Still spam free…

As I wrote over a month ago, in Rants and Revelations » Hit me, spammers, I haven’t had any comment spam from random comment spammers since switching from MovableType to WordPress. So far it falsely accused a couple of legitimate comments as being spam for various reasons, and I’ve had to remove comments from my ex-wife, but I haven’t seen anything that you could count as spam.

I’ve looked at my web server, and I don’t see any hits on wp-comments-post that I couldn’t account for. Still seeing lots of hits on the non-functional MovableType comment cgi, though.

Either the comment spammers haven’t figured out WordPress 1.5 yet, or the option that says “Blacklist comments from open and insecure proxies” is silently preventing the comment spammers from even getting to wp-comments-post.

Now if only the referrer spammers would stop hitting every link in my site in spite of the fact that there is no where anyone can see my referrers so they aren’t getting any benefit from chewing up my bandwidth.

MBNA been very good to me…

Back on March 15th, I ordered a Linksys WRT54G router. I know, I once vowed never to by Linksys products again, but that was before they were bought by Cisco, and before they came out with a router that was actually a small and very cheap Linux computer. There wasn’t much wrong with my old router except every now and then people coming to my web site would instead get the login screen for the router’s web interface (which would correct itself on a refresh). But this one, because it’s Linux and GPL, has many third party patches available to do all sorts of fun things.

Unfortunately, I ordered the router from a company called “BestBargainPC”, which also does business as “US-Depot.com”. They charged my card immediately, and their order status page said “Product will ship within 24 hours”. Unfortunately, it was still saying “…will ship within 24 hours” 15 days later. I attempted to email them, and didn’t get a response for a couple of days. So I attempted to phone them, and they never answered the phone even during their advertised business hours. That’s when I called up MBNA.

I have an MBNA credit card that I use for most of my on-line purchases, for reasons I talked about in What is the matter with this credit card? I’m glad that I’m still using it for on-line purchases, because they’re great. I phoned them up, and they said they’d take care of it, and now, about a week later, I get a letter saying that they’ve reversed the charge and any accumulated interest and late fees.

The router, which I ordered from Amazon the same day I called MBNA about the other company, arrived yesterday and I installed it already. Amazon charged me about a dollar more than the other place did.

I also went to Reseller Ratings to put in my feedback for bestbargainpc, and found that somebody else had the same experience during the month of March, after mostly favourable reviews before then.

Waiting, waiting, waiting.

I’m sitting in the Ottawa Flying Club’s cafe, waiting for the updated weather forecast that comes out in half an hour. They’ve got a wireless access point, although I had to have them reboot the server to get it working. For some stupid reason, they block outgoing SSH connections, which means I have to use Squirrel Mail to read my home email. That kind of sucks.

Mostly I’m wasting time by going through old blog entries and correcting all the internal links that broke when I moved from MovableType to WordPress. I also added a butt-load of new categories. The old categories, “Rant”, “Revelation”, “Route” were alliterative, and indicative of the mood of the post, but not much help if you were looking for posts about flying, or geek stuff, or photography, or whatever. WordPress makes it WAY easier to put articles in multiple categories, so the old categories are retained as well.

Trying to work this out…

My wireless at home is semi-secured with 128 bit WEP, although the SSID is broadcast. I’m not fooling myself that it’s foolproof, just that it’s good enough to make most people do down the road to find easier pickings at some open node named ‘Linksys’. But recently I’ve “relied on the kindness of strangers” using people’s nodes that they’ve either left open through stupidity (like my sister-in-law’s neighbours with the ‘Linksys’ ssid and the default login to the Linksys administration page) or open through an intent to share their resources (like Steven Cherry). So I’m starting to wonder if I shouldn’t be returning the karma and have an open node myself.

But I’m worried about the implications of that. The first worry is that somebody could use my node to send out spam. I have enough trouble with my mail server being blocked by various RBLs that I don’t want to get on any more – I recently had problems because I was sending a lot of mail out through a friend’s relay, and he got listed in an RBL that I use myself, which caused all sorts of problems. But in actual fact, that’s pretty unlikely unless it was one of my neighbours.

The second worry is that by having strangers on my internal network, they’d get access to things that I probably don’t want them to have access to, like the nfs export of my /mp3s directory. I don’t want the hassle of having to harden some of the services I’ve currently got open to the 192.168.1.0/24 subnet. And the related worry that they could snoop things like imap or pop between graphic email clients and the mail server. Personally, I ssh into the server and use mutt, but Vicki sometimes uses Mail.app and I think Laura uses Mail.app almost exclusively. I don’t know if Mail.app supports any sort of encrypted link, or if I could figure out how to support it on my Linux box. Not sure I’d want to.

So I’m wondering if what I need isn’t a configuration with two subnets, one open node for strangers to connect where they can reach the outside world but not my Linux box, and one secure node that once you’re in, you’ve got full access to the goodies? Maybe the open node should block outgoing connection to port 25 except for my ISP’s mail relay or something like that? The problem with that is that my current router/WAP isn’t capable enough to do that sort of filtering, and while I have a better router/WAP (a Linksys WRT54G) on order, I would prefer to use that for me, not for strangers.

Anybody have any suggestions?

What the fuck was that?

I’ve got top running in a very large window, and I happened to glance over at it and suddenly every process on the screen was httpd. Then I looked up at my httpd/access log, and I see that this one IP hit this blog 50 times simultaneously, with two different referrer strings, but quite different browser ident strings. Ok, somebody is doing something stupid or something quite malicious.


iptables -I INPUT -s 193.159.244.70 -j DROP

Bye bye, asshole.