As I've said a couple of times now, I'm rewriting BadBehavior to be more object oriented, maybe fix some bugs, and add tests. Big thing is I want it to be cleaner code.
https://github.com/joshuaadickerson/BadBehavior
It would be incredibly helpful if people could post their BadBehavior log and especially helpful if I could get the access log entry (including IP, user agent, a request string) for any SPAM that gets through BB. It would be way too much to log headers but that would be awesome. Maybe I'll setup a honeypot forum for that.
I can provide any info you need if this can help, but how do I export my log? From phpmyadmin?
PM me your email address and I'll send it
Yeah, just dump the table.
Hmm... do we require a cookie to be logged in or can it be done just by rewriting the session string on the links?
Reason I ask is because if we create a cookie and then check for that cookie, on POST, that is an easy way of stopping bots. I think most bots don't allow cookies to be saved.
I am thinking about writing some scrapers and "bots" to test people's strategies.
Hmm, you might actually want to update the core of that, it got updated as well and can surely save some work.
Thanks. The only thing that I don't have that the download has is all of the extraneous plugin stuff. All of that will be stripped out and put in its own repo at some point after I get it working and get composer setup properly. At that point, it will be found in my repos as [joshuaadickerson/] BadBehavior-ElkArte, BadBehavior-Wordpress, BadBehavior-Mediawiki so plugins can be maintained on their own.
That's amazing stuff, nice!
@radu81 I sent you a PM with my email. If you sent me the dump already it might have gone to SPAM. Let me know what email address you're sending from if so.
I replied yesterday, as soon as I got your email address. My email is radu*****com. Should I resend the email?
I just sent you an email. If you get it, it might be easier to just reply to it so it gets passed the SPAM filters.
That's very strange, I did not receive it :( I sent you a PM
Looking at a couple of logs, it appears http:BL is very valuable. It stops a lot of spammers and scrapers.
could engine like this be integrated to this addon
http://kitploit.blogspot.mk/2015/01/sysmon-v20-system-activity-monitor-for.html
Not related.
Thanks Joshua I was curious whether I can have such overview of the code while on the server, just to have clue what is happening if there few system administrators
to ask again, I'll need something like badbehavior log for any change of code by any of the present administrators on the server, is it possible BadBehavior to monitor all the engine changes and send allerts for any by email to the registered sys admins?
I have no clue even how BB works as I havent instaled yet ElkArte, but trying to figure out when I'll ask some friends to help about the coding or administration, how to monitor their changes as sys admins, who did what and when i.e. it would be awesome if there is email alert for any change on this level for those that are part of the sys crew ...
I am not sure what other third party app can be at hand for this, as I can grasp this should be some pipeline in this direction ... am I wrong?
https://nxlog.co/using-nxlog-elasticsearch-and-kibana
Again, it is a default feature in ElkArte. And this topic is about rewriting it. Do open your own thread for your specific issues, if any
@omBre.