:: Forums :: General :: Announcements
 
<< Previous thread | Next thread >>
DNSBL: refuse signups based on block lists
Moderators: nlstart
This thread is now closed
Author Post
nlstart

Registered Member #1
Joined:
Location: Amerongen
Posts: 1228
 At e107 the devs are always looking at ways to improve your e107 website safety. As a trial I have developed DNSBL functionality. It's not a plugin, so if you upload it you will overwrite some e107 core files. The DNSBL package can be used with e107 v0.7.25 or v0.7.26svn.

What is DNSBL exactly?
As Wikipedia states it: "A DNSBL (DNS-based Blackhole List, Block List, or Blacklist) is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time."

How does it work?
The idea is as follows: in Admin Area > User Registration/Posting you will get two new preferences:
1. "Check IP address against DNS black list during sign-up" to switch the DNSBL checking on or off;
2. "Use DNS check list" selection box which can be blank, one of the supported DNSBL lists or 'All'.

Image: http://e107.webstartinternet.com/images/newspost_images/dnsbl_prefs.jpg

Currently supported DNSBL's are: spamhaus, spamcop, sorbs and njabl.

When you do switch DNSBL checking on, but do not provide a DNSBL checker, the default 'Spamhaus' will be used.
If the DNSBL check is 'On', each time a new user is trying to sign up the IP address will be looked up at the specified DNSBL.
If the DNSBL returns the IP address as being registered, the sign-up will fail, and a line will be added to the Admin Log that the signup was refused (with date/time stamp and mention of the IP address that was attempting to be signed up).

What will it do for you?
The benefit is that it will block potential comment/forum spammers at the front door; they won't be able to sign up.

What is the downside?
A suspected negative side effect could be that more people will be blocked than expected. Innocent people might be registered at one of the DNSBL's without them even knowing it. As a result, they might not be able to sign up at your website.

Credits
Credits go to Alexey A. Znayev from http://xbsoft.org who's release was the base of the dnsbl_handler.

IMPORTANT NOTE
This is not a plugin; it is an experimental core addition and will overwrite some of your core files. However, if you do not want to use it at some point, you can easily adjust your e107 preferences and disable it. Based on the feedback on this the e107 dev team might implement it permanently in a future release.

Where can I get it?
Download available for logged in members at:
plugins.e107.org
e107coders.org
NLSTART
Back to top
Website
 

Jump:     Back to top
Syndicate this thread: rss 0.92 Syndicate this thread: rss 2.0 Syndicate this thread: RDF
Powered by e107 Forum System