NPDS : Gestion de contenu et de communauté

bonne nouvelle

Patch sécu ou pas Patch sécu Dev?
:-)

Une solution serait peut être de filtrer aussi l'accès au site via le htaccess avec ça ou quelque chose du genre




RewriteEngine on

# Block Referrer Spam

# Drugs / Herbal

RewriteCond %{HTTP_REFERER} (sleep-?deprivation) [NC,OR]
RewriteCond %{HTTP_REFERER} (sleep-?disorders) [NC,OR]
RewriteCond %{HTTP_REFERER} (insomnia) [NC,OR]
RewriteCond %{HTTP_REFERER} (phentermine) [NC,OR]
RewriteCond %{HTTP_REFERER} (phentemine) [NC,OR]
RewriteCond %{HTTP_REFERER} (vicodin) [NC,OR]
RewriteCond %{HTTP_REFERER} (hydrocodone) [NC,OR]
RewriteCond %{HTTP_REFERER} (levitra) [NC,OR]
RewriteCond %{HTTP_REFERER} (hgh-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-hgh) [NC,OR]
RewriteCond %{HTTP_REFERER} (ultram-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-ultram) [NC,OR]
RewriteCond %{HTTP_REFERER} (cialis) [NC,OR]
RewriteCond %{HTTP_REFERER} (soma-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-soma) [NC,OR]
RewriteCond %{HTTP_REFERER} (diazepam) [NC,OR]
RewriteCond %{HTTP_REFERER} (gabapentin) [NC,OR]
RewriteCond %{HTTP_REFERER} (celebrex) [NC,OR]
RewriteCond %{HTTP_REFERER} (viagra) [NC,OR]
RewriteCond %{HTTP_REFERER} (fioricet) [NC,OR]
RewriteCond %{HTTP_REFERER} (ambien) [NC,OR]
RewriteCond %{HTTP_REFERER} (valium) [NC,OR]
RewriteCond %{HTTP_REFERER} (zoloft) [NC,OR]
RewriteCond %{HTTP_REFERER} (finasteride) [NC,OR]
RewriteCond %{HTTP_REFERER} (lamisil) [NC,OR]
RewriteCond %{HTTP_REFERER} (meridia) [NC,OR]
RewriteCond %{HTTP_REFERER} (allegra) [NC,OR]
RewriteCond %{HTTP_REFERER} (diflucan) [NC,OR]
RewriteCond %{HTTP_REFERER} (zovirax) [NC,OR]
RewriteCond %{HTTP_REFERER} (valtrex) [NC,OR]
RewriteCond %{HTTP_REFERER} (lipitor) [NC,OR]
RewriteCond %{HTTP_REFERER} (proscar) [NC,OR]
RewriteCond %{HTTP_REFERER} (acyclovir) [NC,OR]
RewriteCond %{HTTP_REFERER} (sildenafil) [NC,OR]
RewriteCond %{HTTP_REFERER} (tadalafil) [NC,OR]
RewriteCond %{HTTP_REFERER} (xenical) [NC,OR]
RewriteCond %{HTTP_REFERER} (melatonin) [NC,OR]
RewriteCond %{HTTP_REFERER} (xanax) [NC,OR]
RewriteCond %{HTTP_REFERER} (herbal) [NC,OR]
RewriteCond %{HTTP_REFERER} (drugs) [NC,OR]
RewriteCond %{HTTP_REFERER} (lortab) [NC,OR]
RewriteCond %{HTTP_REFERER} (adipex) [NC,OR]
RewriteCond %{HTTP_REFERER} (propecia) [NC,OR]
RewriteCond %{HTTP_REFERER} (carisoprodol) [NC,OR]
RewriteCond %{HTTP_REFERER} (tramadol) [NC]
RewriteRule .* - [F]

