Camen Design Forum

You guys really need a Sandbox

append delete Batu

Yeah, you heard me.

Reply RSS

Replies

append delete #1. Martijn

Why do “we guys” need a sandbox? Kroc is running a forum and providing the code to it for others’ benefits, where does a sandbox come into the story?

In fact, before you came along we have never needed a captcha (which requires quite a bit of code I might add), and only attracted minimal spam.

append delete #2. batu

Well, this is now a must. I'll use this script but too lazy to add captcha :)
Sorry for ruining your forum with a super easy macro. But you see, it's very weak without spam protection.

append delete #3. Ben

But you see, it's very weak without spam protection.

Huh? Please elaborate.

Spam can make a site unusable, as you have tried to do by posting volume, but that doesn't really serve what spammers are trying to do. The goal of spam nowadays is to generate clicks and thereby income, so you get messages that are semi-relevant (or superficially vaguely in the right ball park) with links that the spammer hopes will be followed through on. This is either automated, or done very cheaply by recruiting labour that charges tiny amounts per site with a post.

Captchas help prevent automated messages, but don't do much to prevent the cheap labour kind.

As you can see from the absence of the automated kind of spam, there isn't really a need for a captcha here. There's not much to be done to stop the cheap labour folk other than make it sufficiently awkward to register that they don't bother with your site. But that would be contrary to the goal of a "No-Nonsense Forum", don't you think?

So, in brief, if you want to be an ass it is dead simple to be one on this message board. But it's not that hard to be one on any message board, and why on earth is that the person you want to be?

append delete #4. José Pedro Arvela

Just because there is no visible captcha it doesn't mean there isn't one.

It might not prevent userscripts running in the browser, but it is indeed effective at preventing actual bots in the wild from posting.

The goal of NNF isn't to deal with huge scale traffic in which you need a specialized forum software with all gadgets and gizmos as well as a dedicated 24-hour moderation team working on it to make sure there is no spam.

Its goal is to provide a lightweight alternative that works just fine for smaller scale or even closed communities which just need a 30 seconds deploy on a quick place so they can have somewhere where to do their stuff.

At the former, NNF isn't an option, neither it was made to be an option, it's out of NNF's goals. At the latter, NNF excels at, and a captcha hardly necessary for those use cases.

---

Still, if it is that big of a deal for you, all of the code is available at github, and you're more than free to make a fork with captchas.

append delete #5. Martijn

Sorry for ruining your forum with a super easy macro.

Nothing is ruined. Kroc can open his FTP client, select your RSS files, and with one hit of the delete button it is all gone. It is just that life has caught up with him and he can’t moderate very effectively at the moment. I could remove all the posts using the moderator tools, but I can’t be bothered to invest the time to do it one-by-one (there is a outstanding issue for this [1]) or write a macro.

But you see, it's very weak without spam protection.

But there is spam protection. Several layers in fact. They block a multitude of bots and auto-submitters while staying out of the way of actual browsers. What the forum is lacking is flood control (or flood protection to stick with your words). This might be a legitimate issue. It is already blocking you from making the same reply over and over again, but apparently not blocking you from making the same post over and over again. This might be worth looking into.

Sometimes this forum gets spam. Single messages here and there. A lot of the times a moderator is able to catch them and remove them before anyone is any the wiser. I subscribe to this forum’s main feed and as soon as I see such a message I jump over to remove it. Sometimes it is already gone by the time I get here. For small communities with serious moderators this solves near all problems with spam.

---

[1]: https://github.com/Kroc/NoNonsenseForum/issues/150

append delete #6. Kroc

I'm pleased that everybody here (except @Batu) understand clearly the difference between spam and rate-control. The spam-protection on this site has been nothing short of astonishing. It's been three years and the tiniest amount of spam gets through, all without a CAPTCHA.

Nothing is ruined. Kroc can open his FTP client, select your RSS files, and with one hit of the delete button it is all gone. It is just that life has caught up with him and he can’t moderate very effectively at the moment.

Indeed, deleting it is not an issue via the FTP, and I apologise for not getting to it sooner; I'm on holiday at the moment and as usual my one year old son is where my attention is at the moment.

What the forum is lacking is flood control (or flood protection to stick with your words). This might be a legitimate issue. It is already blocking you from making the same reply over and over again, but apparently not blocking you from making the same post over and over again. This might be worth looking into.

Indeed, duplicate posts should have been blocked, so I don't know what happened there. I'll chalk it up as another bug to be investigated.

Reply

(Leave this as-is, it’s a trap!)

There is no need to “register”, just enter the same name + password of your choice every time.

Pro tip: Use markup to add links, quotes and more.

Your friendly neighbourhood moderators: Kroc, Impressed, Martijn