Hi!
I've just updated the spamblock plugin in our repository (which will be contained in the next snapshots). [1]
It now has an option to automatigally ban IP adresses from your blog via .htaccess rules that are considered as 'true' spammers. A 'true' spammer is identified if his comment was:
- rejected by Akismet
- rejected by blogg.de blacklist
- rejected because of a wordmatch on blocked emails
- rejected because they entered a comment that already is stored in the database
Those users will be completely shut off the blog, and then causing no traffic and no DB traffic because serendipity does no longer need to be fully run.
Of course this method has the huge drawback that if a person is blocked, he will stay blocked for 3 days (hardcoded into the script right now). So this method might easily yield false positives if Akismet is failing.
I have enabled this method on my own personal blog and will see how it affects users in the next days. If you want to try it out for yourself, I would appreciate the feedback.
Best regards,
Garvin
[1] http://svn.berlios.de/viewcvs/serendipi ... 3&view=rev
Spamblock IP blocking
-
garvinhicking
- Core Developer
- Posts: 30022
- Joined: Tue Sep 16, 2003 9:45 pm
- Location: Cologne, Germany
- Contact:
Spamblock IP blocking
# Garvin Hicking (s9y Developer)
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
-
Boris
Re: Spamblock IP blocking
Generally a good idea.
EDIT: I just saw, that only trackbacks seem to use the comment.php, right?
Aren't there drawbacks from writing .htaccess on every new spam? (meaning: race conditions when a user hits the page in the exact moment the file is cleaned and rewritten). It'd be great if .htaccess would support includes.
You could block them only from comment.php, couldn't you? In case you shut out somebody by accident he'll still be able to browse the blog, but not comment. If someone is shut out, he'll only get the 403-Page and doesn't know whats happening.garvinhicking wrote:Those users will be completely shut off the blog, and then causing no traffic and no DB traffic because serendipity does no longer need to be fully run.
EDIT: I just saw, that only trackbacks seem to use the comment.php, right?
Aren't there drawbacks from writing .htaccess on every new spam? (meaning: race conditions when a user hits the page in the exact moment the file is cleaned and rewritten). It'd be great if .htaccess would support includes.
-
garvinhicking
- Core Developer
- Posts: 30022
- Joined: Tue Sep 16, 2003 9:45 pm
- Location: Cologne, Germany
- Contact:
Re: Spamblock IP blocking
Hi!
After an hour, my blog had a list of 200 banned IPs which was affecting the response times of Apache. It seems that apache takes a long time to parse the DENY FROM rule, so I had to shut it off again. :-/
I could block them from comment.php, that's true - but trackbacks and comments can also be sent to the "pretty URLs" and would then be forwarded to index.php - so I believe that would not take all traffic...
Best regards,
Garvin
After an hour, my blog had a list of 200 banned IPs which was affecting the response times of Apache. It seems that apache takes a long time to parse the DENY FROM rule, so I had to shut it off again. :-/
I could block them from comment.php, that's true - but trackbacks and comments can also be sent to the "pretty URLs" and would then be forwarded to index.php - so I believe that would not take all traffic...
That's a good hint. I believe this can be solved with file locking...Aren't there drawbacks from writing .htaccess on every new spam? (meaning: race conditions when a user hits the page in the exact moment the file is cleaned and rewritten). It'd be great if .htaccess would support includes.
Best regards,
Garvin
# Garvin Hicking (s9y Developer)
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
-
garvinhicking
- Core Developer
- Posts: 30022
- Joined: Tue Sep 16, 2003 9:45 pm
- Location: Cologne, Germany
- Contact:
Hi!
At least the .htaccess method didn't really put good use on my blog, so I disabled it. I currently have blocked trackbacks completely in comments.php.
Regards,
Garvin
At least the .htaccess method didn't really put good use on my blog, so I disabled it. I currently have blocked trackbacks completely in comments.php.
Regards,
Garvin
# Garvin Hicking (s9y Developer)
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/
# Did I help you? Consider making me happy: http://wishes.garv.in/
# or use my PayPal account "paypal {at} supergarv (dot) de"
# My "other" hobby: http://flickr.garv.in/