[Systems] Pootle Spam

Sayamindu Dasgupta sayamindu at gmail.com
Wed Oct 13 00:18:23 EDT 2010


Maybe set global permissions to read only, so that admins have to
explicitly give permission to the user before he can start
contributing ?
-sdg-


On Tue, Oct 12, 2010 at 11:15 PM, Chris Leonard
<cjlhomeaddress at gmail.com> wrote:
> Unfortunately, I believe we are seeing our first linkspam attack on Pootle.
>
> This user:
> http://translate.sugarlabs.org/accounts/frannyberry/
>
> frannyberry at writeme.com
>
> Has made suggestions and submissions that appear to be some sort of
> linkspam.  Like the following:
>
> 8gv5VE  <a href="http://blcbwyhxwdcc.com/">blcbwyhxwdcc</a>,
> [url=http://tyfzlpsrholl.com/]tyfzlpsrholl[/url],
> [link=http://bsuxmpmcpogj.com/]bsuxmpmcpogj[/link], http://zpenwspavuai.com/
>
> Pootle does not give a convenient contributions and rollback capability like
> MediaWiki.  Does anyone have a suggestion on how we should handle this?  As
> a pootle admin, I can delete this account, but I am concerned it might just
> come back under a new name, so I haven't done that yet.  The priv to submit
> is not always granted on every project, it is basically up to the language
> admins.
>
> I'm hoping we can come up with a countervandalism strategy before this gets
> much worse.  Suggestions are needed.
>
> cjl
>



-- 
Sayamindu Dasgupta
[http://sayamindu.randomink.org/ramblings]


More information about the Systems mailing list