I've decided to experiment with alternative forms of comment spam moderation, filtering, etc. It used to be that MT-Blacklist would handle blocking spam for me and moderating comments on old entries. And my "type Jeremy here" challenge keeps most of the bots away (there are literally thousands of attempts per day). But it didn't do quite as good a job protecting newer entries where a human spammer was at the keyboard.
As of now, all new comments hit the moderation queue. However, you can bypass the need for me to approve your comment. When you submit a comment, my system will send you a small email to the email address you supplied. If you click the link in that email message, it'll approve the comment right away.
Simple.
Now, I may still approve or remove comments on my own, but this may prove to be a useful balance. We'll see.
It's worth noting that your email address is never made public on the site, so you shouldn't worry about it appearing. If you're not comfortable telling me your email address, I may not be comfortable approving your comment. It's that simple.
So if you've been a regular but anonymous commenter, you have a decision to make.
We'll see how it all works out. I'm interested in feedback on the system--including bug reports! I wrote a bunch of this myself.
BTW, I've known who the famous grumpY! is for a while now. :-)
Posted by jzawodn at November 12, 2006 09:03 PM
Hey, that sounds a useful idea.
My comment spam seems to contain just hundreds of links to various dodgy sites, so usually I just reject those straight away - it works quite well! I mean, how often do you put more than one or two links in a comment (if any).
Do you have to click through an e-mailed link for every comment? Or does doing it once get your e-mail address whitelisted?
Right now, you need to do it for every comment. But I've got a fix in mind for that. I'll get it implemented in the next few days if all goes well with the rest of it.
I can't just whitelist an address. Otherwise you could just use *my* email address to bypass the system, right?
I never got the impression that TypeKey had taken off.
Is that mistaken?
How about linking up your comment system to Akismet? There are APIs, as well as a plugin for MT (which I assume you use based on the above). I've deployed it on a couple of my project sites for friends, and it's been very effective thus far (granted, on Wordpress-based blogs, but I don't think that would have any effect on its functionality.
Why do I get a 403 on mt-comment.cgi?? part of the anti-spam plan or is my IP banned?
Akismet probably wouldn't filter much. I'm already handling the bulk of the bots pretty well.
Does Akismet deal well with the hand-crafted spam that actual humans post?
I'm not sure about human generated spam - assuming they are repeat offenders that someone else has marked as a spammer in the Akismet database, it *should* flag them and stop the post.
Jeremy-
Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it:
http://www.erikjheels.com/2006-09-27-movable-type-run-away.html
-Erik
Hello Jeremy,
Yesterday I posted my first comment to your blog about TDMA, using and I never saw the emailed link I was supposed to click on to have my comment approved. I used the email address "lloyd@costa-rica-natural.com." This address is protected by greylisting, but the secondary MX (mail exchange server) is set to a server that is still running my old challenge-response system. No mail should go there unless my mail server is down or mail is intentionally directed to high-numbered MX (a definitive spam sign).
So, any idea what happened? (By this way, looks like a very nice blog system you've put together.)
For fiew days now I wonder what I made wrong to blog owners like you. Ofcause you as owner can remove my comment, remove my link or something, but I was always finding topics I have something to say/comment on. I always putted my attention to what I'm writing and... I got banned on several blog system (eaven not pages) why? I do not know. As you are "fighting" with spam maybe you can tell me where is the trick do you f.e. find my comment wrong? Or maybe it was just that my blog is for adult and so many people doesn't like to have anything to do with adult pages. Am I right? but eaven if you doesn't want me to publish comments on your page is it ok to put it on some general blacklist? Please try to put yourself in newbe position and tell how would you percept such an act?
In my last comment I forgot to place invitation to my site (this togather with my post makes complete comment)
so here it is, please visit also my page at: http://best-of-asstraffic.blogspot.com
Regs
Hi Jeremy! with the MT-Blacklist you will prevent A LOT of SPAM, but they learn each day a little more.
Let me suggest you to do a very simple trick that will prevent SPAMMERs forever:
1) Create another check field like the "Jeremy" one, but hidden.
2) Va JavaScript, complete that field with a setTimeout OR in the submit of the form:
setTimeout("document.forms[0].antispam.value='REAL_USER')",4000);
3) Check the value of that field. If it's filled, you have a real user. If it's blank... it's a SPAM Machine :)
The only drawback is that users must hace JavaScript enabled. By the way, which modern browser does not support it? None. It works in all browsers.
If you want to implement it, just drop me a mail.
Cheers!
Jeremy - Silverlight
Sorry! I forgot to tell you: the timedout version (instead of the onsubmit) is also good because it will fill up the value in the amount of time that you specify. So in that code, the time is 4 seconds. That assumes that a real user won't be able to type everything and submit the message before that time.
I personally prefer that version. I've implemented it in my forum so if you want the URL, let me know.
Thanks again,
Kevin.
With the MT-Blacklist, one will be able to prevent a lot of SPAM, but not ALL. There must be some solution to stop spammers. To post a comment, usually one has to stay in the moderation queue but as it has been mentioned that with system one can bypass, is really good.
Did you ever get an answer to your sign-in and password needed every time to read e-mail, despite checking "Remember" box?
Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it: Thanks
Two words: WordPress, Akismet. OK, a few more words. Try it, you'll like it:
yumurcak tv
I have been trying to sell genuine digital cameras, cell phones etc but very few visitors are visiting my site. If you have any suggestion, please let me know!
This is extremely helpful info!!! Especially since you guys are offering it for free!! Very good listing. Everything is true. Thanx.
If you find a solution that would filter through actual comments and actual people leaving gibberish with inbound links let us know.
WordPress websites are basically omitted by spammers, so I agree with some of the previous commenters. There are good sources on the web (personally I found videos, tutorials, articles and even pdf books there) which can help you prevent spam. And I am successfully using these tips at my blog.
Anyone here know how to get unbanned by akismet?
Portable Solar Panels
Solar Energy Facts
@ Jeff
Hey Jeff, If you've been banned by Aksimet then Just contacted Akisment. Hope it works and thanks again!
Type your comment here.
After you submit the comment, check your email. There will be
a link you need to click to make your comment visible.
Your email address WILL NOT appear on the site, so don't worry
about being anonymous, even if you think you are.
