Posted in site bugs
15678
6:16 am, August 6, 2021
 

still more comment spam

this is getting annoying now. so much spam. i already have the google recapture, but spam is still getting through.

who runs this stuff, bots i guess. annoying. 

update: 10 August 2021

Still getting random spam here, i guess i need to add more spam checks, how does it bypass the google recapture. Unless its posting it without the form.

find the ip address, it seems they are adding the "code" to the user or nick name field, so i need to limit the characters on that one, its all sql safe and escaped anyway so it cant harm anything, its just annoying to delete 2500 rows of spam every day. 

SQLite

SELECT * FROM "comments" WHERE "user_ip" LIKE '%88.218.66.72%'

now delete all this spam and move to the next ip, also add the ip to the block list

SQLite

DELETE FROM "comments" WHERE "user_ip" LIKE '%88.218.66.72%'

I think the issue or one of the issues is that there is no limit or filter on the nickname field, so need to add a filter and limit here. 

https://i.imgur.com/9jFDikl.png

Update: 14 Sep 2021

It seems i have still not solved this particular issue and have to keep going into the database and clearing out all the spam. 

Here is an example:

22 Sep 2021

The bots are still trying. 

hundreds of spam still incoming, trying to add strings into the nick name field on the comments, all from the same ip address. 

There is google recapture on there, which i have checked is working so something is solving the capture.

I'll add a character limit to the nickname field and see if this slows it down a bit. 

Actually i just checked the comment adding page, and its not verifying the google recapture, that could be it. 

I had already written the code for this but for some reason i have not added it to the page, hmm...

Verify The Google Recapture Server Php

Ah now they tell me..

Well they probably already were telling me, but i didnt look. 

Added recapture verification to the comments, so see if that stops the massive amounts of comment spam.

It takes ages to verifly the comment now, when submitted, oh well i guess that is the price for spam protection. 

You are very commenty mr 45.155... is commenty a word, probably not. 

23 Sep 2021

checking back a day later and only one spam comment, so it seems to have worked, installing the recapture callback checking works. 

View Statistics
This Week
598
This Month
2469
This Year
4867

No Items Found.

Add Comment
Type in a Nick Name here
 
Related Search Terms
Search Code
Search Code by entering your search text above.
Welcome

This is my test area for webdev. I keep a collection of code here, mostly for my reference. Also if i find a good link, i usually add it here and then forget about it. more...

Subscribe to weekly updates about things i have added to the site or thought interesting during the last week.

You could also follow me on twitter or not... does anyone even use twitter anymore?

If you found something useful or like my work, you can buy me a coffee here. Mmm Coffee. ☕

❤️👩‍💻🎮

🪦 2000 - 16 Oct 2022 - Boots
Random Quote
The problem with hoarding is you end up living off your reserves. Eventually, you’ll become stale. If you give away everything you have, you are left with nothing. This forces you to look, to be aware, to replenish. . . . Somehow the more you give away, the more comes back to you.
Paul Arden
Random CSS Property

inset-inline-start

The inset-inline-start CSS property defines the logical inline start inset of an element, which maps to a physical offset depending on the element's writing mode, directionality, and text orientation. It corresponds to the top, right, bottom, or left property depending on the values defined for writing-mode, direction, and text-orientation.
inset-inline-start css reference