GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   blackhole bot trap how to test (https://gfy.com/showthread.php?t=1345605)

hamiltonsteele 06-06-2021 08:34 AM
blackhole bot trap how to test
 
Hi there I just installed, or at least tried to install this on a PHPBB forum....

https://perishablepress.com/blackhole-bad-bots/


Does anyone have an idea of how I can test this out to make sure it's working?

zijlstravideo 06-06-2021 12:09 PM
"include a hidden link to a robots.txt-forbidden directory somewhere on your pages. Bots that ignore or disobey your robots rules will crawl the link and fall into the honeypot trap, which then performs a WHOIS Lookup and records the event in the blackhole data file. Once added to the blacklist data file, bad bots immediately are denied access to your site."

Can't you just install the TOR browser, and visit your "hidden page/link" directly yourself? Then your TOR ip should become visible as being blacklisted.

You can also use curl, for example... from one of your second websites/domains (if on a different ip)

zijlstravideo 06-06-2021 12:24 PM
Dude, literally on the same page: https://perishablepress.com/blackhol...ckhole-testing

hamiltonsteele 06-06-2021 01:13 PM
Quote:
Originally Posted by zijlstravideo (Post 22869925)
Sorry if I wasn't clear but my goal was to check that the invisible link was truly there for bots.

sarettah 06-06-2021 01:29 PM
Quote:
Originally Posted by hamiltonsteele (Post 22869951)
Sorry if I wasn't clear but my goal was to check that the invisible link was truly there for bots.
Look at your page source. You should be able to see the link in your code.

.

hamiltonsteele 06-06-2021 02:36 PM
Alright not sure if I'm an idiot and missed a step but blackhole is logging the IP's that visit the trap... but it doesn't seem to actually be banning them.

zijlstravideo 06-06-2021 03:19 PM
Quote:
Originally Posted by hamiltonsteele (Post 22869996)
Alright not sure if I'm an idiot and missed a step but blackhole is logging the IP's that visit the trap... but it doesn't seem to actually be banning them.
If you visit yourdomainhere.com/blackhole/ twice, you still have access? It works for the demo.

If you can't access that, but still can access your site, you probably missed the step of including the /blackhole/index.php file into your site's header.

zijlstravideo 06-06-2021 03:37 PM
Also, from what I could tell from the website - the script only checks for the user agent, and since Googlebot and such are whitelisted, any bot can easily spoof and use any of the whitelisted botnames on the list to bypass it.

Might get rid of some bots, but it isn't exactly bullet proof.

hamiltonsteele 06-07-2021 02:51 AM
Quote:
Originally Posted by zijlstravideo (Post 22870028)
If you visit yourdomainhere.com/blackhole/ twice, you still have access? It works for the demo.

If you can't access that, but still can access your site, you probably missed the step of including the /blackhole/index.php file into your site's header.
Yeah that much is working... I'm guessing adding
<?php include(realpath(getenv('DOCUMENT_ROOT')) . '/blackhole/index.php'); ?>

To a phpbb theme's overall header just doesn't do the trick...

zijlstravideo 06-07-2021 03:42 AM
And if you add it all the way at the top... at the first line?

hamiltonsteele 06-07-2021 04:46 AM
Quote:
Originally Posted by zijlstravideo (Post 22870183)
And if you add it all the way at the top... at the first line?
Tried that, sadly didn't make a difference.

zijlstravideo 06-07-2021 05:23 AM
And when you add it to the first line of app.php?

hamiltonsteele 06-07-2021 05:48 AM
Quote:
Originally Posted by zijlstravideo (Post 22870202)
And when you add it to the first line of app.php?
didn't even know that was a thing but still no luck.


All times are GMT -7. The time now is 11:15 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123