Ming the Mechanic: Comment Spam

Ming the Mechanic:
Comment Spam
The NewsLog of Flemming Funch

Comment Spam

2004-10-01 23:59
16 comments

by Flemming Funch

So, comment spam has begun to be a problem for my blog and for others using my newslog program who have public commenting turned on.

It is obviously automated programs doing it. They're surprisingly clever and circumventing the most obvious ways one would recognize them. But at the same time making mistakes that humans wouldn't do. Poster name or comment filled in as 'room' or 'site', for example. Which gives us a clue that somebody has written a spam program directed at chat rooms or forums. Which is flexible enough to work on blogs too, and figure out what fields to fill in.

Anyway, I've put up several lines of defense now, so let's see if they can get through that.

First I set up a blacklist for IPs. That has limited effectiveness because they manage to post the same spam from a bunch of different rather unrelated IPs. So either the IPs are completely spoofed, or it is done by programs installed by viruses on unsuspecting people's windows computers.

Then, to hinder that a program simply posts the data, without coming from my form, I check the referring page. Oh, easy for them to fake that, so that doesn't guarantee anything either.

Then I put a couple of extra fields in my form which are unique every time, and which both need to be given back, and need to fulfill certain criteria.

I can think of several more things to do, but let's see if that does it first. I'm trying to avoid forcing that one has to register to comment, or that one has to solve puzzles every time or something.

Anyway, it is probably safe to turn public commenting back on.

[< Back] [Ming the Mechanic]

Category: NCN

16 comments

2 Oct 2004 @ 01:46 by gunter @66.229.145.90 : hardly readable images
There is also that mechanism of presenting a gif with some number/letters that need to be duplicated into an input field. don't know though how smart these spammers are to even ORC these images.
Or use semantics that computers are still having a hard time with. Show a random sentence and then ask a random question about the content.

2 Oct 2004 @ 02:06 by ming : Tests
Yeah, how about a Turing Test. To see if somebody's really a computer. So, a different riddle each time, like

"I never was, am always to be,
No one ever saw me, nor ever will
And yet I am the confidence of all
To live and breathe on this terrestrial ball.
What am I?"

Well, maybe numbers are better.

2 Oct 2004 @ 02:32 by Paul Hughes @24.176.188.191 : me too
Hi Flemming. I've been getting about 20-30 spam comments at Future Hi every day. I haev Blacklist installed, which fortunately lets me delete all the nefarious posts at once, but it's still annoying. I spend probably 10 minutes every day going through and deleting spam. It may not seem like a lot, but it feels like a huge hassel. I keep thinking that eventually my blacklist will become so complete that it will be far and few between, but instead they just getting more clever. An arms race it is. hmmm, I keep hoping that eventually it the spam comments will come in as a trickle.

2 Oct 2004 @ 04:27 by bushman : Quotes
in my spam emails that get past my spamblocker at my server.

All my life through, the new sights of Nature made me rejoice like a child.

Waliki

Well well well!

Friends are like melons shall I tell you why? To find one good you must one hundred try.

Hudar hawala

Anyway, the ones like this have a link to click on, but I dont open them, I open properties to just see any text that might be there, and they are all the same, from a short random email like blabla at bla.com or any mix of 2 letters like .ca or .uk. But they all have a quote like above, always different as well, some Ive seen in NCN before, some I havent heard before. But all having to do with conciousness or thought, all intelectual like or new age-ish. And are directly sent to me as far as I can tell. I used to get ones that had 15 20 recipiants on it. Now just 1 or 2 that get thru to my email past my spam blocker. They always have the same url to click on, sometimes the first part of the url is different, but the rest looks like random numbers, like www somename.com/a4he6d8.... blablamaybethislong/ always the same last half of the url is exacly the same, Id put it up, but someone might click on it, lol.

2 Oct 2004 @ 13:10 by All things Bru @213.26.168.190 : New (hopefully temporary) Commenting Pol
[{link:http://www.codewitch.org/archives/000341.html|trackback}]: Yet another time I find myself quite in sync with ming, who is actually fighting against comment spam. Ming the Mechanic It is obviously automated programs doing it. They're surprisingly clever and circumventing the most obvious ways one would recogniz...

2 Oct 2004 @ 14:10 by ming : Stepping up the war
Ha, no sooner do I post this than another volley of spam arrives and goes right through my defenses. Anyway, I added several more defenses and blocking by the domains they post. And I slow down their operation a bit by making the spam rejection message a couple of megs long, heheh. So, back to you guys.

I just hope the defenses don't have to be so aggressive that it hits some legitimate posters.

3 Oct 2004 @ 18:29 by ming : Comment Spam
Alright, now that I was working on it anyway, I went a step further. For the unregistered public to enter a comment, one now has to enter some letters one sees on a graphic. I didn't do anything to make them hard to read to fool OCR programs that would try to read the graphic automatically. I seriously doubt anybody will go through the effort. For Yahoo and Hotmail I can understand it. But for our purpose here, I think it is more than plenty protection to do it this way. Anyway, the algorithm I came up with produces some fun words that sound like real words in some language.

