Signup abuse detection and blocking

xF2 Add-on Signup abuse detection and blocking 1.14.2

No permission to download
  • Fix detection of per-user email links being touched by the wrong user did not generate multi-account reports
  • Like
Reactions: BattleKing
  • Require Standard Library by Xon v1.18.0+
  • Fix uninstaller leaving behind some cached data
  • Use php 7.2 typehinting in more locations
  • Add "Multi-account registration mode - specific permissions" option to trigger the "Multi-account registration mode - specific" action when the detected multi-account has been explicitly allowed/denied per-user permissions
  • Require Standard Library by Xon v1.17.0+
  • Uses standardized route building to avoid conflicts with other 3rd party add-ons
  • Add specific message in the thread view for why a user can't reply to a thread when the per-day limit has been reached
  • Like
Reactions: BattleKing
  • Require php 7.2+
  • Fix score-based option did not correctly show the hint/explain text in admincp
  • Move "Non-allowed email action" option into "Connection Profiling - Passive" group
  • Extend "Writing before registering" spam-checks to use add-on's scoring system, with defaults to moderate if the linked content is moderated or rejected (XF default)
  • Add "[SignupAbuse] Limit user to replies per day" per-forum user-froup permission
    • Limit a member (not guest!) to X replies/new-threads per-day (ie the last 24 hours)
    • 0 or -1 mean no limit
    • Does not apply to users with "Manage any thread" permission
  • When multi-account report creator validation fails, log an error to help diagnose why
  • Like
Reactions: Batfleck
  • Fix caching not occurring for external API calls if a caching provider is not setup
  • Fix "Undefined offset: 2" from ASN resolver attempting to extract a country when using non-Team Cymru/Ripe ASN providers.
  • Guard against add-ons which incorrectly implement XenForo Entities or content types when generating a list of content-types for the options;
    • Approval queue - skip click-to-shrink
    • Link Spam checker: Default action (by content type)
    This is known to affect add-ons by the Vault Wiki author who refuse to implement core XenForo functionality correctly
1.10.7 - Bugfix update
  • Fix migrating add-on multi-accounts records from XF 1.x 'alter ego detector' records
  • Fix ipregistery asn lookup support
  • Report GeoIP/ASN API errors to the XF error log and do not swallow them
1.10.6 - Bugfix update
  • Fix ipregistry.co support
  • Fix bad links to known email providers in the approval queue
  • Fix "Ban ASN" option not appearing in approval queue
  • Use ipStack/ipApi/ipregistry geo/asn providers if configured over cloudflare/Cymru
  • Fix ASN lookup for ipApi/ipregistry
  • Fix "Ban ASN" feature (ErrorException: Job XF:ApprovalQueueProcess: [E_WARNING] preg_match_all(): Unknown modifier '/')
1.10.3 - Bugfix update
  • On display of registration logs, correctly encode URLs.
    • Compatibility fix with New Registration Email add-on
1.10.2 - Feature update
  • Add php7 typehinting (partial)
  • Add short caching to DNS querys lookups for ASN resolving
  • Support using Cymru country lookup as a last ditch geoip lookup
  • Add new GeoIP lookups, most require paid accounts or limited free services
    • Add support for ipstack.com for geoip/asn service. This service requires an account for the geoip, and a paid account for the asn lookup service
    • Add support for ip-api.com for geoip/asn service. This service requires an account for the geoip, and a paid account for the asn lookup service
    • Add support for ipregistry.co for geoip/asn service. This service requires an account, with a free tier and then requiring payment
  • Update GetIpIntel "private ip" error text to indiciate this can also be due to BGP hijacking
  • In user registration log, render IP's as links to ip-lookup tool
  • In user registration log, render ASN's as links to peeringdb.com to describe the ISP/network provider
  • Support setting a per-content type default for spam link check rendering
1.9.8 - Bugfix update
  • Fix php 8.1 compatibility, with csv export
  • Fix GetIpIntel integration from being soft-disabled
  • Like
Reactions: naka
  • On user delete, ensure expensive large data recomputing only occurs once even if multiple users are deleted at once.
  • Fix running expensive data delete is full-delete for GDPR is not enabled
  • Add "Approval queue - skip click-to-shrink" option which allows individual content types to skip the XF2.2+ default click-to-shrink behaviour
  • Like
Reactions: BattleKing
Top