headers
Alexander Limi | 25 Aug 11:31
Favicon
Gravatar

Re: website abuse

I have posted a proposed solution to the website and admins list after  
some brainstorming with the plonerati.

Shouldn't be too hard to fix, fortunately - it's an annoying misfeature  
that needs to be fixed (even though it's not a security hole as such, we  
still don't want to help spammers in any way, even if it's just to  
redirect links)

-- Alexander

On Thu, 24 Aug 2006 17:35:33 -0700, Jon Stahl  
<jon <at> onenw.org> wrote:

> FWIW, this seems to be happening on some non-plone.org sites in the
> wild.
>
> I'm not sure what if anything can be done about that.
>
>> -----Original Message-----
>> From:  
>> plone-website-bounces <at> lists.sourceforge.net
>> [mailto:plone-website-bounces <at> lists.sourceforge.net]  
>> On
>> Behalf Of Wichert Akkerman
>> Sent: Thursday, August 24, 2006 1:39 PM
>> To: quackeroo
>> Cc: plone-website <at> lists.sourceforge.net
>> Subject: Re: [Plone-website] website abuse
>>
>> Hi,
>>
>> thanks very much for the report. We became aware of this
>> yesterday and added captchas to the user registration to
>> prevent more spam accounts from being created. We will be
>> working on removing the spam accounts over the next week or so.
>>
>> Regards,
>> Wichert.
>>
>>
>> Previously quackeroo wrote:
>> > I tried to post this as a ticket, but it said I didn't have
>> > TICKET_CREATE access.
>> >
>> > Someone is apparently using the plone.org user pages to act as
>> > doorways/forwarding sites to spam sites.
>> >
>> > Someone is running a spam management program from this website:
>> > http://as2.bonsilver.com/
>> >
>> > Most stuff seems broken, but if you go to "Add task" under
>> the "Spam
>> > Wizard" menu and then click on "Select" on the Doorway row,
>> a pop-up
>> > window will present you with the following list of
>> "doorways".  If you
>> > go to one, it forwards you to a spam site.  I've copied these here
>> > because the list of doorways can apparently change over time.
>> >
>> >         http://plone.org/portal_memberdata/portraits/orko
>> >         http://plone.org/portal_memberdata/portraits/borozda
>> >         http://plone.org/portal_memberdata/portraits/plintus
>> >         http://plone.org/portal_memberdata/portraits/arapnik
>> >         http://plone.org/portal_memberdata/portraits/corow
>> >         http://plone.org/portal_memberdata/portraits/neilon
>> >         http://plone.org/portal_memberdata/portraits/virko
>> >         http://plone.org/portal_memberdata/portraits/lopata
>> >         http://plone.org/portal_memberdata/portraits/jbluh
>> >         http://plone.org/portal_memberdata/portraits/buagaga
>> >         http://plone.org/portal_memberdata/portraits/holmek
>> >         http://plone.org/portal_memberdata/portraits/kruk
>> >         http://plone.org/portal_memberdata/portraits/wouara
>> >         http://plone.org/portal_memberdata/portraits/simpa
>> >         http://plone.org/portal_memberdata/portraits/karol
>> >         http://plone.org/portal_memberdata/portraits/tripisat
>> >         http://plone.org/portal_memberdata/portraits/rokokos
>> >         http://plone.org/portal_memberdata/portraits/shtanina
>> >         http://plone.org/portal_memberdata/portraits/botinok
>> >         http://plone.org/portal_memberdata/portraits/breuno
>> >         http://plone.org/portal_memberdata/portraits/kreslo
>> >         http://plone.org/portal_memberdata/portraits/ezop
>> >         http://plone.org/portal_memberdata/portraits/mizq
>> >         http://plone.org/portal_memberdata/portraits/lesh
>> >         http://plone.org/portal_memberdata/portraits/hamst
>> >         http://plone.org/portal_memberdata/portraits/pluxa
>> >         http://plone.org/portal_memberdata/portraits/durshlag
>> >         http://plone.org/portal_memberdata/portraits/vivih
>> >         http://plone.org/portal_memberdata/portraits/nisho
>> >         http://plone.org/portal_memberdata/portraits/wazok
>> >         http://plone.org/portal_memberdata/portraits/joark
>> >         http://plone.org/portal_memberdata/portraits/bbop