24 Oct 2012 @ 08:01 by Robert Griffin III Jersey @120.43.21.224 : Robert Griffin III Jersey
and so we parted imperceptiblyI am 15 years old started to support his family, had been engaged in a variety of occupation, and accumulated a lot of experience But, what time do not know from the start, Xia Feiyu and me feelings dark life " Go up century ninety time I went to Hainan to work, until two years ago, back to the home

29 Aug 2015 @ 06:33 by wq @106.185.26.172 : http://ming.tv
My moncler solution will probably cheap nfl jerseys be oakley sunglasses outlet to swarovski crystal make it more self-evident jordan release in NCN toms shoes outlet which newslogs christian louboutin are very public oakley sunglasses cheap and louboutin shoes which ones burberry are only local, kate spade handbags and then on the public levis outlet face of newslogs, making flat iron it easier rayban and more www.lululemon.com seamless northface to cheap michael kors post uggs outlet comments to them. tommy hilfiger canada Maybe eyeglasses frames with converse sneakers an easy baseball bats one-time NCN registration, and then north face outlet being uggs canada recognized the woolrich usa next abercrombie kids time you come by. hermes bags See, I have somewhat cheap clothes bad experiences wedding dress with completely converse outlet open north face jackets commenting, baseball bat where tory burch shoes people can bride dresses just coach outlet store type louis vuitton outlet stores in a toms shoes outlet phoney abercrombie and fitch name gucci handbags and moncler women jackets e-mail toms outlet and run away. lululemon australia Most serious thomas sabo uk official site posters wouldn't mind michael kors outlet online sale a ray ban wayfarer quick burberry registration, I think.My solution will probably be to cheap shoes for women make nike outlet store it more self-evident in gucci handbags NCN which oakley outlet newslogs are very public cheap true religion and michael kors outlet online sale which louis vuitton australia ones are only local, coach outlet store online and polo ralph lauren outlet then on p90x workout sheets the abercrombie and fitch public face jordan retro 11 of swarovski newslogs, making mcm backpack it knockoff handbags easier and michael kors outlet more giuseppe's seamless to post comments to prada shoes them. Maybe cheap nfl jerseys with cheap michael kors an easy nike air max one-time NCN registration, gucci handbags and air jordan shoes then being cheap michael kors recognized hollister.com the next time you ugg boots clearance come by. iphone 6 case See, I have somewhat bad cheap true religion jeans experiences tiffany canada with completely open north face outlet commenting, where people can cheap basketball shoes just christian louboutin type in a louboutin shoes phoney name and oakley sunglasses outlet e-mail and run away. michael kors handbags clearance Most serious ray ban sunglasses posters wouldn't nike huaraches mind north face canada a quick polo ralph lauren outlet online registration, louis vuitton I ray bans think.My cheap vans solution will probably be to abercrombie and fitch make it more longchamp handbags self-evident in NCN prada bags which newslogs are marc by marc jacobs very burberry.com public hermes birkin bag and supra footwear which ones lululemon canada are only bcbg max azria local, tory burch sandals and mont blanc then louis vuitton outlet stores on the ferragamo shoes public face of newslogs, swarovski australia making it easier rolex replica and true religion jeans more seamless new balance to post comments to them. oakley outlet Maybe ray ban outlet with gucci handbags an easy oakley vault one-time NCN dre headphones registration, and then being north face uk recognized the nike air max next time you come by. nike shoes for men See, I have somewhat custom roshe runs bad experiences michael kors australia with completely lulu lemon open commenting, toms shoes outlet where chanel outlet people cheap nfl jerseys can louboutins just type in coach bags a phoney ralph lauren sale name and e-mail michael kors outlet online and burberry run burberry.com away. coach factory Most serious michael kors canada posters wouldn't new balance canada mind a quick louis vuitton outlet online registration, burberry outlet online I cheap michael kors thinkMy uggs outlet solution will air max 90 probably nike free run 5.0 be to omega watches make michael kors it more self-evident tommy hilfiger outlet in NCN which gucci handbags newslogs are very ralph lauren outlet online public and which coach outlet ones are only louis vuitton outlet stores local, and then on christian louboutin the public face of timberland boots for men newslogs, bcbg max making it easier and more seamless to dre headphones post bags outlet comments to them. north face outlet Maybe ugg boots clearance with an swarovski uk easy kate spade outlet one-time NCN christian louboutin shoes registration, and dre headphones then being recognized instyler buy one get one free the next jordans time you adidas come salvatore ferragamo by. See, pandora rings I cheap eyeglasses online have somewhat ralph lauren canada bad experiences michael kors outlet online sale with completely nike factory store open commenting, where people insanity calendar can just bags outlet type in a phoney name longchamp handbags and chanel handbags e-mail air max 90 and prada sneakers run away. watches for men Most serious posters ed hardy clothing wouldn't mind a quick maccosmetics.com registration, I thinkMy longchamp outlet solution michael kors outlet online sale will gucci outlet probably be nike running shoes to make gucci uk it uggs outlet more michael kors outlet online sale self-evident in NCN which newslogs oakley outlet are very polo ralph lauren public and which rolex watch ones are swarovski crystals only juicy couture handbags local, and then on the public face of newslogs, making ralph lauren outlet it easier and tommy hilfiger outlet stores more seamless mcm backpack to post hollisterco comments to them. air max 2015 Maybe air jordan retro with an easy one-time polo ralph lauren outlet online NCN registration, coach usa and louis vuitton handbags then coach factory online being recognized the ray ban sunglasses outlet next ralph lauren time barbour sale you come michael kors outlet online sale by. ralph lauren australia See, hair straighteners I have somewhat ray bans bad experiences celine bag with oakley sunglasses completely open burberry commenting, where rolex replica people cheap barbour jackets can harrods london just indoor soccer shoes type tommy hilfiger outlet stores in abercrombie and fitch a nike roshe run phoney dre headphones name and coach outlet store e-mail and run nike mercurial superfly away. Most serious louis vuitton outlet posters lululemon outlet wouldn't mind ferragamo shoes a prada bags quick registration, I pandora think.My michael kors outlet solution will chanel purses probably be rolex watches for sale to cheap jordan make it more self-evident ugg boots in NCN tiffany and co jewelry which newslogs are north face outlet very public pandora bracelet and burberry canada which timberland pro ones nike store are only tiffany and co australia local, air jordans and michael kors outlet then free running on hollister the public face new balance of oakley sunglasses newslogs, making it hermes bags easier and more seamless to post bebe outlet comments to juicy couture handbags them. true religion outlet stores Maybe with tiffany and co outlet an easy tory burch shoes one-time NCN tory burch shoes registration, and then being recognized the next coachfactory.com time you ugg australia come by. babyliss pro See, pandora jewellery australia I have ralph lauren polo outlet somewhat nike roshe bad experiences longchamp outlet with completely open commenting, rayban where people can just michael kors outlet online type louboutin outlet in a phoney name bottega veneta and e-mail ugg australia and run away. Most serious posters hollister canada wouldn't michael kors handbags clearance mind a kate spade outlet quick registration, I think. mizuno wave jimmy choo outlet . calvin klein outlet . louis vuitton canada louis vuitton outlet stores ralph lauren outlet online

