Posts Tagged “SPAM”

Ever got Comments you don’t understand, because they’re in some language you’re not able to speak? Ever asked why someone writes a Comment in Russian to some post, which is let’s say written in english, german, french or whatever( at the same time I want to notice that I don’t talk about Comments made to some .de, .fr, .ru Blog, in the depending language where the owner of the Blog is able to speak that language as well. Where a commenter could believe it would be better to write in their native language as possible missunderstandings could be avoided because of better knowledge of this language).
What could be the reason to behave like that? In general they should be able to write some basic text in english, german, french, as it seems that they’re able to read the text, quite good enough to be able to add their own comment/opinion. So why don’t they do so?

Let’s try to get behind the reason. Following I’ll show you how I handle comments in languages I don’t understand, with an example I received the last day:

The Comment

So let’s take a look at the given Comment(to avoid contribution to this Spammer/Hacker, I replaced some Data):
1000 Ñ„?¾Ñ€Ñƒ?¼?¾?² 2 ?´?¾?»?»?°Ñ€?° 5000 Ñ„?¾Ñ€Ñƒ?¼?¾?² 8 ?´?¾?»?»?°Ñ€?¾?² 10000 Ñ„?¾Ñ€Ñƒ?¼?¾?² 13 ?´?¾?»?»?°Ñ€?¾?² 50000 Ñ„?¾Ñ€Ñƒ?¼?¾?² 50 ?´?¾?»?»?°Ñ€?¾?²
?‘?¾?½ÑƒÑ? ?¿Ñ€?µ?´?»?¾?¶?µ?½?¸?µ ?´?»Ñ? Ñ‚?µÑ… ?ºÑ‚?¾ ?·?°?º?°?¶?µÑ‚ 20000 Ñ„?¾Ñ€Ñƒ?¼?¾?² ч?µÑ€?µ?· ?½?µ?´?µ?»ÑŽ ?¿?¾?²Ñ‚?¾Ñ€?½?°Ñ? ?¾Ñ‚?¿Ñ€?°?²?º?°
? ?µÑ„?¿Ñ€?µ?´?»?¾?¶?µ?½?¸?µ: ч?µ?»?¾?²?µ?º ?º?¾Ñ‚?¾Ñ€Ñ‹?¹ ?¿Ñ€?¸?²?µ?´?µÑ‚ ?¼?½?µ ?º?»?¸?µ?½Ñ‚?° ?±Ñƒ?´?µÑ‚ ?¿?¾?»ÑƒÑ‡?°Ñ‚ÑŒ 10% ?¾Ñ‚ ?·?°?º?°?·?° ?º?»?¸?µ?½?º?°!!!
?ž?±Ñ€?°Ñ‰?°Ñ‚ÑŒÑ?Ñ? ?² ?°Ñ?ÑŽ 3?¿Ñ?Ñ‚ÑŒ3-8ш?µÑ?Ñ‚ÑŒ7-0?½?¾?»ÑŒ1 ?¼Ñ‹?»?¾ mymail(?³?°?²)example.com

That one made me curious as there are quite some numbers added, as well as an additional email is added which doesn’t fit to the input in the Email field. Let’s check that Comment by translating it in our native language or some language we understand.

Translating the Comment

In general I can recommend to translate it into your native language, as you mostly understand that one best. On the other hand the chosen translator, has maybe your language not available(or the dictionary is quite limited), or it’s not possible to translate between these languages directly.

You should avoid to have the text translated more than once before it’s in some language you understand, as the general problem with automatic translations are: that not the best sentence structure and word choosing is done. So you could end upon two or three translations steps within some nonsense text(that wouldn’t be better). The best way maybe, to let it translate to English, and if you don’t understand some english words let them be translated to your native language.

for the example above we would get something like that:
1000 forums 2 dollars of 5000 forums of 8 dollars of 10000 forums of 13 dollars of 50000 forums of 50 dollars the Bonus the offer for those who will order 20000 forums in a week repeated sending ? ?µÑ„?¿Ñ€?µ?´?»?¾?¶?µ?½?¸?µ: the person which will result to me the client will receive 10 % from the order ?º?»?¸?µ?½?º?°!!! To address in ?°Ñ?ÑŽ 3»nÃ?ý3-8ÞÑßÃ?ý7-0¡«½ý1 soap mymail (?³?°?²) example.com
That makes now quite more sense, doesn’t it? It seems as that’s the pricelist for Spamming of Forums, we even see that we get 10% of the profit from something!

