Spam blocker failed

Hi,

I have seen the same issue three days ago. I checked the log and noticed that it was a “human-posted spam” because it loads all external scripts (JS, CSS) as well as images and it took several seconds to perform all that. The IP was not blacklisted either.
Did you see the same kind of HTTP requests in your log?

Yes, he loaded everything, just like a regular browser. The whole “visit” took almost 8?minutes, until I blocked him. Not significantly blacklisted. (23.239.107.122)

It is very hard to block, unless you want to filter the $_POST[‘comment’] content with the .htninja file.

In the meantime I played around with the WP-SpamShield plugin. Not sure if it is capable to catch this type of spam, but maybe Yes, because it seems to do some tests concerning the plausibility of name and mail address. (And there are other options I didn’t check out yet.)

Anyway, in case I activate WP-SpamShield on my online site, should I leave Ninja’s spam blocker as it is (‘low’) or should I turn it off?

My understanding tells me that it would be better to leave it enabled, because it can alleviate WP-SpamShield’s work (Ninja is still catching 98% of all spam, currently).

But, as I’m not sure whether the two will interfere in some way —or whether two spam blockers just will generate unnecessary CPU load w/o benefit— , I would like to hear your opinion…

Unlike security plugins, I don’t think they will interfere or slow down your site. Keeping both may be a good idea.

OK, thanks for the confirmation.

I’ll wait and see if this kind of spam attack happens again, and then activate both.

cheers,
Tom