Internal commenting system exploited by spammers?

This is an open forum for any mojoPortal topics that don't fall into the other categories.

This thread is closed to new posts. You must sign in to post in the forums.
1/24/2010 9:17:21 AM
Gravatar
Total Posts 251

Internal commenting system exploited by spammers?

Yesterday i switched to intensedebate for my blog module

the previous posts without comments got the intensedebate integration, as the new ones

but.... in a few hours, spammers posted a lot of spam comments with no text and with the "buy cialis" link

this is what appears on the iis log:

2010-01-23 06:47:32 POST /post-to-spam.aspx - 213.5.71.12 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.0;+MyIE2;+Maxthon)

i noticed that i don't get anymore that recurring "padding is invalid" on captcha error on the log... maybe this bug has surfaced again?

Maybe the older posts will still accept comments via POST and, since the captcha is disabled will accept anything? I noticed that the spam comments appeared only on posts that were old and without previous comments

win2003+mysql, i set up intensedeate both at global and module level

1/24/2010 1:50:38 PM
Gravatar
Total Posts 18439

Re: Internal commenting system exploited by spammers?

If the post already has comments in the internal comment system it is designed to keep using the internal one for those posts, but it should still use the captcha as long as it is enabled.

Best,

Joe

1/24/2010 2:08:27 PM
Gravatar
Total Posts 251

Re: Internal commenting system exploited by spammers?

i mean, if i had an older post with no comment, it shows intensedebate as you said

but a spambot with just a POST action was still be able to post spam comments on posts that should be using intensedebate, this night (13 times)

i ip banned that bot, i will lift the ban and hope it will come again to write more details on him ;)

You must sign in to post in the forums. This thread is closed to new posts.