[opensuse-project] SPAM on openSUSE wiki

Hi ! I spotted some SPAM on openSUSE wiki see http://paste.opensuse.org/view/raw/27352284 Ironically when I tried to remove the page myself (hey ! it's a wiki ;) ) I was denied by the spam blocker :D "You do not have permission to edit this page, for the following reason: Your IP address has been automatically blocked because it was used by another user, who was blocked by Cboltz. The reason given is: Autoblocked because your IP address has been recently used by "Robertleefather". The reason given for Robertleefather's block is "Spamming links to external sites" Thanks ! Paul -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2016-02-26 14:49, Paul Gonin wrote:
Hi !
I spotted some SPAM on openSUSE wiki
Please read the [opensuse-wiki] mail lists, there are some posts there explaining what is going on. - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlbQWeEACgkQja8UbcUWM1zTPQD+IojDemuXikJDIHJh+1e8y406 gKitN+lJu+4ZpTTR6FoA/iYUc6d3JAjYXWs9qozDoq4jYTnaDIeiGFgNq2cGm0Mv =RofP -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Hey, On 26.02.2016 14:49, Paul Gonin wrote:
I spotted some SPAM on openSUSE wiki see http://paste.opensuse.org/view/raw/27352284
Ironically when I tried to remove the page myself (hey ! it's a wiki ;) ) I was denied by the spam blocker :D
Christian when you block people you can't tick the 'Automatically block the last IP address used by this use' checkbox as this will block the IP of the proxy in front of the wiki and hence every user. I've changed all the recent blocks in the blocklist. Henne -- Henne Vogelsang http://www.opensuse.org Everybody has a plan, until they get hit. - Mike Tyson -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

