spam

Hi folks, I'm wondering if you have any suggestions because we're at the end of our rope! The web site I manage has been hit with a flood of new user registrations that are NOT people authentically trying to join our community. Since this started on October 1st, we have been getting approximately 10 new users per hour, 24-7. The IP addresses are almost always unique and the profile information is different each time, sometimes with spammy links, sometimes not.

The 2.0 branch of the Zenophile module is now in the beta stage!

Have you heard of Zenophile? It's a simple module which automates the process of creating Zen subthemes - no more copying and editing files by hand. Just fill out a few form elements and click a button, and your new Zen subtheme is ready for you to start working with.

Op http://groups.drupal.org/node/19514 staat een vacature voor een php opdracht. deze is echter niet drupal gerelateerd. Hoe moeten we omgaan met dergelijke postings? Verwijderen want niet drupal specifiek? Laten staan want is goed voor PHP? Policy maken? Wat zijn uw gedachten?

update: posting is weggehaald user op de hoogte, de bestaande policy was goed genoeg

I'm going to delete the 200-odd submissions just created by the (brand new) user zhoroscop

http://groups.drupal.org/user/20738

Cartierul Independentei din Sighetu Marmatiei
Sighetu Marmatiei
United Nations region Abkhazia
United Nations region Afghanistan
United Nations region Akrotiri Dhekelia
United Nations region Aland
United Nations region Albania
United Nations region Algeria
United Nations region American Samoa
United Nations region Andorra
United Nations region Angola
United Nations region Anguilla
...

etc.

CAPTCHA is a great way of preventing spam. Another method of spam prevention is using a web service that scans the content for spam-like content. One popular choice is Akismet. Dries has launched a new web service called Mollom. The thing that makes Mollom neat is that it presents a CAPTCHA when the published content is thought to be spam. Very neat service!

I found this coming in from Drupal planet http://www.tech-wanderings.com/drupal-nofollowed-too-pervasive.

Greg Holsclaw talks about how nofollow attributes could be hurting Drupal (rel=nofollow being a well intentioned way of deterring spam. Something that has managed to keep the ratio of spam to real content on the web down to a respectable 10:1 :P) Basically, he points out that most internal links on drupal.org get the nofollow attribute attached to them.

Greg makes a number of good points, but I think the two most important are:

I came up with a simple snippet to block a huge amount of anonymous comment spam that I'd like to share. I made a rule that anonymous users cannot include links in their comments. I don't believe that this is much of an inconvenience to legitimate visitors. They can still paste a URL into their comment, it just won't be hyperlinked.

Here's the code (from a module called fiercecommon that contains a common functions used across our sites -- you can put it wherever):
<?php
/**
* Implementation of hook_comments() -- Blocks anon comment spam by preventing posts with link tags!
*/

I added latest captcha to this site. It is active for story form, registration form, and comment form. i will soon change og so there is a confirmation form when subscribing to a group since we've seen group subscription spam as well. we are using the text form of captcha, since that seems the sanest to me.

once you pass a single captcha, you never see it again as long as your session is active.

comments welcome.

In my experience as a Drupal site admin and webmaster, I've found only one way to absolutely prevent spam on two of my sites: require payment of a a subscription fee before allowing users to post new content.

As you can imagine, this has stopped spammers in their tracks. No spammer will ever pay a dime to post spam, it seems. Of course, new content postings have dropped significantly, as well!

One of my sites allowed a new user (a spammer, of course) to register and start posting content under the 'authenticated user' role a few days ago, even though my user settings were configured to require admin approval of all new accounts.