My b2evolution Version: 0.9.x
OK, so some 18 months after installing 0.9, I'm now trying to get my head around all the anti-spam measures that I should have looked at immediately following the initial install, but I didn't so I'm into catch up time. So far I've been wading through Whoo's thread here - http://forums.b2evolution.net/viewtopic.php?t=3764 and have done the following:
1. b2evo comes with a blacklist. Update that frequently. - DONE
2. Change the URL to your trackback and comments. - DONE
3. Using an .htaccess, fix it so your comments can ONLY be called locally. - OK, this is where I start coming unstuck
I'd already done as suggested in DOCS | TRICKY STUFF and had renamed sample.htaccess to .htaccess, but now a few days later, I find that both versions of the file have mysteriously vanished from /blogs and /blogs/admin. Is this something that is known to happen following a rename, or is it evidence that the spammers know where to look for it and have the wherewithal to delete it for me? It's easy enough to fix with a quick 'drag and drop', but that doesn't help me understand where it went in the first place.
.htaccess is clearly an important file in the fight against the spammers, but I think I'm lacking in understanding of where this file fits into the bigger picture and what it does there - apart from saying it's important, DOCS | HTACCESS doesn't actually say too much. Can anyone give me a potted summary?
I guess my next question is whether or not I should be wading through the enhancements to .htaccess under v0.9, or looking to upgrade to v1.9.3.
I need to protect the site as I've just weeded out 44,000 dodgy referrers from the db, and around 12,000 exceptionally dodgy comments. Whilst the blacklist has helped, it's not stopping the comments fully, presumably due to backdoor access methods that .htaccess would prevent.
I just need to map my way through this, so all suggestions are welcomed.
Thanks in advance