stuartl/hackaday.io-spambot-hunter
Archived
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
This repository has been archived on 2023-07-16. You can view files and clone it, but cannot push or open issues or pull requests.
2de969742b
hackaday.io-spambot-hunter/hadsh/crawler/crawler.py
Stuart Longland 2de969742b
crawler: Flag users based on projects per minute. 
A real human can't publish many projects in a minute.  These spambots
seem to have hundreds after an hour.
2018-02-02 12:07:21 +10:00

480 lines
18 KiB
Python
Raw Blame History

import logging
import datetime
import pytz
import re
from tornado.httpclient import HTTPError
from tornado.gen import coroutine, Return
from tornado.ioloop import IOLoop
from tornado.locks import Event
from ..hadapi.hadapi import UserSortBy
from ..db.model import User, Group, Session, UserDetail, \
UserLink, Avatar, Tag, NewestUserPageRefresh
from sqlalchemy.exc import InvalidRequestError
from sqlalchemy import or_
# Patterns to look for:
CHECK_PATTERNS = (
# Hyperlink
re.compile(r'<a .*href=".*">.*</a>'),
# US-style telephone number
re.compile(r'\([0-9]+\)[ 0-9\-]+'),
# International telephone number
re.compile(r'\+[0-9]+[ 0-9\-]+'),
# Hybrid telephone (US/International)
re.compile(r'\+[0-9]+ *\([0-9]+\)[ 0-9\-]+'),
)
class InvalidUser(ValueError):
pass
class Crawler(object):
def __init__(self, project_id, db, api, client, log, io_loop=None):
self._project_id = project_id
self._log = log
self._db = db
self._api = api
self._client = client
# Oldest page refreshed
oldest_page = \
self._db.query(NewestUserPageRefresh).order_by(\
NewestUserPageRefresh.page_num.desc()).first()
if oldest_page is None:
# No pages fetched, start at the first page.
self._refresh_hist_page = 1
else:
# Go back 10 pages from that in case things have moved on.
self._refresh_hist_page = max([1, oldest_page.page_num - 10])
if io_loop is None:
io_loop = IOLoop.current()
self._io_loop = io_loop
# Some standard groups
self._admin = self._get_or_make_group('admin')
self._auto_suspect = self._get_or_make_group('auto_suspect')
self._auto_legit = self._get_or_make_group('auto_legit')
self._manual_suspect = self._get_or_make_group('suspect')
self._manual_legit = self._get_or_make_group('legit')
self._refresh_admin_group_timeout = None
self._io_loop.add_callback(self.refresh_admin_group)
self._io_loop.add_timeout(
self._io_loop.time() + 60,
self._background_fetch_new_users)
self._io_loop.add_timeout(
self._io_loop.time() + 5,
self._background_fetch_hist_users)
self._io_loop.add_timeout(
self._io_loop.time() + 300.0,
self._background_update_users)
# Event to indicate when new users have been added
self.new_user_event = Event()
def _get_or_make_group(self, name):
group = self._db.query(Group).filter(
Group.name == name).first()
if group is None:
group = Group(name=name)
self._db.add(group)
self._db.commit()
return group
@coroutine
def refresh_admin_group(self):
"""
Refresh the membership of the admin group.
"""
if self._refresh_admin_group_timeout is not None:
self._io_loop.remove_timeout(self._refresh_admin_group_timeout)
members_data = []
page = 1
page_cnt = 1
while page <= page_cnt:
team_data = yield self._api.get_project_team(
self._project_id, sortby=UserSortBy.influence,
page=page, per_page=50)
members_data.extend(team_data['team'])
page += 1
page_cnt = team_data['last_page']
members = {}
for member_data in members_data:
member = yield self.update_user_from_data(
member_data['user'],
inspect_all=False)
members[member.user_id] = member
# Current members in database
existing = set([m.user_id for m in self._admin.users])
# Add any new members
for user_id in (set(members.keys()) - existing):
self._log.debug('Adding user ID %d to admin group', user_id)
self._admin.users.append(members[user_id])
existing.add(user_id)
# Remove any old members
for user_id in (existing - set(members.keys())):
self._log.debug('Removing user ID %d from admin group', user_id)
self._admin.users.remove(
self._db.query(User).get(user_id))
self._db.commit()
# Schedule this to run again tomorrow.
self._refresh_admin_group_timeout = self._io_loop.add_timeout(
self._io_loop.time() + 86400.0,
self.refresh_admin_group)
def get_avatar(self, avatar_url):
avatar = self._db.query(Avatar).filter(
Avatar.url==avatar_url).first()
if avatar is None:
avatar = Avatar(url=avatar_url,
avatar_type='',
avatar=b'')
self._db.add(avatar)
self._db.commit()
return avatar
@coroutine
def fetch_avatar(self, avatar):
# Do we have their avatar on file?
if isinstance(avatar, str):
avatar = self.get_avatar(avatar)
if not avatar.avatar_type:
# We don't have the avatar yet
self._log.debug('Retrieving avatar at %s',
avatar.url)
avatar_res = yield self._client.fetch(
avatar.url)
avatar.avatar_type = avatar_res.headers['Content-Type']
avatar.avatar=avatar_res.body
self._db.commit()
raise Return(avatar)
@coroutine
def _inspect_user(self, user_data, user=None):
"""
Inspect the user, see if they're worth investigating.
