spam on *base
imalchow at kde.org
Thu Jun 23 18:01:12 UTC 2011
2011/6/23 Lukas <1lukas1 at gmail.com>:
> * Is the spam done by bots (replacing entire page), or it looks like like
> manual "jobs" inserting random bits of spam into genuine code?
> * post mentions deletes. Could it be that deletes are done by search bots
> crawling the pages and hitting .php?action=delete links?
> In most cases spam can be prevented by adding empty hidden (by css, not html
> attribute) field. If it comes with any text -> its a spam bot.
> Also by replacing all edit links with .php?action=ban_me in html template
> and restoring them with JS on onLoad (spam bots does not run JS, so can't
> see real links).
> Or using tokens $token = md5('page_id'.$random_bit.$secret).'-'.$random_bit,
> so the can validate forms (in case if bots knows destination URL and posts
> directly there)
You have a patch in place? ;)
Not sure if that would involve some core mediawiki hacks without
looking deeply into that, but if you already have an idea...
More information about the kde-www