NeoMallers downtimes

4 posts / 0 new
Last post
saudor
saudor's picture
Offline
Last seen: 16 hours 11 min ago
Joined: 10/06/2007 - 12:30pm
NeoMallers downtimes
Hello all! Some news on the downtime.. Our server was recently under an "attack" from 98.122.23.114. (http://whois.domaintools.com/98.122.23.114) Initial scans of our logs show that no permanent damage was done and it was more of a spam via Private Message as well as searching for vulnerabilities in our code. All the spam within the PM system have been deleted. Our restrictions on new accounts have been increased significantly and remains in reduced functionality for 30 days. (These restrictions can also be manually lifted by NeoMallers Staff if they are found to be legit users) On another note, our fourth security layer is nearly complete and we will be rolling it out soon.
desperately_yours
desperately_yours's picture
Offline
Last seen: 9 years 4 months ago
Joined: 23/11/2007 - 9:31am
Keep up the good work Dmitri. Remember if you need anything I got your back my friend. Chad
525,600 Minutes http://www.neopets.com/browseshop.phtml?owner=desperately_yours&misc
mizleah
mizleah's picture
Offline
Last seen: 7 years 7 months ago
Joined: 17/08/2009 - 7:48am
thanks dmitri! :O also fancy new avatar~
saudor
saudor's picture
Offline
Last seen: 16 hours 11 min ago
Joined: 10/06/2007 - 12:30pm
Thanks! It's a sloppy first attempt at illustration haha The restrictions are now in place and it is now impossible to post anywhere for the first 12 hours. We'll add a neopets main account verification process here as well. (Basically slip an image linking to neomallers on the userlookup, neomallers will verify it and voila) Obviously there will be more to it than that but should deter most attacks in this manner.. at least within the first 12 hours. If i find that it works well, i'll bump it up even more. All content within the first 30 days of registration is passed through to a third party anti spam service (remember the new verified-veteran status?) It's gets a bit annoying as it's a double CAPTCHA test.. and i found alot of legit posts by users got flagged (especially those with a lot of links) However, it's now been tweaked so it should be working as it should with a fairly easy to answer test. After 30 days, everything returns to normal. Thoughts? Ideas?
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more