"""
try:
if user is None:
user = self._db.query(User).get(user_data['id'])
# Has the user been classified?
user_groups = set([g.name for g in user.groups])
classified = ('legit' in user_groups) or ('suspect' in user_groups)
self._log.debug('User %s [#%d] is in groups %s (classified %s)',
user.screen_name, user.user_id, user_groups, classified)
# Is the link valid?
try:
result = yield self._client.fetch(
user.url, method='HEAD')
except HTTPError as e:
if e.code != 404:
raise
self._log.info('Link to user %s [#%d] no longer valid',
user.screen_name, user.user_id)
try:
self._db.delete(user)
self._db.commit()
except InvalidRequestError:
# Possible if the object hasn't yet been committed yet.
self._db.expunge(user)
pass
raise InvalidUser('no longer valid')
if user.last_update is not None:
age = datetime.datetime.now(tz=pytz.utc) - user.last_update;
if age.total_seconds() < 300:
return
# Does the user have any hyperlinks or other patterns in their
# profile?
self._log.debug('Inspecting user %s [#%d]',
user_data['screen_name'], user_data['id'])
match = False
for pattern in CHECK_PATTERNS:
if match:
break
for field in ('about_me', 'who_am_i', 'location',
'what_i_would_like_to_do'):
pmatch = pattern.search(user_data[field])
if pmatch:
self._log.info('Found match for %s (%r) in '\
'%s of %s [#%d]',
pattern.pattern, pmatch.group(0), field,
user_data['screen_name'], user_data['id'])
match = True
break
# Does the user have any hyperlinks? Not an indicator that they're
# a spammer, just one of the traits.
pg_idx = 1
pg_cnt = 1 # Don't know how many right now, but let's start here
while pg_idx <= pg_cnt:
link_res = yield self._api.get_user_links(user.user_id,
page=pg_idx, per_page=50)
if link_res['links'] == 0:
# No links, yes sometimes it's an integer.
break
try:
for link in link_res['links']:
# Do we have the link already?
l = self._db.query(UserLink).filter(
UserLink.user_id==user.user_id,
UserLink.url==link['url']).first()
if l is None:
# Record the link
self._log.info('User %s [#%d] has link to %s <%s>',
user_data['screen_name'], user_data['id'],
link['title'], link['url'])
l = UserLink(user_id=user.user_id,
title=link['title'],
url=link['url'])
self._db.add(l)
else:
l.title = link['title']
# Ignore the link if it's from twitter, Google+ or github
match = match or (link['type'] \
not in ('twitter','github','google'))
except:
self._log.error('Failed to process link result %r', link_res)
raise
pg_cnt = link_res['last_page']
# Next page
pg_idx = link_res['page'] + 1
# Does the user have a lot of projects in a short time?
age = (datetime.datetime.now(tz=pytz.utc) - user.created).total_seconds()
if (age > 300.0) and ((user_data['projects'] / 60.0) > 5):
# More than 5 projects a minute on average.
self._log.debug('User %s [#%d] has %d projects in %d seconds',
user.screen_name, user.user_id, user_data['projects'], age)
match = True
# Record the user information
detail = self._db.query(UserDetail).get(user_data['id'])
if detail is None:
detail = UserDetail(
user_id=user_data['id'],
about_me=user_data['about_me'],
who_am_i=user_data['who_am_i'],
location=user_data['location'],
projects=user_data['projects'],
what_i_would_like_to_do=\
user_data['what_i_would_like_to_do'])
self._db.add(detail)
else:
detail.about_me = user_data['about_me']
detail.who_am_i = user_data['who_am_i']
detail.projects = user_data['projects']
detail.location = user_data['location']
detail.what_i_would_like_to_do = \
user_data['what_i_would_like_to_do']
if match:
# Auto-Flag the user as "suspect"
if not classified:
self._log.debug('Auto-classifying %s [#%d] as suspect',
user.screen_name, user.user_id)
self._auto_suspect.users.append(user)
elif not classified:
# Auto-Flag the user as "legit"
self._log.debug('Auto-classifying %s [#%d] as legitmate',
user.screen_name, user.user_id)
self._auto_legit.users.append(user)
except:
self._log.error('Failed to process user data %r', user_data)
raise
@coroutine
def update_user_from_data(self, user_data, inspect_all=True):
"""
Update a user in the database from data retrieved via the API.
