One source of duplicate comments for Movable Type is users hitting the “POST” button multiple times, either through a key bounce or because of slow response. One amelorative option is to arrange for the “POST” button to be disabled before the comment data is submitted. This not only avoids duplicates in most situations but is useful feedback to the user that, yes, they did in fact push the button.

Solution

This turns out to be a bit trickier than it seems, because some browsers won’t send data from disabled objects. This is a problem because the “POST” button contains critical information needed to process the comment request. It is not sufficient to simply move that to a hidden object, because that will cause problems for “PREVIEW”. My solution is to have a hidden object and engage in a bit of object renaming during the disable process. I have tested this on IE 6, IE 7, FireFox 1.5, FireFox 2, Opera 8 and Opera 9, and it seems to work.

This is the JavaScript enhanced “POST” button and hidden object. It replaces the existing “POST” button.

<input type="hidden" name="mode" value="mode" />
<input type="submit" name="post_comment" id="post_comment" value="&nbsp;POST&nbsp;"
  onclick="document.comments_form.post_comment.disabled=true;
           document.comments_form.mode.name = 'post';
           document.comments_form.onsubmit();
           document.comments_form.submit();"
/>

The Javascript disables the button, renames the “mode” object to “post” to put that as data in the submit, executes any other JavaScript expected to run on submit, and finally submits the form.

Installation

You will need to modify every template that accepts user comments. This will generally be the individual archive template and the preview comment template. It may also be the comment error tempate and the comment popup template.

You will need to modify the name of the FORM tag for comment submission. By default it is named “form” and this can cause hard to diagnose name collision problems. The actual name doesn’t matter, it is just important that it is unique. Use all lower case letters and underscores, nothing else. As you can see above, I renamed mine “comments_form”. I recommend doing the same unless you have a specific reason to use something else. When changing the name, change both the name and id tag and give them the same value¹.

Once you’ve renamed the form, replace the current “POST” button with the lines quoted above. Change any instances of “comments_form” with the name you used for the FORM tag if that is different.

Notes

• The name attribute for the “POST” button must not be “post” as it is in the default template.
• The id attribute value for the “POST” button should be the same as the name attribute value.
• The id attribute value and the name attribute value for the FORM tag should be identical. This must also match the name following “document” in the JavaScript.
• You can set the value attribute of the “POST” button to whatever you like — it has no effect on submitting comments, it is used only as the displayed text in the button.

¹ This is because some browsers like the name attribute and some like the id attribute. There’s no good reason to not do both except for the extra typing.

The trackback API for Movable Type starting with version 3.2 uses the internal numeric ID of the trackback object as the key. This has two problems:

• There is no relationship between the trackback key and information in an entry, making clever URL rewriting infeasible.
• It is an easy target for junkers, who can trivially guess valid values.

This was unavoidable in previous versions of Movable Type, but with the release of 3.2 and its use of globally unique “basenames” for entries, we can do better.

This modification changes the trackback API to use identifying strings instead of numerics as the trackback key. The trackback object identifiers become completely internal (as was done for entry identifiers in 3.2). This overcomes both of the issues listed above.

This project is deployed on multiple several production weblogs, including this one. You can test it out by doing a trackback to this entry using the URL in the “Trackback URL” link below, or using the URL for this entry with “/ping” appended. Please put text that indicates a test if you do test it, so I can clean those out.

NB: This modification explicitly forbids the use of numeric trackback ids. If installed and followed with a complete rebuild, this should not affect legitimate weblogs as the trackback URLs are pulled from your webpages, which will have the new, correct trackback URLs in it.

Notes

This patch is for the 3.3 release of Movable Type. There is a separate patch for version 3.2.

Implementation

Two files in the base distribution must be modified. You can pick up the modified versions of the 3.32 files here or, if you’re paranoid like me, you can do the modifications yourself. Once the files have been modified, you will need to a full rebuild to update all of the trackback URLs. At that point the modified trackback API should be fully operational.

Trackback.pm Modification

The lib/MT/App/Trackback.pm file must be modified. Note that there are two files named Trackback.pm in the distribution, be sure to edit the correct one.

