Re: [pydotorg-www] Python Wiki Spam
On 20.03.2013 15:30, Barry Warsaw wrote: On Mar 20, 2013, at 10:08 AM, M.-A. Lemburg wrote: If we can't get things under control, we will have to start using such a group and disable public editing of pages :-( FWIW, we've long had this policy on the Mailman wiki. It was the only successful way to control spam. Sign up is open (and yes, we occasionally have to delete profile spam), but folks have to email the mailman-cabal to request write/edit access. We don't get a lot of such requests, so the process is quite manageable, and we get almost zero spam now. Did this have an effect on the number of editors of the wiki ? The usual complaint when doing this is that you prevent quick edits (e.g. typo corrections) by raising the bar in this way. After the recent updates to the textchas, the profile spam has apparently stopped: http://wiki.python.org/jython/RecentChanges So perhaps making the textchas a little more complicated and also starting a process to accept people to the trusted editor group would solve the problem. -- Marc-Andre Lemburg eGenix.com Professional Python Services directly from the Source (#1, Mar 22 2013) Python Projects, Consulting and Support ... http://www.egenix.com/ mxODBC.Zope/Plone.Database.Adapter ... http://zope.egenix.com/ mxODBC, mxDateTime, mxTextTools ...http://python.egenix.com/ 2013-03-13: Released eGenix pyOpenSSL 0.13 ...http://egenix.com/go39 : Try our mxODBC.Connect Python Database Interface for free ! :: eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48 D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg Registered at Amtsgericht Duesseldorf: HRB 46611 http://www.egenix.com/company/contact/ ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On Mar 22, 2013, at 12:19 PM, M.-A. Lemburg wrote: Did this have an effect on the number of editors of the wiki ? It probably did, but it's hard to gauge. It's not like we had a ton of non-spam editors previously. We never denied anybody write access if they asked though. The usual complaint when doing this is that you prevent quick edits (e.g. typo corrections) by raising the bar in this way. Yep. Unfortunately, it was taking way too much of our time weeding out the spam, so before the policy, our wiki was arguably less useful. -Barry signature.asc Description: PGP signature ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On Wed, Mar 20, 2013 at 12:52 AM, Paul Boddie p...@boddie.org.uk wrote: On Tuesday 19 March 2013 09:30:13 M.-A. Lemburg wrote: I've added a new set of textchas to the Python wiki. Thanks to both of you for configuring the wiki and improving the textcha questions. This makes it a lot easier and more rewarding to keep maintaining the wiki content. I don't know. I found myself run out of patience typing those new long phrases. Users with editing history should not suffer. Is it complicated to find a place in MoinMoin to insert a check of len(user.edits) 5 for textcha display and validation? -- anatoly t. ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 19.03.2013 09:14, M.-A. Lemburg wrote: On 18.03.2013 19:58, Paul Boddie wrote: On Monday 18 March 2013 19:00:37 Radomir Dopieralski wrote: On Mon, Mar 18, 2013 at 6:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? You can see that it is enabled by visiting this link: http://wiki.python.org/moin/FrontPage?action=newaccount (make sure you are logged out) As for the questions, I'm open to suggestions. I don't think How many words are in this question? is really setting the bar very high for spammers. Textcha questions are supposed to retain the context of the site on which they are placed so that bulk spamming cannot just scrape the question and serve it up to someone on some other site. This means that we should be asking Python-related questions, not simple Are you human? questions that ceased to be effective about ten years ago. Reimar is currently running a test on the Jython wiki. He marked http as bad content, which results in all edits including that word to get rejected. At least on the Jython wiki, this has apparently stopped the spam pages from getting created: http://wiki.python.org/jython/RecentChanges It's not a permanent solution, though, since it prevents adding links to pages. The experiment has resulted in the spam being stopped. Unfortunately, it also prohibited any edits of pages with links on them - even by regular wiki users. I've removed the http again and will add a new set of textchas for now. -- Marc-Andre Lemburg PSF Vice Chairman ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 20.03.2013 09:44, M.-A. Lemburg wrote: On 19.03.2013 09:14, M.