Author Topic: ARRRGH, how are the spammers doing this?  (Read 4520 times)

Offline rbcp

  • Head Custodian
  • Administrator
  • Ninja Phone Loser
  • *****
  • Posts: 5259
  • 1337 13V3L: +454/-81
  • I'm not stupid! I'm not stupid! Hematology!
    • Homepage
ARRRGH, how are the spammers doing this?
« on: March 28, 2007, 08:13:02 AM »
Phonelosers.org uses Word Press for just about all of the pages now.  Spammers appear to love Word Press.  I get a billion percent more spam attempts now than I did before I used Word Press.  Luckily, there are a lot of spam filter plugins for Wordpress.  I'm using the one that comes built in, called Akismet.  Since I've installed it, Akismet has caught 153,215 attempted spam messages for me.

Occasionally a spam message slips through and I have to delete it myself.  This usually amounts to 1 or 2 per day, but occasionally (rarely) might be 10 per day.  Not that big of a deal, really.  But I just want all of the spam gone.  I don't want Akismet to even have to deal with it.  So I install another filter, which you can see in the comments section of any page.  Like this:

http://www.phonelosers.org/comics-for-plaers/#comments

Before posting a comment, you have to type the secret word into the box.  The first word I used was CACTUS.  And I just wrote, in plain text, "If you're a human, type CACTUS into that box over there."  That slowed the spam a little, but I still got a lot of it.  I figure the spam robots are reading the word CACTUS and typing it in.  Robots are smart like that.  So I replace the plain text CACTUS with a GIF which reads CACTUS.

Still not much difference.  So I change the word CACTUS in that image to a picture of a cactus instead.  It can't read a picture, right?  I wait a day, only to notice there's still not much difference in the amount of spam I'm receiving.  I easily get over 300 spam attempts per day, all of it caught by Akismet.

So I think, maybe the spam robots are just remembering what my code word is.  So I change the word to TREE and I put an image of a tree next to the verification box.  This should surely stop them, right?  I made this change an hour ago and so far I've gotten 15 spam attempts.  That might be a little slower, but DAMMIT! 

How are the spam robots figuring out the code word?  They must be bypassing the script somehow, right?  The script I'm using for word verification is called Challenge.  It actually lets you put math problems into it that users must solve to post a comment.  But I don't want to make users solve math problems just to post a comment.  Even simple ones.

I know I should just be happy that Akismet catches 99% of the spam for me already.  But I want it all gone.  I don't want to have to delete 1 or 2 spams per day.  I'm much too busy and important to deal with petty things like this!

Offline rbcp

  • Head Custodian
  • Administrator
  • Ninja Phone Loser
  • *****
  • Posts: 5259
  • 1337 13V3L: +454/-81
  • I'm not stupid! I'm not stupid! Hematology!
    • Homepage
Re: ARRRGH, how are the spammers doing this?
« Reply #1 on: March 28, 2007, 01:33:22 PM »
After I posted my whiny rant, I deleted all the spam from the Akismet box and since then I haven't received any new spams.  It's been more than 8 hours now, so I'm thinking my Tree actually worked!  Maybe those 15 from before were in the process of posting the spams while I made the changes, so they could still use the old code word.  Or something like that.  Anyway, I'm happy that I've gotten zero spams for an entire 1/3rd of the day.

Offline voiphead

  • AKA chicco
  • Junior Phone Loser
  • **
  • Posts: 44
  • 1337 13V3L: +0/-15
  • To catch an "x" human you must be an "x" human
    • -Kw
Re: ARRRGH, how are the spammers doing this?
« Reply #2 on: March 28, 2007, 06:11:42 PM »
I ran a blog as well and i had a huge problem with spam as well but what fix the problem was blocking the ip individually of robot inserting the spam, many of this spammers use highly recognized urls, and not only that they are able to break into and creat html pages that they use to sell drugs, viagra, etc..

I to used the words and the filters but it didnt do much...but if you trace the incoming IP of the spammer and block the ip or range of IP's into to your webserver that will make a huge difference.

I know it will take you a while and may block some innocent users but that will put a stop to spammers, I guaranteed it.

