Bad Behavior not 100%?

I’m not sure what’s going on, but a lot comment spam from 71.57.133.162 is getting through. Bad Behavior 1.2.2 is filtering everything but that one, it seems. (Yes, I did check the logs for activity.) I emailed Mike two days ago, but haven’t gotten a reply yet. For now, I’ve denied that IP access via .htaccess. Update: I didn’t realize that I wasn’t alone on this. Tom and Anne got hit, too.

Published by

Bryan Villarin

Bryan is a Community Guardian at Automattic. He's also a photographer, card magician, and cat whisperer. (Thanks to my friend and colleague Steve Blythe for the sweet photo!)

10 thoughts on “Bad Behavior not 100%?”

  1. Weird! Fortunately, they didn’t get all the way through – I just meant that BB never stopped it at the gates. My moderation list must’ve stopped it or something, I don’t know.

    I hope Ann gets whoever it is! 🙂

    Like

  2. And, just to clarify, Michael Hampton hates false positives, so Bad Behavior will never be “100%”.

    So far, my blacklist has picked up all of the spam that BB has let through.

    Like

  3. Yeah, your blacklist definitely provides that extra level of “defense”. I’m still happy overall, and I didn’t mean to make it sound like I was complaining.

    Like

  4. I’ve noticed a huge increase on my site as well… although haven’t found a duplicate IP (although haven’t paid much attention aside from the IP shown in the WP Moderation queue). None have gotten through the need to be an approved commenter… but considering that this is recent… wonder if HashCash has been broken.

    Like

  5. Yeah, for me, Michael says it’s being manually entered in. So it’s not spambots. All spam is still being caught by WordPress built-in countermeasures, alongside with a moderation word list and word blacklist.

    Like

Leave a Reply to Chris Cancel reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s