SMALL WARS COUNCIL
Go Back   Small Wars Council > The Small Wars Community of Interest > Small Wars Council / Journal

Small Wars Council / Journal Suggestions. Praise. New developments. Complaints. Praise. Tips & Tricks. More praise.

Closed Thread
 
Thread Tools Display Modes
Old 01-12-2010   #1
Infanteer
Council Member
 
Infanteer's Avatar
 
Join Date: Jul 2009
Location: Canada
Posts: 347
Default Blog Spammed

Looks like the blogs were spammed by some company selling "Uggs" and will require a bit of cleanup. If the deal is right, I may get some uggs for my daughter before you take the posts down....

Infanteer
Infanteer is offline  
Old 01-12-2010   #2
Schmedlap
Council Member
 
Join Date: Oct 2007
Posts: 1,444
Default

I'm boycotting.
Schmedlap is offline  
Old 01-16-2010   #3
SWJED
Small Wars Journal
 
SWJED's Avatar
 
Join Date: Sep 2005
Location: Largo, Florida
Posts: 3,988
Default

Yep. Every morning like clockwork the ugg spammers show up and I delete their comments.
__________________
Small Wars Journal
SWJED is offline  
Old 01-16-2010   #4
Schmedlap
Council Member
 
Join Date: Oct 2007
Posts: 1,444
Default

Is there a way to deny posts from certain IP addresses or deny certain URLs from being posted?
Schmedlap is offline  
Old 01-17-2010   #5
marct
Council Member
 
marct's Avatar
 
Join Date: Aug 2006
Location: Ottawa, Canada
Posts: 3,682
Default

Quote:
Originally Posted by Schmedlap View Post
Is there a way to deny posts from certain IP addresses or deny certain URLs from being posted?
There are several ways to do it, but none are 100% effective. I'm using one of the better ones on my own blog which stops about 150-200 spams a day, but I still have to manually delete 2-6 per day.
__________________
Sic Bisquitus Disintegrat...
Marc W.D. Tyrrell, Ph.D.
Institute of Interdisciplinary Studies,
Senior Research Fellow,
The Canadian Centre for Intelligence and Security Studies, NPSIA
Carleton University
http://marctyrrell.com/
marct is offline  
Old 01-17-2010   #6
SWJED
Small Wars Journal
 
SWJED's Avatar
 
Join Date: Sep 2005
Location: Largo, Florida
Posts: 3,988
Default

Right now it is manageable - we are down to about 20 or so a week and it isn't hard for me to have them deleted in a relatively short period of time.
__________________
Small Wars Journal
SWJED is offline  
Old 01-17-2010   #7
William F. Owen
Council Member
 
William F. Owen's Avatar
 
Join Date: Dec 2007
Location: The State of Partachia, at the eastern end of the Mediterranean
Posts: 3,947
Default

I keep getting spammed by people offering to enlarge my penis. Quite frankly, if anyone comes across anyone offering reduction, please let me know....

Eyh.... I kill me!
__________________
Infinity Journal "I don't care if this works in practice. I want to see it work in theory!"

- The job of the British Army out here is to kill or capture Communist Terrorists in Malaya.
- If we can double the ratio of kills per contact, we will soon put an end to the shooting in Malaya.
Sir Gerald Templer, foreword to the "Conduct of Anti-Terrorist Operations in Malaya," 1958 Edition
William F. Owen is offline  
Old 01-17-2010   #8
Schmedlap
Council Member
 
Join Date: Oct 2007
Posts: 1,444
Default

Quote:
Originally Posted by marct View Post
There are several ways to do it, but none are 100% effective. I'm using one of the better ones on my own blog which stops about 150-200 spams a day, but I still have to manually delete 2-6 per day.
I've had good success with the following...

1) It's probably not ideal for SWJ, but to reduce my "cyber footprint" for spam searchers, I set my robots.txt file to...

Quote:
User-Agent: *
Disallow: /
I still show up first in any Google search for "Schmedlap" (a common search term, I'm sure!). But, I don't think most people have much luck in searching my site for content (what little there is). Works for me because I don't need the site to generate revenue because my expenses are cheap.

