Piwigo Bugtracker

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0000625Piwigouser commentspublic2007.01.18 23:082007.01.24 06:09
Reporterrvelices 
Assigned Torvelices 
PrioritynormalSeverityfeatureReproducibilityalways
StatusclosedResolutionfixed 
PlatformOSOS Version
Product VersionAlligator 1 
Target VersionFixed in VersionAlligator 2 
Summary0000625: Enhancements against spam robots
DescriptionAround 50% of spam robots post spam comments without first retrieving and analyzing the form. Protect against this one by including a hidden field in the comment form. This field will contain:
- timestamp (seconds)
- a hmac of the timestamp generated using a 'secret' (random string in #config)

On post we check that the timestamp is no older than X seconds and the validity of the hmac.
TagsNo tags attached.
browserany
Database engine and version
PHP version
Web serverApache 1.3.x
Attached Files

- Relationships
related to 0000524closedrvelices Add anti-spam for comments... 

-  Notes
(0001664)
rvelices (developer)
2007.01.19 04:26

[Subversion] r1737
(0001679)
rvelices (developer)
2007.01.24 06:09

finalized in [Subversion] r1744

- Issue History
Date Modified Username Field Change
2007.01.18 23:08 rvelices New Issue
2007.01.18 23:08 rvelices Status new => assigned
2007.01.18 23:08 rvelices Assigned To => rvelices
2007.01.18 23:08 rvelices browser => any
2007.01.18 23:08 rvelices Web server => Apache 1.3.x
2007.01.18 23:08 rvelices Relationship added related to 0000524
2007.01.19 04:26 rvelices Note Added: 0001664
2007.01.24 06:09 rvelices Note Added: 0001679
2007.01.24 06:09 rvelices Status assigned => closed
2007.01.24 06:09 rvelices Resolution open => fixed
2007.01.24 06:09 rvelices Fixed in Version => Alligator 2


Copyright © 2000 - 2015 MantisBT Team
Contact
Powered by Mantis Bugtracker