We're getting spammed by blog-spammers. Today an offensive couple of spams were posted. Greg called me to let me know so I could quickly delete them.
I'll be introducing a counter measure shortly. This one seems reasonable.
Added to /mt/lib/mt/app/comments.pm just above ip ban:
my $entry_password = uc $q->param('password')
or return $app->handle_error($app->translate(
"Password is required."));
if ( $entry_password ne "PASSWORD1" && $entry_password ne "PASSWORD2") {
return $app->handle_error($app->translate(
"Password is incorrect."));
}
I noticed it too and was going to e-mail you but then I figured you would get an e-mail based on the comment anyway. If you want you can give me privileges over your sites so I could delete offensive comments.
Posted by: UT at April 10, 2004 01:47 PMTesting password protected comments.
Posted by: Me at April 16, 2004 11:26 PMI was able to post a comment too!
Posted by: UT at April 16, 2004 11:58 PMNote to self: 4 templates that include password field code:
/Library/WebServer/documents/mt-tmpl/individualentryarchive.tmpl
/Library/WebServer/documents/mt-tmpl/commentlisting.tmpl
/Library/WebServer/documents/mt-tmpl/commentpreview.tmpl
/Library/WebServer/documents/mt-tmpl/commenterror.tmpl
Good ol' Charlie. Hey! We're still trying to finalize this next kid's name. Maybe I better hurry and go suggest Charlie to Jennifer.
Posted by: Greg at April 17, 2004 03:23 PMTesting password for Greg... give them _ _ _ _.
Posted by: Jeb at April 18, 2004 10:46 PM