>> >         http://plone.org/portal_memberdata/portraits/qupol
>> >         http://plone.org/portal_memberdata/portraits/bripok
>> >         http://plone.org/portal_memberdata/portraits/muravei
>> >         http://plone.org/portal_memberdata/portraits/monoh
>> >         http://plone.org/portal_memberdata/portraits/boyler
>> >         http://plone.org/portal_memberdata/portraits/guzh
>> >         http://plone.org/portal_memberdata/portraits/dzonasd
>> >         http://plone.org/portal_memberdata/portraits/bathory
>> >         http://plone.org/portal_memberdata/portraits/captcha
>> >         http://plone.org/portal_memberdata/portraits/ftosor
>> >         http://plone.org/portal_memberdata/portraits/iashik
>> >         http://plone.org/portal_memberdata/portraits/arbus
>> >         http://plone.org/portal_memberdata/portraits/roba
>> >         http://plone.org/portal_memberdata/portraits/uzrok
>> >         http://plone.org/portal_memberdata/portraits/buee
>> >         http://plone.org/portal_memberdata/portraits/ozrol
>> >         http://plone.org/portal_memberdata/portraits/borha
>> >         http://plone.org/portal_memberdata/portraits/iglu
>> >         http://plone.org/portal_memberdata/portraits/jhook
>> >         http://plone.org/portal_memberdata/portraits/whozz
>> >
>> > This should be fixed on the plone site.  Not sure what can be done
>> > about the idiot running the spam software.
>> >
>> > Quackeroo
>> >
>> >
>> ----------------------------------------------------------------------
>> > --- Using Tomcat but need to do more? Need to support web services,
>> > security?
>> > Get stuff done quickly with pre-integrated technology to
>> make your job
>> > easier Download IBM WebSphere Application Server v.1.0.1 based on
>> > Apache Geronimo
>> >
>> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=1216
>> > 42 _______________________________________________
>> > Plone-website mailing list
>> > Plone-website <at> lists.sourceforge.net
>> > https://lists.sourceforge.net/lists/listinfo/plone-website
>> > The Wiki: http://plone.org/development/current/projects/WebsiteTeam
>>
>> --
>> Wichert Akkerman <wichert <at> wiggy.net>     
>> It is simple to make things.
>> http://www.wiggy.net/                   It is hard to make
>> things simple.
>>
>> --------------------------------------------------------------
>> -----------
>> Using Tomcat but need to do more? Need to support web
>> services, security?
>> Get stuff done quickly with pre-integrated technology to make
>> your job easier Download IBM WebSphere Application Server
>> v.1.0.1 based on Apache Geronimo
>> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&
>> dat=121642
>> _______________________________________________
>> Plone-website mailing list
>> Plone-website <at> lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/plone-website
>> The Wiki: http://plone.org/development/current/projects/WebsiteTeam
>>
>
> -------------------------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services, security?
> Get stuff done quickly with pre-integrated technology to make your job  
> easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache  
> Geronimo
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________
> Plone-website mailing list
> Plone-website <at> lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/plone-website
> The Wiki: http://plone.org/development/current/projects/WebsiteTeam
>

-- 
_____________________________________________________________________

      Alexander Limi · Chief Architect · Plone Solutions · Norway

  Consulting · Training · Development · http://www.plonesolutions.com
_____________________________________________________________________

       Plone Co-Founder · http://plone.org · Connecting Content
   Plone Foundation · http://plone.org/foundation · Protecting Plone

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Plone-website mailing list
Plone-website <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/plone-website
The Wiki: http://plone.org/development/current/projects/WebsiteTeam
Permalink | Reply |

Gmane