Closed Jose-Moreno closed 6 years ago
Hi ! Merry Christmas ! Thanks for the feedback. I marked them as spammers. Of course we all know there will be other ones, I don't know why now. Let's see what's happening and i'll try to find a solution.
Thanks !
2016-12-24 15:51 GMT+01:00 Morr notifications@github.com:
@gordielachance https://github.com/gordielachance Hey man, Just wanted to let you know there's been an unpleasant increase in "profile spammers" They somehow manage to bypass the site security, change their profile pictures and then go on to post "update" comments on other's profiles. here's a few examples from this week:
http://www.pencil2d.org/members/debbie120/ http://www.pencil2d.org/members/jessica0004/
There are also others which don't have profile pictures but post spam on their updates:
http://www.pencil2d.org/members/belindadowns/ http://www.pencil2d.org/members/malamani493/ http://www.pencil2d.org/members/samuelgreg82/
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/pencil2d/pencil/issues/585, or mute the thread https://github.com/notifications/unsubscribe-auth/AD42zSupZZNcfeT1LcBJyJqzjGWRR3zXks5rLTF0gaJpZM4LVPaB .
@gordielachance Happy New Year as well now! I wanted to ask you if there's a way to at least mute these spammers. Today We got a new one which posted a lot of pirated series on different threads. I already flagged those as spam but they remain on the site-wide activity, is there a way to clear those with mod powers?
Here's the offender: http://www.pencil2d.org/members/mangoled/
Anyway, hope you and your family had a great time, let's hope this year is better for everyone!
Ok, I'm not sure... But can you access this URL ? http://www.pencil2d.org/members/mangoled/settings/capabilities/ If yes, you can (I just did it) mark that user as a spammer.
Thanks,
G
2017-01-10 0:47 GMT+01:00 Morr notifications@github.com:
@gordielachance https://github.com/gordielachance Happy New Year as well now! I wanted to ask you if there's a way to at least mute these spammers. Today We got a new one which posted a lot of pirated series on different threads. I already flagged those as spam but they remain on the site-wide activity, is there a way to clear those with mod powers?
Here's the offender: http://www.pencil2d.org/members/mangoled/
Anyway, hope you and your family had a great time, let's hope this year is better for everyone!
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/pencil2d/pencil/issues/585#issuecomment-271444265, or mute the thread https://github.com/notifications/unsubscribe-auth/AD42zUn-vMhjUx92n5s6rnIaiixwjdJJks5rQscHgaJpZM4LVPaB .
@gordielachance No it seems I can't access that URL hehe. It's ok, i'll just keep flagging their posts as spam and post their profile here.
A new one registered today: http://www.pencil2d.org/members/tyvonzack/
@gordielachance Hey, it also seems the page was hacked.
Edit: sorry I pressed the wrong button and didn't send the image I wanted to show you.
There's been a minor increase of spammers again. They continue to spam using their profile updates though.
@gordielachance The hack was probably done with the Unauthenticated Privilege Escalation Vulnerability which is in the version of WordPress you are currently using. Please upgrade immediately and check for users that have privileges they shouldn't.
This is so boring. Anyway, thanks, I updated WP, the plugins, checked the users privileges (no weird stuff there) and i'm currently running an anti-malware tool. Also did restore the two hacked posts (using archive.org). Thanks !
Since we'are moving to a new website. I'm closing this. :)
@gordielachance Hey man, Just wanted to let you know there's been an unpleasant increase in "profile spammers" They somehow manage to bypass the site security, change their profile pictures and then go on to post "update" comments on other's profiles. here's a few examples from this week:
http://www.pencil2d.org/members/debbie120/ http://www.pencil2d.org/members/jessica0004/
There are also others which don't have profile pictures but post spam on their updates:
http://www.pencil2d.org/members/belindadowns/ http://www.pencil2d.org/members/malamani493/ http://www.pencil2d.org/members/samuelgreg82/ http://www.pencil2d.org/members/stephen147geo/ http://www.pencil2d.org/members/frankcurtis04/
Please make it possible to flag these "users" again, or at least allow me to mute them. It is getting really bad these days, like the site activity feed only shows spammers nowadays.