Spam shopping carts

[SLiCK_303]

Just got hit by the ole create a millions shopping carts spams, they made almost 500 carts before I blocked them (68.98.99.103). Watch out people....

[DRMasterChief]

hmmm.... as i told before..... really sad to hear this !! https://forum.thirtybees.com/topic/1568/crawler-fills-100-cart-and-leave-them-abandoned

Please, thirtybees - We NEED a solution for this !

[movieseals]

I have installed this. It does not stop them all right away but it seriously curbed the problem in our shop over time.

https://perishablepress.com/blackhole-bad-bots/

You need to download and install the script version, not the plugin (which is for wordpress). The script version works with any server and configuration.

[datakick]

@movieseals the idea behind blackhole bad bots mechanism is really very clever. It shouldn't be hard to implement this as a tb module.

[MockoB]

Now we have to find someone who knows php... do you know such person?

[movieseals]

I put the wrong link: this is the correct one for the PHP script: https://perishablepress.com/blackhole-bad-bots-php-version/

My apologies.

[SLiCK_303]

@movieseals where/how did you end up adding steps 4 and 5?

edit: however you did it, it's not working right. I should be able to goto your site: /blackhole, then it shows me that blackhole screen, then if i go back to the root of your site, it should block me. It doesn't block me, so it's not working right.

[movieseals]

I added the lines using nemo's HTML block module. But I believe there are a few free modules floating around that allow us adding lines to the header and/or the footer.

[DRMasterChief]

Step 4 seems to be a lot of manual work:

....Include the Blackhole script by adding this line to ALL of your site’s pages...... .....That line should be placed at the top of any PHP file that displays a web page (e.g., header.php).....

• really in EVERY php-file from tb ?

[Tomik]

No the header or footer is just fine :) that gets loaded every time.

[DRMasterChief]

Plz more information what this means for a thirtybees-shop (think would be helpful for other people, also for me). Can you name the files in which it must be included?

[datakick]

I'll re-wrap this blackhole functionality into tb module, so if you just wait a couple hours...

[movieseals]

I tried to upload screen grabs to show you where to put it in the HTML block module, but I apparently do not have the permission to do that.

The module is configured to allow you to put any HTML or PHP wherever on the page. So one line goes to all headers, and the other goes to all footers and you are good to go. It is really not hard and I have very little know how or technical skills in that regard.

However, if datakick turns it into a module, it will rock!, of that I am sure.

However, to be clear, it does not stop everything all the time. It curbs the robots attacks over time. It can take a few days to see the results. You will get a lot of bots at first, then it slows down. We used to have hundreds of fake carts a day, now we have a couple once every few weeks. Eventually, you catch them all and things get slowly back to normal.

Don't expect a miracle on first install. It has to do its job.

[movieseals]

@drmasterchief See my answer above. It has to be on all files. If you have an HTML module, you can tell it to put the code on the header of every page and the same for the footer. It is not hard or difficult. I wanted to add pictures but the system will not let me.

[datakick]

Here's the module. To use it, you need to

1) install it 2) edit robots.txt and add following lines User-agent: * Disallow: /blackhole/

That's it. Module will add hidden nofollow link to blackhole destination to all your frontend pages. Any well-behave bot should ignore this link (if you have correctly set up robots.txt). Bad bots will eventually open this link, and they'll immediately get banned.

You can try its functionality yourself by navigating to www.yourdomain.com/blackhole/ address. Your ip address will be added to blacklist, and you won't be able to access the site anymore.

At the moment there isn't any mechanism to remove address from blacklist - you'll need either reset module, or directly remove record from db table PREFIX_blackholebots_blacklist

• blackholebots.zip
• github link

[SLiCK_303]

Thanks for the module, I get this when uploading and again when installing the module.

[datakick]

@slick_303 yep, it's already fixed. Download new version from my previous post

[SLiCK_303]

www.yourdomain.com/blackhole/ does not exist. Do we need to create the blackhole folder? or put all the stuff from the original scripts version in it?

[datakick]

there’s no need for this dir to exist at all

[SLiCK_303]

but you said....

@datakick said in Spam shopping carts:

You can try its functionality yourself by navigating to www.yourdomain.com/blackhole/ address. Your ip address will be added to blacklist, and you won't be able to access the site anymore.

So if the folder doesnt need to be there, how do we test that it's working?

[datakick]

@slick_303 did you actually enter the url address? You can try it on my demo account.

After you install module, view source of your page to see if there's trap link:

And when you enter this url, you'll get error message.

[SLiCK_303]

I entered the addy on my site, didnt do anything except say the folder didnt exist.

[SLiCK_303]

works like a camp on your site though, I just blocked myself :smiley:

[datakick]

hmmm, it doesnt work for you because of missing slash at the end of the url. I’ve fixed this bug, download new version from previous post

[SLiCK_303]

I re-d/l the module via github, and installed it. like you said, it works if you put in the last slash, but doesnt work without it... thanks for the module! you da man