Comment Spam

Mike, any plans on releasing your plugin?

The “Hold a comment in the queue if it contains more than x links.” only works if the links begin with “http”
I’ve dropped that down to 1 but I’m getting spammed by the poker guy with:
https://www.xxx.com
https://www.yyy.com
https://www.zzz.com
Is there a file somewhere that will allow me to list other forms of urls to check for more than 1 of?
Also, has anyone in this thread updated to 1.3 and used whatever it has to block spam? Worth the upgrade to solve this problem?

I was just in the middle of an attack by the poker guy and asked the above questions about the form of urls and why www alone was getting through.
I turned off the plugin autohyperlink urls and that seems to have allowed the link number catcher to work. I’m not sure yet but I’m hoping.

This did not work but I’m seeing that he’s getting through the pref that if the comment contains more than one url to send it to a que. I set that field to “1” and 2 or more links are getting through.
is this a bug or is there something I’m doing wrong?

Why don’t you try some other ways, too?
https://www.tamba2.org.uk/wordpress/spam/

https://google.com/search?num=50&hl=en&lr=&safe=off&c2coff=1&q=wp-comments-post.phps&btng=search
this is how he reached my blog. he is a real dumbass.

Moshu,
I’ve read that page and will try more of those ways but my question for this thread is this:
I changed the back end of my site so that comments with more than one url are sent to a moderation que.
This person/bot is posting 3 urls and getting through.
Why?
Either I’m doing something wrong (and this is entirely possible) or this feature, at least on my install is not working.

i hate the poker guy
i’m too tired to do anything else but not allow people to discuss poker in my comments.
*sigh*

I just installed it last night, and whenever i make a post i instantly have a post from that joker idiot. any idea how it can be the second i post my thing?

https://www.tamba2.org.uk/wordpress/spam/
TG’s code

i have tried all those, and i have the blacklist thing even on. but whenver i make a post the comment automatically appears, wtf is that and how is it doing it?

They are already in the database.
You can do a couple of things:
– get into the database and delete them
– keep making test posts until the spams stop appearing.
Either way, TG’s code stops it from happening again

ok ill try but the comment is added as soon as i submit, i dropped all my tables and reinstalled it and its fine now and i set up a blacklist script so lets pray for the best

I adopted WP for my use a few days ago. Have been seeing quite a bit of p o k e r spam incoming. I think it is being automatically generated. So… how about this for a containment strategy? Will it be any good in the long term?
SUMMMARY:
1) in robots.txt disallow the normal wp-comments-post.php
2) change the name of the actual wp-comments-post.php
3) allow only REFERERs from my own site
4) include disable script in (honey trap) wp-comments-post.php
This strategy immediately disables any IP specifically and inappropriately calling the wp-comments.php file.
There are no 404s to clean up, each directly (ie automatically) called posting attempt immediately fails, the calling IP is immediately banned, and an optional email is sent flagging, what amounts to, an undesirable intrusion attempt.
SCRIPT:
[wp-comments-post.php]
<?php
$filename = “/home/e-smith/files/ibays/bb/html/wordpress/.htaccess”;
$content = “# direct access to wp-comments-post.php\r\nRewriteCond %{REMOTE_ADDR} ^”.str_replace(“.”,”\.”,$_SERVER[“REMOTE_ADDR”]).”$\r\nRewriteRule .* – [G]\r\n\r\n”;
$handle = fopen($filename, ‘r’);
$content .= fread($handle,filesize($filename));
fclose($handle);
$handle = fopen($filename, ‘w+’);
fwrite($handle, $content,strlen($content));
fclose($handle);
mail(“[email protected]”,
“comments spam”,
“comments spammer on IP “.$_SERVER[“REMOTE_ADDR”].”\r\n”.$_SERVER[“HTTP_USER_AGENT”].”\r\n”.$_SERVER[“HTTP_REFERER”]
,”FROM: [email protected]”);
print “bye”;
?>
TODO:
1) cron event to rename working wp-comments-post.php

Hmmm… I am dumb to coding. But: isn’t the code above for the automatically generated spam? Do the robots “right-click”???