-A. Lemburg wrote: On 18.03.2013 19:58, Paul Boddie wrote: On Monday 18 March 2013 19:00:37 Radomir Dopieralski wrote: On Mon, Mar 18, 2013 at 6:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? You can see that it is enabled by visiting this link: http://wiki.python.org/moin/FrontPage?action=newaccount (make sure you are logged out) As for the questions, I'm open to suggestions. I don't think How many words are in this question? is really setting the bar very high for spammers. Textcha questions are supposed to retain the context of the site on which they are placed so that bulk spamming cannot just scrape the question and serve it up to someone on some other site. This means that we should be asking Python-related questions, not simple Are you human? questions that ceased to be effective about ten years ago. Reimar is currently running a test on the Jython wiki. He marked http as bad content, which results in all edits including that word to get rejected. At least on the Jython wiki, this has apparently stopped the spam pages from getting created: http://wiki.python.org/jython/RecentChanges It's not a permanent solution, though, since it prevents adding links to pages. The experiment has resulted in the spam being stopped. Unfortunately, it also prohibited any edits of pages with links on them - even by regular wiki users. I've removed the http again and will add a new set of textchas for now. Within a few minutes of removing the http, the spam started rolling in again. I hope the new textchas will raise the bar a bit. -- Marc-Andre Lemburg PSF Vice Chairman ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On Mar 20, 2013, at 10:08 AM, M.-A. Lemburg wrote: If we can't get things under control, we will have to start using such a group and disable public editing of pages :-( FWIW, we've long had this policy on the Mailman wiki. It was the only successful way to control spam. Sign up is open (and yes, we occasionally have to delete profile spam), but folks have to email the mailman-cabal to request write/edit access. We don't get a lot of such requests, so the process is quite manageable, and we get almost zero spam now. -Barry ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 18.03.2013 19:58, Paul Boddie wrote: On Monday 18 March 2013 19:00:37 Radomir Dopieralski wrote: On Mon, Mar 18, 2013 at 6:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? You can see that it is enabled by visiting this link: http://wiki.python.org/moin/FrontPage?action=newaccount (make sure you are logged out) As for the questions, I'm open to suggestions. I don't think How many words are in this question? is really setting the bar very high for spammers. Textcha questions are supposed to retain the context of the site on which they are placed so that bulk spamming cannot just scrape the question and serve it up to someone on some other site. This means that we should be asking Python-related questions, not simple Are you human? questions that ceased to be effective about ten years ago. Reimar is currently running a test on the Jython wiki. He marked http as bad content, which results in all edits including that word to get rejected. At least on the Jython wiki, this has apparently stopped the spam pages from getting created: http://wiki.python.org/jython/RecentChanges It's not a permanent solution, though, since it prevents adding links to pages. -- Marc-Andre Lemburg eGenix.com Professional Python Services directly from the Source (#1, Mar 19 2013) Python Projects, Consulting and Support ... http://www.egenix.com/ mxODBC.Zope/Plone.Database.Adapter ... http://zope.egenix.com/ mxODBC, mxDateTime, mxTextTools ...http://python.egenix.com/ : Try our mxODBC.Connect Python Database Interface for free ! :: eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48 D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg Registered at Amtsgericht Duesseldorf: HRB 46611 http://www.egenix.com/company/contact/ ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 19.03.2013 09:14, M.-A. Lemburg wrote: On 18.03.2013 19:58, Paul Boddie wrote: On Monday 18 March 2013 19:00:37 Radomir Dopieralski wrote: On Mon, Mar 18, 2013 at 6:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? You can see that it is enabled by visiting this link: http://wiki.python.org/moin/FrontPage?action=newaccount (make sure you are logged out) As for the questions, I'm open to suggestions. I don't think How many words are in this question? is really setting the bar very high for spammers. Textcha questions are supposed to retain the context of the site on which they are placed so that bulk spamming cannot just scrape the question and serve it up to someone on some other site. This means that we should be asking Python-related questions, not simple Are you human? questions that ceased to be effective about ten years ago. Reimar is currently running a test on the Jython wiki. He marked http as bad content, which results in all edits including that word to get rejected. At least on the Jython wiki, this has apparently stopped the spam pages from getting created: http://wiki.python.org/jython/RecentChanges It's not a permanent solution, though, since it prevents adding links to pages. I've added a new set of textchas to the Python wiki. -- Marc-Andre Lemburg PSF Vice Chairman ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
