how to find bots on our faucet so we can earn good money

[hoop]

What I have personally noticed in last few weeks

I have been running a faucet for last few months, and have noticed many Strange things in the last few weeks from coins going down at a rate of 30 people claiming and only 3 showing on analytics.

Bots usually just brute force CAPTCHAS and if your monetising from your CAPTCHAS your CPM will drop to basically nothing because of the high fail rate. If you look at impressions on solvemedia and see a big red band on the chart much greater than the green solve its a sure sign of bot activity. Also ad revenue becomes worthless.

I think we need to come up with a way to stop multiple failed CAPTCHA attempts. I have noticed that in my case the higher the bot activity the longer the sessions show in analytics

Agree with you but this needs good dev to code script against bots. BTW bots devs update they code every day.

[BitRipped]

Bots that use a real person to solve aren't so much the problem as it doesn't ruin income from the ads within the CAPTCHAS, it's the high fail rate is what kills income. It must be simple enough to limit how many CAPTCHAS can be obtained and failed before it triggers a IP ban or something. I'm no coder but something like. If CAPTCHA failed or requested more than 3 times add ip to bad list. Or when 3k audio CAPTCHAS get requested and a GB of data of every few hours lol.

Has anyone had any experience with Incapsula? It works ok but getting mod_remoteip to work properly is a pain. Otherwise some users share the same timer

[wdnj]

Bots that use a real person to solve aren't so much the problem as it doesn't ruin income from the ads within the CAPTCHAS, it's the high fail rate is what kills income. It must be simple enough to limit how many CAPTCHAS can be obtained and failed before it triggers a IP ban or something. I'm no coder but something like. If CAPTCHA failed or requested more than 3 times add ip to bad list. Or when 3k audio CAPTCHAS get requested and a GB of data of every few hours lol.

Has anyone had any experience with Incapsula? It works ok but getting mod_remoteip to work properly is a pain. Otherwise some users share the same timer

 In my opinion CloudFlare is much better than Incapsula.

[BitRipped]

I think I have found a way that works at least at the moment, I will share but want to test it for few days just to see how it turns out. I based this off my log files if anyone has similar results it should work for you too

[wdnj]

I think I have found a way that works at least at the moment, I will share but want to test it for few days just to see how it turns out. I based this off my log files if anyone has similar results it should work for you too

I'm interested in this.what is your faucet script?

[BitRipped]

FaucetBox ready made script and it works a treat for bot traffic lol.

My idea was originally to use Fail2Ban and a custom filter to search logs on my server to limit POST requests within short time frames, it worked to a degree, within a few hours several hundred IPs were banned all similar IPs (thought that was a bit easy) Then incame more IP ranges each IP submitting less often. As it's a POST requests server doesn't log info maybe ModSecurity can be used to look in to the POST requests further 

Something is definitely up

[BitBustah]

FaucetBox ready made script and it works a treat for bot traffic lol.

My idea was originally to use Fail2Ban and a custom filter to search logs on my server to limit POST requests within short time frames, it worked to a degree, within a few hours several hundred IPs were banned all similar IPs (thought that was a bit easy) Then incame more IP ranges each IP submitting less often. As it's a POST requests server doesn't log info maybe ModSecurity can be used to look in to the POST requests further 

Something is definitely up

Or you can modify your script to show all the claims (aka POST requests) that were made.

[sunchaser]

Bots that use a real person to solve aren't so much the problem as it doesn't ruin income from the ads within the CAPTCHAS, it's the high fail rate is what kills income. It must be simple enough to limit how many CAPTCHAS can be obtained and failed before it triggers a IP ban or something. I'm no coder but something like. If CAPTCHA failed or requested more than 3 times add ip to bad list. Or when 3k audio CAPTCHAS get requested and a GB of data of every few hours lol.

Has anyone had any experience with Incapsula? It works ok but getting mod_remoteip to work properly is a pain. Otherwise some users share the same timer

Thank you for the idea I use solve media and I will implement this idea. If user fails three times in a short span one can fire the timeout cooldown.

[Octopus.pp.ua]

FaucetBox ready made script and it works a treat for bot traffic lol.

My idea was originally to use Fail2Ban and a custom filter to search logs on my server to limit POST requests within short time frames, it worked to a degree, within a few hours several hundred IPs were banned all similar IPs (thought that was a bit easy) Then incame more IP ranges each IP submitting less often. As it's a POST requests server doesn't log info maybe ModSecurity can be used to look in to the POST requests further 

Something is definitely up

https://bitcointalk.org/index.php?topic=1448604

Mmm?

[BitRipped]

Thanks for that ... I will give it a go. i want to try and find a way to navigate people off the page after a POST request after they have claimed if it is at all possible, just to limit any false bans back button refresh etc. Would definitely be nice to see that huge red mountain engulfing the green solve rate go down if not disappear. 18 solves 120k impressions eCPM <0.01

Now about to lose what sanity I have left looking through my newly acquired log files. Would be awesome to stop them at system level. Faucet is down by the way. Bots aren't bothered and I'm genuinely sorry to the 2 or so genuine users that will most likely never see this post