Thread: Robot posts
View Single Post
Old 09-18-2013, 05:57 AM   #7
eJM
Account Suspended
eJM will become famous soon enough
 
Join Date: Oct 2006
Location: teh Ether
Posts: 559
5 yr Member HT/PT Owner
Default

Quote:
Originally Posted by jgbackes View Post
I worry that at some point they are going to inject a cross-site scripting attack and someone on here will compromise their own computer.
That would be quite unusual for a spammer like we've seen recently to do. I've never seen it happen like that with this forum software.

I can't be sure, but I think there may be a bad-word filter set up to block all links, which is why we haven't seen any links in those spam posts. The spammers will just have to be satisfied with the huge amount of keywords and phrases, or maybe have a link in their profile.

Even though the version of the forum software used here isn't the latest version in the series, it's probably still patched and secure. This software is about the safest you can get in forum software.

But the worry is still there that a spammer or generally bad guy will post a link to a site that hosts malware, spyware, etc. It's one reason I never follow those shortened URLs (bit.ly and the like). If I can't see the actual destination, either in the link appearing on the page, or in the status bar at the bottom of most browsers when you hover over a link, I ain't clickin' it. I guess it also depends on who posts the link too. But it's not just a matter of trusting that person, but trusting the person who may have sent them the link.

I use the same forum software on my flooring forum. There are a number of different ways the webmaster can protect their members and visitors from spam and other ne'er-do-wells. The best we can do to help our administrators and moderators is to not reply to obvious spam posts, but to use the Report Post feature instead. It's that little scales of justice icon in the bottom-left part of every post, under the user's info. Click it, type "spam" or something like that and submit it. An email goes out to the admins and moderators and they will deal with it when they can. Posting replies to it just tells the search engine crawlers that it must be a relevant discussion. That is the least of what the spammer wants, so don't give it to them.

Jim
PS: Jeff, I'm still enjoying our short visit recently - every time I think about it, which is often. I had a great time. Mighta been more fun had them bikers taken our challenge. Thank you and your beautiful fiancé for your hospitality and generosity.
eJM is offline   Reply With Quote