1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

A question for moderators.

Discussion in 'The Lounge - Off Topic' started by greenbrucelee, Sep 22, 2010.

  1. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    I take it when you are a mod on here that you can see users IPs, see when they are connecting and trace them back to their ISPs?

    Just out of curiosity if you had someone who was repeatedley trolling on the forum with different user names and different IPs after being banned again and again when you have established its the same douch by doing a tracert and seeing his ISP etc what would your next move be?

    would it be to contact his ISP so they put a block on him being able to connect to the site?
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  2. JonnyMX

    JonnyMX Petabyte Poster

    5,239
    211
    236
    Now, look here, I'm a respected member of this forum...

    :twisted:
     
    Certifications: MCT, MCTS, i-Net+, CIW CI, Prince2, MSP, MCSD
  3. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    lol, nah different guy, different site.
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  4. SimonD

    SimonD Terabyte Poster Moderator

    3,463
    397
    199
    Your best bet would be to get the range of IP's associated with his ISP and block the entire range, unfortunately that also means blocking anyone else coming in from that ISP tho, unless of course he is lucky enough to have been allocated a fixed IP (whilst VM don't issue fixed IP's, my IP address tends to shift between 2 of them).
     
    Certifications: CNA | CNE | CCNA | MCP | MCP+I | MCSE NT4 | MCSA 2003 | Security+ | MCSA:S 2003 | MCSE:S 2003 | MCTS:SCCM 2007 | MCTS:Win 7 | MCITP:EDA7 | MCITP:SA | MCITP:EA | MCTS:Hyper-V | VCP 4 | ITIL v3 Foundation | VCP 5 DCV | VCP 5 Cloud | VCP6 NV | VCP6 DCV | VCAP 5.5 DCA
    WIP: VCP6-CMA, VCAP-DCD and Linux + (and possibly VCIX-NV).
  5. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    Not a chance. An ISP wouldn't listen to a request to block someone's access to an internet forum on the say-so of the moderators, owners or anyone else except the police. Even then it would only be because of something like child porn or hate crimes.

    Besides, the majority of people have dynamic IP addresses - no way you can block them from logging in via a specific IP address if it changes randomly.
     
    Certifications: A few
    WIP: None - f*** 'em
  6. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    so in essence there would be nothing that can stop the troll?
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  7. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,871
    167
    256
    Simon is spot on, really and thankfully most people get the message that they are not wanted, when they are banned.
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)
  8. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    Well this guy just isn't he has had 41 different user names with IP ranging from 124 - 20something he is from san diego and his ISP apparently is one of the most popular for that area and there are quite a few users on the forum from that same ISP.

    At the moment mods are banning him as soon as he starts to re regsiter.
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  9. AJ

    AJ Administrator Administrator

    6,771
    102
    221
    This

    VB does record IP addresses that users access the site from, but as a lot of IP addys are dynamic then blocking them could effect more than the person you are after. We also store email addresses that are used during reistration, but again these can be easily spoofed or made.

    ISP's will do nothing. I did report a spammer t Sky a little while ago and they wanted exact timing and the raw database logs.

    No I'm afraid that this comes down to plain and simple modding and trusting that you are doing the right thing for the right reasons.
     
    Certifications: MCSE, MCSA (messaging), ITIL Foundation v3
    WIP: Looking at doing ..................
  10. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,190
    296
    319
    Best to keep doing that. He will get the message eventually.

    Must be a hassle to keep using a different email address each time to sign up though. :blink
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  11. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    They can tell its him just from his user name and IP now since his user naem changes by one letter each time, currently he is on w oh and the fact that he puts in his sig that he uses dos as his operating system

    I believe as AJ said above he is spoofing as he has had .com (original) .ocm and various others that make no sense. He obviousley doesn't have a life as he is regestering every few hours at all times of the day So as soon as he is seen to be registering he is being banned.
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  12. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,190
    296
    319
    Do you not need a valid email addy to sign up?
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  13. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    its not one those were you need to verify yourself through an email after registering but I believe he is using multiple valid emails and ones that have been picked up as being spoofed.
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  14. Sparky
    Highly Decorated Member Award

    Sparky Zettabyte Poster Moderator

    10,190
    296
    319
    Could always stop people signing up for a few days and see what happens...
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) Security+ Network+ A+
    WIP: Exchange 2007\2010
  15. AJ

    AJ Administrator Administrator

    6,771
    102
    221
    TBH it sounds more like a bot attack than an individual.
     
    Certifications: MCSE, MCSA (messaging), ITIL Foundation v3
    WIP: Looking at doing ..................
  16. greenbrucelee
    Highly Decorated Member Award

    greenbrucelee Zettabyte Poster

    14,283
    254
    329
    he is actually replying to threads if he gets on though and revisiting his old threads were his posts have been deleted and posting the exact same replies/statements.
     
    Certifications: A+, N+, MCDST, Security+, 70-270
    WIP: 70-620 or 70-680?
  17. Theprof

    Theprof Petabyte Poster Forum Leader

    4,570
    68
    196
    That is some serious Troll!
     
    Certifications: A+ | CCA | CCAA | Network+ | MCDST | MCSA | MCP (270, 271, 272, 290, 291) | MCTS (70-662, 70-663) | MCITP:EMA | VCA-DCV/Cloud/WM | VTSP | VCP5-DT | VCP5-DCV
    WIP: VCAP5-DCA/DCD | EMCCA
  18. gosh1976

    gosh1976 Kilobyte Poster

    337
    18
    35
    Most message boards should have settings that could cut down on the guys ability to get registered and post. Most places would be able to set it so registering members have to be validated by an admin. Just keep a log of the IP addresses, user-names, and email addresses he's been using. If it looks like the guy then don't validate him. The admin could set it so new members must have their posts pre-approved. Give the guy a few more hoops to jump through and he'll probably give up.
     
    Last edited: Sep 23, 2010
    Certifications: A+, Net+, MCDST, CCENT, MCTS: Win 7 Configuring, CCNA
  19. UKDarkstar
    Honorary Member

    UKDarkstar Terabyte Poster

    3,477
    121
    184
    Whilst that's true you have to remember that at times we get a large number of new members joining and you're creating a lot of work for mods.

    As AJ said, probably a bot doing the registrations and maybe a human coming along afterwards when they get a valid registration.

    vBulletin has a range of options for banning and checking new registrations but as it a very popular piece of software there will always be those that single it out for attacks. I run a gamers site on vBulletin and when we added a games arcade we just got flooded with bots registering so the humans could then come along and rack up high scores. Very annoying for the legit forum members. We just introduced more and more stringent joing procedures but it's a real pain to have to do it.
     
    Certifications: BA (Hons), MBCS, CITP, MInstLM, ITIL v3 Fdn, PTLLS, CELTA
    WIP: CMALT (about to submit), DTLLS (on hold until 2012)

Share This Page

Loading...