WordPress.org

Forums

spam and trackback attack (30 posts)

  1. stevecooley
    Member
    Posted 10 years ago #

    ok, so ... in the last 20 minutes, I've received over 80 comments and trackback pingback spam comments. So much for trackback, eh. Also, I turned comments and track/pingback off, and comments are still flooding in. What is going on??

  2. James Huff
    Volunteer Moderator
    Posted 10 years ago #

    Turning off comments and trackbacks/pingbacks only disables them for future posts. You will have to edit each past post to disable them in this manner. To quickly and effectively disable comments and trackbacks/pingbacks, delete the wp-comments-post.php and wp-trackback.php files.

    For other solutions, see this: http://www.tamba2.org.uk/wordpress/spam/#eight

  3. pschwar
    Member
    Posted 10 years ago #

    I just experienced the same problem, even though I have track/pingback turned off. But I like to keep my comments on.

    1. So I guess I'll just delete the wp-trackback.php file?

    2. Can the comment-spam word list work for trackbacks/pingbacks as well?

  4. James Huff
    Volunteer Moderator
    Posted 10 years ago #

  5. stevecooley
    Member
    Posted 10 years ago #

    ok, thank you... is there....... ANY idea how to stop this?

  6. stevecooley
    Member
    Posted 10 years ago #

    long term, I mean...

  7. James Huff
    Volunteer Moderator
    Posted 10 years ago #

    Long term solutions:

    1. Delete wp-trackback.php

    2. Throw all trackbacks into moderation. http://www.tamba2.org.uk/wordpress/spam/#eight

    3. Disable trackbacks on older posts. http://www.tamba2.org.uk/wordpress/spam/#eight

    4. Use Spam Karma. http://unknowngenius.com/blog/wordpress/spam-karma/

    5. Use Mt.DewVirus' Plugin. http://mtdewvirus.com/archives/2005/01/06/wordpress-plugins-trackback-and-pingback-moderation/

    Yes, all of this came from here: http://www.tamba2.org.uk/wordpress/spam/#eight

  8. Mark (podz)
    Support Maven
    Posted 10 years ago #

    I got whacked for the first time too.

    Thanks to Kitten's Spaminator, all I have to do is read the condolence messages in my mail.

    :)

  9. alienvenom
    Member
    Posted 10 years ago #

    I just got trackback spammed here too. 85 trackbacks in less than 10 minutes!

  10. lomara
    Member
    Posted 10 years ago #

    Same here. Seems like an epidemic.

  11. DJ Rg
    Member
    Posted 10 years ago #

    sure wish v1.3 would come out (or is it?) ..our lovely spammer is hitting my trackbacks, but so far they are only showing in my email and not on the blog..

    thinking of turning off trackbacks but also thinking the trackbacks must be showing up on spammers site, so wouldnt this be like having a oneway link back to us?

    or should i just trun off trackbacks and tell ppl to use the permalink?

  12. ccf
    Member
    Posted 10 years ago #

    Same pb on my blog. Don't these guys have anything to do?

  13. vsa
    Member
    Posted 10 years ago #

    another victim of trackback spam here... 149 messages...

  14. stereojoe
    Member
    Posted 10 years ago #

    I have the same problem - everyweek I end up cleaning up hundreds of spam hits.

    I have a request - could WordPress have a "select all" button on the edit comments page? It would be sooo much easier to select all 357 messages on the moderation queue to delete instead of checking the delete box of every single message.

  15. Mark (podz)
    Support Maven
    Posted 10 years ago #

    Why not use Kitten's Spaminator ?

    It kills them. Dead. Hell, it even buries the bodies and doesn't tell you if that's what you want !

    http://wordpress.org/support/topic.php?id=22040

  16. Logik
    Member
    Posted 10 years ago #

    Stereojoe, you can click "Mass Edit Mode" and then invert checkboxes for each page... then delete. just make sure you don't delete real comments or what have you ;) pretty easy to tell what is what though lol.. i got hit with about 30 spam comments last night on my brand new 1.5 beta install.. :( *sigh*

  17. mkenney
    Member
    Posted 10 years ago #

    I had just installed trenscanspammers plugin last month and thought I could sigh in relief from the spammers. Like everyone else here I've gotten hammered this morning both in comments and for the first time in trackbacks. Arrrggggghhhh.

    Unlike the spammers I don't get payed to keep coming up with new and clever ways of obfuscating my comment and trackback pages.

