Admining Member List

If you have questions about using mojoPortal, you can post them here.

You may want to first review our site administration documentation to see if your question is answered there.

This thread is closed to new posts. You must sign in to post in the forums.
8/10/2011 3:38:04 PM
TJ
Gravatar
Total Posts 19

Admining Member List

Hi!

One of my MojoPortal sites was recently hit with a spam bot that registered hundreds of new users - all from a Chinese IP address.  I am currently in the process of deleting all the spam users through the admin area (I don't have access to the database) - is there an easy way to do a mass delete?  Or at least sort the datagrid by join date to make finding them easier?

I have since added a ReCaptcha to the Registration page - hopefully, this will prevent the spammers in the future.

Thanks for your time.

T J

8/10/2011 3:53:28 PM
Gravatar
Total Posts 18439

Re: Admining Member List

Hi TJ,

We have a Query Tool built in to mojoPortal that you could use to access the database. It is disabled by default but you can enable it if you at least have access to Web.config/user.config.

I have seen these bots on this site for several weeks now. I guess its a sign of mojoPortal becoming more popular that people are writing bots to automate registration. On this site we require email validation for registration so the accounts it has created have all been locked accounts that never got activated. I don't really want to add barriers to legit registration on this site so I'm just monitoring closely for these, if it gets worse I guess I'll have no choice but to add a captcha on the registration page as you did but for now its manageable by monitoring.

I've created a saved query in the Query Tool to find them and then I just look them up in the member list and find the ip address and block it. That stops it for a while at a time but some days later it starts up from a new ip.

SELECT UserID, Name, Email, Pwd, PasswordAnswer, DateCreated FROM mp_Users WHERE Pwd = 'super123' ORDER BY UserID DESC

I guess it could change over time and a different query might be needed but so far they have all used the same password and the same answer to the password question though various questions.

Hope that helps,

Joe

8/10/2011 4:20:09 PM
TJ
Gravatar
Total Posts 19

Re: Admining Member List

Hi Joe!

Thank you for your super fast response.  I do have access to the Web.config/user.config files, so I will try your Query Tool.

I noticed in the spam members that they used several different questions and answers:

'What is your youngest child's nickname' , 'Where did you spend your honeymoon', etc... each of the questions have about 6 different answers.

I do have require email validation for registration enabled, but over half of the spammers were not locked out for some reason.  Maybe they verified the address used by the bot?

I personally am not a fan of Captcha, it's no wonder bots can't read them - I hardly can!  But, if it helps, that is cool.


Again, thank you for your time.

8/10/2011 4:39:09 PM
Gravatar
Total Posts 18439

Re: Admining Member List

looking at mine again I see you are right there is more variation in the question and answers though they do re-use them, the password has been the most reliable.

What I do is then get the ip address and search for other users with the same ip address.

It was a bit of work finding the common password, I got a local copy of the db and site and changed from encrypted to clear text to query them so you may not be able to do it from query tool unless the site is using clear text. 

Best,

Joe

 

8/13/2011 9:18:23 PM
Gravatar
Total Posts 355
Community ExpertArvixe Web Hosting / mojoPortal Community Liaison
Looking for quality mojoPortal hosting? Try Arvixe

Re: Admining Member List

Joe,

Have been having the same thing happen on my site, and some client sites. I think that it would be a great feature to be able to do a bulk edit on users; delete, add to custom group, that sort of thing.

8/25/2011 1:10:20 PM
Gravatar
Total Posts 1

Re: Admining Member List

I had the same thing happen on my site even though I had captcha. It registered over 800 users in about a day. I noticed the emails used were from similar domains (tom.com, etc.). All the passwords were super123. I also require activation and none of the accounts were activated.

8/25/2011 1:43:17 PM
Gravatar
Total Posts 1196
Proud member of the mojoPortal team

Help support mojoPortal!
Add-on modules

Re: Admining Member List

Are you by chance using the Subkismet CAPTCHA? If so, try Recaptcha, which works a lot better in my experience.

You must sign in to post in the forums. This thread is closed to new posts.