wiki:ProtectionFromSpam

Version 5 (modified by Rytis, 10 years ago) (diff)

--

Protection from spam

Preventing automated participant profile creation

User profiles may be used by automated bots for advertisements. To prevent automation, reCAPTCHA system can be used. For every profile modification it displays an image containing two words that the user needs to input. While the image is quite easily solvable by human visitors, automated systems have problems solving the CAPTCHA image, and are therefore denied access.

Enabling reCAPTCHA

In order to use reCAPTCHA, you have to register your web site on http://recaptcha.net/ and acquire a set of keys. Once the web site is registered, you need to add your keys to config.xml:

<recaptcha_public_key>Alphanumeric string</recaptcha_public_key>
<recaptcha_private_key>Alphanumeric string</recaptcha_private_key>

Protecting message boards from spam

BOINC message boards may occasionally suffer from attacks from spammers. In order to help moderators deal with unwanted messages, anti-spam system from akismet.com can be used.

It is disabled by default; when enabled, every time a forum post is made a remote database at akismet.com is checked to see if the message is spam. If Akismet reports that the message is spam, it is blocked, notifying the user on screen.

Enabling Akismet

In order to use Akismet anti-spam system, you have to acquire a free API key (12 character alphanumeric string). You can get the key by registering for a WordPress.com user account. The API key will be emailed to you after you register.

Note: If you are a commercial entity or if you are making more than $500 from your website, please get a commercial key instead.

Once you have the key, you have to add a new tag to your config.xml to enable the system:

<akismet_key>1234567890ab</akismet_key>

To test if the system is working, create a user with name "viagra-test-123" (this is an official test string) and try creating a new thread. Akismet should block the message.