100,000 Blog Spam Comments

Today justaddwater.dk got spam comment number 100,000. But actually the real number is much higher since we have incorporated a couple of measures to catch the spam even before it reaches WordPress or Akismet.

Akisment Caught Spam Comments on justaddwater.dk

We have for example been blocking certain keywords that we found where common in spam that slipped through Akismet, or we have been changing the standard WordPress URL for posting comments. Finally we have incorporated a little htaccess hack that validates the posters referral URL. This should of cause be our own domain justaddwater.dk, but many spammers actually put some garbage into this header field – and we can then easily block it directly in the Apache web server before it even reaches WordPress. UPDATE: We also allow empty referrals (thanks Håvard, for pointing this out)

8 months ago we had over a period of also 8 months received 6,517 comments totally. Of them only 348 where legit comments! Since then we have received approximately 100,800 comments. 389 where new legit comments and 7,317 was caught in the htaccess filter we applied in July 2006. This translates to 99.6% spam comments.

Technorati Tags: , , , , , , , , , , ,

6 Responses to “100,000 Blog Spam Comments”

  1. Håvard Pedersen Says:

    I hope you are aware that the referrer field is optional and some privacy filters blocks it, so comments sent with no referrer field should be let through. I’m posting this without one, so I guess this serves as a test as well. :)

  2. Thomas Watson Steen Says:

    Hi Håvard

    Yes you are right…. and thanks for letting us know :)

    Though, now that I look closer at the htaccess filter, I see that I thought of this when I created it and also allowed refer fields that are empty:

    <IfModule mod_rewrite.c>
    RewriteEngine on
    RewriteCond %{HTTP_REFERER} !^$
    RewriteCond %{HTTP_REFERER} !^http://(www\.)?justaddwater.dk/.*$ [NC]
    RewriteRule jaw-comments-post.php$ - [F]

    And as you can see, your comment got though correctly.

  3. Emil Stenström Says:

    Interesting article. I’m using Spam Karma 2 instead but lately a few comments with just random letters in have gotten through. I think I’ll try some of your ideas. Thanks for sharing.

  4. justaddwater.dk | Spam Blog Posted 182 Articles in One Day Says:

    […] in “how to avoid spam comments” (part 1, part 2), and the last 2 months since we passed 100,000 spam comments, we have had another 57,000 spam […]

  5. justaddwater.dk | Announcement: Spam Filter Free Day Says:

    […] 100,000 Blog Spam Comments (Feb 26th) […]

  6. justaddwater.dk | Blog Usability: Spam Comments Irritate Subscribers Says:

    […] 100,000 Blog Spam Comments, February 6, […]