I check the Nginx error log file regularly. I noticed that a lot of attempted accesses to favicon.ico coming from mainland China.
They come from different IP addresses and with different User Agents. Each of these IPs is only doing this, sometimes repeatedly.
They are just waste my server’s time and CPU. How to stop them or reduce the effect on my VPS.
Continue reading “Lots of favicon.ico requests from Mainland China”
Here is a notes for Email Server Settings. It is not just for Email server. It is mainly for DNS setting for Email server.
The purpose of it is to prevent from your outgoing email into spam box.
I have a web page, which use PHPMailer to send email. The problem of it is most of time the recipient found the email in the spam box. I am using sendmail to send out email.
Later I choose to use ZOHO as my email service provider. And choose smtp in PHPMailer.
So, the solution is here for ZOHO.
- SPF record
Continue reading “Email Server Settings for ZOHOMail”
By default all links posted in the comments under your articles are turned by WordpPress into links.
Unfortunately, this features encourages spammers to post many unwanted comments in your blog.
To disable turning URLs from comments into actual links, go to your admin area and then navigate to Appearance -> Editor.
Select the functions.php file from the right column and add the following line just above the closing php tag ( ?> ):
remove_filter('comment_text', 'make_clickable', 9);
Then, I purged all caches and reloaded one post. Then there are no hyper-link in comments. Theses links are just pure text now, not clickable.
MovableType has commenting system, but it is not good. Most of time, thousand spam is sitting in the blog await the owner to delete them. If there are many thousands spams, it is hard to delete them in a short command. My experience is to use phpMyadmin to delete them. The sql script I use is: delete from mt_comment where comment_visible = 0. I used it to delete 63962 spams.
OK. I give up. I find Disqus. It is beautiful and easy to install.
First of all, I have to disable the internal commenting system of MovableType 5
Click Settings >> Feedback >> Comment Settings, uncheck the check mark box of Accept Comments.
Second, Go to disqus.com to sign up and add your site. When choose the code, please be noticed that MovableType plugins is only for MovableType 4, not 5. So, choose universal code.
Then copy the code in the first box and put in the very beginning of comments template. Save the template.
Keep the code already there, which will keep the old comments.
The last step is republish all entry archives.
You may be tired of deleting spams or spammer account from your site. Sometimes your site is in the list of spammer. And also most of time the spammer are coming from the following top 10 countries.
6. Viet Nam
How to stop them?
Continue reading “How to stop access by country IP blocks”
I saw a very strange comment in this blog, which is hold for review.
Continue reading “Spam Attack of WordPress”
reCAPTCHA is better than MT native captcha image. reCAPTCHA is not only the a program that can tell whether its user is a human or a computer, but also let users help to recognize the scanned document. More details about the theory of reCAPTCHA.
MovableType 4.1 has an native CAPTCHA tool. It also has an extra plugin of reCAPTCHA.
Let me show you how to install and enable it.
1) Register an account at reCAPTCHA.
2) Add domain, all sub-domain will works under it.
3) Get public key and private key.
4) Copy the reCaptcha folder from /your MT folder/extras/examples/plugins/ to /your MT folder/plugins/ directory
5) Choose reCaptcha as the blog’s captcha provider
Blog name > preferences > blog settings > comment
6) Save public key and private key into settings.
Blog name > preferences > plugins
7) Edit Comment Form template, so it renders MTCaptchaFields unconditionally. In practice, this means replacing these lines
to these lines:
8) Edit Javascipt index template, to remove these lines of code which calls delayShowCaptcha:
captcha_timer = setInterval('delayShowCaptcha()', 1000);
9) Rebuild index and individual entry archive and page archive.
As I mentioned before, I install a Spamwords 1.1.3 plugin on PHPBB 2.0.22. After about one and half month use, I feel it is so good to provent lots of spam from displaying on my G2Soft Support forum.
It is like a Wall to protect the phpbb. The spammer is blocked and the IP address is banned either.
Let me list some popular spam words I used when detect the message.
There are three types of spam words.
1) Adult content;
3) fake software;
4) Other items, say, Furniture;
The list of spam words keep growing. When I see some new type of Spam, I will add these into the spam words. So next time some spammers try to post will be blocked.
During past 1 and half month, it blocked over one hundred spams. It is not including the spam post I deleted manually about 10 posts.
This Spam Words is good and powerfull. If you have a PHPBB forum. I highly recommend it to you to protect your system.
SixApart announce an update of the default plugin Spamlookup
It is a manual update. The steps as below:
1. Login to Movable Type. (Your account will need to have System Administrator privileges.)
2. Click on the “Plugins” link in the main navigation on the left hand side.
3. Look for the “SpamLookup – Lookups” plugin set listed among your other plugins.
4. Click “Show Settings.”
5. Under “IP Blacklist Services” highlight and replace the text “opm.blitzed.org” with “zen.spamhaus.org”.
6. Click “Save Settings.”
After update, the commenting speed will be improved. You can try to leave your comment to test it.
Of course, the known spams will be blocked automatically.
I have posted Fight against Spam, Spammer and Bots on PHPBB forum system.
I have Humanizer mod for PHPBB, and Hide User’s WebSite Button 1.0.3 on my forum to protect against spam.
Now I feel it is not enough. I clean the spam every day.
I found this one SpamWords.
It can prevent the spam post with the “spam words” I setup in the system in advance.
It is cool that when a spammer want to post some spam, he will receive the error message and he can not successfully post it.
If you want this plugin, you can Download file here.
It will add some tables in your PHPBB database, and modify some files and install some new files.
The difficult fact is medium.
It took me about 15 minutes to install it. Please backup all files and database before installation.