Pete FreitagBattling Comment Spam
January 31, 2007
Fighting comment spam seams like a never ending battle. I've done a lot over the last few years to try and squash it on my blog.
I started out by implementing a list of words that would trigger the comment to be blocked. I found myself updating this list on a weekly basis, never staying on top of it.
I solved that problem by implementing the Bayesian Filter CFC from fusionKit. The bayes filter has worked really well, and produced a suprisingly low number of false positives.
Now just over the weekend I was flodded with a ton of comment spams that were written well enough to get past the bayes filter. They were also all submitted within a few minutes, so there was no time to train my bayes filter.
I'm not a big fan of statically blocking IP addresses, since the owners of IP addresses can change over time. However I think temporary blocks on IP's are OK, so I wrote a little rate limiter that will block IP's that try to post more than 1 comment within a 5 minute time span or IP's that have attempted to post a large number of comments.
I'm sure some of you have probably experienced the same problem, so here you go:
<cfif IsDefined("application.rate_limiter")>
<cfif StructKeyExists(application.rate_limiter, CGI.REMOTE_ADDR)>
<cfif application.rate_limiter[CGI.REMOTE_ADDR].attemps GT 1 AND DateDiff("n", application.rate_limiter[CGI.REMOTE_ADDR].last_attempt, Now()) LT 5>
<p>You are posting too many comments too fast, please slow down and wait 5 min.</p>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].attemps = application.rate_limiter[CGI.REMOTE_ADDR].attemps + 1>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].last_attempt = Now()>
<cfabort>
<cfelseif application.rate_limiter[CGI.REMOTE_ADDR].attemps GT 20>
<p>You have made too many attempts to post a comment. Please try back in a few days.</p>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].attemps = application.rate_limiter[CGI.REMOTE_ADDR].attemps + 1>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].last_attempt = Now()>
<cfabort>
<cfelse>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].attemps = application.rate_limiter[CGI.REMOTE_ADDR].attemps + 1>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].last_attempt = Now()>
</cfif>
<cfelse>
<cfset application.rate_limiter[CGI.REMOTE_ADDR] = StructNew()>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].attemps = 1>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].last_attempt = Now()>
</cfif>
<cfelse>
<cfset application.rate_limiter = StructNew()>
<cfset application.rate_limiter[CGI.REMOTE_ADDR] = StructNew()>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].attemps = 1>
<cfset application.rate_limiter[CGI.REMOTE_ADDR].last_attempt = Now()>
</cfif>
Tweet
add to del.icio.usRelated Entries
- Trick or Treat - Web 2.0 Goodies for ColdFusion - October 31, 2006
- Analyzing Words in Spam Emails - August 3, 2005
- How I block comment spam - July 19, 2005
Comments
Pete, check out this project from Jake Munson cfformprotect.riaforge.org
Have your tried the CFAkismet CFC?
http://devnulled.com/cfakismet
We put it on our blog (http://blog.d-p.com) and love it.
@Pete:
You might want to adjust the 1 comment per 5 minutes to at least 2 commments. 1 seems a little to strict--especially in the case where someone wants to post an addendum to what they typed.
Hey Dan,
Actually it does allow for two comments since it says GT 1 and the attempts are incremented after that point. I wasn't clear about that in my post however. Thanks for pointing that out.
I can understand your code. Could you give me the PHP version please
Great site!e
Good luck with your site in the future!e
Good job, here and there!k
Hello
heavenly worck
new look
senks
void akaaunting
Bye
Just wanted to say helloo
Hi our little brothers.c
Are you a big fan of movies and all the new releases on the big screen? Do you like to watch all the latest movies as soon as they are released? If the answer is yes, and you not only love to watch movies but you also like to get loads of other movie related products as well then there is a web site that is perfectly suited to you. The web site that you should consider taking a look at is called. The Films gives its visitors the chance to down load many of the latest movie releases as well as offering loads of news about all that is going on with in the movie industry and the actors in and around Hollywood. From this web sites well designed menu system you can also access movie sound tracks, and down load wall papers of you favorite movies and movie stars.
Its like trying to control the weather, at this point, mother nature is gonna do what she wants to do. ,
Thanks for sharing this link, but unfortunately it seems to be offline... Does anybody have a mirror or another source? Please reply to my post if you do!
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
John
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
John
Thanks for sharing this link, but unfortunately it seems to be offline... Does anybody have a mirror or another source? Please reply to my post if you do!
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Mark
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Mark
Thanks for sharing the link, but unfortunately it seems to be offline... Does anybody have a mirror or another source? Please reply to my post if you do!
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Alex
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Alex
Thanks for sharing this link, but unfortunately it seems to be down... Does anybody have a mirror or another source? Please reply to my post if you do!
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Oliver
I would appreciate if a staff member here at www.petefreitag.com could post it.
Thanks,
Oliver
Hey,
This is a inquiry for the webmaster/admin here at www.petefreitag.com.
