Chovy's Blog

This is the log file from my fight spam honey pot.

As you may or may not know, the above url will generate fake email addresses and links, eedirecting a spam bot (email grabber) back into itself. I finally caught one today from one of my sites. Here’s an excerpt of the log file…looks like it finally gave up after about 100 requests. Multipy that times 50 email addys, and that’s around 5,000 fake email addresses added to their database:

- -> /index.cgi/k1zaliivor0z4euawons114w5ls6hq
- -> /index.cgi/p0zvswo9txy_b07b3afj6drcp8sosa
- -> /index.cgi/yi38uh5l4jqrvu0k29on1cdjv6lfgd
- -> /index.cgi/l6a6-o_ivq597svs6zs-.zulbjgt40
- -> /index.cgi/n7llqyg7bpjpowvodmgxh2m3vu5ik1
- -> /index.cgi/4tohoygmzh51pd6lr3-n2qjzrnp_o5
- -> /index.cgi/1fjizuil2uiiuehscrbjafwbbi7ohr
- -> /index.cgi/614nwd7wvukscz1h3yxxjg4fyo0cfm
- -> /index.cgi/k6pc9q4pj_y7zjb.ju_mwretw9xp-z
- -> /index.cgi/t-d5sd26hxkkw3rguvmy5i.h.3yqst
- -> /index.cgi/uvztjzdex72uaq8u6p1qpc.s..l.o1
- -> /index.cgi/m1iunlhwkc0sp65-7..pcu..k8mnv6
- -> /index.cgi/x-a-oz-k_i6oyz4o1bk7ktzberb6jw
- -> /index.cgi/ctmxsx8w9ls38cel1ow6kohy88hfy_
- -> /index.cgi/s.eak9g52udk64_w6exwd1m3o2lmnr
- -> /index.cgi/la_cdootpvu63lm5sw9tt8v5f.gjf1
- -> /index.cgi/5llc8-83z7ahwapaowhidut_vj12ut
- -> /index.cgi/ah_1ftl_lt2c5dbotncrb18odq1sv0
- -> /index.cgi/f0zk-duyjw52m7-r8otljfjq3d9bvf
- -> /index.cgi/1pd45–c8uw5ciju4.rp2_nxp6299l
- -> /index.cgi/-1pwzs7tfk6we2cm-w1yn4dm-_r0i5
- -> /index.cgi/dpp93kwlg4pl4excfbyk78ob55g4z4
- -> /index.cgi/u6xwn985h3i0uly4jnw7khm-e0cmuo
- -> /index.cgi/cg28y6cspg7wkd722er3shtkg-rts7
- -> /index.cgi/4oqv65a7_upaxvqz_k761r69b8j-gu
- -> /index.cgi/nubz499kj0fzphesjwx85mud16-9.y
- -> /index.cgi/6hh8n0uhf3-e.0s2xpi5huos__xu2l
- -> /index.cgi/66.i2r6s1u28o4m.hxecsoctbd902g
- -> /index.cgi/xxrxufmzkfb4yxbg8ye9zcwohs9ebg
- -> /index.cgi/0y65pgj1m4.g3ad6rkkl6-90szxphq
- -> /index.cgi/78nz6lh4o3z3v9csyqi4.xb3hf1f69
- -> /index.cgi/riw0y-puvzh0n4k1wsmqp2jfrp-l79
- -> /index.cgi/5_4j5ey5-1jtt-ha9vl5dvoeq-fbsl
- -> /index.cgi/elhxw_4mdis-ai.s7_5g96785lq15p
- -> /index.cgi/4yue-xt9vlsbqckieh6j5hz9whe0e6
- -> /index.cgi/oa.aw14hzh_wmd8z_61kku5m8z.7eq
- -> /index.cgi/5keot50tpib6p1jgzxjuanuzqpcel3
- -> /index.cgi/zcmo2wnhwv8lzrn0ff43tdwyr4ig1g
- -> /index.cgi/wauzui_ejbhvt_.fww3rp5a7c3orb.
- -> /index.cgi/c62x_zgisnyvqdjhcrl3wq-qku21d9
- -> /index.cgi/25kj6m33kbtym6ydl0ou_64esnsl50
- -> /index.cgi/6jy5c-9mrvo8xjm44lwiis-nzfxsp.
- -> /index.cgi/9uroohld9409mfr081pdy2m5o1df-o
- -> /index.cgi/q342gjpcbkesswp6dp1u4.0ny5j9r2
- -> /index.cgi/360la3bv7dj3i-f_p7eskpc11o7n_q
