Asp Forum - new spam at the wiki

Edwin Eyan Moragas

11/10/2004 7:00:00 AM

been checking my pages and it looks like we've got a new spammer on board.

here's what it looks like:

<SPAM>
<code style="visibility:hidden;display:none">
HTTP://siweiyuan15.51.net/
HTTP://zuche021.51.net/
HTTP://zuche8.51.net/
HTTP://siweiyuan14.51.net/
HTTP://fadianjizu.51.net/
HTTP://sunflow.51.net/
HTTP://siweiyuan13.51.net/
HTTP://zhibanji.51.net/
HTTP://amwaypower.51.net/
HTTP://siweiyuan12.51.net/
HTTP://tiezhixiangji.51.net/
HTTP://diandu123.51.net/
HTTP://www.playseo.com/zuche/
HTTP://siweiyuan11.51.net/
HTTP://www.playseo.com/zuche021/
HTTP://www.paiwei.cn/
HTTP://www.paiwei.cn/add/
HTTP://siweiyuan10.51.net/
HTTP://www.paiwei.cn/fadianji/
HTTP://www.txhf8.com/
HTTP://siweiyuan09.51.net/
HTTP://www.txhf8.com/add/
HTTP://www.txhf8.com/shaibanji/
HTTP://siweiyuan08.51.net/
HTTP://www.txhf8.com/zhibanji/
HTTP://www.sunflow.com.cn/
HTTP://siweiyuan07.51.net/
HTTP://www.sunflow.com.cn/sunflow/
HTTP://www.sunflow.com.cn/gongzuoliu/
HTTP://www.amwaypower.com/addwords.asp
HTTP://siweiyuan06.51.net/
HTTP://www.amwaypower.com/amwaypower/
HTTP://www.amwaypower.com/amway/
HTTP://www.amwaypower.com/amway_chanpin/
HTTP://siweiyuan05.51.net/
HTTP://www.amwaypower.com/amway_china/
HTTP://www.amwaypower.com/amway_gongsi/
HTTP://siweiyuan04.51.net/
HTTP://www.amwaypower.com/amway_niucuilai/
HTTP://www.amwaypower.com/amway_zhixiao/
HTTP://siweiyuan03.51.net/
HTTP://www.songshangroup.com/MoSi2_SiC_heating_elements.htm
HTTP://usauniversity.51.net/
HTTP://siweiyuan02.51.net/
HTTP://pagerank.51.net/
HTTP://siweiyuan.51.net/
HTTP://bjlvyou.51.net/
HTTP://siweiyuan01.51.net/

HTTP://www.amwaypower.com/keywords/free1.htm
HTTP://www.boshilw.com/keywords/free1.htm
HTTP://www.dfhb.com/keywords/free1.htm
HTTP://www.dxslw.com/keywords/free1.htm
HTTP://www.emicn.com/keywords/free1.htm
HTTP://www.gfqy.com/keywords/free1.htm
HTTP://www.google123.net/keywords/free1.htm
HTTP://www.google123.org/keywords/free1.htm
HTTP://www.lnhbsb.com/keywords/free1.htm
HTTP://www.ly-yufeng.com/keywords/free1.htm
HTTP://www.lyzhuguang.com/keywords/free1.htm
HTTP://www.lxep.com/keywords/free1.htm
HTTP://www.newstyle-w.com/keywords/free1.htm
HTTP://www.paiwei.cn/keywords/free1.htm
HTTP://www.playseo.com/keywords/free1.htm
HTTP://www.saishuo.com/keywords/free1.htm
HTTP://www.sh-xinping.com/keywords/free1.htm
HTTP://www.shhcy.com/keywords/free1.htm
HTTP://www.songshangroup.com/free1.htm
HTTP://www.souwho.com/keywords/free1.htm
HTTP://www.sunflow.com.cn/keywords/free1.htm
HTTP://www.suntront.com.cn/keywords/free1.htm
HTTP://www.think-t.com/keywords/free1.htm
HTTP://www.txhf8.com/keywords/free1.htm
HTTP://www.vita-biotech.com/keywords/free1.htm
HTTP://www.writerlw.com/keywords/free1.htm
HTTP://www.xinpushihua.com/keywords/free1.htm
HTTP://www.xtzn.com/keywords/free1.htm
HTTP://www.ycc-zipper.com.cn/keywords/free1.htm
HTTP://pagerank.51.net/free1.htm
</code>

</SPAM>

--
i'm not flying. i'm falling... in style.

41 Answers

Jim Weirich

11/10/2004 1:33:00 PM

On Wednesday 10 November 2004 02:00 am, Edwin Eyan Moragas wrote:
> been checking my pages and it looks like we've got a new spammer on board.
>
> here's what it looks like:
>
> <SPAM>
> <code style="visibility:hidden;display:none">

Wow. This shows up as a blank line when viewing the page diffs. I totally
missed this when reviewing page changes.

Thanks for calling this to our attention.

