Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
I'm not sure if there already is something like that but I have no idea with what keywords can I find something like that, I failed to find on google.
However the problem is I keep seeing from time to time huge list of "user_register_form post blocked by CAPTCHA module:..." with 3 second intervals and up to ~20-30 attempts in a row. After that a new "bot" will be registered.
Is there anything to block/disable the ip/form after many fail captchas for say 5-10 min.
Thanks in advance.
Comment | File | Size | Author |
---|---|---|---|
#9 | captcha-block.patch | 1.28 KB | opoplawski |
#7 | drupal-captcha-ipban.patch | 0 bytes | Nightwalker3000 |
Comments
Comment #1
soxofaan CreditAttribution: soxofaan commentedThere is no such feature out of the box with the CAPTCHA module, as far as I know
Comment #2
omnyx CreditAttribution: omnyx commentedas someone who experiences exactly the same problem on a daily basis, I'd love to see this feature implemented.
Comment #3
tekcert CreditAttribution: tekcert commentedBumpage. This feature needs to be created!
Comment #4
pipicom CreditAttribution: pipicom commentedTotally useful feature! How else can I ban this bot which tries to use my website's webform and to register 100 times per day?
Comment #5
zeroyon CreditAttribution: zeroyon commentedAgree, something to check logs or number of failed attempts and ban their ip...
Comment #6
zeroyon CreditAttribution: zeroyon commentedHere is some code that I found, that basically gives a report of failed attempts.. If there is anyone good with php, they could probably change the line that turns the ip address in to a linkable field and sends you to what's my ip into a function that just adds that IP to the .htaccess file..
The code I use right now inconjunction with the Honeypot module to autoban IP's.. If this could be turned into a function and inserted into the code above so you could just browse the report and click on them and their gone that would be cool.. Or if someone could dechiper the code above and put allow a variable of X attempts to be performed and the the the code below is executed that would be even better
Comment #7
Nightwalker3000 CreditAttribution: Nightwalker3000 commentedI need this Feature too.
I've created a patch which blocks a IP, if there are more then 5 Attemps. Use this patch carefully, its my first Drupal patch.
There is a 0 Byte file, dont know why. This is my Patch:
Comment #8
opoplawski CreditAttribution: opoplawski commentedThis would be very useful, and the patch seems like a promising start.
Comment #9
opoplawski CreditAttribution: opoplawski commentedHere's an updated and perhaps slightly better formatted version.
TODO:
* Make max attempts configurable
* Do we need to expire old attempts or reset to 0 on success?
Comment #10
Nightwalker3000 CreditAttribution: Nightwalker3000 commentedThanks for your patch. But my patch doesn't work well :(
It requires that the SPAMER always using the same csid , but it seems like that there tools refresh the page after each try, so there get a new csid and then this patch doesnt work.
Comment #11
howdytom CreditAttribution: howdytom as a volunteer commentedopoplawski, thank you so much for sharing your patch!
Auto Block is a must-have feature! I am seeing hundreds of daily spam submissions that try to bypass Drupal Captcha. Yes, we do need auto expire would be useful. We should increase the default value for $max_attempts to 6 instead.
Comment #12
howdytom CreditAttribution: howdytom as a volunteer commentedAs Nightwalker3000 alresdy pointed out, this patch is wonderful as long as the spammer uses the same csid. Unfortunately automated bot somehow refresh the csid on every reload. Any solutions?
Comment #13
Nightwalker3000 CreditAttribution: Nightwalker3000 as a volunteer commentedIt looks like that this Module doesn’t get much love.
I took an another way and installed autoban. It supports Rules to monitor the watchdog and automatically Ban IP addresses based on failed captcha attempts.
Comment #14
howdytom CreditAttribution: howdytom as a volunteer commentedThanks, autoban is pretty much what I was looking for. It provides a wide range of blocking options. However you have to enable Force mode in order to efficiently block spammers immediately. Force mode can slows down site loading and increases dramatically memory consumption.
Comment #15
AnybodyWe won't fix this for Drupal 7, but I still like the idea to provide a CAPTCHA submodule which adds the user to the flood table (just like X failed login attempts - but for CAPTCHA and with a different (typically higher) limit).
Let's create a separate feature request issue for that.