spam on the demo site ...

Hello

You should add a captcha to your site because there is some spam on it

http://www.zenphoto.org/zenphoto/impressionists/Monet+-+sunrise.jpg.php

Comments

  • Good point. But I'd rather not go the captcha route.

    Tris, could I have the admin information for the demo gallery, I'll be glad to help clean it up?

    And I've implemented the Akismet Hack with some success in my previous SVN builds. I would like to submit Gamedudex's hack to the trac for further development.
  • trisweb Administrator
    I clear it every so often, but it doesn't stop (of course ;-). I'll put something in there to stop it for now.
  • trisweb Administrator
    I've switched some fields around that should confuse the bots, and added some to confuse the humans. It should stop for a while. Eventually we'll need Akismet with moderation of course.
  • I already have a thread about that in the development google group. I also already have someone that is up for the task of taking a peek at it.

    I've got to put GameDudeX's hack into the SVN so we can get it into the core, and then we can work on developing it further for moderation capability.

    I'm envisioning something similar to Wordpress's mod stuff. Might take some database changes, but I'm not altogther certain yet.
  • It could be nice if the way ackismet is implemented allows anybody to use another plugin to filter comments.
    Ackismet is not efficient on my zenphoto album, Spamassassin is... So, the good thing could be to write a function that checks which module the admin wants to use.
  • You will be able to turn off the akismet filtering in the admin (which is what is being proposed when it is included in the core of zenphoto). So you will be able to use whatever you wish.
  • trisweb Administrator
    Yeah, all this needs to be in plugin form. A Plugin framework is slated for 1.2, which shouldn't be too far off now that development is back on track.
  • trisweb: exactly what I meant :) I will look on the wiki if I find some interesting data pieces about plugin framework.

    thinkdreams: disabling ackismet is one thing. enabling my module is another one. If the way Ackismet is implemented can allow me to change only few lines of code to work, it's far better :)

    Did you have the time to look at my spamassassin module?
  • Maybe you could add the following method too. Simply cheat with the spam-bots: add a bogus email input field (or something different) and hide it with CSS (rather than setting the field itself to `hidden` or `disabled`). The bot surely doesn't check for the CSS statement. So if he fills in an email address in, Zenphoto denies the comment. I think this should confuse most spambots.
    Maybe even better: ask for an URL since that's what the bot would like to fill in for sure.

    `.dontshow { display:none; }`

    `





    `

  • Two other methods to consider:

    1) a simple math equation (random number1) + (random number2) = (validate answer)
    2) A string of text with only a couple letters in a different color, ex basketball where "ket" is blue and thats what you enter. Easily controlled by using a class. Just gets rid of hard to read captcha text.
  • Just a quick note about the community build...

    There is now a simple spam filter that has been implemented by sbillard. It looks like it should get about 90%+ of the spam sent through the site. It is also customizable through the admin interface. So grab the latest SVN if you want to check it out.
  • sNews has a simple Math Captcha function:
    `

    // MATH CAPTCHA

    function mathCaptcha($input='', $sum='') {

    $length = 4;

    if (isset($_POST['calc'])) {

    if (is_numeric($input) && strlen($sum) == $length) {$math = substr(md5($input),0,$length) === $sum ? $input : null;}

    }

    else {

    $x = rand(1, 9); $y = rand(1, 9);

    $sum = substr(md5($x+$y),0,$length);

    $math = '
    ';

    $math .= $x.' + '.$y.' = ';

    $math .= '';

    $math .= '';

    }

    return $math;

    }

    `
Sign In or Register to comment.