Comments on: Blocking the xmix spammer http://spamhuntress.com/2005/04/06/blocking-the-xmix-spammer/ writes on spam and admin issues Sun, 21 Mar 2010 00:46:21 +0000 http://wordpress.org/?v=2.7 hourly 1 By: Administrator http://spamhuntress.com/2005/04/06/blocking-the-xmix-spammer/#comment-236 Administrator Thu, 07 Apr 2005 09:03:55 +0000 http://spamhuntress.com/2005/04/06/blocking-the-xmix-spammer/#comment-236 Yes, if it had worked. It didn't. But it only would have worked on POST, not GET, which is less of a hazard. But as it is, I think this one needs to be blocked for payload. I know others have blocks for that, I just don't remember where they are. OK, found one: http://atomicplayboy.net/blog/2005/01/30/an-introduction-to-mod-security/ So, that would be: SecFilterSelective "POST_PAYLOAD" "(xmix)" Remember, you need mod_security for this to work. Yes, if it had worked. It didn’t. But it only would have worked on POST, not GET, which is less of a hazard.

But as it is, I think this one needs to be blocked for payload. I know others have blocks for that, I just don’t remember where they are.

OK, found one:
http://atomicplayboy.net/blog/2005/01/30/an-introduction-to-mod-security/

So, that would be:
SecFilterSelective “POST_PAYLOAD” “(xmix)”

Remember, you need mod_security for this to work.

]]> By: Peter Karlsson http://spamhuntress.com/2005/04/06/blocking-the-xmix-spammer/#comment-234 Peter Karlsson Thu, 07 Apr 2005 05:09:23 +0000 http://spamhuntress.com/2005/04/06/blocking-the-xmix-spammer/#comment-234 Won't that block anyone who doesn't send a User-Agent? There are a few personal firewalls/security packages that block User-Agent for outgoing HTTP traffic that might be affected by it if that is the case. Won’t that block anyone who doesn’t send a User-Agent? There are a few personal firewalls/security packages that block User-Agent for outgoing HTTP traffic that might be affected by it if that is the case.

]]>