Posted by datarazor on May 28, 2014 at 4:30pm
Hi folks, so I have a site with honeypot installed and it is doing a great job of blocking spam. Problem is though the site is doing a lot of work to block these malicious bots and it would be nice to ban them. Blocking their IP is useless since they come from all over the place, is there anything that could be done to try and get the site less inundated with spending clicks processing fake users all the time?
Thanks,
Raz.
Comments
I usually use HoneyPot in
I usually use HoneyPot in combination with Bad Behavior (https://drupal.org/project/badbehavior).
Bad Behavior will do some IP checks for known bots, and 403 them. I have found this reduces the amount of requests that come through that HoneyPot has to deal with. The site will has to deal with the requests, but it happens early in the process, so it lessens the impact.
I use zbblock
I had a similar problem, and found that due to the fact that the users attackers were not banned, they could eventually bypass the honeypot with consistent attempts.
Tried Bad Behavior, but immediately had an issue with my site owner not able to get in.
Then installed Troll and IP_Ranges to start banning IP's but that was a lot of work and I could not keep up with the constantly changing IP addresses. Still they were getting through.
Finally I found an external project (Not on Drupal, though I wish to get it included and supported by Drupal)
zbblock
This was very easy to setup, it supports Drupal, and has it's own help forum topic for Drupal.
Works excellently and in just 1 day has reduced/eliminated all attacks.
I suggest you go there, read up on what it can do for you, then get it installed if you are able. This is exactly what Drupal needs.
P.S. the link above is safe!!