Wednesday, March 28
Return Of The Sticky
So that's why my honeypot wasn't catching any flies. I hadn't properly updated the code, and it was still expecting the Page object to be a global - which hasn't been true since the Great Rewrite back in January.
Without the Page object, it didn't have access to... well, much of anything, really. Including the database. So it never actually created any records.
Let's see what it does now...
Hmm. Still empty, but it hasn't been fixed very long.
Guess I should pretend to be a spammer and actually test it.
Comments are disabled.
Post is locked.
So that's why my honeypot wasn't catching any flies. I hadn't properly updated the code, and it was still expecting the Page object to be a global - which hasn't been true since the Great Rewrite back in January.
Without the Page object, it didn't have access to... well, much of anything, really. Including the database. So it never actually created any records.
Let's see what it does now...
Hmm. Still empty, but it hasn't been fixed very long.
Guess I should pretend to be a spammer and actually test it.
Posted by: Pixy Misa at
12:45 AM
| Comments (5)
| Add Comment
| Trackbacks (Suck)
Post contains 95 words, total size 1 kb.
Posted by: Pixy Misa at Wednesday, March 28 2007 12:00 PM (PiXy!)
2
Okay, updated the standard form (and made a mess the first time), so let's see if comments still work.
Posted by: Pixy Misa at Wednesday, March 28 2007 12:06 PM (PiXy!)
3
One time I stumbled onto J Greely's honeypot by accident and had to send him email to ask to be unbanned. When you said you were going to test your own honeypot I was worried for a moment that you might find yourself completely locked out of your development system.
Posted by: Steven Den Beste at Wednesday, March 28 2007 04:51 PM (+rSRq)
4
Usually you only do that once, and then you whitelist one IP address to make sure you can get back in and undo it. I was very careful to set mine up this way, since the machine was 75 miles away and didn't have a remote console. :-)
In this case, he's probably only blacklisting at the application level, not changing his firewall config to drop all packets the way I do when someone visits the /banmyipaddress/ URL on my site.
-j
Posted by: J Greely at Wednesday, March 28 2007 07:16 PM (9Nz6c)
5
Yep. I'd be pretty hesitant about auto-firewalling anyone given the number of sites hosted on this server.
Posted by: Pixy Misa at Wednesday, March 28 2007 07:49 PM (PiXy!)
47kb generated in CPU 0.013, elapsed 0.113 seconds.
56 queries taking 0.1038 seconds, 351 records returned.
Powered by Minx 1.1.6c-pink.
56 queries taking 0.1038 seconds, 351 records returned.
Powered by Minx 1.1.6c-pink.