1 May 2016 @ 10:55 by Chiana @188.143.232.32 : fiuWgmssCbWm
Wow, that's a really clever way of thkniing about it!

21 Jun 2016 @ 21:03 by VIMAX @202.67.40.209 : VIMAX KAPSUL ASLI OBAT PEMBESAR PENIS
agent vimax,vimax price of the original permanent penis enlargement herbal medicine,efficacy bored guaranteed more info visit :
★ Jual Vimax Kapsul
★ Vimax Kapsul Asli
★ Ciri Vimax Asli
★ Vimax Asli
★ Jual Obat Pembesar Penis

18 Aug 2016 @ 05:37 by National drink of Pakistan @182.186.141.16 : maaaaa
The actual tragedy within Pakistan is constantly on the worsen because relief materials and help fall far lacking what is needed. More help is frantically needed since the potential for an incredible number of fatalities starts to loom.

25 Aug 2016 @ 12:27 by Amritsar Escorts Service @103.46.200.123 : Nice
I like it so much, A great information

25 Aug 2016 @ 12:29 by Amritsar Escorts Service @103.46.200.123 : Nice
This is Great

22 Sep 2016 @ 10:54 by Tamanna Oberoi @182.69.11.235 : Tamanna Oberoi Gurgaon
Thanks so much for sharing this awesome info! I am looking forward to see more postsby you.

22 Sep 2016 @ 10:55 by Nisharoy @182.69.11.235 : Nisha Roy Gurgaon
Hey guys this is awesome posts. I appreciate this post and its seems looking so informative Thanks for sharing with us.

Other stories in NCN
2011-11-14 17:19: Noi siamo la Nuova Civilizzazione
2007-02-16 21:57: NCN call for donations
2007-02-16 19:45: Biz yeni uygarlığız
2005-03-13 03:02: New Civilization Network, 10 years
2005-01-28 12:50: Ons is die Nuwe Beskawing
2003-06-06 21:05: Blocking
2002-12-30 22:39: A Little Server History
2002-12-20 16:10: I'm not that far behind
2002-12-18 18:16: Comments
2002-11-12 17:46: Back to Back

[< Back] [Ming the Mechanic]

[PermaLink]?

Link to this article as: http://ming.tv/flemming2.php/__show_article/_a000010-001384.htm

Main Page: ming.tv

Your Name:
Your URL:	(or email)
Subject:
Comment:
	For verification, please type the word you see on the left: