About two months ago spam started getting through GASP on my site (it had been working wonderfully until then). The amounts getting through have gotten larger and larger (over the past day or so, over 2000). I suppose this could have something to do with a wordpress update, but I doubt it. It seems very clear that someone out there has written a GASP-aware bot that can get around it. I’m willing to help look into this, I control completely the web-server being used. From the logs, nothing looks unusual to me, a typical spam comment that bypasses GASP just looks like
222.77.225.122 – – [22/Dec/2013:17:17:31 -0500] “POST /~woit/wordpress/wp-comments-post.php HTTP/1.1” 302 – “http://www.math.columbia.edu/~woit/wordpress/?p=6476/” “Mozilla/5.0 (Windows NT 5.1; rv:23.0) Gecko/20100101 Firefox/23.0”
