Blocking a list of Ips

  • Resolved abonawaff53

    (@snipermilan)


    4 years, 6 months ago

    Hi there,

    We are getting spam in forum submissions using valid emails of random people. Our forum sends an automatic “thank you” email. This means we are sending emails to random people which can hurt our rep with email providers.

    A quick search of the IPs led me here: https://199.249.230.121/

    Long story short, attackers are using Tor Exist Routers and of course alternating between IPs.

    The Tor project provides a web service to fetch a list of all IP addresses of Tor exit nodes that allow exiting to a specified IP. Here is the list: https://check.torproject.org/cgi-bin/TorBulkExitList.py

    We need to block all of these IPs. I can’t seem to find a way to do that without having to inter them one by one.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfphil

    (@wfphil)

    Hi @snipermilan

    Note that if you block TOR exit node IP addresses then you will block legitimate people that use TOR:

    https://www.wordfence.com/learn/the-tor-network-faq/#should-i-be-blocking-tor-visitors-to-my-website

    If you still want to block TOR exit node IP addresses then you will need to block all of the IP addresses individually on the Firewall >> Blocking page using the IP Address button.

    A better solution would be adding anti-spam protection such as a robust CPATCHA if your forum provider offers such a feature.

    Thread Starter abonawaff53

    (@snipermilan)

    Hi,

    Thanks for getting back to me.

    Yeah I know that. Still need to block them anyways.

    There is not a single reason why would any legitimate user visit our site from behind a TOR exit node. I doubt an oppressed Chinese journalist will have the time to be on our site shopping for “colorful shoe laces”.

    We already enabled the RECAPTCHA on all forums. However, there are still a lot of visits from those IPs and they should all be BLOCKED. They are not legitimate visitors and allowing them to add extra unnecessary load on the server is not optimal. Let alone the fact that those visits skew our Analytics data and spending the time trying to isolate them from the data will just cause more unnecessary headache.

    You guys should add the option to block IPs in bulk.

    Plugin Support wfphil

    (@wfphil)

    Hi @snipermilan

    Legitimate people do use TOR for privacy concerns.

    We have had many feature requests to block TOR exit node IP addresses over the last five years so you may possibly see this as feature in the future.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Blocking a list of Ips’ is closed to new replies.