Tons of subscribers to newsletter daily #1649
Replies: 2 comments 7 replies
-
I implemented PR #1866 in production and I use the HoneySpam extension. However, there are bots that bypass the protections. They all have the same trace bellow in the webserver access log. First time the bot gets /customer/account/login/ and based on this reference I guess it gets a formkey that allows it to use the controller.
These lines are relevant
Specifically, it comes to that "customer/account/login" page, fills in and submit the form, page is reloaded and it closes the connection. |
Beta Was this translation helpful? Give feedback.
-
Maybe we should consider bringing https://github.com/ProxiBlue/reCaptcha into core? Or as a fork that we install via composer into the release builder. |
Beta Was this translation helpful? Give feedback.
-
ORIGINAL POST FROM HERE #1287
This is a known issue in Magento. Please note there is no email subscription input text box as I removed it from the frontend template. However, there are around 50 new subscribers every day. In forums I read there are people with hundreds of subscribers daily.
I managed to collect from the webserver access log all these IP addresses with Fail2Ban filters and I banned them. In one a week there are 3200 IP addresses. Here is the format of the request in access log:
Maybe you should fix this issue once and for all in OpenMage that the Magento team didn't want to fix over the years. There are a few extensions out there that are limited to the existence of the input text box and not to such requests made directly from a script.
Blocking these requests is crucial because there is a high chance that an email server such as Yahoo will automatically block an email or IP address for a long time until the human operator can remove it. Although it seems harmless at first glance, in time it can lead to a lack of communication with customers if the store's messages are considered SPAM.
Beta Was this translation helpful? Give feedback.
All reactions