« Punishing Bad Behavior
Bad Behavior 1.1.4 »

Bad Behavior 1.1.3

July 1st, 2005 by Michael Hampton

Bad Behavior Bad Behaviour

Make a Donation.

Bad Behavior 1.1.3 has now been released. I’ve been holding this a little longer than some of you would like; because of a rise in spam attacks and some slightly smarter spammers, a few spams have been getting through to your sites, and because they’re getting smarter I’ve wanted to ensure that I could block the spammers and only the spammers. I’ve blocked all the spammers I can reasonably block and maintain no false positives.

I also fixed a (very uncommon) update service being recognized as a spambot. I have a policy of zero false positives, so if you see traffic that should be getting through and is being blocked, or if you are getting spam to your site, please report it immediately.

Changed in this release:

  • Several additional spambots have been identified and blocked thanks to user contributions.
  • Mozilla Blog Updates is no longer blocked.
  • A typo causing a PHP warning in bad-behavior-http-headers.php has been fixed.

It’s that time again, so Download Bad Behavior now!

2 Responses to “Bad Behavior 1.1.3”

  1. 1

    Will Kessel Says

    Michael,

    I just downloaded 1.1.3 and installed it on my WordPress 1.2.2 site. I had 1.1.2 installed previously, and it worked great until 2 or 3 days ago, when I started getting 3 or 4 spam comments a day (hey! it’s better than 90 or 100! I’m still impressed! Love this app!).

    With 1.1.3, after only a few hours, I have 2 more, and they’re a little different than the old ones: funky diamond characters in the name area and a url in bold type “zz51.51.net.”

    Here’s the line from my raw access log from one of the posts he spammed:
    222.183.140.132 – - [01/Jul/2005:19:20:56 -0700] “GET /index.php?p=25 HTTP/1.0″ 200 19790 “-” “Mozilla/3.0 (compatible)”

    The IP matches what WP reports — this time (I was getting a lot of spoofed IPs before). Comment moderation is ON, as usual; I currently only have Tar Pit running concurrently with BB. (I know! — I should be using WP1.5x with BB and Gatekeeper and/or SpamAssasin — but I’m moving to a Darwin-enabled server in another month or so to handle QTVR, and I’ll upgrade to WP 1.5x then.)

    Is this guy a newbie, or did he find a way to slip between the cracks?

    Thanks for the great piece of software!

    Peace,

    Will Kessel
    will@collisionbend.com
    http://www.collisionbend.com

    Cleveland, Ohio

    Jul 1st, 2005 at 9:45 pm   

  1. 1

    shorty114.net » Archives » Bad Behavior 1.1.3 Released

    Pingback on Jul 1st, 2005 at 3:17 am