May I use part of the information from your post above if I provide a backlink back to this site?
Thanks,
Jack
This is a inquiry for the webmaster/admin here at www.petefreitag.com.
May I use part of the information from your post above if I provide a backlink back to this site?
Thanks,
Jack
Thanks for sharing this link, but unfortunately it seems to be down... Does anybody have a mirror or another source? Please answer to my message if you do!
I would appreciate if someone here at www.petefreitag.com could post it.
Thanks,
Harry
I would appreciate if someone here at www.petefreitag.com could post it.
Thanks,
Harry
Have you considered the fact that this might work another way? I am wondering if anyone else has come across something
exactly the same in the past? Let me know your thoughts...
exactly the same in the past? Let me know your thoughts...
Thanks for sharing the link, but argg it seems to be offline... Does anybody have a mirror or another source? Please reply to my post if you do!
I would appreciate if someone here at www.petefreitag.com could post it.
Thanks,
Daniel
I would appreciate if someone here at www.petefreitag.com could post it.
Thanks,
Daniel
Hello there,
This is a message for the webmaster/admin here at www.petefreitag.com.
Can I use some of the information from your blog post right above if I provide a link back to your website?
Thanks,
William
This is a message for the webmaster/admin here at www.petefreitag.com.
Can I use some of the information from your blog post right above if I provide a link back to your website?
Thanks,
William
Hi,
I have a inquiry for the webmaster/admin here at www.petefreitag.com.
Can I use some of the information from your blog post right above if I provide a link back to your site?
Thanks,
William
I have a inquiry for the webmaster/admin here at www.petefreitag.com.
Can I use some of the information from your blog post right above if I provide a link back to your site?
Thanks,
William
Hi,
I have a question for the webmaster/admin here at www.petefreitag.com.
May I use part of the information from your post above if I provide a link back to your site?
Thanks,
John
I have a question for the webmaster/admin here at www.petefreitag.com.
May I use part of the information from your post above if I provide a link back to your site?
Thanks,
John
Hello there,
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Thomas
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Thomas
Greetings,
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Daniel
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Daniel
Hello,
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Oliver
Thanks for sharing the link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Oliver
Hello there,
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Daniel
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Thanks,
Daniel
Greetings,
Thanks for sharing the link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Daniel
Thanks for sharing the link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Daniel
Hiya Guys
Is It Possible To WATCH BLU RAY DVDs Using A REGULARE DVD PLAYER?
i would you like to purchase a movie but its a blu-ray 1....i do not have a blu ray player though....can it still work??
Bless you !
Is It Possible To WATCH BLU RAY DVDs Using A REGULARE DVD PLAYER?
i would you like to purchase a movie but its a blu-ray 1....i do not have a blu ray player though....can it still work??
Bless you !
Hello there,
This is a inquiry for the webmaster/admin here at www.petefreitag.com.
Can I use part of the information from this post above if I give a link back to this site?
Thanks,
Harry
This is a inquiry for the webmaster/admin here at www.petefreitag.com.
Can I use part of the information from this post above if I give a link back to this site?
Thanks,
Harry
Hey,
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
James
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
James
Hello there,
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Jack
Thanks for sharing this link - but unfortunately it seems to be down? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Jack
I have a blog (Fugitive Seeking Truth) and have had a number of my posts comment-spammed with the same comment that appears several times on this page:
"Thanks for sharing the link - but unfortunately it seems to be down? Does anybody here at [my blog address] have a mirror or another source?" with a name attached.
I also have the comment requesting permission to backlink. Any idea who posts these comments and why?
Thanks,
Blessings and peace,
Ylanne
"Thanks for sharing the link - but unfortunately it seems to be down? Does anybody here at [my blog address] have a mirror or another source?" with a name attached.
I also have the comment requesting permission to backlink. Any idea who posts these comments and why?
Thanks,
Blessings and peace,
Ylanne
Hello there,
Thanks for sharing this link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Peter
Thanks for sharing this link - but unfortunately it seems to be not working? Does anybody here at www.petefreitag.com have a mirror or another source?
Cheers,
Peter
Hi! I know this is somewhat off topic but I was wondering if you knew where I could find a captcha plugin for my comment form? I'm using the same blog platform as yours and I'm having trouble finding one? Thanks a lot!
Oh my goodness! a tremendous article dude. Thank you Nonetheless I'm experiencing concern with ur rss . Don’t know why Unable to subscribe to it. Is there anybody getting an identical rss downside? Anybody who knows kindly respond. Thnkx
Recent Entries
- Updating Java on ColdFusion or Lucee
- ColdFusion returning empty response with server-error: true
- Careful applying CF11u16, CF2016u8, CF2018u2
- Sessions don't work in Chrome but do in IE
- csrfVerifyToken does not invalidate the token
- The cf_sql_ is optional in cfqueryparam
- Cookie Expires / Max-Age 1969-12-31T23:59:59.000Z
- Burst Throttling on AWS API Gateway Explained