Translate unknown words

Now we know quite surely that this is a Spam comment, but as you can see as well, we have some not translated words, like ?º?»?¸?µ?½?º?°(these can be sometimes important) so let’s have them translated as well, don’t we want to know how to receive our 10%?

If you’re using some good Translator, you should have the option to have unknown words transliterated into the target language. So for our ?º?»?¸?µ?½?º?° we would get something like:klienka that sounds like client. Let’s guess that we receive 10% of the Money the client pay for his contract.

Deciding dropping or keeping?

Now you should have enough information to decide if it’s a Spam comment or some legit one. If it’s Spammy it shouldn’t be hard to decide, if it’s some legit Comment I advice to keep the initial comment and add below it the translation. If you like you can as well improve the comment, but note explicit where you made changes!

Some good online Translators

Where can I get my text translated to some other language?
Just search for some Translate/Translation From-Language to-language and you should find some useful result. A good translator is PROMT, there you’re able to translate some texts as whole(no word for word translations) of some languages, or Babelfish. If you need to get some words translated into your language search for some dictionary for the given languages.

Conclusion

As you see, it’s better to prove comments of other languages as well(these will often pass Spamfilter) for Spam. If you can’t get the comment translated, it’s mostly better to keep the comment back or to drop it. From my point of view it’s better to have one or two legit comments less than to have one Spammy.

Tags: none

Tags: approve, Comment, Language, SPAM

Comments No Comments »

As Spam is a real big Problem within the Internet, today nearly no one gets around it, as Internet consumer(someone who doesn’t offer own communication platforms) you may not notice that Problem too much, maybe you didn’t even noticed it really. But it’s definitely a real Problem, Spam is everywhere.
You get it with your Daily Emails, already when you input your Email once to some untrustworthy Mailing list or application, and from that date it never will stop again. If you’re lucky that’s everything where you get into contact with Spam, as soon as you own some Blog/Forum aso. your Spam contact will be much bigger. How can I now prevent these platforms from Spam?

Registered Users only

One Option which is widely used is to allow Postings only to registered Users. This keeps out every Spambot who doesn’t have a routine to register to this platform(or to register in general). Additional many registering processes require that the email is validated, if that doesn’t happen the account will not be able to use this Account. Again that will prevent many Spambots from Posting Spam, as many Bots do have some registering routine, but they don’t use valid Email Accounts and/or don’t do the needed steps to activate the platform account.

What’s the reason that they don’t do this?

Mostly it’s the reason that there are enough platforms outside who still doesn’t use such a protection mechanism. Sadly that method may take away some Users, who would like to post some Comment/Post, but they’re not willed to create therefore some Useraccount just for one or two single contributions. The reason why they’re not willed to do so is,(you will know it mostly as you’ll surely think similar) is that they’re afraid of getting Spammed on their Email. And that only because he registered at some small website who delivers your Email to some Spam mailer.

Fortunately there’s a way to receive Contributions from non-Members, and that without a big level of Spam you’ll have to fight with.

Spamblock and -labeling

One reason wasn’t mentioned above explicit, but you could read it between the lines. Maybe you, the platform owner, want although to catch the users who don’t want to register at your site just for a single post. But this position don’t needs to be negative for you. There are many solutions out who are really nice and widely used, so proved to work well.

In general I see three different kinds of applications, who mostly differ between what needs to be done in future by yours:

Install and care yourself about

These kinds of Software is just installed, then the User needs to add what words will block the user contribution, that kind of blocking was more commonly in the early days of spam, where no services where available to Check Messages for Spam. You have to take care of the filter list, as the spam messages get changed regularly. At some point you’re within a dead end, the spam messages doesn’t contain any words you can block without blocking potentially legit posts. This kind of App, isn’t doing too well any more as Spam gets changed regularly, and sometimes don’t even appear a human to be Spam on the first moment. The mentioned problem is more likely to happen on Websites which handle common Spam themes like Real Estate, Pharmacy and so on.

