Feature #741
Combatting Comment Spam
| Status: | New | Start: | 08/13/2009 | |
| Priority: | Normal | Due date: | ||
| Assigned to: | - | % Done: | 0% |
|
| Category: | - | |||
| Target version: | - | |||
Description
Banning with one click:
Wherever there is a comment displayed, it'd be nice in addition to being able to delete the comment with one click to also be able to delete the comment and permanently ban a spammer's IP.
and etc.
CAPTCHA's for commenting
Having the ability to put in CAPTCHA's for commenting would also be an effective way to combat spam for those of us who are unable to use Akismet because our host blocks outgoing connections :ugh:
Having a signup form right in the comment box
Because most spammers abuse the anonymous comment system and people don't like registering accounts if it means taking time to visit a dedicated signup page, perhaps there could be an option to have the comment box for anonymous users contain a combination signup and login form with just a name, password, and a CAPTCHA. If they fill in correct details for an existing user, it logs them in and posts the comment. If it's a username that doesn't already exist, it'll create a user and post the comment. If an incorrect password is entered for an existing name or the CAPTCHA is wrong an error shows up, and if they leave the name and password blank it is posted anonymously (unless anon comments are turned off)
History
Updated by Zach Hall 99 days ago
I've been doing some experimentation with "Echo", a new commenting module from js-kit.com and it appears to work pretty nicely. It's supposed to support tons of spam blocking features and is free for up to 1,000,000 pageviews a month (or so it claims... they also said 25,000 pageviews so I'm not sure which is real.) Below is a screenshot of how that worked out:
It supports OpenID, Facebook, and Twitter as means of authentication, and I'm not sure how expandable it is, but it definitely has good presentation.
Updated by Anonymous 69 days ago
Anonymous wrote:
Ey1x3b <a href="http://svjntnbdcwds.com/">svjntnbdcwds</a>, [url=http://xnxegqgqqojf.com/]xnxegqgqqojf[/url], [link=http://pfexcfuujazp.com/]pfexcfuujazp[/link], http://myqbkvsyapiq.com/
Speaking of this... I have found a huge list of 17,000+ known bad IP's, and have gotten an SQL file together that should take care of all Shimmmie spam. It's in the format of the IP bans table, and bans spambots till 2032 or so.
I've encountered problems however in trying to get this file imported into the database because of its hugeness. I can only import about 800 lines at a time before I get a memory overload or a timeout of 999 seconds exceeded.
You can download the SQL here: http://files.sosguy.net/shimmie/combat_shimmie_spam/bad_ips.sql
I'm going to work on putting together a more practical "installer" for the data, as trying to execute this beast as it is proves a difficult task.
