Whoo's anti-spam techniques in one simple thread

[whoo]

you're welcome

for what its worth, wordpresss has about 20 plugins that provide some sort of deterrant to spam, and I raised quite a stink with a few ppl posting an entry about wordpress and spam on my blog (plugins being under-rated, and an htaccess being the answer). Today i got a bit of a reprieve when I found another more-intelligent-than-I, wp user that also uses an .htacess and has ditched plugins all together. His .htaccess is up for looking at too @ http://www.tomrafteryit.net/htaccess.txt

[Bryce I]

Well, whoo, also for what it's worth, I pointed a friend of mine who maintains a large group blog running wp to this thread, and he is now eternally grateful, so chalk up one more convert.

[whoo]

woohhhooo! ya know, bryce, i really love plugins, and i truly love wordpress, BUT if you spend any time reading their support forums, the majority of the spam plugins are like Vioxx; they might work, they might not, and they all cause liver damage.

You would think with all of those plugins available, that there would not be ANY threads about spam over there, and yet there still are, every day. My goal if I were developing any sort of web based app would be to eliminate the need for ANY spam threads, regardless of the form the solution took. Thats just me, though.

[captsolo]

Whoo, after moving /htsrv to another location I was getting quite a lot error messages (in apache error log) that trackback.php was not found. This does not influence the work of b2evo, but still i'd prefer to get rid of these messages.

Would it make sense to redirect those coming to the old /htsrv location? To their own IP address or something? And if yes, what would be the appropriate .htaccess lines?

[whoo]

[Bryce I]

FYI, if anyone has read this far, and is looking for information linked to in point #5 in whoo's original post re: pinapple proxy, that page is no longer publicly available, although whoo's directions should still work.

However, I'm guessing that the pinapple spammer has changed something recently. Can anyone confirm? I'm not being targeted, but a friend of mine is, and I've noticed a lot of spam this morning on his blog.

[a.shane]

Thanks for this thread! I finally got sick enough of spam to get into the hardcore prevention. I slamed into it head first and now I have a head ache.

What went wrong:
I have to use the www in www.racerx.info now. Before the www wasn't needed.

RewriteCond %{HTTP_REFERER} type lines like in Whoo's original post in .htaccess seem to catch ALL links. Even if I hand type the address.
I'm guessing my server doesn't support mod-rewrite?
I tried this test from Whoo to another person and it did not work for me. My page loads normaly instead of loading Whoo's as it should.

[Dan]

I'm not a fan of blacklists. They steal my time (in upkeep) and my webhost's CPU usage (in execution).

The following htaccess entry would block any referrer spam I've received to date.

[Ioo]

Okay I added the

[Dan]

Ioo

You did not give much background. You have Apache with mod_rewrite? .htaccess is in your document root? Maybe change "disp=stats" to ^.*disp=stats.*$ -- shouldn't matter, I don't think.

[Ioo]

Dan,

I will have to ask the sys admin, about the rewrite thing, because I am not sure.. HTML I am there, php and I am kinda there, this part hear, I have no clue what so ever

I will find out ant let you know, thanks

[Elpie]

Hi all,
Thanks Whoo for starting an excellent thread.

I have an .htaccess which I would appreciate feedback on.

[whoo]

WOW! I cant say that I have ever been hit by them but I will be on the look out now. Nice catch

[personman]

I wondered if that might be the case. Can't he just add

[DirkVanuitDelft]

Works like a charm, I'm so happy! Thanks a lot, guys! .