# Porn

RewriteCond %{HTTP_REFERER} (porno) [NC,OR]
RewriteCond %{HTTP_REFERER} (shemale) [NC,OR]
RewriteCond %{HTTP_REFERER} (gangbang) [NC,OR]
RewriteCond %{HTTP_REFERER} (-cock) [NC,OR]
RewriteCond %{HTTP_REFERER} (-anal) [NC,OR]
RewriteCond %{HTTP_REFERER} (-orgy) [NC,OR]
RewriteCond %{HTTP_REFERER} (cock-) [NC,OR]
RewriteCond %{HTTP_REFERER} (anal-) [NC,OR]
RewriteCond %{HTTP_REFERER} (orgy-) [NC,OR]
RewriteCond %{HTTP_REFERER} (singles-?christian) [NC,OR]
RewriteCond %{HTTP_REFERER} (dating-?christian) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumeating) [NC,OR]
RewriteCond %{HTTP_REFERER} (cream-?pies) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumsucking) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumswapping) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumfilled) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumdripping) [NC,OR]
RewriteCond %{HTTP_REFERER} (krankenversicherung) [NC,OR]
RewriteCond %{HTTP_REFERER} (cumpussy) [NC,OR]
RewriteCond %{HTTP_REFERER} (suckingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (drippingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (pussycum) [NC,OR]
RewriteCond %{HTTP_REFERER} (swappingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (eatingcum) [NC,OR]
RewriteCond %{HTTP_REFERER} (cum-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-cum) [NC,OR]
RewriteCond %{HTTP_REFERER} (sperm) [NC,OR]
RewriteCond %{HTTP_REFERER} (christian-?dating) [NC,OR]
RewriteCond %{HTTP_REFERER} (jewish-?singles) [NC,OR]
RewriteCond %{HTTP_REFERER} (sex-?meetings) [NC,OR]
RewriteCond %{HTTP_REFERER} (swinging) [NC,OR]
RewriteCond %{HTTP_REFERER} (swingers) [NC,OR]
RewriteCond %{HTTP_REFERER} (personals) [NC,OR]
RewriteCond %{HTTP_REFERER} (sleeping) [NC,OR]
RewriteCond %{HTTP_REFERER} (libido) [NC,OR]
RewriteCond %{HTTP_REFERER} (grannies) [NC,OR]
RewriteCond %{HTTP_REFERER} (mature) [NC,OR]
RewriteCond %{HTTP_REFERER} (enhancement) [NC,OR]
RewriteCond %{HTTP_REFERER} (sexual) [NC,OR]
RewriteCond %{HTTP_REFERER} (gay-?teen) [NC,OR]
RewriteCond %{HTTP_REFERER} (teen-?chat) [NC,OR]
RewriteCond %{HTTP_REFERER} (gay-?chat) [NC,OR]
RewriteCond %{HTTP_REFERER} (adult-?finder) [NC,OR]
RewriteCond %{HTTP_REFERER} (adult-?friend) [NC,OR]
RewriteCond %{HTTP_REFERER} (friend-?finder) [NC,OR]
RewriteCond %{HTTP_REFERER} (friend-?adult) [NC,OR]
RewriteCond %{HTTP_REFERER} (finder-?adult) [NC,OR]
RewriteCond %{HTTP_REFERER} (finder-?friend) [NC,OR]
RewriteCond %{HTTP_REFERER} (discrete-?encounters) [NC,OR]
RewriteCond %{HTTP_REFERER} (cheating-?wives) [NC,OR]
RewriteCond %{HTTP_REFERER} (housewives) [NC,OR]
RewriteCond %{HTTP_REFERER} (-sex.) [NC,OR]
RewriteCond %{HTTP_REFERER} (xxx) [NC,OR]
RewriteCond %{HTTP_REFERER} (snowballing) [NC]
RewriteRule .* - [F]

# Weight

RewriteCond %{HTTP_REFERER} (fat-) [NC,OR]
RewriteCond %{HTTP_REFERER} (-fat) [NC,OR]
RewriteCond %{HTTP_REFERER} (diet) [NC,OR]
RewriteCond %{HTTP_REFERER} (pills) [NC,OR]
RewriteCond %{HTTP_REFERER} (weight) [NC,OR]
RewriteCond %{HTTP_REFERER} (supplement) [NC]
RewriteRule .* - [F]

# Gambling

RewriteCond %{HTTP_REFERER} (texas-?hold-?em) [NC,OR]
RewriteCond %{HTTP_REFERER} (poker) [NC,OR]
RewriteCond %{HTTP_REFERER} (casino) [NC,OR]
RewriteCond %{HTTP_REFERER} (blackjack) [NC]
RewriteRule .* - [F]

# Loans / Finance

RewriteCond %{HTTP_REFERER} (mortgage) [NC,OR]
RewriteCond %{HTTP_REFERER} (refinancing) [NC,OR]
RewriteCond %{HTTP_REFERER} (cash-?advance) [NC,OR]
RewriteCond %{HTTP_REFERER} (cash-?money) [NC,OR]
RewriteCond %{HTTP_REFERER} (pay-?day) [NC]
RewriteRule .* - [F]

# User Agents

RewriteCond %{HTTP_USER_AGENT} (Program\ Shareware|Fetch\ API\ Request) [NC,OR]
RewriteCond %{HTTP_USER_AGENT} (Microsoft\ URL\ Control) [NC]
RewriteRule .* - [F]

