EETemplates.com

ExpressionEngine Templates Free Pro Tutorials EE EECMS

Close Comments on all Channels that dont need comments… duh.

Posted in Tutorials

I have been getting hit hard by some comment spam on a client site for the past week. I was really confused as I even turned off comments and it was still posting them. It was not till I searched for the title of the entry on the edit page that I got a clue as to what had happened. The client had posted an event to their calendar with the same title as the title of a blog post. The intelligent spammer somehow figured out that he could post comments to the site by subsituting the entry titles for other channels into the url structure for the blog/comments. So in other words instead of sitename.com/blog/comments/blogentrytitlehere he typed in sitename.com/blog/comments/eventcalendarentrytitlehere and it allowed him to post comments to that channel.

So… when creating the channels for your sites make sure to shut off comments for all channels that don’t require them. It can be found in admin -> Channel (weblog) administration -> Channel (weblog) Management -> Edit Channel (weblog) Preferences. Find Comment Posting Preferences on the left hand navigation. The radio button at the top turns them off.

Marcus Neto is a member of the ExpressionEngine Pro Network. His design studio is called Blue Fish Design Studio. He is also the founder of EETemplates.com. You can find further ramblings on his personal blog or on twitter

Want to write a blog post? Just use the contact form on the submit page!

Comments

Be the first to leave a comment...

Tell us what you think...

Commenting is not available in this channel entry.
Follow on Twitter Subscribe RSS

Related Articles

Learning Things the Hard Way - Upgrading from 1.7 to 2

This is just a quick blog post to relay some info I just learned. I am in the process of upgrading Show-ee from 1.6.8 to 1.7 and then to 2.1.4b. As part of that site we used to use FieldFrame from Pixel & Tonic. Specifically we were using the

Read More

Creating Installable Templates for ExpressionEngine 2

This is the second installment in our Creating installable templates tutorials for ExpressionEngine. In this post we are going to talk about the actual package that needs to be delivered to the end user and all of the associated files. Plus we even

Read More

Removing Index.php from the URLs of Expression Engine websites

For a long time now I have struggled with removing index.php from my EE websites. I have used a mix bag of the include/exclude method and add-ons that deal with making the include/exclude method easier.

Read More

Creating your own installable templates for ExpressionEngine 2

A year ago I was perusing the user guide and wiki over on ExpressionEngine’s website for any information regarding creating your own installable templates. At that time there were none. At I just did a quick search for some of the files involved

Read More

2009-2011 EETemplates.com | A Member of the EE Pro Network | A Blue Fish Design Studio Project | Powered by ExpressionEngine