Merge branch 'master' of ssh://git.ikiwiki.info

master
Joey Hess 2013-05-18 16:27:35 -04:00
commit 239c37989d
3 changed files with 43 additions and 0 deletions

View File

@ -0,0 +1,19 @@
[[!comment format=mdwn
username="http://joeyh.name/"
nickname="joey"
subject="comment 1"
date="2013-05-17T17:55:46Z"
content="""
Normally ikiwiki requires a valid session cookie of a logged in user to edit pages. It sounds like you may have the opendiscussion or anonok plugins enabled, which allows anyone to edit without logging in. Recommend disabling them.
Since you know the spammer's IP, put it into ikiwiki.setup:
<pre>
banned_users:
- ip(85.25.146.11)
</pre>
If the user was logging in, you could also put their username in the ban list.
You can also try enabling the blogspam plugin.
"""]]

View File

@ -0,0 +1,16 @@
[[!comment format=mdwn
username="http://claimid.com/richard-lyons"
nickname="richard-lyons"
subject="comment 2"
date="2013-05-17T20:56:23Z"
content="""
I did indeed have opendiscussion active. I shall wait to see what happens after disabling it.
The bots seem to make 5 consecutive edits at short intervals (around 2 minutes) using an IP
address as a username. I do not know if the IP is the one from which they work. There are
usually two or three sets of five edits using different IP addresses as username in each hour.
I did try blocking specific IPs but they constantly change.
It would be good if blocking could match a regexp, but as far as I can see this is not an option,
"""]]

View File

@ -0,0 +1,8 @@
[[!comment format=mdwn
username="http://claimid.com/richard-lyons"
nickname="richard-lyons"
subject="SOLVED -- How can I prevent spam?"
date="2013-05-18T08:13:19Z"
content="""
I can now confirm that this particular attack has stopped after removing the opendiscussion plugin.
"""]]