# Misc / Specific Sites

RewriteCond %{HTTP_REFERER} (netwasgroup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (nic4u.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (wear4u.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (foxmediasolutions.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (liveplanets.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (aeterna-tech.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (continentaltirebowl.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (chemsymphony.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (infolibria.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (globaleducationeurope.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (soma.125mb.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (mitglied.lycos.de) [NC,OR]
RewriteCond %{HTTP_REFERER} (foxmediasolutions.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (jroundup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (feathersandfurvanlines.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (conecrusher.org) [NC,OR]
RewriteCond %{HTTP_REFERER} (sbj-broadcasting.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (edthompson.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (codychesnutt.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (artsmallforsenate.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (axionfootwear.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (protzonbeer.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (candiria.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (bigsitecity.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (coresat.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (istarthere.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (amateurvoetbal.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (alleghanyeda.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (xadulthosting.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (datashaping.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (zick.biz) [NC,OR]
RewriteCond %{HTTP_REFERER} (newprinceton.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (dvdsqueeze.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (xopy.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (webdevboard.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (devaddict.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (eaton-inc.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (whiteguysgroup.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (guestbookz.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (webdevsquare.com) [NC,OR]
RewriteCond %{HTTP_REFERER} (indfx.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (snap.to) [NC,OR]
RewriteCond %{HTTP_REFERER} (2y.net) [NC,OR]
RewriteCond %{HTTP_REFERER} (astromagia.info) [NC,OR]
RewriteCond %{HTTP_REFERER} (jixx.de) [NC,OR]
RewriteCond %{HTTP_REFERER} (free-?sms) [NC]
RewriteRule .* - [F]



hello, moi j'ai mis ça, mais ça n'a pas l'air de fonctionner, j'en trouve dans les référents ...


order deny,allow
deny from mail
deny from srv01.launchworld.com
deny from nodomaintransfer
deny from index10.aol.externall.net
deny from 72.36.245.197.reversedns.resolve.ru
deny from 217.15.26.110.futures.ru
deny from 243.67.232.72.reverse.layeredtech.com //

//deny from buzznick.com
deny from web-libre.org
allow from all


je veux bien tenter ta version

Pense à intégrer les site que tu cites dans "# Misc / Specific Sites"

Tiens nous informé

;-)

ok :=!

Ca marche le truc de Dev mais ya des erreur en prévisualisation. Faut creuser plus.

Bjr, passoire
contenu du htaccess :


référents :



:-( :-( :-(

<

Bonjour,

J'ai eu moi aussi plusieurs insertions de message d'un user fantôme, j'ai fait les modifs proposées par dev et je surveille.

Merci.

Mes excuses, c'était moi.

@ aidadomicil

8-) 8-) 8-)

A nouveau du spam sur mon forum alors que c'était tranquille depuis plusieurs semaines après la modif des lignes [$userdata = array("error" => "1");] signalée par Arenan :
http://www.clubopera.com/viewtopic.php?topic=350&forum=13&start=9999#last-post

1 spam ou des spams ?

Bonjour

Je suis également complètement inondé de ces spams à caractère pornographhique. Tellement inondé que je dépasse allègrement les capacité allouées par mon hébergeur. Et quand je dis "inondé", je n'exagère pas: de 60 enregistrements à plus de 30.000 pour une table spécifique à mon application, en passant par exemple par les 3457 commentaires dela table comments...

Une première base de données à été carrément supprimée et recréée par l'hébergeur sous un autre nom, mais quelque jours après, re-dépassement, avec les mêmes types de messages.

Je vais essayer la solution donnée ( http://www.npds.org/viewtopic.php?topic=22834&forum=12&start=30 du 26/09/2007 ). Est-ce qu'il peut être utile de conserver les données pour une éventuelle action (laquelle?), ou est-ce que je vire tout.

Merci.

Il est presque impossible d'agir juridiquement contre ces robots. La seule solution est de mettre en place des filtres, script ... anti-spam

Bonjour

Il semble que la modification préconisée dans le fichier functions.php pour function get_userdata_from_id($userid) et function get_userdata($username) aie eu quelques effets. Je n'ai eu "que" 312 spams hier, dans le fichiers comments.

Y-a-t-il eu d'autres modifs préconisées? Peux tu en dire plus sur ces filtres, scripts et antispam. Est-ce au niveau de l'hébergeur ou à mon niveau?

Merci.

PS: qu'en est-il de antispambots? Comment l'installer?

Message édité par : jacma / 21-01-2008 10:51

Voir su modules.npds.org - ya un package je crois

Je fais remonter ce fil pour savoir où on en est car je viens moi-même d'être touché sur un site totalement familial (forum réservés aux membres, création de membres bloquée), modification des fonctions décrites faites.

Reste que sur ce site, je suis encore en sable 5.10 et que j'atends les dernières MAJ d'évolution pour passer le cap? Cela résoudra-t-il le problème?

oui car l'anti-spam est de base : le package arrive la semaine prochaine normallement

Merci DEV. Bon courage à tous

Amitiés

PG