from registrant.

    It would be better if nodebb had this plugin included in ACP list, as not only then do you know its approved and should work, but many people cant or dont want to use CLI on the server

    0
  • Pandaundefined Panda has marked this topic as solved on
  • Pandaundefined Panda

    ok, yes Ive seen the queue, it shows IP, but doesnt have a field for comments from registrant.

    It would be better if nodebb had this plugin included in ACP list, as not only then do you know its approved and should work, but many people cant or dont want to use CLI on the server

    phenomlabundefined

    @Panda said in Spam spam spam:

    ok, yes Ive seen the queue, it shows IP, but doesnt have a field for comments from registrant.

    It’s not designed for that. It merely serves as a gateway between posts appearing on your form or not.

    @Panda said in Spam spam spam:

    It would be better if nodebb had this plugin included in ACP list, as not only then do you know its approved and should work, but many people cant or dont want to use CLI on the server

    That’s a question for the NodeBB devs but in all honesty you can’t not use the CLI when installing nodebb so to be this isn’t a big deal.

    Mark
    Founder - Phenomlab Ltd

    Executive Technology & Security Leadership

    0
Log in to reply

Did this solution help you?
Did you find the suggested solution useful? Support 💗 Sudonix with a coffee
If your organisation needs deeper expertise around infrastructure, security, or technology leadership, learn more about Phenomlab Ltd. Many of the deeper technical guides behind Sudonix are published there.

Related Topics
  • JACundefined

    NodeBB recent cards customisation

    Solved Customisation nodebb recent cards
    3
    1
    2 Votes
    3 Posts
    713 Views
    JACundefined
    @phenomlab thank you very much for the assistance Mark, massively appreciated as always. The great thing about this is it’s all documented for other NodeBB users that come looking for solutions . Looks far better .
  • Pandaundefined

    Nodebb design

    Solved General nodebb
    2
    1 Votes
    2 Posts
    844 Views
    phenomlabundefined
    @Panda said in Nodebb design: One negative is not being so good for SEO as more Server side rendered forums, if web crawlers dont run the JS to read the forum. From recollection, Google and Bing have the capability to read and process JS, although it’s not in the same manner as a physical person will consume content on a page. It will be seen as plain text, but will be indexed. However, it’s important to note that Yandex and Baidu will not render JS, although seeing as Google has a 90% share of the content available on the web in terms of indexing, this isn’t something you’ll likely lose sleep over. @Panda said in Nodebb design: The “write api” is preferred for server-to-server interactions. This is mostly based around overall security - you won’t typically want a client machine changing database elements or altering data. This is why you have “client-side” which could be DOM manipulation etc, and “server-side” which performs more complex operations as it can communicate directly with the database whereas the client cannot (and if it can, then you have a serious security flaw). Reading from the API is perfectly acceptable on the client-side, but not being able to write. A paradigm here would be something like SNMP. This protocol exists as a UDP (UDP is very efficient, as it is “fire and forget” and does not wait for a response like TCP does) based service which reads performance data from a remote source, thus enabling an application to parse that data for use in a monitoring application. In all cases, SNMP access should be “RO” (Read Only) and not RW (Read Write). It is completely feasible to assume complete control over a firewall for example by having RW access to SNMP and then exposing it to the entire internet with a weak passphrase. You wouldn’t do it (at least, I hope you wouldn’t) and the same ethic applies to server-side rendering and the execution of commands.
  • DownPWundefined

    NODEBB: Nginx error performance & High CPU

    Solved Performance performance nodebb nginx
    69
    4
    14 Votes
    69 Posts
    28k Views
    DownPWundefined
    @phenomlab Seems to be better with some scaling fix for redis on redis.conf. I haven’t seen the message yet since the changes I made # I increase it to the value of /proc/sys/net/core/somaxconn tcp-backlog 4096 # I'm uncommenting because it can slow down Redis. Uncommented by default !!!!!!!!!!!!!!!!!!! #save 900 1 #save 300 10 #save 60 10000 If you have other Redis optimizations. I take all your advice https://severalnines.com/blog/performance-tuning-redis/
  • Teemberlandundefined

    NodeBB Theme/Skin Switcher

    Solved Customisation nodebb
    38
    7 Votes
    38 Posts
    8k Views
    phenomlabundefined
    @Teemberland great spot ! You should create a PR for that so they can include it in the official repository. Just be aware that any subsequent releases will overwrite your fix without the PR.
  • cagatayundefined

    How to fix header side as boxed

    Solved Customisation header boxed sudonix nodebb
    10
    1
    6 Votes
    10 Posts
    2k Views
    cagatayundefined
    @phenomlab yes it caused a problem for mobile users. thank you for helping …
  • Pandaundefined

    NodeBB inline videoplayer

    Solved Customisation nodebb
    12
    3 Votes
    12 Posts
    2k Views
    Pandaundefined
    @phenomlab YAY! It works Thanks so much
  • JACundefined

    Forum registration email goes to spam

    Moved Solved Configure
    6
    1 Votes
    6 Posts
    1k Views
    JACundefined
    @phenomlab emails mate, although I seem to have used a different email on each browser to remain logged in for cough cough posts .
  • RiekMediaundefined

    NodeBB Design help

    Solved Customisation
    8
    3
    2 Votes
    8 Posts
    2k Views
    phenomlabundefined
    @riekmedia I’ve applied some new CSS to your site. Can you reload the page and try again ? For the record, this is what I added #footer { background: #2d343e; border-top: 4px solid #2d343e; font-size: 0.9em; margin-top: 70px; padding: 80px 0 0; position: relative; clear: both; bottom: 0; left: 0; right: 0; z-index: 1000; margin-left: -15px; margin-right: -338px; } The /categories page seems a bit messed up, so looking at that currently EDIT - issued some override CSS in the CATEGORIES widget <!--- CSS fix for overspill on /categories page - DO NOT DELETE --> <style> #footer { margin-right: -45px; } </style> That should resolve the /categories issue.