Verification that it is working

[eezz]

Hello,

I do not see the http:BL plugin doing any logging. I was using the http:BL functions of sh404sef and was able to drop around 5 spam connections per hour that were being logged. I have now turned off the sh404sef security features, but see no evidence that connections are being dropped due to http:BL, which is installed and enabled. It appears that another user has raised this at the Project Honeypot forums.

Since I saw this plugin I was very interested as I want to disable sh404sef but still have a Honey Pot check. From what I can see the plugin is not doing its job, all Joomla! logging is switched on. Is there a way to test functionality of this plugin.

Specs:
Database Version: 5.0.67-community
PHP Version: 5.2.5
Joomla! Version: Joomla! 1.5.10 Production/Stable [ Wohmamni ] 27-March-2009 23:00 GMT

[michiel_1981]

Hi,

Which version are you using of the plugin, I will check if it has a bug or not.

Kind regards,
Michiel Bijland

[michiel_1981]

Hi,

Found a unsuspected bug in Joomla! or a misread of mine.

Joomla! guest user(not logged in), gid (group id) is set to 0 and I was checking against the Public Front-end gid, which is obviously not 0.

This would make the checks against not logged in user uselless will updated and publish a new version today.

[UPDATE]
New release is online, version 1.8 is latest.

kind regards,
Michiel

[eezz]

Hi Michiel,

Thanks for looking into it. I have installed v1.8 and I will check how it it is working.

Cheers, Ian

[eezz]

Confirming that it now works!

THANKS!

[hellvy]

Hi, i've installed http:bl plugin for joomla but don't know how to verify if it working.

- I'm trying to check log (i've enabled it) but i don't where it is. Anyone could suggest me where do i look for it?

- My web site still got comment spammer from time to time. i've check their IPs in projecthoneypot.org. some of them are marked as spam and i think those IPs should not able to spam my web site, is it right?

- Any step by step to verify this plug in is working is really appreciate, thx

[michiel_1981]

Hi,

- I'm trying to check log (i've enabled it) but i don't where it is. Anyone could suggest me where do i look for it?

Logs are created in your "root directory of joomla!/logs/httpbl.log".

I regret that Joomla! doen't have a easy unittest function link in Django so this can easily be tested, I'll have a look into setting up a test enviremont to walk to all tet ips from project honey pot.

- My web site still got comment spammer from time to time. i've check their IPs in projecthoneypot.org. some of them are marked as spam and i think those IPs should not able to spam my web site, is it right?

It doesn't have to be blocked, it could be a very old entry(spammed a longtime ago) or low threat, then it wont be blocked but is listed on projecthoneypot.org.
If you want to reduce spam some more use http://trac.4theweb.nl/jprojects/wiki/plg_badbehaviour, this is a excellent plugin to reduce spam as well.

kind regards,
Michiel

[hellvy]

Hi, thx for your reply

If i don't see httpbl.log in log dir, it means that there's no client blocked so far or i din't enable log right?

[michiel_1981]

Hi, thx for your reply

If i don't see httpbl.log in log dir, it means that there's no client blocked so far or i din't enable log right?

Either can be true
If you enabled it in your plugin settings, it means there hasn't been any blocked ips. If your it's turned off, well it is because of that.

If caching is turned on, you can see the cached responce in your "./cache/httpBL/" directory, this will show it is working as well.

kind regards,
Michiel Bijland

[hellvy]

OK. http:bl functionality on my site is verified 'cause my home IP Address was blocked -_-' It's ISP's fault and it was fixed now but it also means that http:bl can't block spammer i've found so far.

Another problem, there's still no log in logs dir, how can i check log functionality then?