New on LowEndTalk? Please Register and read our Community Rules.
Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
Categories
In this Discussion
- 2008-2021 © LowEndBox & LowEndTalk. Privacy Policy. Powered by Vanilla.
Back to Top | LowEndTalk | LowEndBox | Dark Theme Config | Advertise
Comments
Captcha
If these are automated signups, have you considered enabling captcha on the Shopping Cart Checkout and Client Registration pages?
Yeah, I don't use CAPTCHA because I dislike it, but I'm considering enabling it. However, I think these orders are manually processed
Nowadays, bots mimic real browsers well enough
We had ticket spam (using web interface) few month ago and were forced to force our visitors to login to have ability to create ticket. Even captcha was not sufficient
Now-a-days people uses 2captcha for google recaptchas. Dirt cheap.
Using maxmind really helps along with setting auto discarding orders which are not paid within 60 minutes or so.
Best and time proven filter is to set high price. Low end is doomed to spam, scam etc.
You're right, I think. When I checked the customer using Fraudrecord, I saw they've been involved in spam since 2012, even recently. WTF!
Have you checked if the IP address (during registration/last login) is public proxy like Tor? I suspect it is.
Can you tell me how to check it, please?
If IP address is IPv6 it may require adjust your format to be able to find it in the list
Choke them out with CIDRAM https://github.com/CIDRAM/CIDRAM
Never heard of this, anyone else using it?
Checking IPs for malicious / automated activity would probably help. If it's email specific, there are lists of disposable email domains on github. Make sure the list matches with the temp emails you're seeing in your WHMCS.
Install it and play around with it, you can filter on a huge multitude of variables.
It is especially useful on shared hosting where you don't control the machine firewall.