Pages:
Author

Topic: [Updated 19/Jul/2016] Faucet Owners Against Scammers and Bots - page 11. (Read 36692 times)

full member
Activity: 168
Merit: 100
Those antibot links are a puzzle made to be difficult for machines to solve, but easy for humans.

In other words, they're a captcha, except they're more annoying because the user has to hunt around all over page. So why not just use a second captcha?

Wrong!

Second captcha means extra 50 satoshi per claim for the bot user/creator.

The bot creators can't build single-snapshot captcha solving service based on IQ puzzles.

And the links are annoying if they are too many and spread all over the website.

The instructions say 3-5 links. Using Less or More will weaken the protection.

Don't forget to create your own puzzles. That way there will be no "universal solution" to take down all the faucets.

Also there is version 201 Wink
I see in the new version, no thing is changes as compare to old version.
full member
Activity: 500
Merit: 100
Those antibot links are a puzzle made to be difficult for machines to solve, but easy for humans.

In other words, they're a captcha, except they're more annoying because the user has to hunt around all over page. So why not just use a second captcha?

Wrong!

Second captcha means extra 50 satoshi per claim for the bot user/creator.

The bot creators can't build single-snapshot captcha solving service based on IQ puzzles.

And the links are annoying if they are too many and spread all over the website.

The instructions say 3-5 links. Using Less or More will weaken the protection.

Don't forget to create your own puzzles. That way there will be no "universal solution" to take down all the faucets.

Also there is version 201 Wink
full member
Activity: 168
Merit: 100
I think there are 4 index.php in the script . I have to create ".htaccess" near to first index.php where libs located or I have to create this on currently using template.

You Shoould create the .htaccess file into the main/root directory. I mean next to the first index.php (not the templates index.php).

Remember to check others ways to block attacks by .htaccess file in the internet.

There are many implementations to make in this file aiming to get a higger security.


It is a powerfull resource if you know how to use it.
I got it.

I want to ask another question, If nastyhost catch supencious ( ip , site & btc address ) then where it will appear , It wil appear on my admin page or there nastyhost site.
sr. member
Activity: 392
Merit: 251
Bitcoin Faucet & Blog
New suspicious IP's and wallet address


37.53.226.42
46.98.124.237
178.44.218.154
With same ref: 15WYfNSFQ6GiB9gHMj8fC58WqPAUb1W4Kp  1 hit every minute for 3 hours in a row.

Still under investigation...


Friend,

I just checked those three IPs with some public malicious records databases in the internet and I didn't found any proof to consider them bad IPs.

Of course t doesn't means that they are safe. But we don't have how to guarantee this.

About the 15WYfNSFQ6GiB9gHMj8fC58WqPAUb1W4Kp address. I just looked at its Faucetbox historic and it hasn't a bot/scam behavior.

For me it seems to be a normal bitcoin address.

I hope these information are helpful to you.

Good luck!
sr. member
Activity: 392
Merit: 251
Bitcoin Faucet & Blog
I think there are 4 index.php in the script . I have to create ".htaccess" near to first index.php where libs located or I have to create this on currently using template.

You Shoould create the .htaccess file into the main/root directory. I mean next to the first index.php (not the templates index.php).

Remember to check others ways to block attacks by .htaccess file in the internet.

There are many implementations to make in this file aiming to get a higger security.


It is a powerfull resource if you know how to use it.
full member
Activity: 168
Merit: 100
I think there are 4 index.php in the script . I have to create ".htaccess" near to first index.php where libs located or I have to create this on currently using template.
legendary
Activity: 2352
Merit: 1268
In Memory of Zepher
Where I have to create .htaccess file to do all thing which you mentation on first page.
Just create it in the root directory of your site, where your index.php is. Just create a file called '.htaccess' and put the code in the first post inside that file.
full member
Activity: 168
Merit: 100
Where I have to create .htaccess file to do all thing which you mentation on first page.
hero member
Activity: 718
Merit: 500
New suspicious IP's and wallet address


37.53.226.42
46.98.124.237
178.44.218.154
With same ref: 15WYfNSFQ6GiB9gHMj8fC58WqPAUb1W4Kp  1 hit every minute for 3 hours in a row.

Still under investigation...
hero member
Activity: 718
Merit: 500
A new suspicious ip appeared in my logs since november:

77.222.106.36 9000 hits in 4 days only..

