Bah.. there is someone, right this very moment, posting a tonne of casino spam in the news comments. I've had to go through and delete 20 or so of his posts already, be he keeps on posting new ones. If he had half a brain, he'd see that the anchor tags in links posted in user comments have the rel=nofollow attribute, so all the effort he is putting in to increase his website search rankings isn't going to work. >:(
If you see any obvious link spamming in the comments, please do click the "comment abuse" button..
Got home late last night, spent till 5am cleaning up all the comments from spam and putting in some measures that stopped the casino spam, wake up today and find a tonne more spam pimping a new site.
>:(
You know, I may have to implement users to authenticate themselves before they post. :/.. Or confirming letters from a graphic or something stupid like that.
You mean you don't have it that users need to authenticate themselves before they post? Bah Souri, that should've been like the first thing. It means that the spammers have to register on your site first and then they can post their spam... That would also make it easier to control as you could just delete their accounts etc.
I added IP filtering that morning, but that spammer had a different IP for every spam he posted, so it was useless. Anyway, what I've put in since has stopped them completely, so all I'm not sure if it's worth putting forum logins (I actually did that about four years ago but removed it) and other authentication. Unless of course it gets really out of hand with trolls.
Yeh, I've already been able to do that in the past. I've just found another 10 or so spam posts today to a different domain, so I'm assuming this spammer is just gonna keep doing this, and I really can't be screwed spending 10 minutes every day just to clean things up / block the new domain, so I'll have to make it require logging into the forum first. I'll also have an option for anonymous cowards to post somehow.
I just had a thought, perhaps the comments should be linked to Sumea profile members instead, rather than the forum. So, you'd log in on the main page with your Sumea profile account, then you'll be able to post comments on the rest of the site (news, votes, articles, other members' gallery pictures). The reason for this is that I can do extra things for your journals like listing your recent comments etc. Kinda like what all other blog services do.
An upside of this would be that it's easier for me to impliment (I don't have to go and figure out how the forum handles users/cookies etc) and it'll be more secure using server sessions.
Just an update on the spam situation. The site is getting over a thousand attempts a week to post spam in the comments areas, but they've been stopped dead in their tracks by a basic keyword filter. If any do get through, they're *easily* removed, so it's no problem.
I did a search on google on the spam they've been posting on Sumea, and these guys have been clogging and destroying blogs and comments areas on tonnes of websites all over the net.
Sumea = 1, Spammers = 0 [:D]
Boring updates on spam situation. Did a bit of searching and it looks like Sumea is just another on the list that's on the neverending attack from a notorious comment spammer called [url="http://www.geeklog.net/article.php/meet-the-bulgarians"]The Bulgarian[/url].
On top of that, there's also a barrage of referer spam too. In the thousands, per month. And unfortunately there's not much I can do against that on an NT server, but it's wasting server resources. I blame the log software for this because it's available to the public without even as much as a login required. So the spammers hit the site with referer spam so that the logs show their website, in which Google and other search engines pick up for page rankings. The solution is to stop the logs from updating and wait until all the old logs clear out, which will take half a year. This won't make them stop doing it though.
And now I've found that some spammers been trying to use email injection with Sumea's contact form to send out their spam. None of them have gotten through though (I've been getting tonnes of failed attempt reports) and I've made that a bit more secure.
There's only one answer - rampant vigelantism and total anarchy. [:P]
You can easily exclude the referrer logs from being indexed by any responsible search engine by using the [url="http://www.robotstxt.org/"]robots.txt[/url] exclusion. That might help a bit.
Ok, now I've been getting a tonne of bounced emails from forum registrations. You need a legit email address to finalise your forum registration, and all these new registrations are bouncing. Spammers are using some script to register usernames with a common pattern (name + numeric number). Unfortunately they're not smart enough with the legit email part.
So yeh, add that to another way spammers are trying to spam Sumea. [:(]
I can't edit the logs page. [:(]
quote:
...Spammers are using some script to register usernames with a common pattern (name + numeric number)
b*stards. i wonder what using non-numeric number would look like though. [:)]
quote:
I can't edit the logs page. [:(]
...but your webhost should if you request it! there's no good reason to let robots browse it AFAIK.
Is there anything we can do to assist? Take on email filtering roles or something? Are you looking for an army of ninja robots or special ops gerbils that we can provide?
Probably the only way to resolve things would be to relocate to take another domain name and wait to get attacked again. Not really anything else I can do. All these spam attempts are really another kind of DOS attack, to be honest. It's funny, when I reset the server (which resets the recorded number of Sumeans online), it only takes a few minutes to see that number fly back up to over 4-500. I think that tells you about how many bots and scripts are hitting the site. Some are legitmate, of course, but I'm betting that most aren't.
Ok, comment spam is still slipping through, and I've pretty much have had enough of it.
So from now on you can't post links in the comment areas on Sumea. If it's got the hallmarks of a link, then it'll get rejected. Later, I'll make it so that only profile members who've logged in can only post links if they really need to, but hopefully this will be the end of it.
Another update on the endless spam problems on Sumea which doesn't really affect anyone but me.
Comment spam is pretty much no more. Used to get hundreds a day, but I haven't spotted any in months. If you have a comment spam problem, just remove the ability to post links, and that should be the end of it.
Bounced emails from forum registrations is no more - I think the spammers gave up on that one.
The current problem now is spammers forging the from/reply-to headers in the email to make it look like it's from a sumea email address. They'll send it to a huge variety of email addresses, and if it bounces, it gets bounced to a random sumea email address. It's a bit clever, in that when they send spam, it can potentially go to twice the number of recipients. The problem here is that the only person it can go to is me, so once the spammers realise this, hopefully they'll stop and move on. Getting tired of checking my email and receiving a tonne of these emails, *all with attached images*...
Ok, comment spamming is back. And it's probably the worst kind of comment spam, because it's impossible to prevent. They're spamming the comment areas (mainly member's profile comments and news items at the moment) with jibberish, which you can't really filter. No description of their dodgy product or service, just a bunch of random letters or words. You can see an [url="http://www.sumea.com.au/sprofile.asp?member=139&id=139&mode=comments"]example here[/url]. Yeh, it's all pretty pointless, and I have no idea why spammers would make their scripts do this, other than to waste someone else's time and resources cleaning all the mess up.
Once I finish working on updating the backend to remove spam better, it shouldn't be as much of a problem anymore.
Suttelman be he.
here's a link to a duplicate post (spammed randomly in some tile discussion forum)
http://www.infotile.com.au/ubb/Forum3/HTML/001958.html
Ok, he's locked.
I've finished the backend stuff, and gone through and removed all the spam from members and news this morning. Removing spam is easy, but when there are hundreds of them that you have to mark as spam then click the selected comments to remove etc, it gets pretty darn tedious.
So when I removed them all (which took a while), I had a look in Sumea Comments just to recheck things, and found that the damn spammer made another hundred posts while I was busy. Yeh, it's getting highly annoying.
If you ever see spam, click on the comment abuse button. That'll at least get rid of half the job for me.
He's still posting them, so I'm parsing his domain with some other crap. [url="http://www.sumea.com.au/snews.asp?news=158"]You can see it here[/url]. Maybe he'll get the hint.
Bah.. it's still coming. It's most likely automated. :/ I'll write something so that it catches spam before it gets written into comments, but I'll have to do it later because I'm heading off now. >:(