sorry I somehow missed that there was an opensuse-wiki mailing list On Fri, Feb 26, 2016 at 3:04 PM, Henne Vogelsang <hvogel@opensuse.org> wrote:
Hey,
On 26.02.2016 14:49, Paul Gonin wrote:
I spotted some SPAM on openSUSE wiki see http://paste.opensuse.org/view/raw/27352284
Ironically when I tried to remove the page myself (hey ! it's a wiki ;) ) I was denied by the spam blocker :D
Christian when you block people you can't tick the 'Automatically block the last IP address used by this use' checkbox as this will block the IP of the proxy in front of the wiki and hence every user.
I've changed all the recent blocks in the blocklist.
Henne
-- Henne Vogelsang http://www.opensuse.org Everybody has a plan, until they get hit. - Mike Tyson
-- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
-- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Hello, Am Freitag, 26. Februar 2016, 15:04:05 CET schrieb Henne Vogelsang:
On 26.02.2016 14:49, Paul Gonin wrote:
I spotted some SPAM on openSUSE wiki see http://paste.opensuse.org/view/raw/27352284
Ironically when I tried to remove the page myself (hey ! it's a wiki ;) ) I was denied by the spam blocker :D
Christian when you block people you can't tick the 'Automatically block the last IP address used by this use' checkbox as this will block the IP of the proxy in front of the wiki and hence every user.
Oops, I wasn't aware of this detail :-(
I've changed all the recent blocks in the blocklist.
Thanks, and sorry for accidently blocking everybody! I just searched for a way to make sure this can't happen again, and found a) whitelisting IP ranges (like the proxy's IP) https://www.mediawiki.org/wiki/Autoblock#Disabling_autoblocking Unfortunately this needs to be done on every wiki, for example on https://en.opensuse.org/MediaWiki:Autoblock_whitelist b) reducing the time how long an autoblock is active (1 second sounds fine when everybody comes via the same IP) https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:$wgAutoblockExpiry Do you think we should implement one or both of them? Regards, Christian Boltz --
Jesux. Ist aber zu kompliziert, immer dieses Kernel konfirmieren... Wieso? Oblade ins Laufwerk, Meßwein in den Prozessorkühler füllen, $> confirm kernel eintippen und warten, bis die Liturgie durch ist - ganz einfach! [Florian Evers und Martin Leidig in suse-talk]
-- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Hello, TL;DR: the english wiki is temporarily read-only to stop spammers (wiki admins can still do edits) Am Freitag, 26. Februar 2016, 19:37:11 CET schrieb Christian Boltz:
Am Freitag, 26. Februar 2016, 15:04:05 CET schrieb Henne Vogelsang:
Christian when you block people you can't tick the 'Automatically block the last IP address used by this use' checkbox as this will block the IP of the proxy in front of the wiki and hence every user.
Oops, I wasn't aware of this detail :-(
Actually I abused this detail again - the massive spam attack continues, and blocking the proxy IPs is the only way I have to stop the spam. Yes, I'm aware that this will also block "good" edits. Sorry for that, but even if someone sends me a mail with "can you please change $page to $text", it's still faster than deleting 1000 more spam pages. (Still, I'd like to ask you to do this only in really urgent cases ;-) On releated news: I discussed available options to block the spammers with Darix. The "Nuke" extension to mass-delete pages is already on the staging wiki and should be available in the production wiki on monday. We also have some ideas to prevent spam posts - more on this when it's implemented. Fun fact, in case someone wonders: blocking the spammers by username means fighting windmills - they switch user accounts faster than I can block them :-( (yes, I tested this!) Regards, Christian Boltz --
Could someone remove this requirement? I think you have to write a bugzilla. While Villabajo still discusses which medium to use, Villarriba has already submitted 304823. [>> Volker Kuhlmann, > Carlos E. R. and Jan Engelhardt in opensuse- factory]
-- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Christian Boltz wrote:
Fun fact, in case someone wonders: blocking the spammers by username means fighting windmills - they switch user accounts faster than I can block them :-( (yes, I tested this!)
In my experience, captchas and/or requiring manual approval of new accunts works quite well. -- Per Jessen, Zürich (0.9°C) http://www.hostsuisse.com/ - dedicated server rental in Switzerland. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2016-02-27 10:15, Per Jessen wrote:
Christian Boltz wrote:
Fun fact, in case someone wonders: blocking the spammers by username means fighting windmills - they switch user accounts faster than I can block them :-( (yes, I tested this!)
In my experience, captchas and/or requiring manual approval of new accunts works quite well.
I was going to suggest that. Delayed activation, block certain areas after registering (say, you can report a bug, post on the forum, but not write in the wiki), till some kind of approval. - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlbRcakACgkQja8UbcUWM1y5IgEAn6PgPzP0i/5FocjvAKRGSQx8 9CDjkjCMV68vUY0OefEA/iaYeO4krLyXQgzSXLuPnVbUNTlvZpSV16oPVh3SOPAd =jw73 -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Per Jessen composed on 2016-02-27 10:15 (UTC+0100):
In my experience, captchas and/or requiring manual approval of new accunts works quite well.
Captchas don't work very well for some people. I've repeatedly been to some places where they never work the first try. Commonly when they make you try again, they reset at least two fields you've laboriously typed into already. Others make it impossible to tell a B from an 8 or a 0 or an O, or an l from a 1, among others. -- "The wise are known for their understanding, and pleasant words are persuasive." Proverbs 16:21 (New Living Translation) Team OS/2 ** Reg. Linux User #211409 ** a11y rocks! Felix Miata *** http://fm.no-ip.com/ -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Le 27/02/2016 11:18, Felix Miata a écrit :
Per Jessen composed on 2016-02-27 10:15 (UTC+0100):
In my experience, captchas and/or requiring manual approval of new accunts works quite well.
Captchas don't work very well for some people. I've repeatedly been to some places where they never work the first try. Commonly when they make you try again, they reset at least two fields you've laboriously typed into already. Others make it impossible to tell a B from an 8 or a 0 or an O, or an l from a 1, among others.
some are less boring than others :-) jdd -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org

Felix Miata wrote:
Per Jessen composed on 2016-02-27 10:15 (UTC+0100):
In my experience, captchas and/or requiring manual approval of new accunts works quite well.
Captchas don't work very well for some people. I've repeatedly been to some places where they never work the first try. Commonly when they make you try again, they reset at least two fields you've laboriously typed into already. Others make it impossible to tell a B from an 8 or a 0 or an O, or an l from a 1, among others.
That's okay, you'd only need it once (for account registration). -- Per Jessen, Zürich (2.1°C) http://www.hostsuisse.com/ - virtual servers, made in Switzerland. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
participants (7)
-
Carlos E. R.
-
Christian Boltz
-
Felix Miata
-
Henne Vogelsang
-
jdd
-
Paul Gonin
-
Per Jessen