December 2011 – SYSMGR in the attic

28-Dec-2011

Cleaning up
I removed all ‘new users’ in this blog where I suspect them to be bogus; there has been two spam attempts using comment blocks, but comments are to be approved first, so these have never made it to being published 🙂 And since I’ve been messing around with MoinMoin, there have been no more abuse attempts there either; no more new ‘users’ have been signalled.

Now I’m in the process of redoing the WASD setup; that also means an upgrade of all software around it: PHP, MySQL, Python, MoinMoin; Also new software – it’s the idea to move all matters onto that new software but I’ll have to extract data from the MySQL databases first, so that will take some time…

21-Dec-2011

At last
There have been some developments on the wiki front.
As to be expected, I would like to get rid of the burden of spam contents; just a few mimutes a day but why do that if it can be avoided.
First of all, I deleted all user entries in cache – well, except the ones I want to keep, of course. Removing the spam alltogether was quite a different story so in the end, I decided to remove everything dated after Jan-01, 2011. That got rid of the spam messages, indeed. Plus a bit more, which rendered the wiki unusable: Starting page gone, frontpage gone. But the wiki is backed up on a weekly basis so I could restore it all, though it does take quite some time to re-appear.
Next, diiging through the documentation, I found a way to allow users to sign up, but the really create a page, it’s possible to require SSL – maning: a login on the system. This has been tried bu it caised a number of problems. First, I needed to define a SSL-enabled entry that requires you to log in. Next, I had to find a way to make the wiki normally accessabe over port 80 (where you could create an account) but you would need to login on port 443 (using https) to create of alter a page. Things has been set up that way – both WASD and wikli – but not only was the wiki inaccesable (unauthorized) when accessed of http, ALL pages were immutable when accessing the wiki over https: – I even didn;t need to login.
Put a question on the WASD list for the first issue (being typically a WASD issue) and reversed teh configuration. I got my answer from Mark, but I still need to implement it.
But it seems that the abusers found out the wiki cannot be abbused any more. In the last week, a few bogus users have been created but no new pages have been created, looking at the “Recent Changes” page. And slowly, the number of new users decreased.

Similarly, the SYSMGR blog seems to be plagued with bogus users, it seems most reside in the .ru domain. But as far as I can find out, there is no problem with them except using a single row in the database. They can only be subscribers, meaning they cannot contribute. I don’t know why they subscribed – problably opting for abuse, exploiting a possible flaw in WordPress? I know I need to upgrade to the latest version, and of PHP as well, and so for Python and MoinMoin, and possible VMS….
But plans are to redesign it all – abandoning MySQL and PHP, and Python and MoinMoin competely, and switch to the native VWCMS allgtogether. though it’ll mean a lot of work…
License time!
Next week, I’ll need to refresh the licences – expiration date approaches….

11-Dec-201111-Dec-2011

11-Dec-2011

VMSWiki blocked – for spam
I have blocked access to the VMS wiki a bit. To be able to write, an SSL connection is required and that’s not availble on the public site. I also enables antispam so certain content is no longer possible. I still need to do some testing (even better: let others try and see what happens :)).

To be continued….

1-Dec-2011

01-Dec-2011

Maintenance
Nothing special….
PMAS statistics for November Total messages : 1404 = 100.0 o/o DNS Blacklisted : 395 = 28.1 o/o (Files: 30) Relay attempts : 73 = 5.1 o/o (Files: 30) Accepted by PMAS : 936 = 66.6 o/o (Files: 30) Handled by explicit rule Rejected : 363 = 38.7 o/o (processed), 25.8 o/o (all) Accepted : 181 = 19.3 o/o (processed), 12.8 o/o (all) Handled by content Discarded : 81 = 8.6 o/o (processed), 5.7 o/o (all) Quarantained : 251 = 26.8 o/o (processed), 17.8 o/o (all) Delivered : 60 = 6.4 o/o (processed), 4.2 o/o (all)
Quite a lot of “job offers” in the last weeks. Most quarantained, some discarded, and what’s over 200 points is simply rejected. The number of relay attempts has not changed a lot…
What’s more irritating are the bogus wiki “users”: posting spam, almost every day I find a few new “users” and some do post some linking page. Inappropiate to the contents…Some seem to think they can do similar on this blog, but I wonder what they think they can do. No-one writes a post or page, but me 🙂

December 2011
M	T	W	T	F	S	S
« Nov				Jan »
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31