Spam accounts and Google Spam accounts and Google
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Spam accounts and Google

Started by OutKa5t, January 21, 2007, 11:02:19 AM

Previous topic - Next topic

0 Members and 2 Guests are viewing this topic.

OutKa5t

Hi,

My gallery has been started to recieve account signups from 'spammers'. Each time one of these accoutns are created comments are left on photo's. The comment is a link with text google.pl but actually links to a virus file exe

I have been through many logs in attempt to trace where these users are coming from and the majority appear to be from France and finding the site with the following Google search

'powered by coppermine photo gallery user registration site .uk'

Has anyone else had this problem? I am using cpg 1.4.10

Thanks

Tranz

Spam is a problem for just about any app that allows user input. Please search the forum for spam captcha or spam akismet for some solutions specific to comment spam in your gallery.

Purrsia

Been getting the same thing. But actually, it put some folder called .logs inside one of my album folders and inside that, there was something Norton caught (I happened to be downloading a copy of one of my galleries to my computer as a backup, and Norton wouldn't let it download this part) was called backdoor.dextenea
Searched the forum for that term and came up with nothing, so I hope this isn't a repost.

That seems a little worrysome. Any advice on that? As in, methods to prevent people from uploading such things? Well, short of killing the functionality of the gallery.
And how about making future updates of Coppermine come with a captcha of some sort to prevent this spamming business? I know I could turn comments off, but the majority don't abuse it and they can be fun and valuable for feedback. Seems like installing such a thing yourself will  put you out the next time coppermine does a major  update, right? Well, it would if adding it meant altering or adding code to a file. If it's just built in, one wouldn't have to worry about it. Just wondering. Thanks.

Joachim Müller

An existing backdoor on your server is not related to comment spam. However, you should be alarmed and react immediately. Ask your webhost for support.