OESF:Antispam configuration work list

From OESF

(Difference between revisions)
Jump to: navigation, search
(ConfirmEdit extension)
(ConfirmEdit extension)

Line 44:

Line 44:

== ConfirmEdit extension ==
== ConfirmEdit extension ==
-
# Create directory: <code>mkdir html/extensions/ConfirmEdit</code>
+
# Create directory: <code>mkdir html/extensions/ConfirmEdit</code> &#8212; '''DONE''' -- [[User:Meyer|Meyer]] ([[User_talk:Meyer|talk]]) 13:55, 20 October 2007 (EDT)
-
# Download extension files to directory: <code>svn co http://svn.wikimedia.org/svnroot/mediawiki/trunk/extensions/ConfirmEdit/</code> &#8212; '''DONE''' -- [[User:Meyer|Meyer]] ([[User_talk:Meyer|talk]]) 13:55, 20 October 2007 (EDT)
+
# Download extension files to directory: <code>svn co http://svn.wikimedia.org/svnroot/mediawiki/trunk/extensions/ConfirmEdit/</code> &#8212; '''DONE''' -- [[User:Meyer|Meyer]] ([[User_talk:Meyer|talk]]) 13:56, 20 October 2007 (EDT)
# Add line near bottom of html/LocalSettings.php: <code>require_once( "$IP/extensions/ConfirmEdit/ConfirmEdit.php" );</code>
# Add line near bottom of html/LocalSettings.php: <code>require_once( "$IP/extensions/ConfirmEdit/ConfirmEdit.php" );</code>
# Customize html/ConfirmEdit.php (check directory):
# Customize html/ConfirmEdit.php (check directory):

Revision as of 17:55, 20 October 2007

This page is a list of operations to be performed to enhance spam protection of the OESF Wiki. The plan is to implement the suggestions documented in Blocking Spam in MediaWiki.

Contents

Installed software versions

MediaWiki1.11.0
PHP5.1.6 (apache2handler)
MySQL4.0.27-standard-log

Above obtained from Special:Version on 2007-10-21.

Work Environment

Host:login.ibiblio.org (shell account)
User:oesf
Password:(do not disclose)

Although telnet connection is possible, urge use of SSH client for security. Free clients include OpenSSH for Unix-like systems and PuTTY for MS Windows.

Backup files

Backup each file to be changed in following operations. (Paths relative to user oesf home directory: /export/sunsite/users/oesf)

CSS hidden spam

  1. Add following line to LocalSettings.php — DONE Added line in new section of file for OESF Wiki enhancements. -- Meyer (talk) 13:49, 20 October 2007 (EDT) 
$wgSpamRegex = "/\<.*style.*?(display|position|overflow|visibility|height)\s*:.*?>/i";

Blank user agents

  1. Create file html/.htaccess with following contents: — DONE -- Meyer (talk) 13:52, 20 October 2007 (EDT) 
SetEnvIf User-Agent ^$ spammer=yes     # block blank user agents

Order allow,deny
allow from all
deny from env=spammer

ConfirmEdit extension

  1. Create directory: mkdir html/extensions/ConfirmEditDONE -- Meyer (talk) 13:55, 20 October 2007 (EDT)
  2. Download extension files to directory: svn co http://svn.wikimedia.org/svnroot/mediawiki/trunk/extensions/ConfirmEdit/DONE -- Meyer (talk) 13:56, 20 October 2007 (EDT)
  3. Add line near bottom of html/LocalSettings.php: require_once( "$IP/extensions/ConfirmEdit/ConfirmEdit.php" );
  4. Customize html/ConfirmEdit.php (check directory):
    • $wgCaptchaTriggers
    • $ceAllowConfirmedEmail 
$wgGroupPermissions['*'            ]['skipcaptcha'] = false;
$wgGroupPermissions['user'         ]['skipcaptcha'] = false;
$wgGroupPermissions['autoconfirmed']['skipcaptcha'] = false;
$wgGroupPermissions['bot'          ]['skipcaptcha'] = true; // registered bots
$wgGroupPermissions['sysop'        ]['skipcaptcha'] = true;

$wgCaptchaTriggers['edit']          = false; // Would check on every edit
$wgCaptchaTriggers['addurl']        = true;  // Check on edits that add URLs
$wgCaptchaTriggers['createaccount'] = true;  // Special:Userlogin&type=signup

Bad Behavior extension

Bad Behavior 2 extension

SpamBlacklist extension

Retrieved from "http://www.oesf.org/index.php?title=OESF:Antispam_configuration_work_list"
Personal tools