[wp-hackers] Comment spam floods?
Ryan Duff
ryan at duff-duff.net
Sun Nov 28 03:43:13 UTC 2004
On Saturday, November 27, 2004 7:28 PM Alistair Young wrote:
> Is there something wrong with wp 1.2.1? nothing seems to work
> properly for
> configuration:
>
> 1) getting spammed sensless via comments - disable comments -
> they still come through. They even come through on new posts
> where comments have never been enabled
Thanks for bringing this up, I noticed this the other day on my 1.2.1 test
blog. I had made some test posts and deleted them. If I tried to go to them,
I'd get a "no matches" response, but I kept getting notified that comments
were being left on them. This set off a red flag as to how comments could be
left on posts no longer in the database. They could no longer be visited, so
how were comments able to be left on them. I also turned off comments and
still got comments. I think we may need to take a look at the code, seems
like there might be a flaw that lets spam bots keep spamming, the only thing
is, they don't get any exposure anyway because the post can't be seen by
anybody else. Has anyone else noticed this?
Ryan Duff
http://www.duff-duff.net
More information about the hackers
mailing list