Bitcoin Forum
November 08, 2024, 07:01:06 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: Wiki Captcha required - 99% new user creation is spam  (Read 3686 times)
ripper234 (OP)
Legendary
*
Offline Offline

Activity: 1358
Merit: 1003


Ron Gross


View Profile WWW
July 24, 2012, 06:05:46 AM
Last edit: December 20, 2012, 01:38:44 AM by ripper234
 #1

I took a look at the Recent Changes page, and it seems 30 out of 50 "changes" are actually new user creations.

No CAPTCHA is currently required to create an account. I suspect most of these are bots.

You can also be innovative and require payment of 0.001 BTC to register an account, with a link to the Bitcoin Faucet (that currently gives 0.005, and already handles the bot problem).

I'm not actually saying this is a good idea (might give the wrong impression to newbies) ... but some sort of filter is required.

Please do not pm me, use ron@bitcoin.org.il instead
Mastercoin Executive Director
Co-founder of the Israeli Bitcoin Association
niko
Hero Member
*****
Offline Offline

Activity: 756
Merit: 501


There is more to Bitcoin than bitcoins.


View Profile
July 24, 2012, 06:16:12 AM
 #2

Yes, please!  Also, what to do with spam accounts already created?

They're there, in their room.
Your mining rig is on fire, yet you're very calm.
HostFat
Staff
Legendary
*
Offline Offline

Activity: 4270
Merit: 1209


I support freedom of choice


View Profile WWW
July 24, 2012, 06:17:30 AM
 #3

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley

NON DO ASSISTENZA PRIVATA - https://t.me/hostfatmind/
apetersson
Hero Member
*****
Offline Offline

Activity: 668
Merit: 501



View Profile
July 24, 2012, 07:16:03 AM
 #4

this would be a great addition to any wiki software. a bitcoin-based captcha.
giszmo
Legendary
*
Offline Offline

Activity: 1862
Merit: 1114


WalletScrutiny.com


View Profile WWW
July 24, 2012, 08:07:12 AM
Last edit: July 24, 2012, 05:07:48 PM by giszmo
 #5

this would be a great addition to any wiki software. a bitcoin-based captcha.

with the difference that we would provide only this and other wikis would put it along with audio and visual captchas.

yes, such a plugin would be cool. It could require a very specific donation to the bitcoin faucet and monitor for this via blockchaininfo api. this way you don't need a bitcoind.

Any offers for me to make it for mediawiki? it would be installable like all the other mediawiki plugins and javascript would poll blockchaininfo every 10s for a payment of exactly a server side random amount of 0.000?????BTC, provide a QR-Code and a bitcoin link to pay. The 0s not being 0s would still validate, so the users can mix a donation  with their captcha payment.
Of course if blockchaininfo allows long polling, i would do that.

ɃɃWalletScrutiny.comIs your wallet secure?(Methodology)
WalletScrutiny checks if wallet builds are reproducible, a precondition for code audits to be of value.
ɃɃ
unclemantis
Member
**
Offline Offline

Activity: 98
Merit: 10


(:firstbits => "1mantis")


View Profile
July 24, 2012, 08:18:06 AM
 #6

I agree with the payments.

PHP, Ruby, Rails, ASP, JavaScript, SQL
20+ years experience w/ Internet Technologies
Bitcoin OTC | GPG Public Key                                                                               thoughts?
ripper234 (OP)
Legendary
*
Offline Offline

Activity: 1358
Merit: 1003


Ron Gross


View Profile WWW
December 05, 2012, 09:02:52 PM
 #7

This spamming is still going strong.
Emailing contact@bitcoin.it about it.

Please do not pm me, use ron@bitcoin.org.il instead
Mastercoin Executive Director
Co-founder of the Israeli Bitcoin Association
Lethos
Sr. Member
****
Offline Offline

Activity: 476
Merit: 250


Keep it Simple. Every Bit Matters.


View Profile WWW
December 05, 2012, 09:15:28 PM
 #8

In my experience with Wiki's most captcha based additional verification before account creation doesn't slow it down much.
They guess those rather two well.
What slows it down the most is simple but random question of your own choice.
Having something non standard, means the bot just won't be able to guess it, but a human will know the answer.

The donation method is also great, just take a bit more to implement. It would once done before more likely to beat the bots and spammers.

J-Norm
Newbie
*
Offline Offline

Activity: 56
Merit: 0



View Profile
December 05, 2012, 09:23:27 PM
 #9

A clever spammer could create a website that relays any sort of captcha challenge to users who are willing to solve them for .01BTC each. It has been done before, but using porn for a reward instead of bitcoins. Same principal.
FreeMoney
Legendary
*
Offline Offline

Activity: 1246
Merit: 1016


Strength in numbers


View Profile WWW
December 05, 2012, 11:35:33 PM
 #10

A clever spammer could create a website that relays any sort of captcha challenge to users who are willing to solve them for .01BTC each. It has been done before, but using porn for a reward instead of bitcoins. Same principal.

Not that clever since he'd be paying .01 instead of the direct access payment of .001

A more substantial deposit that is returned after the account doesn't spam is probably better, that way it is only a cost to spammers. It only really works in communities where most people will have coins and even then could be annoying, but so is spam.

