Is anyone running an install of phpBB (the forum software) that suffers a lot from visits by unfriendly spam bots? I look after three sites which have full installs of phpBB, all three are two subversions behind the latest release – but thats ok. Two of them don’t suffer any spam problems. One of them is just six months ‘younger’ than the spammed forum.
The spammed forum in question doesn’t allow the public read access unless you’re logged in. A user must also click a link in an activation email – you think that would at least work, but no! So I add a graphical captcha to the user registration forms (something that doesn’t exist on the other two), it is six alphanumeric characters strong, combination of uppercase, lowercase and numbers but it STILL doesn’t solve the problem.
What was a great automated feature has now meant there is an admin team manually approving registrations on a daily basis and deleting anywhere between three and ten spambot registrations a day.
Anyone ever have a similar problem?