--
-- Jim Weirich jim@weirichhouse.org http://onest...
-----------------------------------------------------------------
"Beware of bugs in the above code; I have only proved it correct,
not tried it." -- Donald Knuth (in a memo to Peter van Emde Boas)

Asfand Yar Qazi

11/10/2004 6:50:00 PM

Jim Weirich wrote:
> On Wednesday 10 November 2004 02:00 am, Edwin Eyan Moragas wrote:
>
>>been checking my pages and it looks like we've got a new spammer on board.
>>
>>here's what it looks like:
>>
>><SPAM>
>><code style="visibility:hidden;display:none">
>
>
> Wow. This shows up as a blank line when viewing the page diffs. I totally
> missed this when reviewing page changes.
>
> Thanks for calling this to our attention.
>

Why isn't the Wiki password-protected so that only authorised users
can edit it? I'm sure there could be a scheme where some moderators
get sent 'patches' which they then apply at their discretion?

I'm just asking, not trying to impose my desires or anything.....

--
http://www.it-is-...

James Britt

11/10/2004 7:05:00 PM

Asfand Yar Qazi wrote:
...
>
> Why isn't the Wiki password-protected so that only authorised users can
> edit it? I'm sure there could be a scheme where some moderators get
> sent 'patches' which they then apply at their discretion?
>
> I'm just asking, not trying to impose my desires or anything.....

Please take a look at the mailing list archives, searching on "wiki
spam." This has been discussed quite a bit.

Not meaning to discourage your questions, but I think you'll learn a
lot about the different arguments for and against such an approach

http://groups.google.com/groups?group=comp....*&q=wiki+spam

James
>

Henrik Horneber

11/10/2004 7:06:00 PM

Asfand Yar Qazi wrote:
> Jim Weirich wrote:
>
>> On Wednesday 10 November 2004 02:00 am, Edwin Eyan Moragas wrote:
>>
>>> been checking my pages and it looks like we've got a new spammer on
>>> board.
>>>
>>> here's what it looks like:
>>>
>>> <SPAM>
>>> <code style="visibility:hidden;display:none">
>>
>>
>>
>> Wow. This shows up as a blank line when viewing the page diffs. I
>> totally missed this when reviewing page changes.
>>
>> Thanks for calling this to our attention.
>>
>
> Why isn't the Wiki password-protected so that only authorised users can
> edit it? I'm sure there could be a scheme where some moderators get
> sent 'patches' which they then apply at their discretion?
>
> I'm just asking, not trying to impose my desires or anything.....
>

Hi!

Well, the main reason is, I guess, that it's against the 'Wiki Way'.
The main point of a wiki is that anybody can edit it. Since most of the
spam is being inserted by bots, that should be reduced to 'any human can
edit it'. :)

regards,
Henrik

Charles Comstock

11/10/2004 7:18:00 PM

> Hi!
>
> Well, the main reason is, I guess, that it's against the 'Wiki Way'.
> The main point of a wiki is that anybody can edit it. Since most of the
> spam is being inserted by bots, that should be reduced to 'any human can
> edit it'. :)
>
> regards,
> Henrik
>
>

More evidence of descrimination against robot kind!

But seriously, it would seem the capitalization hack was only semi
successful. It seems to me that most of the bots seem to put in links
in just a long series. Perhaps we could change it so your limited to
say 5 outbound links per page edit? Or we could just scan for invisible
spans which seem to be a favorite of the bots at the moment?

Charles Comstock

Ara.T.Howard

11/10/2004 7:26:00 PM

Michael DeHaan

11/10/2004 8:20:00 PM

> how about generating a jpg of a password and requiring the editor to enter it.
this would block the bots i think.

CAPTCHA systems are a roadblock to blind and visually impaired users.

gabriele renzi

11/10/2004 8:22:00 PM

Ara.T.Howard@noaa.gov ha scritto:

>
> how about generating a jpg of a password and requiring the editor to
> enter it.
> this would block the bots i think.
>

see archives :)
Basically, this kind of captcha locks out people who can't see.
The other proposals were an autogenerated random word to type in or an
answer to a simple question ("first letter of word dog" "d").
I believe the latter remains the best choice, but it's up to the
maintainers.

Belorion

11/10/2004 8:35:00 PM

I've seen a couple of wiki's that have Honeypots embedded in them.
Basically, when you click on the honeypot link you are taken to a page
which says basically "do not click *this* link, it will disable your
access to this wiki for X time". So, when a bot crawls the whole
page, it will also crawls the honeypot, and the IP gets logged and
banned from the site.

This might be undesirable for search engines, as you might prevent
your wiki from being crawled by say Google, but if you give the
honeypot page a norobots or nofollow metatag, that might prevent that
problem.

Ara.T.Howard

11/10/2004 8:39:00 PM

comp.lang.ruby

new spam at the wiki

Edwin Eyan Moragas

Jim Weirich

Asfand Yar Qazi

James Britt

Henrik Horneber

Charles Comstock

Ara.T.Howard

Michael DeHaan

gabriele renzi

Belorion

Ara.T.Howard

x Login to ForumsZone