- -> /index.cgi/j3.nrlcj.sjkg6hst90q5.owl8gcme
- -> /index.cgi/oj7_qgxr8d1cu7jmd5r6xv6sk32uv1
- -> /index.cgi/_9kzq-s_jke439bxkcoltnyejwp.1p
- -> /index.cgi/z_fypwl9uzivmvmvea18irg9jq5.yz
- -> /index.cgi/0nq_5cw3..zskfxc3wgz5gyt0ob4.g
- -> /index.cgi/fw4q0ouv.2nkg6afczodknvl1zi2ei
- -> /index.cgi/m0oxboyd68pevqg.tiut-73vscf6.6
- -> /index.cgi/njqfi9wfywg63a1miggsbm4nv.jkv0
- -> /index.cgi/afpy0oza.-21qt8skox.4mkrvudzh5
- -> /index.cgi/5zdi_d2y.6aoo2h4x_ih51m8hnt0uc
- -> /index.cgi/98eu1499e6sh-u.u4-_12.-u3g14kw
- -> /index.cgi/7dwk0amtp3t.dxa6rxgiuk701mo8zc
- -> /index.cgi/qv5w19mj_hu51ghlxakqhc9sjjgvro
- -> /index.cgi/yqneolc5qszl9dsgibd-.mx9_8aefp
- -> /index.cgi/xwhsowsg89pgerlvudgw90my16jyni
- -> /index.cgi/6o3urni3hy2t1yepx4nz565y1u5tz3
- -> /index.cgi/mph2o0kqxc7ujgiz-fz_tu2nmhqi72
- -> /index.cgi/r0a1m3ej6n2p.sc8352rvc1ma6ehek
- -> /index.cgi/f-l0r-.8ic2rr7ei-vrbe8sgcfwpcm
- -> /index.cgi/0d7tkfvs_n65kt4ldeb-j5uen8nv0z
- -> /index.cgi/asib78r_zk1rdjfidda955ewgfyhiu
- -> /index.cgi/z0xdwct-lrhe.jby-vwlbwtfksfms8
- -> /index.cgi/8utjc23jyditrtj02qxjx2nr52r9p4
- -> /index.cgi/ggbr6w.3e4kc.iosx8vbyaifx46h7a
- -> /index.cgi/wmomhb1wnedxb2bu1jomi9oxv3na7d
- -> /index.cgi/_sphyrrir55bh5lorh1prcf1ff0z_9
- -> /index.cgi/it7d3bca9q1quy5mzjwk9obmggstqh
- -> /index.cgi/uuvnchawx008hf7fjo76.4pt7stmdq
- -> /index.cgi/2h59vsthdw-r1ucjus_ql.nnctz.k7
- -> /index.cgi/7bru1xla.98ye0fvb4hzn.4nn1fj4o
- -> /index.cgi/cg.v2g0ux3npqyy.i3bqs2-.gcwg5c
- -> /index.cgi/nhrjkiuf3j11d9k0kuwx_pwpumuw.5
- -> /index.cgi/ze1iplakuec8hjgl7ix7v45ajqxqls
- -> /index.cgi/64.9.7q4o2rd2h82s9b6mh_p0xa3a6
- -> /index.cgi/qo-wb8kh4qsvujq20xbgr0y-m8pe3b
- -> /index.cgi/39rqnd3dasfim56ew6wp1comn9jb93
- -> /index.cgi/ymd6ynnvceb9qfl5uqhgsqqgju0-k.
- -> /index.cgi/s2csm9x3p4gw0srodqf50-9abhsz.q
- -> /index.cgi/nze344b19a1660m9.qextip24lb2ia
- -> /index.cgi/9d2phsgdg.gq608wdm._gayhc-bysd
- -> /index.cgi/5502de81lh533sla1.n5k_ctmxf4w6
- -> /index.cgi/5_55q205kpi26e29x3hp3-gq_7r1mn
- -> /index.cgi/uoej..ncp7ye.np49d8qy5zji0v7g0
- -> /index.cgi/lw.50ssmkowuuztzc5vq1js89rai54
- -> /index.cgi/9qr0h9jb3_rjfrk6y299-mhzwr07ae
- -> /index.cgi/7kuo.fp4q7.92l1czivndnalctxrtq
- -> /index.cgi/jh8xp0e-o8x8qtyedy1yk290damehb
- -> /index.cgi/kcbg-jo.eqa97k-lhdj0jvdq97pi0n
- -> /index.cgi/lwhipqlhtz8ztsgrst380fe1ht-ujd
- -> /index.cgi/ged01gzjoodssb8yvch8dy_c01j5be
- -> /index.cgi/npeiox9x.zb4iz_9sto7-lect5nug9
- -> /index.cgi/jy8_9klkvyh_rxx7n4_03b_oxxt-m6
- -> /index.cgi/1jfjcd4_f8fh1adr.qzo8cs5dzi..6
- -> /index.cgi/-nvgqfh.j9sis34dim_6qt.x1za1y1
- -> /index.cgi/hdo4e-ph-ro64-h7x3lhqd9zpxxmkl
