Skip to content

Formulaire d'inscription : renforcer l'anti-spam (interdire la réutilisation de token dès la 1er detection)

il faut invalider tous les tokens dès qu'un comportement non conforme est détecté, pour éviter que l'utilisation d'un token déjà créé soit possible et que le formulaire soit envoyé après le délai minimum. Les robots spammeurs pratiquent le retry !

Ici, le token 4aed914474fb4b34615b0731-4a55e78dd4d92c190016be9f est utilisé 2 fois et la deuxième fois c'est fait après le délais minimum qui aurait pu invalider cette inscription.

110.39... - - [24/Mar/2021:06:32:43 +0100] "GET /en/users/add HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:44 +0100] "GET /en/users/add?t1=4aed914474fb4b34615b0731-074e8a3aa89e0375f489575a HTTP/1.1" 200 3615 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:46 +0100] "POST /en/users/add?t2=4aed914474fb4b34615b0731-4a55e78dd4d92c190016be9f HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:47 +0100] "GET /en/users/add?t1=867ab8b23c9a7374f2f6a762-965aea53f4eeb972871c1799 HTTP/1.1" 200 3616 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:01 +0100] "POST /en/users/add?t2=4aed914474fb4b34615b0731-4a55e78dd4d92c190016be9f HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:02 +0100] "GET /en/users/3137 HTTP/1.1" 200 3738 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"

Log complet

à noter que les spammeurs actuels semble utiliser toujours le même pattern de navigation. Le seul point qui diffère, c'est la temporisation des requêtes HTTP qui dans le cas où elle est plus importante permet la création d'un nouvel utilisateur.

110.39... - - [24/Mar/2021:06:32:08 +0100] "GET / HTTP/1.1" 301 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:12 +0100] "GET /en/ HTTP/1.1" 200 4387 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:41 +0100] "GET /en/users/providers HTTP/1.1" 200 11126 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:42 +0100] "GET /en/users/57 HTTP/1.1" 200 4576 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:42 +0100] "GET /en/users/57 HTTP/1.1" 200 4576 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:43 +0100] "GET /en/users/57 HTTP/1.1" 200 4576 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:43 +0100] "GET /en/users/add HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:44 +0100] "GET /en/users/add?t1=4aed914474fb4b34615b0731-074e8a3aa89e0375f489575a HTTP/1.1" 200 3615 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:46 +0100] "POST /en/users/add?t2=4aed914474fb4b34615b0731-4a55e78dd4d92c190016be9f HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:32:47 +0100] "GET /en/users/add?t1=867ab8b23c9a7374f2f6a762-965aea53f4eeb972871c1799 HTTP/1.1" 200 3616 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:01 +0100] "POST /en/users/add?t2=4aed914474fb4b34615b0731-4a55e78dd4d92c190016be9f HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:02 +0100] "GET /en/users/3137 HTTP/1.1" 200 3738 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:04 +0100] "GET /en/users/login HTTP/1.1" 200 3269 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:05 +0100] "POST /en/users/login HTTP/1.1" 200 3367 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:05 +0100] "POST /en/users/login HTTP/1.1" 200 3362 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:06 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:07 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:08 +0100] "GET /en/users/edit/3137 HTTP/1.1" 200 3640 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:09 +0100] "POST /en/users/edit/3137 HTTP/1.1" 500 10344 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:11 +0100] "POST /en/users/edit/3137 HTTP/1.1" 500 10346 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:14 +0100] "GET /en/softwares?order=created.desc HTTP/1.1" 200 43715 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:17 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:18 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:19 +0100] "GET /en/users/edit/3137 HTTP/1.1" 200 3640 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:19 +0100] "GET /en/pages/accessibility HTTP/1.1" 200 3119 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:20 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:21 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:21 +0100] "GET /en/users/edit/3137 HTTP/1.1" 200 3640 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:22 +0100] "GET /en/pages/contact HTTP/1.1" 200 3205 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:24 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:25 +0100] "GET /en/users/3137 HTTP/1.1" 200 3629 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"
110.39... - - [24/Mar/2021:06:33:25 +0100] "GET /en/users/edit/3137 HTTP/1.1" 200 3640 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36"