"""
avatar = self.get_avatar(user_data['image_url'])
# Look up the user in the database
user = self._db.query(User).get(user_data['id'])
if user is None:
# New user
user = User(user_id=user_data['id'],
screen_name=user_data['screen_name'],
url=user_data['url'],
avatar_id=avatar.avatar_id,
created=datetime.datetime.fromtimestamp(
user_data['created'], tz=pytz.utc))
self._db.add(user)
self.new_user_event.set()
else:
# Existing user, update the user details
user.screen_name = user_data['screen_name']
user.avatar_id=avatar.avatar_id
user.url = user_data['url']
if user.created is None:
user.created = datetime.datetime.fromtimestamp(
user_data['created'], tz=pytz.utc)
# Inspect the user
if inspect_all or (user.last_update is None):
yield self._inspect_user(user_data, user=user)
user.last_update = datetime.datetime.now(tz=pytz.utc)
self._db.commit()
raise Return(user)
@coroutine
def _background_update_users(self):
"""
Fetch some users from the database and update them if not yet classified.
"""
if not self._api.is_forbidden:
try:
update_time = datetime.datetime.now(tz=pytz.utc) \
- datetime.timedelta(days=1)
to_update = self._db.query(User).filter(or_(\
User.created == None,
User.last_update < update_time)).order_by(\
User.last_update).all()
# Fetch the user data for these users
ids = [u.user_id for u in to_update[:50]]
response_data = yield self._api.get_users(ids=ids)
for user_data in response_data['users']:
yield self._inspect_user(user_data)
except InvalidRequestError:
# SQL cock up, roll back.
self._db.rollback()
self._log.exception('Failed to update existing users'\
': database rolled back')
except:
self._log.exception('Failed to update existing users')
self._io_loop.add_timeout(
self._io_loop.time() + 300.0,
self._background_update_users)
@coroutine
def _background_fetch_new_users(self):
"""
Try to retrieve users newer than our current set.
"""
if not self._api.is_forbidden:
try:
newest = self._db.query(User).order_by(User.user_id.desc()).first()
start = newest.user_id + 1
end = start + 50
user_data = yield self._api.get_users(ids=slice(start, end),
per_page=50)
if isinstance(user_data['users'], list):
for this_user_data in user_data['users']:
try:
user = yield self.update_user_from_data(
this_user_data, inspect_all=True)
except InvalidUser:
continue
except InvalidRequestError:
# SQL cock up, roll back.
self._db.rollback()
self._log.exception('Failed to retrieve newer users'\
': database rolled back')
except:
self._log.exception('Failed to retrieve newer users')
self._io_loop.add_timeout(
self._io_loop.time() + 300.0,
self._background_fetch_new_users)
@coroutine
def _background_fetch_hist_users(self):
"""
Try to retrieve users registered earlier.
"""
if not self._api.is_forbidden:
try:
yield self.fetch_new_users(page=self._refresh_hist_page)
self._refresh_hist_page += 1
except InvalidRequestError:
# SQL cock up, roll back.
self._db.rollback()
self._log.exception('Failed to retrieve older users'\
': database rolled back')
except:
self._log.exception('Failed to retrieve older users')
self._io_loop.add_timeout(
self._io_loop.time() + 5,
self._background_fetch_hist_users)
@coroutine
def fetch_new_users(self, page=1, inspect_all=False):
"""
Retrieve new users from the Hackaday.io API and inspect the new arrivals.
Returns the list of users on the given page and the total number of pages.
"""
users = []
while len(users) < 10:
now = datetime.datetime.now(tz=pytz.utc)
if page > 1:
last_refresh = self._db.query(NewestUserPageRefresh).get(page)
if (last_refresh is not None) and \
((now - last_refresh.refresh_date).total_seconds() \
< 86400.0):
# Skip this page for now
page += 1
continue
new_user_data = yield self._api.get_users(sortby=UserSortBy.newest,
page=page, per_page=50)
if page > 1:
if last_refresh is None:
last_refresh = NewestUserPageRefresh(
page_num=page,
refresh_date=now)
self._db.add(last_refresh)
else:
last_refresh.refresh_date = now
self._db.commit()
for user_data in new_user_data['users']:
try:
user = yield self.update_user_from_data(
user_data, inspect_all)
except InvalidUser:
continue
# See if the user has been manually classified or not
user_groups = set([g.name for g in user.groups])
if (self._manual_suspect.name in user_groups) or \
(self._manual_legit.name in user_groups):
self._log.debug('Skipping user %s due to group membership %s',
user.screen_name, user_groups)
continue
users.append(user)
page += 1
raise Return((users, page, new_user_data.get('last_page')))
Reference in New Issue View Git Blame Copy Permalink