A little while ago I set up a Wiki to discuss the imminent loss of the Digitial Aeronautical Flight Information File (DAFIF). Yesterday, the spammers found it. For two days now, some asshole has registered a new account and make his “user page” a spammer link farm. Now I could continue going in and ripping these pages out, but that could get really boring.
I think what I need is to replace the simple Wiki software I’m using (TWiki) with something with a bit more features. Specifically, I’d like to make it so that you can’t start editing until you give the software your real email address, like the way my mailman mailing lists require you to get and respond to a confirmation mail.
Any suggestions? (And yes, I know I asked for suggestions before and then ignored them all in favour of one that was easier to install. I’ll go back and read your suggestions from that time as well.)
Bad Behavior has saved both my blog and wiki http://www.ioerror.us/software/bad-behavior/
I had the same problem on the Linode Wiki. Solved it by requiring, and providing, a username and password for any POST operation. Like so:
AuthGroupFile /dev/null
AuthUserFile /path/to/htdocs/wiki/.htpasswd
AuthName "To edit, please use edit/wiki as the user/pass"
AuthType Basic
require valid-user
-Chris
It ate my comment, however:
http://www.linode.com/wiki/.htaccess
-Chris