Tag Archives: Spam

Poisoning the well

December 6, 2005 – 12:07 pm

Overall, the volume of spam attempts on my server have been down lately. Oh, I still get a steady stream, I delete over 100 comment spams (caught by my filters) each day. But I’ve seen fewer of the massive, server-squashing spam runs that hammer my web service with too many simultaneous connections, blocking out legitimate users.

On the other hand, I’m seeing a lot more attempts by spammers to poison the well. What I mean by that is that they are submitting bogus comments, full of non-spammy (but more-or-less random) content, and links to legitimate web sites. [...]

By Dougal | Posted in Blogs, Spam | Also tagged , , , | Comments (16)

Dear Spammers…

September 16, 2005 – 10:12 am

Thank you for continuing to submit your data to my anti-spam systems. I have been able to put your information to very good use, keeping my blogs and email practically spam-free 24-hours a day. The emails, comments, trackbacks, and referers that you submit are analyzed for key spam indicators, which I can then use to automatically block your servers so that your future spam attempts don’t even reach my web server.

Eventually, I hope to share my collected anti-spam knowledge to a wider audience, via WordPress plugins and web services available to the general public. [...]

By Dougal | Posted in Blogs, Fun, Plugins, Services, Spam, WordPress | Also tagged , , , , | Comments (16)

Googlebomb: Popup Blockers

July 15, 2005 – 1:06 pm

Has your blog been spammed with ads for a Popup Blocker for Internet Explorer?

If you are getting here through a search on Popup Blockers or for Pop-Up Blocker or Pop Up Blocker Internet Explorer, please do not buy from pop-upblocker dot org They are spammers and unethical. [...]

By Dougal | Posted in Blogs, SEO, Search, Spam | Also tagged , , | Comments (14)

Spam on the rise again?

June 17, 2005 – 11:48 am

Has anybody else noticed a sharp increase in blog spam activity lately over the past couple of weeks? The number of firewall rules on my system generated by SpamValve was down below 40 not too long ago, but now it’s back up to over 100 again. The worst of the attacks still cause some brief hiccups on my server from time to time, but now that I’ve got a good set of automated countermeasures in place, I typically don’t notice it until after the fact.

By Dougal | Posted in Blogs, Spam | Also tagged , , | Comments (17)

SpamValve Download

May 26, 2005 – 2:12 pm

I only had a couple of responses to my call for SpamValve testers. One of the testers has already begun using SpamValve on his FreeBSD server. The other is tied up at the moment, but is going to attempt to adapt it to work on a Linux server sometime next week.

In the meantime, I’ve started using it to filter spam hits to my mail service. This was accomplished with a one-liner: 

tail -0f /var/log/maillog | \
perl -e 'while(<>){ m/Mail from (.*) rejected/; \
system("/usr/local/sbin/svupdate", $1) if $1;}'

The command above watches the end of my sendmail log for entries indicating messages rejected by RBL checks. [...]

By Dougal | Posted in Servers, Services, Spam | Also tagged , , , , | Comments (10)

SpamValve Testers Wanted

May 18, 2005 – 9:34 pm

I think I’m almost ready to let some other people bang on SpamValve. I want to get a closed group of users to try it out and give me some feedback before I release it to the general public. If you’re interested in testing it, and meet the requirements below, contact me.

Requirements:

  • Requires root access on your server.
  • Currently requires the ‘ipfw’ firewall system (I’m on FreeBSD). But if you think you can modify it to work with ipchains or some other firewall, feel free to give it a try. [...]

By Dougal | Posted in Blogs, Plugins, Servers, Spam, Tech, WordPress | Also tagged , , , , , , | Comments (3)

SpamValve update

May 6, 2005 – 10:13 am

I’ve been pretty busy at work, so I haven’t done much more work on my auto-firewall code in the past couple of days. But it seems to be holding its own pretty well. Normally, over the course of a few days, my comments database accumulates a couple thousand spams (I check it using Chris Davis’ Spam Nuke plugin). But since activating my new system, the spam comments are down to a trickle, maybe 10% of what it used to be.

This is because the system only allows a few attempts from any particular host before it blocks that host completely, eliminating any further attempts. [...]

By Dougal | Posted in Plugins, Spam, WordPress | Also tagged , , , , , , | Comments (12)

Testing a new spam blocker

May 3, 2005 – 5:05 pm

I’ve been trying to snatch a few minutes here and there to work on the automated spam blocking system that I proposed last week. Earlier today, I finished up one of the components, and I’m currently testing it. It seems to be performing as designed, so far.

There are three pieces to the system, currently:

  1. ipupdate: A perl script which accepts an IP number as an argument. When run, it checks whether the IP already exists in its configured database table. If not, it adds it. [...]

By Dougal | Posted in Blogs, Plugins, Servers, Spam, WordPress | Also tagged , , , , , , | Comments (6)

URL ABCs

April 29, 2005 – 5:11 pm

Feeding the meme…

These are my URL ABCs:

By Dougal | Posted in Blogs, Fun | Also tagged , , , , , , , | Comments (10)

Spammers should all DIE DIE DIE

April 27, 2005 – 11:10 am

I am so sick of the damn spammers. Spammers are teh sux0r. Spammers are a festering boil on the ass of the Internets. I wouldn’t let a spammer kiss my butt with a pair of wax lips from ten feet away. If I ever see a spammer bleeding in a ditch, I will not be a Good Samaritan, I will kick him in the head, cover him up with dirt, and leave him there to rot.

Over the past few weeks, the comment spam has been coming in so thick that I’ve had to start blocking IPs at the firewall level. I’m currently blocking over 40 IPs, plus an entire Class C block out of Mexico. My normal blacklist blocks prevent the spam from showing up on the blog anyhow, but they were coming in so fast and furious that Apache and MySQL were grinding to a halt under the load.

On top of that, the email spam has been spiking up, too. [...]

By Dougal | Posted in Blogs, Servers, Spam | Also tagged , , , | Comments (43)