Welcome to Geeklog Sunday, October 13 2019 @ 11:51 pm EDT

Geeklog Forums

Spam / Porno Comments


Status: offline

Limynali

Forum User
Chatty
Registered: 07/01/03
Posts: 39
Has anyone else noticed lately a huge influx of spam/porn related comments? I run a few different geeklog sites and in the past week I've gotten 15+ anonymous comments all with the same stuff about incest etc. In addition I've had lots more membership submissions from obvious spammers/porn people. :-(

I ended up having to disable anonymous comments and just delete most member submissions. Is anyone dealing with this? If so how?


Got root?

Status: offline

ScurvyDawg

Forum User
Full Member
Registered: 06/11/02
Posts: 523
I have not had this issue, seems some spammers have found your site is all. Hopefully they will move on to the next site when they see you keep deleting their posts.

Status: offline

Blaine

Forum User
Full Member
Registered: 16/07/02
Posts: 1233
Location:Canada
I did and had to disable anonymous comments
Geeklog components by PortalParts -- www.portalparts.com

Status: offline

scroff

Forum User
Regular Poster
Registered: 19/02/03
Posts: 111
cold
I had some spam/porn sites finding their way into my referrer list. I used the handi dandi ban plugin by Tom to ban them. If there aren't too many you can ban their IP using this ban.... Just my novice two cents...

Status: offline

Leita

Forum User
Chatty
Registered: 11/05/03
Posts: 37
Location:Colorado
I had this happen last night. It was the first time I've seen this. I have a lot of hits in my http_referrer from britneyspears and paris hilton nudeceleb blogs hah

Status: offline

inspiremin

Forum User
Regular Poster
Registered: 07/01/04
Posts: 111
I had the same thing happen: "incest" related comments.

It seems our mystery commenter is hitting GL sites.

Blessings!

inSPIREmin
www.Scripturetoolkit.com www.inSPIREministries.com

Status: offline

Limynali

Forum User
Chatty
Registered: 07/01/03
Posts: 39
Thanks for your suggetions! I'm going to try out that ban plugin since it seems to be the same person hitting all my sites.
Got root?

Status: offline

tonylinde

Forum User
Newbie
Registered: 17/12/01
Posts: 1
We're getting hit with this as well (using Geeklog v1.3.6). How do I disable anonymous comments?

Thanks.
__ Tony Linde

Status: offline

Turias

Forum User
Full Member
Registered: 20/10/03
Posts: 807
Quote by tonylinde: We're getting hit with this as well (using Geeklog v1.3.6). How do I disable anonymous comments?

Thanks.


It's a setting in the config.php file.

dkaplowitz

Anonymous
Count me in as another victim of this spam attack. It must be a script that's running.

Status: offline

inspiremin

Forum User
Regular Poster
Registered: 07/01/04
Posts: 111
I tracked down the perp! I matched the comment time to my site logs and got the address. Doing a quick search in Google, I found out that he/she/it has been very naughty and busy.

I am going to install the ban plug-in so I can keep my comments open to the public.

Any suggestions on what to do with the address? Turn him/her/it in to someone?

Blessings!

inSPIREmin
www.Scripturetoolkit.com www.inSPIREministries.com

Status: offline

geKow

Forum User
Full Member
Registered: 12/01/03
Posts: 445
Quote by tonylinde: We're getting hit with this as well (using Geeklog v1.3.6). How do I disable anonymous comments?

Thanks.


And, btw: I would strongly recommend to upgrade your geeklog!

geKow

Status: offline

scroff

Forum User
Regular Poster
Registered: 19/02/03
Posts: 111
Any suggestions on what to do with the address? Turn him/her/it in to someone?

I was being spammed by parishilton blogger, among others. I wrote to blogger and they said they have no control over content. I told them I was being spammed and they never replied, despite writing to them a few times... that's when I put in the ban plugin. It's working very well.

Rob

Anonymous
confused
Same problem, but how does one go about getting the ip address or http-referrer to ban them??

-Rob

Status: offline

geKow

Forum User
Full Member
Registered: 12/01/03
Posts: 445
Try the visitor stats plugin from gplugs

geKow

tokyoahead

Anonymous
Quote by Rob: Same problem, but how does one go about getting the ip address or http-referrer to ban them??


Insert something like

PHP Formatted Code
<? if ($_SERVER['REMOTE_ADDR']=='111.111.111.111') {exit;} ?>
 


as first line into you header.thml

Status: offline

jnordquist

Forum User
Full Member
Registered: 14/03/03
Posts: 129
Location:Kenosha
Quote by: Rob] Same problem, but how does one go about getting the ip address or http-referrer to ban them??

Insert something like





Problem with this is if the jerk is using dynamic IP. Dialup customers rarely get the same IP twice. I had a vandal take down my pollbooth recently and had to ban his entire domain for a couple weeks till it stopped.

Requiring login for comments is the only real solution I see. I had the pornspam coments start a couple days ago too.


John Nordquist, Applications Specialist, medical Technologies

ironmax

Anonymous
I gues I have been fortunate of not having this problem. I run the comments with the users logged in only and they can only read and not post until the register. The only thing I have open with some limitations, for the most part is the downloads. I have not yet had a poster that abused my system here. Lucky I guess. Who knows after this post though.

Rob

Anonymous
Well this thing is pretty obviously a bot, so how do I use the ban plugin to ban bots?? Or how do I FIND out where this stuff is coming from so I can block it??

-Rob

Status: offline

tomw

Forum User
Full Member
Registered: 12/08/02
Posts: 300
The ban plugin has apparently made the porno/spammer mad because he regularly spams the ban plugin article on gplugs. Here are three things you can do to make life harder for him.

1) use the ban plugin and ban 69.93.237.84 This will ban the bot that spams your referer list.

2) make a slight change to your lib-common.php to make sure the ban plugin is called before anything else like the stats plugin. At the very end of lib-common.php you will find the following sql statement which sets up calling each plugin:
PHP Formatted Code
$result = DB_query( "SELECT pi_name FROM {$_TABLES['plugins']} WHERE pi_enabled = 1" );
 

Change it to read:
PHP Formatted Code
$result = DB_query( "SELECT pi_name FROM {$_TABLES['plugins']} WHERE pi_enabled = 1 order by pi_name" );
 


3) Add the following sql statment to run from a chron job to delete comments with the inappropriate websites:

PHP Formatted Code
delete from gl_comments where comment like "%www.bad.site%"
 

replacing www.bad.site with the site he/she/it is advertising. I have this set to run every thirty minutes. You could make it part of geeklog and run it everytime a page is fetched if you wanted. Of course you may have to change this, add to it when he figures out what you are doing.

If I get around to it or the porno/spammer makes me madd enough I will write an extension to the ban plugin to handle comments also.

TomW


All times are EDT. The time is now 11:51 pm.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content