Play Bitcoin Poker at sealswithclubs.eu. We're active and open to everyone.
auzaar
Full Member
***
Offline Offline

Activity: 151
Merit: 100



View Profile
December 06, 2012, 12:52:11 AM
 #11

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley
so a person coming to bitcointalk.org to learn about bitcoin and how to use it, will have to first ask his question somewhere else? so he can pay .001 btc to the forum
grue
Legendary
*
Offline Offline

Activity: 2058
Merit: 1452



View Profile
December 06, 2012, 12:55:27 AM
 #12

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley
doesn't that end up spamming the blockchain?

It is pitch black. You are likely to be eaten by a grue.

Adblock for annoying signature ads | Enhanced Merit UI
kokojie
Legendary
*
Offline Offline

Activity: 1806
Merit: 1003



View Profile
December 06, 2012, 01:02:54 AM
 #13

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley
doesn't that end up spamming the blockchain?

Only for now, in the future, spamming the blockchain would be an encouraged behavior, since mining reward will be nearly zero, and miners will have to rely on massive amounts of transaction fee to keep mining.

btc: 15sFnThw58hiGHYXyUAasgfauifTEB1ZF6
BladeMcCool
Member
**
Offline Offline

Activity: 83
Merit: 10


View Profile
December 06, 2012, 04:49:46 AM
 #14

In my experience with Wiki's most captcha based additional verification before account creation doesn't slow it down much.
They guess those rather two well.
What slows it down the most is simple but random question of your own choice.
Having something non standard, means the bot just won't be able to guess it, but a human will know the answer.
The donation method is also great, just take a bit more to implement. It would once done before more likely to beat the bots and spammers.

Correct captcha relay is about $1.60 for a thousand solutions. Doesnt slow down spammers. What will stop spammer dead in its tracks is subject-matter related question on signup. Like "How many bitcoins will there ever be?" ... answer 21000000 ... or fill in the blank "Satoshi ______" answer Nakamoto ... etc.

A clever spammer could create a website that relays any sort of captcha challenge to users who are willing to solve them for .01BTC each. It has been done before, but using porn for a reward instead of bitcoins. Same principal.

typers in kazakhstan or indonesia are happy to do it for USD$0.80 per 1000 solutions = 0.061 Bitcoins for 1000 solutions = thats like 0.00061 bitcoins per solution. Thats the supply side for the typing workers. The demand side of companies that sell the bulk solutions  (imagetypers, deathbycaptcha, decaptcher, etc. etc.) can charge $1.6 per 1000 .. i tihnk there is also a middleman in there somewhere. anyway captcha solving is a perfect business to disintermediate with bitcoins if workers would accept them and buyers would pay with them lol.
Ente
Legendary
*
Offline Offline

Activity: 2126
Merit: 1001



View Profile
December 06, 2012, 11:53:04 AM
 #15

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley
so a person coming to bitcointalk.org to learn about bitcoin and how to use it, will have to first ask his question somewhere else? so he can pay .001 btc to the forum

The idea is that users signing up on the *bitcoin wiki* pay/solve captchas etc. Not users signing up here, on bitcointalk.

I like that idea. Why should someone edit the bitcoin wiki if he doesn't even have a wallet?
I too approve in sending the bitcents to the faucet.

Ente
auzaar
Full Member
***
Offline Offline

Activity: 151
Merit: 100



View Profile
December 06, 2012, 02:56:45 PM
 #16

It' a good idea, but it's better if the 0.001 BTC will be sent to the Bitcoin Faucet Smiley
so a person coming to bitcointalk.org to learn about bitcoin and how to use it, will have to first ask his question somewhere else? so he can pay .001 btc to the forum

The idea is that users signing up on the *bitcoin wiki* pay/solve captchas etc. Not users signing up here, on bitcointalk.

I like that idea. Why should someone edit the bitcoin wiki if he doesn't even have a wallet?
I too approve in sending the bitcents to the faucet.

Ente
in that case it is perfect
ripper234 (OP)
Legendary
*
Offline Offline

Activity: 1358
Merit: 1003


Ron Gross


View Profile WWW
December 06, 2012, 03:35:53 PM
 #17

This spamming is still going strong.
Emailing contact@bitcoin.it about it.

If you like the idea, please email contact@bitcoin.it about it - I haven't gotten any replies yet, and I don't know if they've seen the thread.

Please do not pm me, use ron@bitcoin.org.il instead
Mastercoin Executive Director
Co-founder of the Israeli Bitcoin Association
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
December 07, 2012, 07:48:19 PM
 #18

I think the spammers are bots that look for mediawiki installations anywhere, and just asking them 2+2=4 might be enough to stop them...they'll just move on and find another wiki.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
ripper234 (OP)
Legendary
*
Offline Offline

Activity: 1358
Merit: 1003


Ron Gross


View Profile WWW
December 07, 2012, 09:10:16 PM
 #19

I think the spammers are bots that look for mediawiki installations anywhere, and just asking them 2+2=4 might be enough to stop them...they'll just move on and find another wiki.

Something needs to be done.
Does anyone know of another way to contact the wiki developers / maintainers?

Please do not pm me, use ron@bitcoin.org.il instead
Mastercoin Executive Director
Co-founder of the Israeli Bitcoin Association
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
December 07, 2012, 09:46:21 PM
 #20

I think the spammers are bots that look for mediawiki installations anywhere, and just asking them 2+2=4 might be enough to stop them...they'll just move on and find another wiki.

Something needs to be done.
Does anyone know of another way to contact the wiki developers / maintainers?

It looks like someone may have already boxed up a solution for this in the form of an installable plugin: http://www.mediawiki.org/wiki/Manual:Combating_spam

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!