Even a constructive thread can be taken over by shitposters so do we trash that as well?
The solution to this on another forum I'm a part of was to be a lot more liberal with locking threads. For example, once a question was answered or a request was fulfilled the thread was locked to prevent further spamming. This would prevent threads like this and this (which is essentially the exact same topic anyway) from gaining any sort of ground with spam. How do you stop signature spam when paid signatures are allowed?
You moderate the users, or you remove the paid signatures. While this is a lot easier said than done, I'm hoping that something eventually gets theymos' approval and it can begin to take effect; there's only so much users can do without authority. |
|
|
|
You should really go and see a doctor; paranoia like this surely isn't good for you. Let it be known that the very same person who stole millions from Inputs.io and CoinLenders now has multiple moderators on his payroll.
TIL a one time donation is now equal to being on a payroll, and further ruling over another user. It was just yesterday that TradeFortress paid two moderators, Lauda and Mitchełł Just look at the txid to Mitchełł, and to Lauda. As well as several others that happened to be in the right place at the right time. It's almost like the payment wasn't specifically made to those moderators, but simply to people that asked for it. Also, http://1LaudaexFYZano87acDNGscmqDbM3ZTLBD isn't a valid link.With at least two moderators on the payroll of TradeFortress, you should no longer trust anything that happens here.
Expect to get censored if you are critical of one of TradeFortress' business ventures.
Alright let's test this theory. TradeFortress was an incompetent asshat who is directly responsible for the loss of millions of dollars, almost all of which belonged to his customers. He was not suitable to run any sort of web service that handled other people's money, let alone an online wallet. Now, let's see how long this post takes to be removed shall we?  Expect a false sense of trust to be given to business ventures of TradeFortress.
You can tell by his -9999 trust rating that he his seen in a great light on this forum and is considered to be extremely trustworthy. |
|
|
|
Don't tried to claim.. It block's the claim or the pageview?
I believe that it only checks once a claim is made, this is only after a brief look at the code however. snip
So I don't know what's the problem with the admin panel when I have the NH option enabled..
I'm not entirely sure either, I can't see a problem with you or NastyHosts. You will have to ask Kazuldur either through PM or on the FaucetBOX discussion thread. |
|
|
|
I'm not using a code, just enabled the nastyhosts funcion in the admin panel of faucetinabox..
however it don't appears to be working..
and I got some issues after allowed, I can't access/edit the admin panel anymore.. so I have to disable the nastyhosts option by phpmyadmin..
snip
And my IP is blacklisted in some services and I can't renew this sh1t.. however I don't know if I cant access the admin panel because of this or if the NH service is down.. anyway, I can access the faucet..
Can you claim properly from your Faucet when you have NastyHosts enabled? If not, your IP may be blocked by NastyHosts. I believe this results in the same behavior as you have described. If you want to check this, you can go to v1.nastyhosts.com/YOUR-IP and check the "suggestion" tab at the end of the JSON object. If this says 'deny', you will have to contact Kazuldur to have your IP removed from the blacklist. |
|
|
|
Hello, I must do to fix this error and I changed data from my database and the same error thanks
snip
The simplest cause for this error is usually either incorrect credentials or incorrect permissions. I am guessing that, by the username you are using to login, you are trying to create a faucet on a local server. Have you given 'root' sufficient permissions to access the database? (Reading and Writing is needed, complete permissions are best however). Also, while this is not on topic to your question, you should change the value of short_open_tag in your php.ini as the script suggests if you want it to work at it's best. |
|
|
|
you can use the WHOIS service provider like lacnic or arin.
Here my php implementation
snip
This code wouldn't work straight off; the function QueryWhoisServer does not exist during the call. Not only this, but IMO it's a lot more complicated than it needs to be. Something like this may be easier: <?php
$bannedHosts = array('example-host.com', 'example-host-2.net');
//See [1]
$userIP = $_SERVER['REMOTE_ADDR'];
//See [2]
//Get the NastyHosts response
$nastyHostsResponse = json_decode(file_get_contents('http://v1.nastyhosts.com/' . $userIP));
//Now check if the hostname is in the array
foreach($bannedHosts as $host){
if(strpos($nastyHostsResponse, $host) !== false){
//Something has been found
die('Banned Hostname.');
}
}
?>
This allows you to put in partial hostnames and for them to be blocked, for example it would return positive if the user's hostname was ec2-52-30-0-1.eu-west-1.compute.amazonaws.com provided that compute.amazonaws.com was in the $bannedHosts array. This obviously has the possibility to go wrong with certain hostnames, so may not be the best option if you are using a number of unspecific hosts in the $bannedHosts array. [1] This could either be an array, or it could read from a text file by replacing array(...); with file('path/to/file.txt');. This should have the same affect when running the code. [2] This line could be replaced with any other method to get the user's IP address, since REMOTE_ADDR can sometimes fail. If using the FaucetInABox script for example, I believe the getIp(); function could be used. However, if using the FaucetInABox script the above code serves no purpose; this feature is already implemented into the script. anyone knows if nastyhosts is working or not?
I'm trying to put ISP names by this service and I think this it's not working.. don't know if I do something wrong or the service is down..
Thanks!
I believe NastyHosts is working fine. If you post the code you're using here you could compare it with the above code, or I could try to help you with it. |
|
|
|
|
1PNmymEXA8mGZfdsWAWmicJPTXEf5KAzTG
Cheers.
|
|
|
|
I didnt know the faucet would work even for test mode, its good to know, but what is the purpose to let the faucet run without captcha? This will just bring several bots to drain the faucet balance too fast, captcha slow them a bit.
