WackoWiki : SPAM

EoNy /17.05.2006 18:15 wackowiki.com/WantedPages looks like sql injection again. this happening on a protected site seems pretty severe?
...
EoNy 26.03.2021 19:51
I think, wich must not necessarily be the right conclusion, that the Spammer is allready inside the server and on the database respectively. My thoughts in german: see here

TheBone /24.03.2006 10:25/ Admin, is it possible to block the IP's that spam since last week? It is allways the same text. Seems to be a script that entered that. Our does it make sense to allow only registered users to enter text? Just for a a short time until this domain will stop this kind of spam. The german team repair all the sites but there should be another way. What about an inverted write rule for this IP? I have no permission to change this for all the sites, but you should be able to do that. THX

202–58–85-2.uitm.edu.my under xmtr (linux) dissolved as 84.140.32.115
22.03.2021 21:00 looks like an sql injection on page wackowiki/Test
disappears when typing wackowiki/Test_
when typing wackowiki/test the following message appears: Forbidden
You don't have permission to access /test/ on this server.

when looking @ ripe.net: report

/SPAM / Discussion ::

2. Blacklisting

Доступ к странице, вызываемой из Действия запрещён.

The internet isn't the place it used to be anymore. Everything good gets corrupted and so it is with Wikis. WikiSpam is — like Spam in blogs and email — on the rise. If you use Wacko Wiki in your Intranet this is no problem for you. But if you intend to use it on the open Internet you may want to blacklist some known Spam words.

For using a blacklist in Wacko Wiki enable the usewordblock option in wakka.config.php and edit the wakka.config.php. The file contains Regular Expressions (Perl compatible) if any of these match saving is disallowed.

By default the list contains the expressions suggested at PPR:WikiAccessContentBlacklist.

Development
bugs:0000964
bugs:0001214

3. WikiSpam

usemod/cgi-bin/mb.pl?ShotgunSpam
PPR:SpamBlackList
PPR:WikiSpamSolutions
wiki.chongqed//WikiHome
wikka.jsnx.WikkaSpamFighting
Using Apache to stop bad robots

We need to do something about spam.

Don't delete the spam, revert to a clean version. See Recent Changes for vandalized pages.
remove SPAM fast, otherwise it would encourage (other) spammers
Wreck the spammers pagerank (the only reason why they spam) by reporting them at chongqed/ or Report a Spam Result in Google
If you aren't into chongqing, you could also use [WWW] blacklist.chongqed/ to block the spammers that are in the chongqed database.
Block the IP range where they are comming from. Currently, this would affect *.cn
- If you want to do IP based blocking you should use Apache's deny from directives.

Interview with a Link-Spammer

4. Tools

4.1. Cap Tcha

I managed to add a Cap Tcha for anonymous users.

4.2. Bad Behavior

Bad Behavior is a set of PHP scripts which prevents spambots from accessing your site by analyzing their actual HTTP requests and comparing them to profiles from known spambots. It goes far beyond User-Agent and Referer, however. Bad Behavior is available for several PHP-based software packages, and also can be integrated in seconds into any PHP script.
ioerror/software/bad-behavior/

SergeyMartynoffI have created a package for easy installation of Bad Behavior with Wacko Wiki. It is not in Bad Behavior release yet, so you can download it at martynoff/bad-behavior-wackowiki
-> /Dev / Patches Hacks / Bad Behavior

4.3. Spider Trap

spider-trap

4.4. Analyze

toolbox