by Yukinu » Thu May 04, 2023 4:41 pm
Ok, modified the captcha a bit. These bots are relentless, and the links go deep. One of the bot posts I deleted was linking to a fluxbb forum on an edu site. The edu site has DDoS protection and a common 3rd party captcha, and still this same bot was able to post on the fluxbb forum (this is why I don't recommend DDoS protection or this common 3rd party captcha, it gives a false sense of security and does not work), and post here a link to the fluxbb forum. The edu forum cleaned up the thread that this bot was linking to, so the post here would have been a dead link, but you can see how deep things are going here. Not only are they trying to post direct links here, they are also trying to create a deep chain of links across many sites.
If the bots get in again after this new captcha, then things have gotten very bad, it would mean they are custom coding bots for every site.
Anyways, we'll see if this stops the bots. There are still a lot more ways I can block the bots without using a 3rd party service, but I would prefer not to go the draconian route such as trying to implement some weird hacks with javascript. It would just cut down the number of viable browsers that can access the web, and I want my sites to work on any browser, even command line browsers like lynx.
Ok, modified the captcha a bit. These bots are relentless, and the links go deep. One of the bot posts I deleted was linking to a [color=#FFFF80]fluxbb[/color] forum on an edu site. The edu site has DDoS protection and a common 3rd party captcha, and still this same bot was able to post on the [color=#FFFF80]fluxbb[/color] forum (this is why I don't recommend DDoS protection or this common 3rd party captcha, it gives a false sense of security and does not work), and post here a link to the [color=#FFFF80]fluxbb[/color] forum. The edu forum cleaned up the thread that this bot was linking to, so the post here would have been a dead link, but you can see how deep things are going here. Not only are they trying to post direct links here, they are also trying to create a deep chain of links across many sites.
If the bots get in again after this new captcha, then things have gotten very bad, it would mean [b]they are custom coding bots for every site[/b].
Anyways, we'll see if this stops the bots. There are still a lot more ways I can block the bots without using a 3rd party service, but I would prefer not to go the draconian route such as trying to implement some weird hacks with javascript. It would just cut down the number of viable browsers that can access the web, and I want my sites to work on any browser, even command line browsers like lynx.