IPBSupport.de Posted August 8, 2012 Share Posted August 8, 2012 Like my Feedback in July 2010 (Security Problem on the "Share this link via Email" Page), we now need a captcha for the "Report" forms. I get a lot of spam messages from spambots since yesterday - all bots reporting posts... :angry: So: Please add a captcha to the "Report" form(s)! Link to comment Share on other sites More sharing options...
digifredje Posted August 8, 2012 Share Posted August 8, 2012 Had it too. I changed the settings in ACP so "Guests" can no longer report something. Link to comment Share on other sites More sharing options...
IPBSupport.de Posted August 8, 2012 Author Share Posted August 8, 2012 Yes, this is a workaround, but i made good experience with guests as "reporter" of content, so i would not miss it. Link to comment Share on other sites More sharing options...
guest of honour Posted August 19, 2012 Share Posted August 19, 2012 Can you tell us how you did it? Thanks Link to comment Share on other sites More sharing options...
IPBSupport.de Posted August 19, 2012 Author Share Posted August 19, 2012 Change the "Guest" group setting "Can submit reports?" to "No". Link to comment Share on other sites More sharing options...
Wolfie Posted August 19, 2012 Share Posted August 19, 2012 I get a lot of spam messages from spambots since yesterday - all bots reporting posts... :angry: Talk about stupid. A spammer (or spambot) using the report feature for spamming is like a crook robbing a bank leaving his drivers license at the scene of the crime along with directions to where he's going to be hiding out at. Being able to enable/include/add some sort of spam prevention on various pages for guests would be useful. Report feature being one of them. Link to comment Share on other sites More sharing options...
bigPaws Posted August 23, 2012 Share Posted August 23, 2012 +1 to this idea. I think it's important to allow guests to report content and therefore it would be good to have a Q&A challenge on there to stop spam bots. Link to comment Share on other sites More sharing options...
Royzee Posted August 23, 2012 Share Posted August 23, 2012 Think it is best to just set Guests can send reports to "No." More than that is bloating the code with a second path to the same objective. Link to comment Share on other sites More sharing options...
bigPaws Posted August 23, 2012 Share Posted August 23, 2012 It's not the same thing though. Guests might spot something a member doesn't see and therefore should be given access to report content... Link to comment Share on other sites More sharing options...
Royzee Posted August 24, 2012 Share Posted August 24, 2012 It's not the same thing though. Guests might spot something a member doesn't see and therefore should be given access to report content... I disagree. We don't know who guests are, and are as likely as not to be spammers. The only perms I give to guest is "View." Any more permission that that for guests is just asking for thouble. Link to comment Share on other sites More sharing options...
Wolfie Posted August 24, 2012 Share Posted August 24, 2012 I disagree. We don't know who guests are, and are as likely as not to be spammers. The only perms I give to guest is "View." Any more permission that that for guests is just asking for thouble.I think it would be best as an option. For sites where an admin feels as you do, they just disable guest access and they're done with it. For admins that want to allow guests access to certain things such as reporting content, be able to force some sort of verification to reduce the chances of it being a spammer. Not taking sides on who is right/wrong, since each community is unique and what works for one site may not work for another. Link to comment Share on other sites More sharing options...
Royzee Posted August 24, 2012 Share Posted August 24, 2012 To each their own I guess, it just seem to me that allowing guest to "report content" (or any other posting) is sorta like allowing a rabbit to go to the store for a head of lettuce. (w00t) Link to comment Share on other sites More sharing options...
TSP Posted August 24, 2012 Share Posted August 24, 2012 I think it would be best as an option. For sites where an admin feels as you do, they just disable guest access and they're done with it. For admins that want to allow guests access to certain things such as reporting content, be able to force some sort of verification to reduce the chances of it being a spammer. Not taking sides on who is right/wrong, since each community is unique and what works for one site may not work for another. Why would you need a new option? (Correct me if I misunderstood)Isn't captcha already used on posting by default? And you already can decide to let guests report. Couldn't we just do it as easy as "if guest report, show him our default guest spam prevention thing"? I support the ability to enable guest reports. Link to comment Share on other sites More sharing options...
