b2evolution b2evolution

  • Sign in
  • Sign up
  • About
  • Downloads
  • Hosting
  • Docs
  • Support
  • Sign in
  • Sign up
  • Manuals Home
  • Latest Updates
 
  1. b2evolution CMS User Manual
  2. Operations Reference
  3. Fighting Spam
  4. My blog is slow because it's hammered with comment SPAM! How do I recover?

My blog is slow because it's hammered with comment SPAM! How do I recover?

If your blog is being hammered with comment spam, it will get slower and slower as your database gets bloated with hundreds of thousands of spammy comments.

At some point your site will get so slow and will consume so many resources that your web hosting provider may shut it down temporarily and ask you to address the situation.

In order to avoid this happening we recommend the following 2 measures:

  • Do NOT enable trackback. It’s the spammers’ favorite method for hitting you.
  • Make sure all new comments are in DRAFT status by default. This makes you a much less interesting target for spammers

Now, what to do if the damage is already done?

First you have to stop the bleeding!

Go to Blog Settings > Features > Comments and do the following:

  • Uncheck the "Trackbacks" checkbox.
  • Temporarily set "Comment Posting by" to "Not Allowed".

Do this for all blogs on your system.

This will immediately stop allowing new comment INSERTs to the database. Comment INSERTs are what takes the most resources because after every comment insert, several indexes need to be updated.

At this point the load should go down quickly and your blog should start to be responsive again within 10 to 60 seconds.

Cleaning up

Now you can go to the comments management screens and start removing the spam.

The most effective way is probably to click the ban icons which will trigger the antispam tool to search the URLs left by spammers against all comments on the system. This will allow you to delete hundreds of similar comments at a time and also blacklist the URLs against future spam attempts.

Depending on how many spam has been let in, it may take a few hours to clean up all the spam. (If you would like a "Spam bankrupcy" button that deletes ALL your comments (including non spam), please let us know and we will implement such a radical feature.)

Upgrade to the latest b2evolution version

The b2evolution team is taking spam very seriously. Each new version adds additional difficulties for spammers to target your blog. Therefore, we recommend you always upgrade to the latest version which will make you a less desirable target for spam.

Once you are up to date you may reopen comments, but always leave the default status as DRAFT.

What if I strengthened my comment policy and I cleaned up but I’m still getting hammered by spammers *trying* to post spam?

First we want to stress that spammers evolve in their technique and that you should really upgrade to the latest version of b2evolution so you also have access to the latest antispam techniques. This will filter out a significant amount of automated spam.

Then, you may also install a CAPTCHA plugin in order to slow down manual spammers. Note this will annoy legitimate users as well.

It may also help to have your comments closed for a few weeks or even months so that the spambots and spam tools out there realize it is no longer possible to spam your site. It may take time for them to update their target lists. Make it clear there has been a significant change in the spam handling of your site.

In b2evolution v5 you may also want to temporarily disable the page displaying the latest comments, as this one also seems to attract spammers who are searching for sites to spam in Google.

Created by fplanque • Last edit by fplanque on 2020-06-09 00:24 • •

3 comments

Comment from: aguavelvet

aguavelvet

The control to manage the spam is not really that great. After manually dealing with them for the longest time (IE, through b2evo), I decided to go directly into the database and delete the comments myself. This is much easier way to deal with spam. After all, how do you deal with spams when there are 50K + spam?

Here is an example of what I might do:

DELETE FROM `evo_comments` WHERE comment_status = 'draft' and comment_author_email like '%aneaprod%'

I know it's not the way to go, but if there is a way to selectively filter and remove spam, of course, I would use the proper way. But, above works quite well.

2013-11-21 @ 23:06

Comment from: mgsolipa

Hi @aguavelvet,

Did you read this other page: http://b2evolution.net/man/advanced-topics/fighting-spam/antispam-intro ? ( specially the last item :D )

2013-11-21 @ 23:49

Comment from: aguavelvet

aguavelvet

Hi back @mgsollpa,

The ISP that I am using for our blog supports v4.1.7.
I think the features in v5 is spot on, and I look forward to upgrading as soon as I can.

Thanks for the heads up.

A

2013-11-22 @ 22:01

On this page

  • Now, what to do if the damage is already done?
  • First you have to stop the bleeding!
  • Cleaning up
  • Upgrade to the latest b2evolution version
  • What if I strengthened my comment policy and I cleaned up but I’m still getting hammered by spammers *trying* to post spam?

Search the Manual

Content Hierarchy

  • b2evolution CMS User Manual
  • User's Guide
  • Installation / Upgrade
  • Front-office Reference
  • Back-office Reference
  • Developer Reference
  • Operations Reference
    • Security
    • Fighting Spam
      • Introduction to Fighting Spam (AntiSpam)
      • Recognizing a crawler attack
      • My blog is slow because it's hammered with comment SPAM! How do I recover?
      • Creating an Antispam Plugin
      • Confusing SPAMbots by changing your file structure
      • How to control referrer spam hits from search engines
      • Antispam Tips
      • Fighting SPAM with .htaccess
      • Delete User Data
      • Places of automatic blocks
      • I can't post "spam" to my own site!
      • Blocking actions
    • Performance
    • Using Multiple Domains
    • Intranet setup
    • LDAP Integration
    • Troubleshooting
    • Bundled Plugins
  • Advanced Topics
  • Glossary
  • Archives
Web Site Builder

This online manual is powered by b2evolution CMS – A complete engine for your website.

About b2evolution

  • What is it?
  • Features
  • Getting Started
  • Screenshots
  • Online demo
  • Testimonials
  • Design philosophy
  • Free & open source
  • Terms of service

Downloads

  • Latest releases
  • Skins
  • Plugins
  • Language packs

About us

  • About us
  • Contact

Webhosting Guide

  • Web hosting blog
  • Best web hosting
  • Cheap web hosting
  • Green web hosting
  • Hosting with SSH
  • VPS hosting
  • Dedicated servers
  • Reseller hosting
  • Int'l: UK / France

Docs & Support

  • Online manual
  • Forums
  • Hire a pro !

Other

  • Adsense
  • Press room
  • Privacy policy

Stay in touch

  • GitHub
  • Twitter
  • Facebook
  • LinkedIn
  • News blog
  • RSS feed
  • Atom feed

Founded & Maintained by François Planque