And the faucet got milked.. i'm not sure yet but this ip looks really suspicious
~

Hi, friend.

I checked this IP for suspicious activities in the internet (SPAM, BOTs and Malicious attacks) and then I did some tests to check if it is a proxy IP.

I didn't found anything about this IP. It seems to be a normal IP.

However, it is a Russian IP.

If I was you I would keep on open eye on my logs to monitor this IP actions...
Hi , thanks for the checkup.
I'll keep checking

newbie
Activity: 2
Merit: 0
snip
It seems that you're trying to show us thumbnail images rather than the full size. Try using a simple uploader like Imgur to upload your images and we can try to help you.

Oh, my bad. I edit my post with full size links. Thanks minifrij.
full member
Activity: 189
Merit: 100
Those antibot links are a puzzle made to be difficult for machines to solve, but easy for humans.

In other words, they're a captcha, except they're more annoying because the user has to hunt around all over page. So why not just use a second captcha?
legendary
Activity: 2352
Merit: 1268
In Memory of Zepher
snip
It seems that you're trying to show us thumbnail images rather than the full size. Try using a simple uploader like Imgur to upload your images and we can try to help you.
newbie
Activity: 2
Merit: 0
sr. member
Activity: 392
Merit: 251
Bitcoin Faucet & Blog
Friends...

I just added to the first post the link to generate a .htaccess file to block entire countries from visiting your faucets.

http://www.blockacountry.com

In addition to I linked the topic of AlexAce420 which teaches techniques to avoid BOTs.

https://bitcointalksearch.org/topic/stop-bots-proxies-from-using-your-faucet-1211353

i send you on PM checked TOR ip lists on my faucets, and if you found something new.. Smiley
 i am not sure for this about block entire country, i am block only Ukraine because have some attack from here and lot of the claim visitors without banner click or very pitiful ads payback
if you want "deny Ukraine" lists for .htassess shot me PM

I think that block Ukraine is not enough since the bots use Proxies to attack faucets. The most used proxy servers are from USA or Europe because the faucets with GeoiP Location rewards pay more for these countries.

Combine the  country block with other techniques to have more chance to block bots.

---

In addition to this I just added a new white listed IP addres to the OP:

1EaHa6BCV7twxnPJuyPYaKi4fb5ZuGWUHp

This is a good referral address. Please, white list it.

I discovered some bots in the internet recently. I will study those programs to understand How we can block them. The problem is that I'm timeless this month.

As soon as possible I will post here the good news about this job.
sr. member
Activity: 350
Merit: 250
It is the time of looters, protect their faucets!
sr. member
Activity: 350
Merit: 250
Does several hours which does not update the torlist.txt, someone passes you the same?
sr. member
Activity: 350
Merit: 250
I think this is the best way of blocking countries
http://www.geoplugin.com/

Create a php with the following contents and call it geoplugin.class.php
Code:

class geoPlugin {
    
    
//the geoPlugin server
    
var $host 'http://www.geoplugin.net/php.gp?ip={IP}&base_currency={CURRENCY}';
        
    
//the default base currency
    
var $currency 'USD';
    
    
//initiate the geoPlugin vars
    
var $ip null;
    var 
$city null;
    var 
$region null;
    var 
$areaCode null;
    var 
$dmaCode null;
    var 
$countryCode null;
    var 
$countryName null;
    var 
$continentCode null;
    var 
$latitude null;
    var 
$longitude null;
    var 
$currencyCode null;
    var 
$currencySymbol null;
    var 
$currencyConverter null;
    
    function 
geoPlugin() {
 
    }
    
    function 
locate($ip null) {
        
        global 
$_SERVER;
        
        if ( 
is_null$ip ) ) {
            
$ip $_SERVER['REMOTE_ADDR'];
        }
        
        
$host str_replace'{IP}'$ip$this->host );
        
$host str_replace'{CURRENCY}'$this->currency$host );
        
        
$data = array();
        
        
$response $this->fetch($host);
        
        
$data unserialize($response);
        
        
//set the geoPlugin vars
        
$this->ip $ip;
        
$this->city $data['geoplugin_city'];
        
$this->region $data['geoplugin_region'];
        
$this->areaCode $data['geoplugin_areaCode'];
        
$this->dmaCode $data['geoplugin_dmaCode'];
        
$this->countryCode $data['geoplugin_countryCode'];
        
$this->countryName $data['geoplugin_countryName'];
        
