Ongoing spam assault

Hi friends,

There’s always a price to pay.  It seems that my blog has been getting more and more popular lately.  However, it has also become a spam magnet.  It’s not just that the number of spam comments has increased to +65000…

Apparently, there are some unfixed security holes in the WordPress software for this blog.  Those can be exploited by the spammers to drop all kinds of stupid links into the blog roll.  That’s the reason that section on the right is gone now.

I wasn’t really in need of or trying to sell you those items you may have seen on occasion 😉  If that’s the case, my apologies.

If anyone knows a good solution for this problem, feel free to drop me a note!

Until next time,

Matt

4 comments

  • Hello Matt.

    In WordPress 2.3, there exists an error in the page link.php that can be exploited to transform the blogroll in something full of spam. I have solved using the solution described at http://www.anieto2k.com/2007/10/18/detectada-vulnerabilidad-en-wordpress-23/ (sorry it’s a spanish blog). I don’t know if it’s yout problem, but maybe it could help you.

    Congratulations for your work with kettle. It’s a very useful tool.

    Josep

  • Thank you for that link Josep. It’s indeed the problem with “link.php” that I had. In the end I just removed the file (and the blogroll to make sure) to stop the problem.
    The upgrade to version 2.3.0 is something I’ll postpone until I have a little bit of extra time 🙂
    In any case, the “patched” file from wordpress didn’t work on version 2.2.3.

    All the best,
    Matt

  • Have you tried Akismet? I just activated that plugin on my site and I’ll see how it does…

  • Well, askimet is indeed saving me here. So far it has caught around 200,000 spam messages on this site alone.
    I think it’s doing its job. 🙂