Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wikispam, Wikispam, Wikispam PmWiki Patrick R. Michaud, Ph.D. March 4, 2005.

Published byJoel Lindsey Modified over 8 years ago

Similar presentations

Presentation on theme: "Wikispam, Wikispam, Wikispam PmWiki Patrick R. Michaud, Ph.D. March 4, 2005."— Presentation transcript:

1 Wikispam, Wikispam, Wikispam PmWiki Patrick R. Michaud, Ph.D. March 4, 2005

2 Talk Outline What is wikispam? Know thy opponent(s) Countermeasures PmWiki security options

3 What is Wikispam? Wikispam, or "comment spam", refers to unwanted external links in publicly writable web pages Wikis Blogs Other

4 What is Wikispam?

5 Know thy opponent(s) - 1 Why do people spam? Vandalism/malice Money

6 Wikispam's primary target

7

8 The Googlephant in the room Companies and organizations want high Google rankings Google listings are ordered according to "PageRank" Each link from page A to page B is counted as a "vote for B" In general, the more pages that vote for B, the higher B's rank So, for a high page rank, get lots of pages to link to your site, then Google will list you first

9 There's names for this... GoogleBombs "Search Engine Optimization"

10 Make$Money$Fast So, what's the easiest way to generate lots of links to a page...? Add them to blogs, wikis, anywhere that has unsecured web content!

11 Links of Mass Deception

12

13 Finding spam Wikispammers tend to flood pages with lots of links They may attempt to hide links in unexpected places (periods and punctuation) Writing a bot to generate such links is easy

14 What's a wiki to do? Countermeasures Get rid of that $!#%* wiki! Open but vigilant (a.k.a. "live with it") Blocklists Spam filters Captchas Access controls URL approvals Learning to love Google all over again

15 Countermeasure 1 - Elimination Pros: No more wikispam Cons: No more wiki aka "Whose stupid idea was this, anyway?"

16 Countermeasure 2 - Openness Rely on openness of wiki to enable lots of people to correct spam when its found Pro: wiki makes it simple to undo spam when it's found Con: people get tired of cleaning up other's messes Wikipedia takes this approach aka "Maybe we can outrun the bots!"

17 Countermeasure 3 - Blocklists Keep track of spammers IP address, then block posts from that IP address Er, IP address range, that is Pro: simple to implement Cons: Maintaining lists of IPs to block Sometimes block legitimate IPs Spammers know how to jump IPs aka "They don't work for email, might as well try them here!"

18 Countermeasure 4 - Spamfilters Filter based on keywords and page analysis Bayesian networks Pros: could be effective Cons: never is effective Too much effort to train filters Hard to classify spam/non-spam Spammers know how to adapt to filters aka "What doesn't work for email is good enough for us!"

19 Countermeasure 5 - Captchas Captcha - telling computers and humans apart automatically Theory: image (and character) recognition is hard for computers, easy for humans Thus, a simple test can distinguish the two and filter bots Used by many commercial sites "The bot can't hurt what it can't see!"

20 Captchas may not work Inconvenient for editing - new captcha required for each post Bots can solve captchas Captcha is much simpler than OCR Many captcha systems have been broken Spammers can enlist humans to solve captchas on their behalf Some humans cannot solve them Reduces web accessibility

21 Countermeasure 6 - access ctrls Add passwords or other access controls to wiki pages Pros: Well known, works well Cons: Increased administrative overhead Loses the "open nature" of the wiki Annoying When "open" is just too much of a good thing.

22 Countermeasure 7 - url approvals Block spammers ability to create links Known domains and urls are "approved" Any urls not in the approved list are not converted to links Provide an easy mechanism to approve urls aka "Getting to the source of the problem"

23 Url approvals Pros: denies spammers reward for effort allows open editing Cons: doesn't prevent spam -- still has to be cleaned up maintenance of "approved urls" list

24 Url approvals + blocking Wikispammers tend to post lots of unapproved links Authors generally have only a few Solution: Block posts that have more than a given number of unapproved external links Pros: Prevents spam from appearing Cons: May temporarily inconvenience authors wanting to post lots of links Since implementing on pmwiki.org in Dec 2004, spam hasn't been a problem "Prevention is the best defense."

