Memo to self - when trying new ways to spam, be sure of your 'bot
Had a new kind of spam attempt just a short while ago.
As you recall from a
few posts ago today, I get to see the URL that the commenter leaves.
Generally with hijacked thread spam, the moke will leave a bunch of links to online fora that have been hijacked. It will be at a popular site like www.yahoo.com/groups/etc/etc/etc/porn_site.html and the idea is that people will read the comment on my blog, voluntarily choose to visit a questionable website that may try to corrupt their personal system and view the important message that the spammer left for their viewing pleasure.
The one tonight had a single hijacked link placed in the URL section and not the comment body -- there were just a few random characters in the comment body.
This would have gone through without a hitch except for one problem.
The 'bot they used had an IP Address that was known by zen.spamhaus.org as a site for spam.
So, in one swell foop, they announced a new and potentially successful (for them) kind of comment spam but they did so using a compromised machine that was already recognized as a source of spam and therefore their attempt was immediately placed into purgatory.
I am now looking at writing a few lines of PERL to nuke these puppies whenever they show up...
Fish in a barrel. I am not a programmer but I would love to challenge one of these turds to some programming fu -- actually, I already am and I am beating their sorry asses to the ground and stealing their lunch money.
Heh...
Posted by DaveH at June 28, 2009 7:57 PM