* M.-A. Lemburg m...@egenix.com: We've been seeing the same development on the Jython wiki. I guess they just realized that the Python wiki will likely get them even more Google juice: http://wiki.python.org/jython/RecentChanges Unfortunately, the wiki spam appears to from real humans, so textchas don't really help much. I've also checked IP ranges, but it doesn't help either. Of course, ideas as welcome :-) Maybe block using some blacklists (we're using sbl.spamhaus.org) using mod-spamhaus or similar modules. -- Ralf Hildebrandt Charite Universitätsmedizin Berlin ralf.hildebra...@charite.deCampus Benjamin Franklin http://www.charite.de Hindenburgdamm 30, 12203 Berlin Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155 ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 18.03.2013 19:03, Ralf Hildebrandt wrote: * M.-A. Lemburg m...@egenix.com: We've been seeing the same development on the Jython wiki. I guess they just realized that the Python wiki will likely get them even more Google juice: http://wiki.python.org/jython/RecentChanges Unfortunately, the wiki spam appears to from real humans, so textchas don't really help much. I've also checked IP ranges, but it doesn't help either. Of course, ideas are welcome :-) Maybe block using some blacklists (we're using sbl.spamhaus.org) using mod-spamhaus or similar modules. Do they have RBLs for wikis ? I thought they only do email blacklisting. Their website appears to be down at the moment. I'll check again later. -- Marc-Andre Lemburg eGenix.com Professional Python Services directly from the Source (#1, Mar 18 2013) Python Projects, Consulting and Support ... http://www.egenix.com/ mxODBC.Zope/Plone.Database.Adapter ... http://zope.egenix.com/ mxODBC, mxDateTime, mxTextTools ...http://python.egenix.com/ : Try our mxODBC.Connect Python Database Interface for free ! :: eGenix.com Software, Skills and Services GmbH Pastor-Loeh-Str.48 D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg Registered at Amtsgericht Duesseldorf: HRB 46611 http://www.egenix.com/company/contact/ ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On Monday 18 March 2013 19:00:37 Radomir Dopieralski wrote: On Mon, Mar 18, 2013 at 6:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? You can see that it is enabled by visiting this link: http://wiki.python.org/moin/FrontPage?action=newaccount (make sure you are logged out) As for the questions, I'm open to suggestions. I don't think How many words are in this question? is really setting the bar very high for spammers. Textcha questions are supposed to retain the context of the site on which they are placed so that bulk spamming cannot just scrape the question and serve it up to someone on some other site. This means that we should be asking Python-related questions, not simple Are you human? questions that ceased to be effective about ten years ago. Paul ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
On 18/03/2013 18:00, M.-A. Lemburg wrote: We've been seeing the same development on the Jython wiki. I guess they just realized that the Python wiki will likely get them even more Google juice: http://wiki.python.org/jython/RecentChanges Of course, ideas as welcome :-) I've had success with Akismet: http://akismet.com/ Not that hard to wire in for a blog, maybe the same could be done for wiki edits? cheers, Chris -- Simplistix - Content Management, Batch Processing Python Consulting - http://www.simplistix.co.uk ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
Re: [pydotorg-www] Python Wiki Spam
Does MoinMoin support moderated edits by new users? -- anatoly t. On Mon, Mar 18, 2013 at 8:51 PM, Paul Boddie p...@boddie.org.uk wrote: Hello, We're getting a fair amount of spam on the Python Wiki. Can someone with administrative privileges check that the textcha feature is enabled and has been given a set of effective questions? Thanks, Paul ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www ___ pydotorg-www mailing list pydotorg-www@python.org http://mail.python.org/mailman/listinfo/pydotorg-www