Wolfie Posted August 24, 2012 Share Posted August 24, 2012 To each their own I guess, it just seem to me that allowing guest to "report content" (or any other posting) is sorta like allowing a rabbit to go to the store for a head of lettuce. (w00t)More like allowing a shopper to get a member discount without needing to use a membership card. Some businesses all it because they see it as good business while others don't because it's seen as an incentive to become a member.Why would you need a new option? (Correct me if I misunderstood)Isn't captcha already used on posting by default? And you already can decide to let guests report. Couldn't we just do it as easy as "if guest report, show him our default guest spam prevention thing"? I support the ability to enable guest reports.I'm referring to anything that can be enabled for guests that doesn't already offer/support spam prevention when enabled. Reporting content would be one of them. So I'm referring to having it be consistent in usage. Link to comment Share on other sites More sharing options...
TSP Posted August 24, 2012 Share Posted August 24, 2012 More like allowing a shopper to get a member discount without needing to use a membership card. Some businesses all it because they see it as good business while others don't because it's seen as an incentive to become a member. Well. For posting I could agree on that, but this is reporting content to the staff of a site. Would I need to buy a membership card at the police to report a crime? I'm referring to anything that can be enabled for guests that doesn't already offer/support spam prevention when enabled. Reporting content would be one of them. So I'm referring to having it be consistent in usage. You already have the setting "Guest posting bot control". I can't see why you would need anything other than that. The rule here should be simple. When a guest submits content to a site, whether it be a comment, a forum post, a report, or whatever else guests can use to add content to the site, you simply go "Show the spam prevention method chosen in CAPTCHA if guest posting bot control is enabled." Anything more complicated than that, (say you want a different kind of spam prevention method on different types of content), is what someone could make a hook for. There is really no need for additonal settings here, in my opinion. Link to comment Share on other sites More sharing options...
Wolfie Posted August 24, 2012 Share Posted August 24, 2012 Well. For posting I could agree on that, but this is reporting content to the staff of a site. Would I need to buy a membership card at the police to report a crime?I was responding to someones use of a grocery store as an analogy with one that would be more appropriate to the situation. What I used was to be a generalized concept instead of something specific.You already have the setting "Guest posting bot control". I can't see why you would need anything other than that. The rule here should be simple. When a guest submits content to a site, whether it be a comment, a forum post, a report, or whatever else guests can use to add content to the site, you simply go "Show the spam prevention method chosen in CAPTCHA if guest posting bot control is enabled." Anything more complicated than that, (say you want a different kind of spam prevention method on different types of content), is what someone could make a hook for. There is really no need for additonal settings here, in my opinion.You're essentially agreeing with me while thinking you are disagreeing. Option to enable (or not) spam prevention for posts, comments (where appropriate), reporting content, etc. Someone may want to allow the use of certain areas without it being enabled. The method of prevention though, would be consistent. More times than not, you'd expect it to be all or nothing, but there could be areas where the admin feels it is unnecessary for some reason. Don't take that control away from them, but do remain consistent with the method used. If many get past the spam prevention method chosen, then obviously it's not working and another one needs to be used. Link to comment Share on other sites More sharing options...
IPBSupport.de Posted September 21, 2012 Author Share Posted September 21, 2012 Thank's for the discussion... But summarized, there are only 2 options: [*]Adding a Captcha Option 1 (removing) make no sense - guests often reporting content which members (maybe) not do/see/find. And as i said, this could (maybe) a legal problem if a person must register before he can report any abuse. (and just for the records: i'm wondering if there are not more members/customers here with this problem, i get so many spam from guest reportings - it's really frustrating and disturbing me and my admins/moderators) [*]Removing the complete option for guests to report anything from IP.Board and the IPS.Apps or Link to comment Share on other sites More sharing options...
Jυra Posted September 21, 2012 Share Posted September 21, 2012 Doesn't seem frequent, but I've seen it. I do wish to keep reporting open to guests. At the moment it isn't a concern of mine. Link to comment Share on other sites More sharing options...