    I still think someone should hunt these bastards down and sue the companies that hire them for advertising on our sites without permission.

  18. antifuse
    Member
    Posted 10 years ago #

    They've definitely stepped up the attacks on WP blogs in the last couple days. I'm using Spam Karma, and it has caught something like 2000 comment spams since Sunday. But it didn't catch a single trackback spam (400 of them). That's fine, I don't really need trackback/pingback at the moment, as I only get about 1 valid one a month. So I just disabled it for all posts. Does Kitten's Spaminator pick up trackback spam? If so, then I may decide to switch. Oh wait, looks like Spam Karma has been updated to check trackbacks too

  19. antifuse
    Member
    Posted 10 years ago #

    Oh, and if you read the interview with the comment spammer at the register, the dude says that most of them aren't hired out - they spam to their own sites, which are themselves affiliates for the various pill, porn, and casino sites. They get some cut for every referral that comes from their own site.

  20. allyn
    Member
    Posted 10 years ago #

    i use the wpblacklist plugin which is working pretty well for comments but i just got a bunch of trackback spam, which apparently doesn't go through wpblacklist.

    is there a way to get wpblacklist to scan trackbacks?

  21. Halden
    Member
    Posted 10 years ago #

    Man 200 + trackbacks. Temporarily disabled trackbacks. Looking into Spam Karma (having issues) and Spaminators. Any preferences?

  22. dkeiger
    Member
    Posted 10 years ago #

    I'm getting slammed this morning, too...all for online poker. Must be our day.

  23. DJ Rg
    Member
    Posted 10 years ago #

    well i just dl kittemspaminator as podz said ..was real easy to install ..and it seems to be working though tonights attack will tell....

    antifues ..yep thats what this/these dudes are doing ..thats why u dont see an affiliate # in their code from ur blog ..the destsitations sites the payors claim they dont know who they are ..but they are full it cuz they have to pay these puke magots.. and need a real name and address to send checks (whether paypal or direct deposit)

    allyn ..mayb its ur words in ur blacklist ..cuz mine stopped the trackbacks from being posted ..i blacklist the urls and common words within the url and comment ..seems to work pretty good ..i only get a couple legit comments that need to be approved because if it ..but would rather they waited than to have to hunt down spam comments..

  24. stereojoe
    Member
    Posted 10 years ago #

    Thanks, Logik. FOr some reason the wording "Invert Checkboxes" didn't register with me as a "select all" option. Thanks, though - that's a major time saver for me.

  25. serendipity
    Member
    Posted 10 years ago #

    antifuse: I got about 250 over the last 2 days, about 1/5 of which trackback spam. Spam Karma caught them all, though. Yay! Do you have the very latest version of SK and trackback filtering enabled?

  26. ccf
    Member
    Posted 10 years ago #

    I downloaded the last version of spam karma this afternoon, and since then haven't had any trackback spam.

  27. SilverBlue
    Member
    Posted 10 years ago #

    Same here. Downloaded spam karma this morning and, after deleting the 500+ trackbacks from overnight, fortuantely, I haven't had new stuff come through.

    I wish there were a way to overload the spammers, however. After all, they're trying to take advantage of our bandwidth (trust me, I realize that would be no solution, in fact, some would consider it cyber t&rrorism, but just the thought of THEM being charged for excessive bandwidth made me smile for a minute.)

  28. dozer
    Member
    Posted 10 years ago #

    Can someone tell me for certain whether Spam Karma handles the trackback spam or not? I've read the Spam Karma stuff and can't see if it does or not. Getting killed with trackback spam like everyone else. urgh.

  29. James Huff
    Volunteer Moderator
    Posted 10 years ago #

    Yes, Spam Karma does block trackback spam, as long as it meets the criteria which you set.

    http://www.unknowngenius.com/blog/wordpress/spam-karma/

  30. MichaelE
    Member
    Posted 10 years ago #

    FYI: I've been sending notifications to the more prominent sites I've tracked the attacks back to and I got one response back. Apparently the spam was coming from one of their McAfee AV Servers that was compromised. I did not get the details of how but this illustrates how sophisticated they are starting to get. More than likely they got some kind of Malware/Trojan on their machine that was acting as a Zombie for the spammers.

    I've begun to profile the sites to see if I can find some correlation. I've also got some form mail setup to send responses to the ISP in an effort to let them know that this is happening. In the case of businesses like the one mentioned above, it is handy to have another set of eyes.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.