A curious (and schtoopid) iteration on comment spamming techniques
Two things going on here.
First: we are getting a lot of
this kind of spam but it is in the form of a couple lines for one URL, about forty lines of the crap listed in the link above but more varied, not just for "fluffy bunny" and then about forty different URLs, generally hijacked chat fora.
What these people do not seem to grasp is that it only takes one known URL to toss the entire comment into moderation. Adding more URLs only broadens their chance of
EPIC FAIL and allows me to harvest an even greater database of known-bad forum URLs...
Second: When I see a zombie machine, I have been blocking their IP address. Not any more, the text of their comments now gets read into a specific logfile. The result of this is that although their feeble attempts at posting still consistently show EPIC FAIL, I now harvest even more known-bad forum URLs as they constantly try new shit all the time.
I am now searching for about 700 URLs and about 1,200 known bad IP addresses. I do block ranges -- I write for North America and generally block China, Africa, most of Europe and Russia.
As always, if someone from those corners of the planet want access, my email is not blocked. I can unblock a specific range or single IP address...
Posted by DaveH at September 19, 2009 8:14 PM