Re: User / messaging exploit? Causing spam
Word. Patch it!
I’ve been having sign up spams (arguably a different issue) on my BP install, and just shut all signups down until I could figure out what to do about it.
Scouring the WordPress MU forums has made me realize three things:
1. Spamming is a huge problem for WordPress MU users
2. I’m betting that BuddyPress will/might have even larger problems due to the very nature of the beast (it’s all about users, right? Which is where the bots/spammers gravitate)
3. There are no sure-fire methods for preventing spammers
…well, there’s a fourth, too…
4. Many of the old hats on the WordPress MU forums are getting tired of explaining how to defend against so-called “splog” signup bots and spammers.
Just some observations, as BP just received its first official spammer. (Yes, I got the email too, and saw the small twitter firestorm this morning over it.)