- -> /index.cgi/_i9fx2r7agowae5p1cu8ij0rqc7h1-
- -> /index.cgi/.13mg.ax_w0miedxsdxgwzsugy70z_
- -> /index.cgi/u8.g_b4kk0mk8398xigmdvk60..ayo
- -> /index.cgi/sj0bj2cz35nt5bbm678oek..fj-gm7
- -> /index.cgi/yf1gspdma70m77xfpksuintwjsdxfd
- -> /index.cgi/8q6.upsw8d-vsukm4kz1f1wu-9wk5l
- -> /index.cgi/e4_1ftn.z_x2a67y3q_o9naeao1bbu
- -> /index.cgi/jhao83q1fcxfr2d88gw7ownchm_cpi
- -> /index.cgi/53jt4i8f0s-7j2kzejy_0j0e9plrxb
- -> /index.cgi/yrpcvdrjir5o_sdp0264c6783cuynt
- -> /index.cgi/-.y0aetbizy3xfj6_qkwt1-g7e18hj
- -> /index.cgi/hav2a-m9g_i_xfm_o87oyukeljue3j
- -> /index.cgi/5_onw4ydaftdr5ct8cu-8nz.wsbbgg
- -> /index.cgi/2a7zv6urjfiv7l84w72_uvf8bd.19k
- -> /index.cgi/ct5h8224pdpa57h_kdg_izdw3dwnnd
- -> /index.cgi/lzt4lpjnqsp6au1ywm0w8tzlqddfls
- -> /index.cgi/2zxdqs.mixd7sgu41skeorgnzfd05f
- -> /index.cgi/pd4pwnhxrsn3ph7aqry7cmjsxdy3lk
- -> /index.cgi/9dbe.g37ta767lo6uu06x7ajdivrn2
- -> /index.cgi/ts-g41qas1c31rtgatfv9b_4kx6.vp
- -> /index.cgi/y5-40v45us.g0jk.o_4jge3kb9_m90
- -> /index.cgi/m.0bh1vkhxsgf8o-4y-xzt7axz-u8.
- -> /index.cgi/i8d_.j4gu79927tllckzj48panxpzx
- -> /index.cgi/pvx–0tpcjxwdc95at.4goi.7-mjtf
- -> /index.cgi/yxsn9pib7cptdesxhxy9gzfk-16kbc
- -> /index.cgi/dfpbzow-56218b1k6fautu_fmt2ysc
- -> /index.cgi/g25flbxiushf9yk6qvz-1clryzctt3
- -> /index.cgi/v48i6wpkt6py8wu_vw52kqjrh_q5d2
- -> /index.cgi/202e0tr4guv2l2m4uory.cphpfa-ak
- -> /index.cgi/veh3itz4z_hw1tdwjwtp.1yipsy5d.
- -> /index.cgi/s0rw-n2vdo3306rzsv54-9j7pym4lx
- -> /index.cgi/w.zxd4i42a6f3v_23epbq64rjgb-nm
- -> /index.cgi/p99_8k7cezfxazqdoclvyy_ck9fb05
- -> /index.cgi/ne_al4edqg8rg8zqpw353lqpakxiz4
- -> /index.cgi/5uvur-1zomr52xuzcib55nixppmqei
- -> /index.cgi/xr-o1j..w_q7tray7g1gj6szel1z72
- -> /index.cgi/645._og_d_aqtoa5euok8j7o.b3-hk
- -> /index.cgi/dr9fs7e7cup4g0l-7kqxn_wex43-4.
- -> /index.cgi/tz-s_ysq7r11qngdevk.0a2n8jb0m3
- -> /index.cgi/omk_rsd43d0o19tz86b7dn_gmwf3kd
- -> /index.cgi/k23y12jxf0iwawzjundff8_zsx0srk
- -> /index.cgi/m_wvaorklwpuqjna0q9150qsxk7ocx
- -> /index.cgi/qtsc55j-z_vdrc7vpxraqoewx9bge1
- -> /index.cgi/xanedle8kzlhs49–gr1ge_67xy0ip
- -> /index.cgi/ggs227z6rlze6jmfdlhnx0oclhhif9
- -> /robots.txt
- -> /
- -> /
- -> /index.cgi/slnba8hm17sjvolg0hw5agcwqiwf_y/
- -> /index.cgi/3cebw68n0vq3o-rg79q6mg61rbh3hd/
- -> /index.cgi/fkm66uj6d23k1rg9oulz.c-e_ofepp
- -> /index.cgi/my9ba0za4jqq5b4bmow-zu1a91w982/
- -> /index.cgi/w-bouc-4sllsrr7hyqzhhqfwg8gw0s/
- -> /index.cgi/nvli8.vqpkccgzyx902s0pz2fnqtsj
- -> /index.cgi/4ogz5.vxhr1wq55krwg7tv1-3lvi3i
- -> /index.cgi/tb0dkslsc56kchg_8m1y9u-kg85g5k/
- -> /index.cgi/ogc4x9pzsh-0fzcqm_exm8o9v4g9r9/

