View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000021 | WackoWiki | security | public | 2007-08-28 00:30 | 2009-08-19 09:38 |
| Reporter | administrator | Assigned To | Tann San | ||
| Priority | normal | Severity | feature | Reproducibility | N/A |
| Status | resolved | Resolution | fixed | ||
| Product Version | 4.2 | ||||
| Target Version | 4.3.rc | Fixed in Version | 4.3.rc | ||
| Summary | 0000021: ANTISPAM as badword.conf | ||||
| Description | Path: /trunk/wacko/classes/wacko.php ; put in external file like interwiki stuff <?php ... //ANTISPAM $ this->spam = array("pls see SVN, couldn't post"); ... ?> hard to figure out, why you can't post things like .cn (good sites) ;) | ||||
| Additional Information | coocoowakka solution: function HasBadWords($text){ if(!$this->badwordlist){ $lines = file("badwords.conf"); if(is_array($localbad=@file("local/badwords.conf"))) $lines =@array_merge($lines,$localbad); if($lines) { foreach ($lines as $line) { if ($line = trim($line)) { $this->badwordlist[]=$line; } } $this->badwordlist=array_unique($this->badwordlist); } } //die($this->badwordlist); foreach($this->badwordlist as $item){ if(preg_match("/".preg_quote($item,"/")."/i",$text))return $item; } return false; } | ||||
| Tags | No tags attached. | ||||
|
|
A frequently updated blacklist is available here: http://blacklist.chongqed.org/ The main site for that list is: http://chongqed.org and is kinda simple and useful. The idea is that we would download that list at a set interval, update a local copy of the file and then check every comment/edit against that local list. This site kinda described the idea in more code detail: http://wiki.splitbrain.org/wiki:blacklist |
|
|
host blocking: http://www.wikimatrix.org/wiki/feature:Host%20Blocking |
|
|
External file (antispam.conf) holds spam keywords. If spam_filter config option is enabled then all new pages are checked against this list when saved. If a spam word is identified then the page is not saved. A future enhancement would be to alert the user so they can correct the problem, this will help avoid a genuine user losing all their changes if they co-incidentally/accidentally enter a spam keyword. I'll enter this as a future enhancement into mantis. |
|
|
if (strpos($body, trim($spam))!==false) return 'Error: Identified Potential Spam: '.$spam; the error message seems inactive yet, I tested a keyword because I wonder if I should localize the message Spam => Error: Identified Potential Spam |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2007-08-28 00:30 | EoNy | New Issue | |
| 2007-08-29 05:58 | administrator | Legacy | => NPJ |
| 2007-09-12 21:46 | Tann San | Status | new => assigned |
| 2007-09-12 21:46 | Tann San | Assigned To | => Tann San |
| 2007-09-12 21:47 | Tann San | Assigned To | Tann San => |
| 2007-09-27 02:32 | Tann San | Note Added: 0000118 | |
| 2007-09-27 02:34 | Tann San | Note Added: 0000119 | |
| 2007-09-27 02:38 | Tann San | Status | assigned => acknowledged |
| 2007-09-27 12:23 | administrator | Reporter | EoNy => administrator |
| 2007-09-27 12:23 | administrator | Category | Core => Security |
| 2007-09-27 12:23 | administrator | Description Updated | |
| 2007-09-27 12:23 | administrator | Additional Information Updated | |
| 2007-10-08 02:22 | administrator | Description Updated | |
| 2007-12-29 22:43 | administrator | Target Version | => 5.0.0 |
| 2008-01-04 21:56 | administrator | Summary | ANTISPAM as spam.conf or something like that => ANTISPAM as spam.conf |
| 2008-04-11 16:35 | administrator | Relationship added | related to 0000049 |
| 2008-05-03 01:36 | administrator | Summary | ANTISPAM as spam.conf => ANTISPAM as badword.conf |
| 2008-05-03 01:36 | administrator | Description Updated | |
| 2008-05-03 01:36 | administrator | Additional Information Updated | |
| 2008-06-30 15:12 | Tann San | Note Added: 0000393 | |
| 2008-06-30 15:12 | Tann San | Status | acknowledged => resolved |
| 2008-06-30 15:12 | Tann San | Fixed in Version | => 5.0.0 |
| 2008-06-30 15:12 | Tann San | Resolution | open => fixed |
| 2008-06-30 15:12 | Tann San | Assigned To | => Tann San |
| 2008-09-04 10:41 | administrator | Note Added: 0000491 | |
| 2009-08-19 09:25 | administrator | Fixed in Version | 5.0.0 => 4.3.rc |
| 2009-08-19 09:38 | administrator | Target Version | 5.0.0 => 4.3.rc |
| 2010-03-08 10:22 | administrator | Category | Security => security |