2) My code is written by me. Being an amateur, it is surely convoluted. I have seen strings of literally hundreds of log files where spammers (most likely from foreign countries) clearly were not reading the instructions and couldn't figure out how to post their spam (hint: check the box that says "submit without previewing"!)

3) I only allow a few specific HTML tags. Surprisingly, even after I permitted the anchor tag, most of the spammers tried some other goofy syntax to link to their (DVDs/footwear/porn/malware/etc) and it merely posted as plain text (after they made several go arounds with my convoluted code). They were quickly discouraged and stopped after two spam posts.

Good point on the IP address. The two spam posts that got through were identical, but one was from China and the other from Argentina, so I'm guessing they were masking/impersonating IP addresses.

Thus far, I've had only two spam posts, but many hundreds of attempts. And that's without asking for anyone's email address or requiring anyone to register. I teh rulz!
Schmedlap is offline  
Old 01-18-2010   #9
Schmedlap
Council Member
 
Join Date: Oct 2007
Posts: 1,444
Default

Okay, some wise guy just read my last comment.
Schmedlap is offline  
Old 02-08-2010   #10
SWCAdmin
Groundskeeping Dept.
 
SWCAdmin's Avatar
 
Join Date: Sep 2005
Location: DC area pogue.
Posts: 1,841
Default

Late to this thread, and strictly amateur myself, but on the basis of advice from others smarter our system picks up a lot. FYI:

  • We have a decent long list of denys in .htaccess
  • Robots.txt is nice but only responsible robots read it
  • God only knows how much those two deny
  • 1,000+ crap comments a day leak through those two above on the Blog, etc.. Looking at the logs, rarely < 1/min. Most of those are throttled by basic measures before they even get to the junk-o-lator, which then picks up most of the rest. Some of which are ID'd by repeat offender IP. Still a handful of comments need manual intervention.
  • Things are a lot tighter on SWC, but still some leakers. We are blessed with some very active moderators here in the forums.

Any more serious lock-down winds up locking out responsible users. Like our old foray with TypeKey. We still need to update a lot, but we plod along in a semi-functional way. C'est la e-vie.
SWCAdmin is offline  
Old 02-08-2010   #11
selil
i pwnd ur ooda loop
 
selil's Avatar
 
Join Date: Sep 2006
Location: Belly of the beast
Posts: 2,112
Default

Quote:
Originally Posted by SWCAdmin View Post
Any more serious lock-down winds up locking out responsible users. Like our old foray with TypeKey. We still need to update a lot, but we plod along in a semi-functional way. C'est la e-vie.
Once again you got it one. I'm putting you in for the vBulletin spam sniper award. Multiple levels of captcha's, IP deny tools (I've got one list with 100K spam bot IP's), and much more get pretty much all of it. You've likely hit the perfect balance between user lock out and spam lock out. The difference between usability and security being not such a nice and easy place to find you've all done pretty well. One of the forums I was helping was getting 30 to 40 porn spams a day. We implemented all of the protection measures and stopped it dead. Then the forum owner got sad because his unique user numbers plummeted. He removed all of the protections and the forum content can be found between pictures that suggest gymnastics only possible in science fiction and promotion opportunities that can't and shouldn't be believed.
__________________
Sam Liles
Selil Blog
Don't forget to duck Secret Squirrel
The scholarship of teaching and learning results in equal hatred from latte leftists and cappuccino conservatives.
All opinions are mine and may or may not reflect those of my employer depending on the chance it might affect funding, politics, or the setting of the sun. As such these are my opinions you can get your own.
selil is offline  
Closed Thread

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Tips on Creating Building a Kinder, Gentler Jihadi Blog milnews.ca Blog Watch 8 03-21-2009 05:20 AM
Vietnam's Forgotten Lessons SWJED Training & Education 23 04-26-2006 12:50 PM


All times are GMT. The time now is 06:38 PM.


Powered by vBulletin® Version 3.8.9. ©2000 - 2017, Jelsoft Enterprises Ltd.
Registered Users are solely responsible for their messages.
Operated by, and site design 2005-2009, Small Wars Foundation