The one gripe i have with GMail is the pulldown menu you have to use in order to delete emails. Should just be a simple link or button.

I have started redirecting all my spam from a 12 year old email address into my Gmail account to try to gauge how good their spam filtering is:

After two days: 87 caught, 11 slipped through to the inbox, with 1 legitimate email (from the costco mailing list). That’s roughly 87%.

The benchmark to strive for is 95%.

I haven’t tested this yet with Yahoo yet (my main email account), but I get so many nigerian millionaire scams, about 5 – 10 per day in my Yahoo inbox.

The problem of spam isn’t going to go away anytime soon, unless we start corrupting their databases!

Fight Spam: Add this code to your site:

invisible:
<a href="http://honey.chovy.com"><img src="http://honey.chovy.com/images/spacer.gif" width="1" height="1" border="0"></a>

with reference:
<a href="http://honey.chovy.com">Fight Spam</a>

See it in action! Fight Spam

What this code will do is lead all those spam bots which crawl your site harvesting email addresses into my honey pot. Once they are there, they will get stuck in a circular reference and eventually contaminate their entire database, making the entire lot useless.

All you have to do is put an invisible link (see above) in your html code, and I’ll take care of the rest.

Thanks to Ian for writing the software to accomplish this. Feel free to install it on your server, the more honey pots the better!

I just started a new baseball discussion forum called the Oakland A’s Forum. Anyone is welcome to post, if you’re an A’s fan even better!

Ok, I’m not one for UFO conspiracies, but what in the hell is this?

You can read more about it here.

Time to upgrade phpbb again, there is a security fix in 2.0.15.

As always, make sure you backup your database on a regular basis, as well as backing up everything before you attempt to upgrade.

Here’s something I’m a proud of, I had to figure out a way to disable form elements
which were children of a table row class, or rather all table row classes not currently
selected from the dropdown menu:

<select name="cat" id="cat" onChange="showHide(this.value);">
  <option value="res" >Resumes</option>
  <option value="ggg" >Gigs</option>
  <option value="eee" >Events</option>
</select>
<table>
  <tr id="res" style="display: none;">
    <td><img src="/images/spacer.gif" width="10" height="1" border="0"></td>
    <td>Resumes Options:</td>
    <td>None Available</td>
  </tr>
  <tr id="ggg" style="display: none;">
    <td><img src="/images/spacer.gif" width="10" height="1" border="0"></td>
    <td>Gigs Options:</td>
    <td>None Available</td>
  </tr>
  <tr id="eee" style="display: none;">
    <td><img src="/images/spacer.gif" width="10" height="1" border="0"></td>
    <td>Events Options:</td>
    <td>None Available</td>
  </tr>
</table>

Consider the following javascript for looping through the form elements:

//usage: onSubmit="findOptions(this.cat.value)"
function findOptions(selectedId) {
  //populate array with possible options from "cat"
  var selectObj = document.getElementById("cat");
  var options = new Array(selectObj.length);

  for (var i = 0; i < selectObj.length; i++) {
    options[i] = selectObj[i].value;
  }

  //check unselected options and get their nodes
  for (var i = 0; i < options.length; i++)  {
    if (options[i] != selectedId) {
      var disableId = options[i];
      //alert(disableId);
      getFormNodes(disableId);
    }
  }
}

function getFormNodes(disableId) {
  //get the form nodes from the id to disable
  //alert(disableId);
  var obj = document.getElementById(disableId);
  var inputTags = obj.getElementsByTagName("input");
  var selectTags = obj.getElementsByTagName("select");

  disableFormNodes(inputTags);
  disableFormNodes(selectTags);
}

function disableFormNodes(formTags) {
  //disable each form node
  for (var i = 0; i < formTags.length; i++) {
    var myNode = formTags[i];
    myNode.disabled = true;
  }
}