[drupal-devel] simple and effective comment spam prevention exists and works

Harry Slaughter harry at slaughters.com
Sat Oct 1 16:29:47 UTC 2005


Adrian Rossouw wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> 
> On 01 Oct 2005, at 5:58 PM, Khalid B wrote:
> 
>> The scripts for spam bots can be easily modified to include a referer
>> that is just the domain name of the site being attacked.
> 
> Indeed.
> 
> Hell, you could just use wget --referer='domain.com' and post that way.

i know it's easy to get around. maybe that's why nobody uses this and 
spammers don't bother falsifying referer fields.

it's fine by me if nobody else does it, then i don't have to worry about 
spammers spending the effort to bypass it and i'm done with spam for good :)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: harry.vcf
Type: text/x-vcard
Size: 255 bytes
Desc: not available
Url : http://drupal3.drupal.org/pipermail/development/attachments/20051001/5261e5a6/harry.vcf


More information about the drupal-devel mailing list