Spam attack via mt-comments.cgi

#1 Did you install TypePad AntiSpam?

#2 Are you blocking IPs via MT's IP blocking or Apache?

Hi Mike,

thanks for your reply!

Yes TypePad is installed and I'm blocking thru both MT and Apache
They seem to directly trigger mt-comments.cgi I temporarily renamed it and also disabled commenting but I'm still being attacked (keeping an eye on error log atm).

The real issue is your host here. What are they doing to help you?

I don't know if you are aware of the full process for it, but you can actually tell Movable Type to point to the renamed CGI file like this in mt-config.cgi:

CommentScript awfasjklflasfdjl.cgi

Then republish your site and every reference to mt-comments.cgi will be replaced with awfasjklflasfdjl.cgi.

As far as bandwidth goes, that's ridiculous. I would suggest looking for a host with a more liberal policy toward bandwidth. I use Hosting Matters. They've got a very stable environment and I almost never get hit with spam.

They've blocked about 30 IP addresses but that's it. I have no idea what else they could do except for blocking all traffic from China ;)

Thanks for explaining those adjustments, really appreciate your help with this.

Bandwidth: almost exceeded 10Gb since beginning of March when the problem started. I never had problems with this host before but might reconsider other options, thanks again for your help and advice! :)

You may like to also implement Captcha protection, either using the native captcha method from MT, or the reCaptcha plugin.

Kind Regards,
Mihai Bocsaru

----------------------------------
Daily Movable Type Consultant

Web Development
Movable Type Consulting
Six Apart Partner

http://www.pro-it-service.com/
----------------------------------

Movable Type Demo
http://www.movabletypedemo.org/
----------------------------------

Open Melody Demo
http://www.openmelodydemo.org/

Is there a way to mark as spam/delete these in bulk? 200 at a time will take a REALLY long time. Not to mention I keep getting an error page.