In a test mode I meant on a private/local server that only you knew the address to, meaning that no one else can access it and drain your funds. I don't really know why you would want to use your faucet without a captcha, however I expect it could be used for testing rewards/modifications to a faucet. I really doubt, and would sincerely hope, that no one would use this on a real live faucet. I prefer for faucetbox that he accept only faucet sites which give bigger rewards that they can use their service because many faucet pays too small sonitbis nit profitable to use faucet sites.
The FaucetBOX API is free for anyone to use regardless of the use or amount being given out. If you mean the faucet list, it would be pretty unfair to deny sites simply because the owner cannot afford to give out huge rewards. Would it not? |
|
|
|
If such things were against the rules, there'd be no sketchy high activity accounts and multi-accounters...
That's wishful thinking. Theft is against the law therefore it never happens, right? If account sales were banned on the forum then it would simply happen off forums, multi-accounting can't really be stopped successfully. Don't you think the rate of scammers on the site would drop drastically?
In a perfect world, however this will not happen realistically. And the trust system is so flawed, anyone else noticed that?
It's been discussed time and time again. It's also very easy to point out problems, try suggesting solutions. Actually no, if you want to create new account you need to pay a fee, from same IP though
Only once a previous account has been banned on that IP address. Providing you follow the rules you can create as many accounts as you like on one IP address. 2,000 posts woo. |
|
|
|
But you've gotta admit that a large chunk of the bitcointalk community is just here for the signature campaigns.
I would, yes. Whether this is a good thing for the prosperity of the community is debatable. While I think it is fine to get paid for something you already would do - in this case wearing a signature to get paid for posting you would still do otherwise - I believe that people that post solely get paid from their signature do not benefit the forum whatsoever. |
|
|
|
Is it possible to have a faucet without captchas. I need to do some offline testing.
If you want to do this, then adding $data['captcha_valid'] = true; at line 236 of index.php should bypass the captcha AFAIK. This simply makes the script think that the captcha is correct regardless of the input. Obviously this should never be used on a live script, but it should be fine if it's just for testing. |
|
|
|
Yes i know , it is someone else who sell the same products
I believe Lutpin was saying that he was the one who reported the posts, not a competitor of yours. |
|
|
|
You would have to be delusional to think this database would be worth 100BTC lol.
It wouldn't surprise me. Remember we're talking about the details of (probably) 500,000 members. Sure maybe some people used the same password for the website that they did on some financial account,
and especially for any kind of Bitcoin wallet/ program.
(I'm assuming they put the price so high because people assumed you could use the info to steal coins from members.)
There are more ways to steal Bitcoin than getting someone's wallet. Look in the OP, he was able to get 0.16-0.17 BTC from 3 members using accounts with little trust. If the could get that with those accounts, what if he got one with Dark Green trust? What if he got one on the DT network? Not to mention that he could also sell the accounts on, or scrape the accounts for personal details to sell. but anyone with half a brain is going to use different passwords for different sites,
You'd think so, but it's amazing how many people practice terrible security. |
|
|
|
Added HitBTC to the list with this post: well, i can get the emails if you want me to.
...
and this thread as a reference. Thank you both for the reports and research. |
|
|
|
This means most of the FaucetBox faucets won't work when you are maintaining right?
As a normal faucet user I am worry about this.
No FaucetBox faucets will work while maintenance is happening; FaucetBox will not be available to recieve API requests. However, the maintenance is only planned for two hours. I'm sure you can live with it until it comes back online. |
|
|
|
Well if i would be the admin yes then i would have no choice but lock out the users who have no access to the e-mail anymore or else sign a message!!!!
The security of this forum should be the top priority and not a few users who are stupid enough to use a email that they can not access anymore!
So you would lock out users 'stupid' enough to not use an email (which could be for several valid reasons) to protect those who are stupid enough to not change their password after a hack? So you shall put this in question as well :
Why he makes it so hard to recover hacked account but does not simply force lock/reset all the accounts?
Theymos has several large communities that he takes care of; he is too busy to answer most queries of account recovery (especially considering that the majority of account problems are caused by the users themselves). If you can prove to a moderator that your account was hacked (through signing a message from a staked address usually) then they will apply a ban onto your account, essentially locking it. |
|
|
|
Hmm i dont know is there any program like example bot which can scan post and if is in your post something which can spam forum then it dont allow to post that post if it dont exist it can be good idea.
There are no bots that can detect post quality accurately, as it would need to understand the English language. If there were I'm sure it would be used for better purposes than a spam checker for a forum. Danny actually has a whitelist of people who wear paid signatures that do not post complete garbage. This pretty much addresses the issue of not being able to view constructive posts.
He does, however it isn't very conclusive. Members such as myself, mexxer and Lutpin are still blocked by Danny's list. I would consider all of us to have constructive posts. If you ask me I'd say forum mods love this cancer as for more posts and traffic means more popularity and income for them as well.
You're an idiot. How do you think it can be stopped? Advertisement is a major source of income to the site.
Paid signatures can be removed. Signature advertisements do not directly contribute to the site's income; I'm sure that it can live without them. |
|
|
|
Legendary rank is permanent I think. This user deleted most of his post at some point before January but is still a legendary. Hero and below will revert back to lower rank if they deleted their posts. I stand corrected, my apologies. |
|
|
|
|
Show Posts