$this->continentCode $data['geoplugin_continentCode'];
        
$this->latitude $data['geoplugin_latitude'];
        
$this->longitude $data['geoplugin_longitude'];
        
$this->currencyCode $data['geoplugin_currencyCode'];
        
$this->currencySymbol $data['geoplugin_currencySymbol'];
        
$this->currencyConverter $data['geoplugin_currencyConverter'];
        
    }
    
    function 
fetch($host) {
 
        if ( 
function_exists('curl_init') ) {
                        
            
//use cURL to fetch data
            
$ch curl_init();
            
curl_setopt($chCURLOPT_URL$host);
            
curl_setopt($chCURLOPT_RETURNTRANSFER1);
            
curl_setopt($chCURLOPT_USERAGENT'geoPlugin PHP Class v1.0');
            
$response curl_exec($ch);
            
curl_close ($ch);
            
        } else if ( 
ini_get('allow_url_fopen') ) {
            
            
//fall back to fopen()
            
$response file_get_contents($host'r');
            
        } else {
 
            
trigger_error ('geoPlugin class Error: Cannot retrieve data. Either compile PHP with cURL support or enable allow_url_fopen in php.ini 'E_USER_ERROR);
            return;
        
        }
        
        return 
$response;
    }
    
    function 
convert($amount$float=2$symbol=true) {
        
        
//easily convert amounts to geolocated currency.
        
if ( !is_numeric($this->currencyConverter) || $this->currencyConverter == ) {
            
trigger_error('geoPlugin class Notice: currencyConverter has no value.'E_USER_NOTICE);
            return 
$amount;
        }
        if ( !
is_numeric($amount) ) {
            
trigger_error ('geoPlugin class Warning: The amount passed to geoPlugin::convert is not numeric.'E_USER_WARNING);
            return 
$amount;
        }
        if ( 
$symbol === true ) {
            return 
$this->currencySymbol round( ($amount $this->currencyConverter), $float );
        } else {
            return 
round( ($amount $this->currencyConverter), $float );
        }
    }
    
    function 
nearby($radius=10$limit=null) {
 
        if ( !
is_numeric($this->latitude) || !is_numeric($this->longitude) ) {
            
trigger_error ('geoPlugin class Warning: Incorrect latitude or longitude values.'E_USER_NOTICE);
            return array( array() );
        }
        
        
$host "http://www.geoplugin.net/extras/nearby.gp?lat=" $this->latitude "&long=" $this->longitude "&radius={$radius}";
        
        if ( 
is_numeric($limit) )
            
$host .= "&limit={$limit}";
            
        return 
unserialize$this->fetch($host) );
 
    }
 
    
}
 
?>


Now create a file named geoip.php add inside
Code:
require_once('geoplugin.class.php');
$geoplugin = new geoPlugin();
$geoplugin->locate();
$country_code $geoplugin->countryCode;
switch(
$country_code) {
case 
'UA'//Ukraine
header('Location: http://example.com'); 
exit;
}
?>


'UA' is the country code that gets on the same page by putting the ip below.

To add a new country
Code:
case 'CODE': //Other
header('Location: http://example.com');
exit;


Then wherever you want to run the blockade put geoip.php on

Code:
include("geoip.php"); ?>

Important: There are some rotator cuff like ifaucet.net that do not allow the blocking of countries.
legendary
Activity: 1203
Merit: 1000
Friends...

I just added to the first post the link to generate a .htaccess file to block entire countries from visiting your faucets.

http://www.blockacountry.com

In addition to I linked the topic of AlexAce420 which teaches techniques to avoid BOTs.

https://bitcointalksearch.org/topic/stop-bots-proxies-from-using-your-faucet-1211353

i send you on PM checked TOR ip lists on my faucets, and if you found something new.. Smiley
 i am not sure for this about block entire country, i am block only Ukraine because have some attack from here and lot of the claim visitors without banner click or very pitiful ads payback
if you want "deny Ukraine" lists for .htassess shot me PM
sr. member
Activity: 392
Merit: 251
Bitcoin Faucet & Blog
Friends...

I just added to the first post the link to generate a .htaccess file to block entire countries from visiting your faucets.

http://www.blockacountry.com

In addition to I linked the topic of AlexAce420 which teaches techniques to avoid BOTs.

https://bitcointalksearch.org/topic/stop-bots-proxies-from-using-your-faucet-1211353
Pages:
Jump to: