Thread: Save the Wiki NOW
View Single Post
  #25  
Old 09-24-2007, 04:25 PM
Lalolyen
Banned
  
Join Date: Aug 2007
Location: Sneeking up behind a admin IRL
Posts: 169
Default
In my petition systems under the DEV forum, grab the registration form from that, there is a place in there that has a form field and an inclusion for two other files in the security_image directory...

He he the info has been on the forums for quite some time =P

Tying it to the forums is a good idea... But... Make sure you lock the forum reg down with some kind of image verification...

I've found that email verification sometimes isn't enough, just like with Captcha, however the both combined is actually a ferece machine against spammers =P.

Also I stated in another forum, no one customized a bot specifically to attack our wiki...

That spam I see is the same spam that use to pollute MediaWiki for months till they put up an captcha =).

Here is what they are doing..

1. The spam the registration (so auto-banning anyone whom trys to register more than 2x in 5 mins would suffice).

2. Spamming pages and following linkes from the wiki.. One thing I use to love is how those guys would use php to make a 10 mb html page to do nothing but read out fake emails for spam harvesters =).. They would harvest it, but when it was plugged into the spam bot, he he he he... It wasn't pretty for the spammer..

I'm proposing we use the same system... Get a couple of links going on the wiki that are to domains that do not exist (or links to the same directory that do not exist) and let the spam bots have a hay day with that =).

Can you guys get an IP capture? If so, look in your phone book for the local FBI office and print out the info, along with the destoryed pages, and ask to file changes on destruction of property (it works I've done it 3 times before on hackers). This forum, the data therein, and the wiki is legally property of the community... ANY community leader can have charges filed, free to you.

Very last resort, if you cannot get the FBI to respond let me know... I have several friends that likes bragging about thier pcs and would love to show the community what a Denial of Service attack does to the IP address you tell them was spamming the wiki =).
Reply With Quote