Wolfie Posted September 30, 2012 Share Posted September 30, 2012 Option 1 (removing) make no sense - guests often reporting content which members (maybe) not do/see/find. And as i said, this could (maybe) a legal problem if a person must register before he can report any abuse.How could it possibly be a legal problem? Here's how I see it.. Any content that is viewable only by a guest but not by a registered member should only be content that the admin put there. If an admin is using a "Guest message" hook, then that's not something that you can report anyway. If someone (as a guest) stumbles upon something that could be a legal issue (copyright infringement), then that person either owns the rights and thus would need to send a notice (which would be done by email) or they're just wanting to be helpful and can always opt to send an email if they don't want to register. If they submit a report, certain information is going to be collected anyway (IP address for example) so no matter which way they go, they're leaving some sort of a trail. I'm not saying that guests shouldn't be able to report content, only that if an admin wants to restrict it from guests, then that's up to them. What doesn't make sense to you might make perfect sense to someone else. As in, for your site it might not make sense, but on someone else's site, it might not make sense the other way around. I believe that when a spam control method is chosen for guests, it should be used anywhere that the admin wants it to be used. As in, if the admin wants it shown when someone posts a message as a guest, then it shows there. If they want it to show when leaving a comment on something (blog/calendar/downloads/gallery) then it shows up in all those places. Same with reporting content. Should be able to decide when it shows up. The method used though should remain the same. As in, not one captcha method for posts, then another for leaving comments, with yet another for reporting content. All the same but only used where the admin wants it used. Link to comment Share on other sites More sharing options...
Wolf Posted September 30, 2012 Share Posted September 30, 2012 I believe that it should be added as an option to have a captcha on the report form for guests, just as it is for "forgot password", and other functions that can be abused by automated programs. This would (ideally) be able to be enabled/disabled in settings, like any other options in IP.Board. I currently have the ability for guests to report posts turned off, mainly because if I don't, spam bots will (and they have before I turned it off) fill in the report form with spam. I for one would love to be able to turn the ability for guests to report posts on, with the CAPTCHA option so I don't have to worry about spam. My community exists just as much for reading as it does posting, and there are many 'guests' who read posts every day, but never register because they don't intend on posting... these 'guests' are just as much of the reason I started the community as the members are. Link to comment Share on other sites More sharing options...
Arthur73 Posted October 15, 2012 Share Posted October 15, 2012 and just for the records: i'm wondering if there are not more members/customers here with this problem, i get so many spam from guest reportings - it's really frustrating and disturbing me and my admins/moderators Same here. Just this day I got more than 100 spam reports throught the gallery. There is no chance to stop it. I turned off guest access to the gallery. It did not help. Even if I turn the gallery completely off and shut down the report function in the whole installation, the report function can still be accessed if a spammer knows the syntax.Its really so anoying and distrubing. 5 new reports, while I am writing this. A pure horror. Link to comment Share on other sites More sharing options...
MisterPhilip Posted October 16, 2012 Share Posted October 16, 2012 +1 for this as well. We ended up disabling guest reporting because of spam a few weeks ago. Link to comment Share on other sites More sharing options...
Jυra Posted October 16, 2012 Share Posted October 16, 2012 I take back what I said since this appears to be happening more. A revamp of how guests are handled would be nice. Link to comment Share on other sites More sharing options...
bigPaws Posted October 20, 2012 Share Posted October 20, 2012 I had 100 reports from the same guest spammer. It would be great to have an option to add Q&A or captcha to the report form for usergroup = guest. Has anyone from IPS actually replied or read this thread yet? It's frustrating if feedback is not acknowledged? Perhaps they should introduce a voting system for new features so they can properly gauge which ideas are in high demand? In the meantime, can someone tell me how I disable guess reporting? Link to comment Share on other sites More sharing options...
Wolfie Posted October 20, 2012 Share Posted October 20, 2012 Perhaps they should introduce a voting system for new features so they can properly gauge which ideas are in high demand?Not really feasible. Someone might be in favor of an option not listed or might not want to choose between two or misvote. Not only that, but that would be just the people who know of the poll and vote to begin with. So those who vote may not truly reflect what the majority want. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.