SPAM prevention based on commenter's "Web" field

Neko · 2007-03-07 15:17:41

Is there a plug-in that checks if certain strings are present in commenter’s name and/or email and/or URL and automagically marks comment as SPAM?

Thanks.

Last edited by Neko (2007-03-07 18:48:52)

ruud · 2007-03-07 15:45:53

plugin: mrw_spamkeywords_urlcount

Neko · 2007-03-07 15:50:08

Thanks, ruud, but I think that doesn’t work the way I meant, unless I’m missing something. Anyway I modified said plug-in so now it only checks if the spammy/undesired URL is present within the commenter’s website field.

Here it is.

You have to specify any URL variation, like site.com, www.site.com, http://www.site.com and so on. If someone more skilled than me wants to add some PHP magic, so you just need to enter site.com (or just a word, like “somesite”), is more than welcome.

Last edited by Neko (2007-03-07 17:49:02)

ruud · 2007-03-07 16:28:43

Just ‘site.com’ will do, because the stristr function doesn’t need an exact match, the substring just has to be part of the string you’re comparing it to.

Neko · 2007-03-07 16:35:06

Stellar, thanks.

Neko · 2007-03-07 16:46:45

Version 0.2 (ROTFL), added the “Help” section.

The-Exit · 2007-04-17 17:22:46

hi!

i installed today this plugin. i entered the following rules:

$finder[] = ‘members.aol.com/pokerspel/’;
$finder[] = ‘http://members.aol.com/pokerspel/loan/construction-loans.html’;
$finder[] = ‘http://members.aol.com/pokerspel/loan/life-insurance-rate.html’;
$finder[] = ‘http://members.aol.com/pokerspel/loan/student-loan-consolidation-program.html’;
$finder[] = ‘http://members.aol.com/pokerspel/loan/home-refinance.html’;

unfortunatelly, the plugin does only work for the urls which are detailled specified. the more general url is neglected. can you give advice?

Neko · 2007-04-17 17:49:03

I have the very same spammer after my site. In my case I simply entered:

	$finder[]  = 'members.aol.com;

and all of his comments are correctly marked as spam.

Last edited by Neko (2007-04-17 17:55:28)

ruud · 2007-04-17 17:54:47

I think Matthias has the ‘mrw_spamkeywords_urlcount’ plugin installed, which doesn’t check URLs.
I’ve modified that plugin as follows to check not just the message, but also the email address, URL and name. Also it’s filtering out messages that start with 4 or 5 uppercase letters or digits.
It’s currently catching all spam comments at textpattern.org at the moment (approx. 100 each day).

register_callback('mrw_checkcomment','comment.save');
function mrw_checkcomment()
{

// If you want to change the tolerance, just change the number.
	$moderate_count_limit = 2; // more than 2 links = moderation
	$spam_count_limit = 5; // more than 5 links = spam

// These are the blacklist the plugin searches for before choosing flag the comment or not. It's up to you to add or delete from this list. If you feel like the word "llama" shouldn't appear in the comments, then just add another line that says $finder[] = 'llama';

	$finder[] = 'bad credit';
	$finder[] = 'cialis';
	$finder[] = 'credit card';
	$finder[] = 'credit repair';
	$finder[] = 'debt';
	$finder[] = 'consolidate';
	$finder[] = 'consolidation';
	$finder[] = 'refinance';
	$finder[] = 'insurance';
	$finder[] = 'interest';
	$finder[] = 'loans';
	$finder[] = 'mortgage';
	$finder[] = 'payday loan';
	$finder[] = 'porn';
	$finder[] = 'viagra';

// Don't edit below this line -----------------

	$form_array = getComment();
	$checking =  $form_array['message'];

# Ruud, 13 apr 2007, check all form fields, not just the message
foreach(array('message','web','name','email') as $var) {
	$checking = $form_array[$var];
	foreach($finder as $x)
	{
		$found = stristr($checking, $x);
		if($found) { break 2; }
	}
}

# Ruud, 13 apr 2007, message begins with a 4 or 5 uppercase/digit word -> spam
if (preg_match('/^\s*[A-Z0-9]{4,5}(\b|$)/', $form_array['message'])) $found = true;

	$needle = "http://";
	$urlcount = substr_count($checking,$needle);
	if($urlcount > $spam_count_limit)
		{ $spam=1; }
	if($urlcount > $moderate_count_limit && $urlcount < $spam_count_limit)
		{ $moderate=1; }


	// We get the evaluator instance. You always need this.
	$evaluator =& get_comment_evaluator();

	// However we want to mark wrong answers as spam
	if (($found) || $spam==1)
		$evaluator -> add_estimate(SPAM, 0.6);
	if ($moderate==1)
		$evaluator -> add_estimate(MODERATE, 0.6);
}

Last edited by ruud (2007-04-17 17:58:28)

Neko · 2007-04-17 21:54:35

Neat, thanks ruud.

Do you know if it’s possible to have the plug-in directly delete comments instead of marking them as spam?

ruud · 2007-04-17 23:05:00

A quick fix could be changing:

$evaluator -> add_estimate(SPAM, 0.6);

into:

$evaluator -> add_estimate(RELOAD, 1, 'looks like spam');

If I understand correctly, this would show the comment form to the spammer so they can correct their mistakes (difficult or impossible for automatic spammers), while showing an error ‘looks like spam’. The spam comment would never be stored, so there’s no need to delete anything ;)

zem · 2007-04-17 23:25:08

The way Textpattern handles spam estimates is a bit limited, so I’m open to suggestions on how to improve it. A couple of possibilities:

Store the message(s) in the comment table when saving it, and perhaps remove the evaluator log
Don’t send an email to the author when a comment is marked as spam, or at least make it optional
Include the evaluator messages in the comment email

Textpattern CMS

Textpattern CMS support forum

#1 2007-03-07 15:17:41

SPAM prevention based on commenter's "Web" field

#2 2007-03-07 15:45:53

Re: SPAM prevention based on commenter's "Web" field

#3 2007-03-07 15:50:08

Re: SPAM prevention based on commenter's "Web" field

#4 2007-03-07 16:28:43

Re: SPAM prevention based on commenter's "Web" field

#5 2007-03-07 16:35:06

Re: SPAM prevention based on commenter's "Web" field

#6 2007-03-07 16:46:45

Re: SPAM prevention based on commenter's "Web" field

#7 2007-04-17 17:22:46

Re: SPAM prevention based on commenter's "Web" field

#8 2007-04-17 17:49:03

Re: SPAM prevention based on commenter's "Web" field

#9 2007-04-17 17:54:47

Re: SPAM prevention based on commenter's "Web" field

#10 2007-04-17 21:54:35

Re: SPAM prevention based on commenter's "Web" field

#11 2007-04-17 23:05:00

Re: SPAM prevention based on commenter's "Web" field

#12 2007-04-17 23:25:08

Re: SPAM prevention based on commenter's "Web" field

Board footer