An example Can be get here for phpBB

Human or Bot Tests

Some quite well working approach is to decide upon a Message, is Spam or not, is to ask for something which is only doable by a human. The best example is the CAPTCHA, the user is asked to type in some Letters and Numbers from a picture in order to be able to post the Message(or tagging it as no-Spam). But you need to be careful, there are already some Bots out who can read early CAPTCHAs or weak ones. On the other hand there are newer CAPTCHAs out which are quite hard to solve even for no handy caped people(just imagine how hard it would be for handy caped ones). Some good CAPTCHA method was developed by Microsoft you’re given 9 Photos of Dogs and Cats and you have to select only the Cats/or Dog ones. The project is called Asirra(Animal Species Image Recognition for Restricting Access) and is powered with photos by Petfinder.com

Then you have some Checkboxes you need to click if you’re a human(this is nowadays no problem for Bots any more, as they fill in every field). Another idea is to ask to calculate two values together through some addition, subtraction. This one is quite hard to solve for them, a newer version of it is to ask some questions which needs to be answered.

Spamlabeling as Service

Nowadays you’re served with Webservices who check your Email/Comments. These are used by many users and do catch the latest Spam quite fast, every User is able to improve the Ruleset as he can report false positives or not caught Spam. The best Example would be the well known Akismet.

These services are mostly the future of Spamblocking as your work is quite low at all, and you have a real good rate of false positives to catched Spam.

Conclusion

Spam is a really heavy Problem, since some years and will mostly stay another few years as long as no worldwide antispam act is done, so the Spammer can be suit everywhere one the world. But you have since the start some really good Protect mechanism, and fighting Spam was never easier before with Services like Akismet. Don’t belong to the People who loose time and money through Spam. Fight it, you’ll not regret it!

Tags: none
Tags: fight, SPAM

Comments No Comments »

I just recognized by checking some parts of WPIDS that it does as well block some Spam entries from getting posted to your Website. As PHPIDS checks for HTML tags, unsanitized ones, within the strings it removes these Requests…The only problem is that this applies as well for legit comments who hold allowed xhtml tags…Let’s see maybe we can get around that problem…Anyway a nice feature and when no xhtml tags are allowed within your Blog it’s even better as it only blocks SPAM comments :)
One thing which is for sure is that Akismet has a bit less to do than before :)

Tags: none
Tags: Akismet, PHPIDS, SPAM, WPIDS

Comments No Comments »

Normal CAPTCHAs just protect you from Spam, and already some of the easier ones can be read by Bots or are breakable without even using OCR technology, so they aren’t protect you any more. Daily, Internet user solve 60 million CAPTCHAs which sum up to a total time consume of 150 thousand hours a day.
And as a current trend within the Internet to share work to get it done faster, it just was a question of time when someone invents a CAPTCHA which not only protects you from Spam, it also uses this time useful.

Read the rest of this entry »

Tags: none
Tags: CAPTCHA, ReCAPTCHA, SPAM

Comments No Comments »

As you surely noticed already a few weeks ago, Project Honey Pot announced that they’re now also tracking Comment Spammers. And they’re doing it quite successfully, the current rate of newly catched spammers is around 100 per day. Part of the success is for sure the the http:BL Plugin for WordPress, which can be grabbed here. Which made http:BL more known, and in order to use this Plugin you need a Project Honey Pot Account and if you have an account it’s not much work to get your own Honey Pot.

http:BL the success

Many users from http:BL WP Plugin reported that their daily Spam value dropped dramatically from 100 and above, to just a handful Spam Comments per day, some also report that they don’t receive any Spam at all after setting up this Plugin and Service.
For myself I got some similar figure but not too successful at all, my Spam count is still around 15-20 per day, but the amount dropped around 66%. Read the rest of this entry »

Tags: none
Tags: http:BL, SPAM, Wordpress

Comments No Comments »

Bad Behavior has blocked 18243 access attempts in the last 7 days.