Spam begets spam

Freshness Warning
This article is over 16 years old. It's possible that the information you read below isn't current.

Vandalism experts note that one of the best ways to combat graffiti and other forms of vandalism is to clean it up immediately. A wall with graffiti on it attracts more graffiti. A building with broken windows encourages other miscreants to break windows.

The same appears to be true with comment spam. While my anti-spambot measures seem to be effective, they’ll do nothing to stop people from hand-entering spam comments. I just received a spammy comment on my SimpleComments entry. Looking at the log files, the individual was on my site for 90 seconds before submitting the comment.

Looking to see how they found my site, I discovered that the initial referral was a Google search for sites linking to a common comment spammer. Digging further, I found that I’ve had several visits over the past month from people searching for links to common spam domains.

If you’re a spammer, it makes sense to post your links in places that they will be effective. If the links are deleted immediately, all your work has been lost. So the spammers are searching for spam comments that have remained on the page long enough to get the link into Google.

If you want to reduce the flow of comment spam to your site, be vigilant in removing the ones that do get posted. Leaving them up, even for a short time, can catch the eye of more spammers.

Chris
September 22, 2003 4:08 AM

So the 'key' method is working. That's good news.

halla
September 22, 2003 7:05 AM

Can you detail how you got this working, thinking of similar for my site. Also of interest would be a how-to or a link to how to get your entries named words and not numbers.

Chris Vance
September 22, 2003 10:09 AM

Great article. Does MT allow comments to be screened? I'm not sure if I've seen recent commenters suggest screening. LiveJournal and LJ clones (based on the LJ sourcecode like www.plogs.net) allow various screening options. Screening options include: no screening, screening all comments, replies by users you are not "watching," or only anonymous comments can be screened. It would seem that comment screening would remove the ability of spammers to get their message to your page, but would seem to add lots of administration for the owners of popular blogs. In any event, removing comment spam immediately when it is found helps to reduce future comment spam.

Michael
September 23, 2003 8:19 AM

I have never tried it personally, but there is the Comemnt Queue Script/MT Hack at http://www.scriptygoddess.com/archives/003944.php and http://www.rayners.org/2003/08/20/perl_version_of_the_comment_queue_hack.php.

Steven Garrity
September 23, 2003 3:47 PM

That's interesting - it's certainly consistent with the way spam comments (from robots or humans) seem to come in clusters on one or two threads at a time.

Jay
September 27, 2003 4:34 PM

You may find this interesting: http://www.jayallen.org/journey/2003/09/killing_comment_spam_dead It's a non-hack solution (i.e. no source code changes) for combatting comment spam with Movable Type. I will be making a few upgrades to the macros as well as rolling it together as a plugin very soon. I am also interested in working on a clearinghouse solution as I state in the entry. Perhaps you and Simon would be interested in collaborating??

Trackback from cce blog
October 6, 2003 2:54 PM

quick-n-dirty comment spam fix

Excerpt: i started getting a LOT of comment spam ... so i just renamed mt-comments.cgi to mt-c0mments.cgi to keep the robots away. i haven't received any comment spam since then, and i used to get several every day, so i suppose it must be working. publicizin...

cul heath
November 12, 2003 9:34 PM

As a relatively non-tech guy I just spent hours removing spammed comments from my blog tracked obstensively thru a whois search to this info: [Personally identifiable information removed.] Is this just spoofed or am I looking at the actual source of the spamming? A couple of hours ago I installed Jay Allen's MT-Blacklist plug-in and thank him for that greatly. I also posted the Comment Spam Manifesto and relevant linx...again a great deal of thanks to the author. I would like to learn more and am willing to dedicate inordinate amounts of time in any way I can to battling this scourge of the internet. Thanks for your time. cul heath vancouver bc

Adam Kalsey
November 12, 2003 9:57 PM

After a bit of internal debate I've removed the whois info from your comment. We live in a litigious society and the last thing I need is a lawsuit for something I didn't even write. That said, if the whois you posted was from the domain that spammed you, it looks like you have your spammer. And a Google search on the name of the hosting company identified in the whois (****puppy.com) has a lot of spam-related results. They appear to be a hosting company that speciallizes in hosting porn. You could contact them about the spammer and they might kick him. They have a pretty stong statement against spam in their acceptable use policy.

cul heath
November 13, 2003 3:28 PM

Thanx for the heads up on the litigious potential matter ( i agree;discretion/valor) I will follow up on the ****.puppy.com info... I know who they are and they are usually a fairly responsive group. I will post my results later. Thanx again.

Dale
November 14, 2003 10:04 AM

Don't know how important it is for you to be found by a Google search, but perhaps you could prevent your blog from being indexed by search engine sites by using a robots.txt file.

This discussion has been closed.

Follow me on Twitter

Best Of

  • Lock-in is bad T-Mobile thinks they'll get new Hotspot customers with exclusive content and locked-in devices.
  • The importance of being good Starbucks is pulling CD burning stations from their stores. That says something interesting about their brand.
  • Comment Spam Manifesto Spammers are hereby put on notice. Your comments are not welcome. If the purpose behind your comment is to advertise yourself, your Web site, or a product that you are affiliated with, that comment is spam and will not be tolerated. We will hit you where it hurts by attacking your source of income.
  • Where do the RSS ad startups fit in? Yahoo's RSS advertising service could spell trouble for pure-play RSS advertising services unless they adapt their business model.
  • Simplified Form Errors One of the most frustrating experiences on the Web is filling out forms. When mistakes are made, the user is often left guessing what they need to correct. We've taken an approach that shows the user in no uncertain terms what needs to be fixed.
  • More of the best »

Recently Read

Get More

Subscribe | Archives

Recently

Dysfunctions of output-oriented software teams (Sep 17)
Whatever you call it, the symptom is that you're measuring your progress by how much you build and deliver instead of measuring success by the amount of customer value you create.
Evaluative and generative product development (Aug 30)
Customers never even talk to the companies that don't fit their needs at all. If the only product ideas you're considering are those that meet the needs of your current customers, then you're only going to find new customers that look exactly like your current customers.
Product Manager Career Ladder (Aug 19)
What are the steps along the product management career path?
Building the Customer-Informed Product (Aug 15)
Strong products aren't composed of a list of features dictated by customers. They are guided by strong visions, and the execution of that vision is the primary focus of product development.
Assumptions and project planning (Feb 18)
When your assumptions change, it's reasonable that your project plans and needs change as well. But too many managers are afraid to go back and re-work a plan that they've already agreed to.
Feature voting is harmful to your product (Feb 7)
There's a lot of problems with using feature voting to drive your product.
Encouraging 1:1s from other managers in your organization (Jan 4)
If you’re managing other managers, encourage them to hold their own 1:1s. It’s such an important tool for managing and leading that everyone needs to be holding them.
One on One Meetings - a collection of posts about 1:1s (Jan 2)
A collection of all my writing on 1:1s

Subscribe to this site's feed.

Contact

Adam Kalsey

Mobile: 916.600.2497

Email: adam AT kalsey.com

Twitter, etc: akalsey

Resume

PGP Key

©1999-2019 Adam Kalsey.