Forum Replies Created
-
hmmm, just tried to visit the factastic page (I had tried it over a year ago but did not like it much then), but Avast Av won’t let me, as the website serves Trojans and quite agressively at that (6 attempts from some Java trojan!). Not Good.
The other plugin mentioned (which I also had tried), is not existing anymore (site gives a 500 error).
That’s why I wa sthinking that a dedicated subblog my do the trick just as fine, just need a nice workable layout
Hi DJ Paul.
as far as I can see, nobody is complaining that the sky is falling, that would be a quite silly thing to do. Well I guess technically it is, but at least the earth is stopping it from doing so
Just pointing out an inaccuracy in thinking, I am sure that this is allowed without immediately posting PHP to fix it?
Back on topic; the question should also be: how could this spammer get access to all the usernames automatically? Of course everybody is listed, but somehow the were harvested and added to the pm list.
– Anyway, I think a very good start is that you can only message your friends. Thought that this would be already ths case, that is why I wondered how we could get spammed?
– Additionally: a maximum of PM’s per user per x amount of time (seems that 1/minute should be enough, + 50 per day. of course this should be optional and configurable with error notification (site options or plugin?)
– Maybe a maximum mailbox size, which included sent messages. So that at least spammers have to clean out their sent box before being able to send new messages.
– Also a maximum of adressees per PM, else the other 2 are useless
– maybe a minimum age of user (meaning time since registration), before he can send out PM at all?
Of course, any of these can be worked around, but at least it might slow spam down, at least from strangers..
Cheers, Harry
Thanks Andrea. Sorry I have ‘inspired’ you do make a blogpost, but yes, it has become inevitable now
I agree with the notice, better to let people know. I thought about the index.html as well, but that would still make people loose their posts they are editing when upgrade is taken place (or is failing), wouldn’t it? have you ever tried the automated upgrade?
>Some of us with large sites do not deactivate all plugins and then reactivate later. With hundreds or thousands of blogs, it’d be a nightmare.
So you also do not (even) deactivate the BP-plugins?
>The moving of the theme only occurred during BP 1.1. Shouldn’t have to do it next time.
It is still in the upgrade instructions though and I assume that if there are theme changes this might make sense or not? I do hope somebody cleverer than me could make this process automated as well.
By the way, myself and some others had a white screen of death last upgrade. Not just just main blog, but all blogs, the moment I clicked the de-activate BuddyPress button. Apparently this could have been prevented by switching theme first. At that time I was not using a cloned child theme (now I am), so maybe that caused it.
Just shooting some ideas for your upcoming post
Cheers, Harry
Thanks arezki, but my last 15 splogs all had different IP’s and email domains, so I am not sure if this will help anything/
I also have nothing of the original message in the footer, but they keep on coming.
I notice that (with the welcome pack installed/enabled), that I receive friendship requests from, well, myslef
whenever a splog signs up. I am not sure if this means that the email to the sploguser has bounced or so? Seems that the banned email domains list in WPMU Admin options is not being used/checked as well, I just had a sign up from @live.cn, while I have *.cn on my blocklist…
I sent a message to Andy yesterday, as this problem is too big to ignore, see testbp.org.
oh yes, there is an entire industry in especially central Asian countries (Bangladesh is huge) where halls of people solve captcha’s for $1 per 1000-5000 captchas.
See http://ha.ckers.org/blog/20080311/human-captcha-breaking/
Don’t forget to read the last 5 comments or so
Though I am in favour of having spammers employ and pay poor people in Asia, I hate spam even more and have abolished all captchas from my site as still too many people cannot read them, so it is chasing people away. And, as the link above proves, they do not help anyway.
thanks DJPaul.
FYI: After reading http://www.studiograsshopper.ch/web-development/multilingual-wordpress-setting-up-wordpress/ I realized that the basic setting in wp-config could be changed (from define (‘WPLANG’, ”); to define (‘WPLANG’, ‘es_ES’); which -I think- adds Spanish (and not replaces the main language?) support.
Not sure if this setting does anything as the admin of the main blog could already choose es_ES in his blog settings (so ALL users see the blog in Spanish instead of all in English) before I ‘added’ Spanish in wp-config. (As long as the language file was uploaded to /languages of course).
Anyway, it does not change anything
– The home/community page/main blog and the buddy bar are still in the language the admin has chosen for it, not the language of the logged-in user (or a logged-out/new user for that matter).
