Last modified: 2010-05-15 15:38:13 UTC

Wikimedia Bugzilla is closed!

Wikimedia has migrated from Bugzilla to Phabricator. Bug reports should be created and updated in Wikimedia Phabricator instead. Please create an account in Phabricator and add your Bugzilla email address to it.
Wikimedia Bugzilla is read-only. If you try to edit or create any bug report in Bugzilla you will be shown an intentional error message.
In order to access the Phabricator task corresponding to a Bugzilla report, just remove "static-" from its URL.
You could still run searches in Bugzilla or access your list of votes but bug reports will obviously not be up-to-date in Bugzilla.
Bug 4252 - spammers putting lots of blank lines at the top
spammers putting lots of blank lines at the top
Status: RESOLVED INVALID
Product: MediaWiki
Classification: Unclassified
Parser (Other open bugs)
1.5.x
All All
: Normal minor (vote)
: ---
Assigned To: Nobody - You can work on this!
http://ps.wikipedia.org/w/index.php?t...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2005-12-11 23:31 UTC by Bob
Modified: 2010-05-15 15:38 UTC (History)
1 user (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description Bob 2005-12-11 23:31:11 UTC
I'v seen plenty of wiki spam that uses the 1px trick to make spam links that can
be seen in the source of the webpage but arn't visible. Today I saw somthing new.

A spammer made a new page on the wiki. SPam links can be seen with view source
on the page
but don't show when edit is selected. The html looks like this.

</p>
<hr />
<p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />

</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />

</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />

</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p><p><br />
</p>
<div style="overflow: auto; height: 1px;">

<p><a href="http://spamspamspam/boards/board.cgi?user=phentermine"
class='external text'
title="http://spamspamspam/boards/board.cgi?user=phentermine" rel="nofollow">Buy
Phentermine</a>
<a href="http://spamspamspam/boards/board.cgi?user=buytramadol" class='external
text' title="http://spamspamspam/boards/board.cgi?user=buytramadol"
rel="nofollow">Buy Tramadol</a>
<a href="http://spamspamspam/boards/board.cgi?user=oxycontin" class='external
text' title="http://spamspamspam/boards/board.cgi?user=oxycontin"
rel="nofollow">Buy Oxycontin</a>
<a href="http://spamspamspam/cgi/gb.id?hydrocodoner" class='external text'
title="http://spamspamspam/cgi/gb.id?hydrocodoner" rel="nofollow">buy
hydrocodone</a>
</p>
Comment 1 Brion Vibber 2005-12-11 23:36:46 UTC
Please provide an URL to a page where we can see this.

Is it just a bunch of blank lines, and then the usual spam crap?
Comment 2 lɛʁi לערי ריינהארט 2006-01-11 02:35:14 UTC
Hi Brion!

Added an URL. Have seen dozens of these during the last days. The code from
comment 0 seems to be copied from View > Page Source in the browser.

What is new here (at this url) is that user talk pages of anonymous users are
spamed too. Normaly pages with same title in English (which occur in MediaWiki -
Language.php) are spamed.

Note about this summary:
"spamer creating spam links that don't show in edit"

*don't show in edit* is not a proper description. The spam shows only if you
scroll in the edit-texarea.

What could be done to overcome this trick? Maybe action=edit should jump to the
first nonempty line. If this is a solution please change the sumary of this bug.

best regards reinhardt [[user:Gangleri]]

P.S.
a) This is the only bug submitted by Bob using an [[en:Mailinator]] account. It
is speculative if he gets the feedback.
b) His MediaZilla account (both email address and name) can be hijacked. I think
that the domain mailinator.com should be blacklisted at MediaZilla.
Comment 3 lɛʁi לערי ריינהארט 2006-01-11 02:44:01 UTC
(In reply to comment #2)
> What could be done to overcome this trick? Maybe action=edit should jump to the
> first nonempty line. If this is a solution please change the sumary of this bug.

A better suggestion is:
Maybe action=edit should jump to the first *printable* character. There are lot
of scenarios where the first *nonempty* line contains whitespace or dieacritical
marks which do not display.
Comment 4 Rob Church 2006-05-16 03:02:32 UTC
The spam blacklist or regexes would have caught this. It's not like we can fix
the issue with a polite email to the marketing department of lunchmeat.net.

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links