Last modified: 2010-05-15 15:38:13 UTC
I'v seen plenty of wiki spam that uses the 1px trick to make spam links that can be seen in the source of the webpage but arn't visible. Today I saw somthing new. A spammer made a new page on the wiki. SPam links can be seen with view source on the page but don't show when edit is selected. The html looks like this. </p> <hr /> <p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p><p><br /> </p> <div style="overflow: auto; height: 1px;"> <p><a href="http://spamspamspam/boards/board.cgi?user=phentermine" class='external text' title="http://spamspamspam/boards/board.cgi?user=phentermine" rel="nofollow">Buy Phentermine</a> <a href="http://spamspamspam/boards/board.cgi?user=buytramadol" class='external text' title="http://spamspamspam/boards/board.cgi?user=buytramadol" rel="nofollow">Buy Tramadol</a> <a href="http://spamspamspam/boards/board.cgi?user=oxycontin" class='external text' title="http://spamspamspam/boards/board.cgi?user=oxycontin" rel="nofollow">Buy Oxycontin</a> <a href="http://spamspamspam/cgi/gb.id?hydrocodoner" class='external text' title="http://spamspamspam/cgi/gb.id?hydrocodoner" rel="nofollow">buy hydrocodone</a> </p>
Please provide an URL to a page where we can see this. Is it just a bunch of blank lines, and then the usual spam crap?
Hi Brion! Added an URL. Have seen dozens of these during the last days. The code from comment 0 seems to be copied from View > Page Source in the browser. What is new here (at this url) is that user talk pages of anonymous users are spamed too. Normaly pages with same title in English (which occur in MediaWiki - Language.php) are spamed. Note about this summary: "spamer creating spam links that don't show in edit" *don't show in edit* is not a proper description. The spam shows only if you scroll in the edit-texarea. What could be done to overcome this trick? Maybe action=edit should jump to the first nonempty line. If this is a solution please change the sumary of this bug. best regards reinhardt [[user:Gangleri]] P.S. a) This is the only bug submitted by Bob using an [[en:Mailinator]] account. It is speculative if he gets the feedback. b) His MediaZilla account (both email address and name) can be hijacked. I think that the domain mailinator.com should be blacklisted at MediaZilla.
(In reply to comment #2) > What could be done to overcome this trick? Maybe action=edit should jump to the > first nonempty line. If this is a solution please change the sumary of this bug. A better suggestion is: Maybe action=edit should jump to the first *printable* character. There are lot of scenarios where the first *nonempty* line contains whitespace or dieacritical marks which do not display.
The spam blacklist or regexes would have caught this. It's not like we can fix the issue with a polite email to the marketing department of lunchmeat.net.
