This post originated from an RSS feed registered with .NET Buzz by Peter G Provost. Original Post: Comment Spam Returns Feed Title: Peter Provost's Geek Noise Feed URL: /error.aspx?aspxerrorpath=/Rss.aspx Feed Description: Technology news, development articles, Microsoft .NET, and other stuff... Latest .NET Buzz Posts Latest .NET Buzz Posts by Peter G Provost Latest Posts From Peter Provost's Geek Noise

Interestingly, my CAPTCHA solution to comment spam seems not to be sufficient any more. I’ve seen the probing comments for the past few weeks and then this morning I got hit by two spam messages.

I need to review my logs, but the question I need to determine is: Did they get around my CAPTCHA with an OCR solution or did they come in via the CommentAPI endpoint?

I’ve been wondering how long it would take for the spammers to realize that the CommentAPI is a ready-built spam API. The fact that they were using HTML forms was obviously due to their lack of understanding of the new technology. But why push to a form when you can just POST and XML document to a webservice?

Once I figure out what they’re doing I’ll post a follow-up. If they are coming in throught the CommentAPI endpoint, then I’ll have to close it down. Sorry. I will not start moderating comments. I just don’t believe in that approach.