25 Learning to love Google again Google and other search engine companies recognized that they were a big part of the problem Decided to become part of the solution Sites can designate links that should not count for search-engine ranking with

26 Despite the term 'nofollow', only means that search engines do not count the link as a vote (the links can still be followed) Used only on links to external sites where the validity of the link is unknown Pros: cuts benefit of spamming off at source Cons: may take some time for spammers to notice (or care) takes time for sites to upgrade

27 PmWiki and other engines have quickly adopted this convention PmWiki allows rel='nofollow' only on unapproved links

28 More about PmWiki security

Download ppt "Wikispam, Wikispam, Wikispam PmWiki Patrick R. Michaud, Ph.D. March 4, 2005."

Similar presentations

WillHelpYouOut.com www.hits1k.com Hits 1000 Let’s get Started.

WillHelpYouOut.com Hits 1000 Let’s get Started.
Link Building. Link Building Workshop How to get Links Co-citation Link building Dos Link building Donts.

Link Building. Link Building Workshop How to get Links Co-citation Link building Dos Link building Donts.
Getting Your Web Site Found. Meta Tags Description Tag This allows you to influence the description of your page with the web crawlers.

Getting Your Web Site Found. Meta Tags Description Tag This allows you to influence the description of your page with the web crawlers.
Document Filtering Dr. Frank McCown Intro to Web Science Harding University This work is licensed under a Creative Commons Attribution-NonCommercial- ShareAlike.

Document Filtering Dr. Frank McCown Intro to Web Science Harding University This work is licensed under a Creative Commons Attribution-NonCommercial- ShareAlike.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.

 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.
What Google Knows About Spam Matt Cutts. What is ?

What Google Knows About Spam Matt Cutts. What is ?
Traditional Marketing Methods are Dead or Dying ” Unlocking the Power of Social Media for Higher Search-Engine Rankings “

Traditional Marketing Methods are Dead or Dying ” Unlocking the Power of Social Media for Higher Search-Engine Rankings “
Trust and Authority System Or, a deeper look at inter-personal relationships.

Trust and Authority System Or, a deeper look at inter-personal relationships.
Victor Ivanov. Introduction  Definition  Unsolicited bulk messages  Concerns  Server load  Garbage content.

Victor Ivanov. Introduction  Definition  Unsolicited bulk messages  Concerns  Server load  Garbage content.
What is SEO ? Search engine optimisation Way to optimise your web-site to increase your page rank in SE.

What is SEO ? Search engine optimisation Way to optimise your web-site to increase your page rank in SE.
Web 2.0 Web 2.0 is the term given to describe a second generation of the World Wide Web (WWW) that is focused on the ability for people to collaborate.

Web 2.0 Web 2.0 is the term given to describe a second generation of the World Wide Web (WWW) that is focused on the ability for people to collaborate.
Chapter 5 Searching for Truth: Locating Information on the WWW.

Chapter 5 Searching for Truth: Locating Information on the WWW.
CAPTCHA Prabhakar Verma “08MC30”.

CAPTCHA Prabhakar Verma “08MC30”.
What’s New in WatchGuard XCS 10.0 Update 3 WatchGuard Training.

What’s New in WatchGuard XCS 10.0 Update 3 WatchGuard Training.
Chapter 6 SPAM. Synopsis What is spam Why does spam keep coming Specialty spam Why doesn't someone stop the spammers How do spammers get the email addresses.

Chapter 6 SPAM. Synopsis What is spam Why does spam keep coming Specialty spam Why doesn't someone stop the spammers How do spammers get the addresses.
What You Will Learn? - Basic Theory Behind Make Money from Website using Amazon Affiliate Program/ ClickBank - What is a Domain.

What You Will Learn? - Basic Theory Behind Make Money from Website using Amazon Affiliate Program/ ClickBank - What is a Domain.
“ The Initiative's focus is to dramatically advance the means to collect,store,and organize information in digital forms,and make it available for searching,retrieval,and.

“ The Initiative's focus is to dramatically advance the means to collect,store,and organize information in digital forms,and make it available for searching,retrieval,and.
1 SOCIAL BOOKMARKING 101. HIBA KHALID BILAL SAEED KHAN FARID ALIANI ASKARI HASAN SOCIAL BOOKMARKING.

1 SOCIAL BOOKMARKING 101. HIBA KHALID BILAL SAEED KHAN FARID ALIANI ASKARI HASAN SOCIAL BOOKMARKING.
Project Proposal: Academic Job Market and Application Tracker Website Project designed by: Cengiz Gunay Client: Cengiz Gunay Audience: PhD candidates and.

Project Proposal: Academic Job Market and Application Tracker Website Project designed by: Cengiz Gunay Client: Cengiz Gunay Audience: PhD candidates and.

Similar presentations

Ads by Google