If there is an internet connection, then I can fairly say that you will be getting a phone call from me.

Offline Raptor

  • OMG MOD wannabe
  • Ninja Phone Loser
  • ***
  • Posts: 1208
  • 1337 13V3L: +80/-52
  • We can be happy underground
Re: ARRRGH, how are the spammers doing this?
« Reply #3 on: March 28, 2007, 06:20:18 PM »
so you mean I should stop putting your email adress in all those windows that say FREE VIAGRA TRYOUT FREE IPOD MINI!!!!1   ???
Raptor\\\'s Random Reviews!

http://www.phonelosers.org/forums/index.php?board=30.0

Offline murd0c

  • PLA Public Relations
  • Administrator
  • Ninja Phone Loser
  • *****
  • Posts: 1344
  • 1337 13V3L: +169/-74
    • murd0c dot net
Re: ARRRGH, how are the spammers doing this?
« Reply #4 on: April 08, 2007, 06:17:33 AM »
I believe we have a new problem........... ADENUGA   should sum it up nicely.

Yeah, sorry about that. I'm away from my computer for less than 12 hours and fucking Nigerians run wild.

Offline M-26-7

  • Skinniest Member of the PLA
  • PLA Junkie
  • *****
  • Posts: 811
  • 1337 13V3L: +40/-61
Re: ARRRGH, how are the spammers doing this?
« Reply #5 on: April 08, 2007, 01:09:36 PM »

Offline Nod

  • Quando omni flunkus moritati
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 3725
  • 1337 13V3L: +210/-138
  • 212-389-1318
    • twitter: @mrnudnik
Re: ARRRGH, how are the spammers doing this?
« Reply #6 on: April 08, 2007, 09:01:56 PM »
I was on when the posts were made. I was kind of suprised to see it there at first. Usually those are all deleted before I'm on. I guess I just happened to be on at the right time.

Silly Nigerians. Those aren't dogs!
I HATE the bridge.
Meme Roth is a Food Nazi Cunt

Offline Robert_

  • Local Operator
  • *****
  • Posts: 124
  • 1337 13V3L: +10/-12
Re: ARRRGH, how are the spammers doing this?
« Reply #7 on: April 19, 2007, 12:57:51 PM »
Most spam anymore comes from real life users, not bots. They come on register, post, and leave. I've noticed that with a few sites I help maintain.

Offline Phuzzy

  • Newb
  • *
  • Posts: 2
  • 1337 13V3L: +0/-0
Re: ARRRGH, how are the spammers doing this?
« Reply #8 on: April 28, 2007, 10:05:51 AM »
Maybe we need to use one of those fancy Math captchas or something?

Offline gangals

  • Merp?
  • PLA Nation Citizen
  • *
  • Posts: 1031
  • 1337 13V3L: +68/-31
  • ummm cacti
    • http://img116.imageshack.us/img116/1879/bagmanonfire4pb.jpg
Re: ARRRGH, how are the spammers doing this?
« Reply #9 on: April 28, 2007, 10:31:31 PM »
It actually lets you put math problems into it that users must solve to post a comment.  But I don't want to make users solve math problems just to post a comment.  Even simple ones.

Offline murd0c

  • PLA Public Relations
  • Administrator
  • Ninja Phone Loser
  • *****
  • Posts: 1344
  • 1337 13V3L: +169/-74
    • murd0c dot net
Re: ARRRGH, how are the spammers doing this?
« Reply #10 on: April 29, 2007, 06:47:25 AM »
I had the word 'captcha' running through my head all day yesterday thanks to this thread.

Offline Nod

  • Quando omni flunkus moritati
  • Elite Cactus Squad
  • Ninja Phone Loser
  • *****
  • Posts: 3725
  • 1337 13V3L: +210/-138
  • 212-389-1318
    • twitter: @mrnudnik
Re: ARRRGH, how are the spammers doing this?
« Reply #11 on: May 04, 2007, 02:33:23 AM »
I guess it really "captcha'd" your attention then eh?
I HATE the bridge.
Meme Roth is a Food Nazi Cunt