Replace the subroutine _get_params at line 98 with the following subroutine —

sub _get_tb {
    my $app = shift;
    my ($tb, $pass); # Trackback object and password to return
    my ($key, $name); # local vars for internal computations
    my ($entry, $cat); # Target object of trackback.
    if (my $pi = $app->path_info) {
        $pi =~ s!^/!!; # drop leading slash
        my $tbscript = $app->config('TrackbackScript');
        $pi =~ s!.*\Q$tbscript\E/!!;
        ($key, $name, $pass) = split /\//, $pi;
        if ($key =~ m/\d+/) {
            $app->error($app->translate(
                'Numeric trackback IDs are no longer accepted'));
        } elsif (lc($key) eq 'entry') {
            require MT::Entry;
            $name =~ s/\..*$//; # strip any extension
            if ($entry = MT::Entry->load({ basename => $name, status => MT::Entry::RELEASE() })) {
                $tb = MT::Trackback->load({ entry_id => $entry->id});
                $app->error($app->translate(
                    'No trackbacks for entry with basename [_1]', $name))
                    if not $tb;
            } else {
                $app->error($app->translate('No entry with basename [_1]', $name));
            }
        } elsif ($key =~ m/^cat/i) {
            require MT::Category;
            if ($cat = MT::Category->load({ label => $name })) {
                $tb = MT::Trackback->load({ category_id => $cat->id });
                $app->error($app->translate(
                    'No trackbacks for category with label [_1]', $name))
                    if not $tb;
            } else {
                $app->error($app->translate(
                    'No category with label [_1]', $name));
            }
        } else {
            $app->error($app->translate(
                'Invalid trackback target key [_1]', $key));
        }
    } else {
        $app->error($app->translate(
          'Track request URL incorrectly formatted.
           The trackback target path information was missing'));
    }
    ($tb, $pass, $entry, $cat);
}

In subroutine ping around line 147.

Line 152 — change

    my($tb_id, $pass) = $app->_get_params;
    return $app->_response(Error =>
        $app->translate("Need a TrackBack ID (tb_id)."))
        unless $tb_id;

    require MT::Trackback;
    my $tb = MT::Trackback->load($tb_id)
        or return $app->_response(Error =>
            $app->translate("Invalid TrackBack ID '[_1]'", $tb_id));

to

    my($tb, $pass, $entry, $cat) = $app->_get_tb;
    return $app->_response(Error => $app->errstr) unless $tb;

Line 178 — change

    my($blog_id, $entry, $cat);
    if ($tb->entry_id) {
        require MT::Entry;
        $entry = MT::Entry->load({ id => $tb->entry_id, status => MT::Entry::RELEASE() });
        if (!$entry) {
            return $app->_response(Error =>
                $app->translate("Invalid TrackBack ID '[_1]'", $tb_id));
        }
    } elsif ($tb->category_id) {
        require MT::Category;
        $cat = MT::Category->load($tb->category_id);
    }
    $blog_id = $tb->blog_id;

to

    my $blog_id = $tb->blog_id;

Line 209 — change

    no_utf8($tb_id, $title, $excerpt, $url, $blog_name);

to

    no_utf8($title, $excerpt, $url, $blog_name);

Line 209 — change

        $ping->tb_id($tb_id);

to

        $ping->tb_id($tb->id);

Subroutine rss, around line 423.

Line 426 — change

    my($tb_id, $pass) = $app->_get_params;
    my $tb = MT::Trackback->load($tb_id)
        or return $app->_response(Error =>
            $app->translate("Invalid TrackBack ID '[_1]'", $tb_id));

to

    my ($tb, $pass) = $app->_get_tb;
    return $app->_response(Error => $app->errstr) unless $tb;

Subroutine blog around line 465.

Line 423 — change

    if (my ($tb_id) = $app->_get_params()) {
        require MT::Trackback;
        my $tb = MT::Trackback->load($tb_id);
        return undef unless $tb;
        $app->{_blog} = MT::Blog->load($tb->blog_id) if $tb;
    }

to

    if (my ($tb) = $app->_get_tb()) {
        return undef unless $tb;
        $app->{_blog} = MT::Blog->load($tb->blog_id);
    }

ContextHandlers.pm Modification

The file lib/MT/Template/ContextHandlers.pm should be modified. This is not strictly required, but if this is not done then you will have to construct all trackback related data by hand in the templates rather than using the standard tags.

Changes to lib/MT/Template/ContextHandlers.pm

Line 1820 — change

$path . $cfg->TrackbackScript . '/' . $tb->id;

to

$path . $cfg->TrackbackScript . '/entry/' . $e->basename;

Line 1832 — Change

$path .= $cfg->TrackbackScript . '/' . $tb->id;

to

$path .= $cfg->TrackbackScript . '/entry/' . $e->basename;

Line 3381 — change

$path . $cfg->TrackbackScript . '/' . $tb->id;

to

$path . $cfg->TrackbackScript . '/cat/' . $cat->label;

Other Notes, Techniques and Caveats

There are several things to keep in mind once this modification is installed.

Friendly trackback URLs

One of the drivers for this modification was a request for “friendlier” trackback URLs. In particular, the desire was to be able to have other weblogs link via trackback to a post by using the URL of the post with “/ping” appended as the trackback URL. This requires

• Installing this modification
• An Apache webserver
• Access to the Apache configuration file or .htaccess files to enable mod_rewrite

Also note that this works only for individual archives.

To set it up, in the top level directory for the individual archives, place text like the following in a .htaccess file:

RewriteEngine On

# Support trackback pings by appending "/ping" to an individual archive URL.
RewriteRule /([^/]+)/ping$ /cgi-bin/mt/mt-tb.cgi/entry/$1

You need to make sure that the path “/cgi-bin/mt/mt-tb.cgi/” is correct for your installation. This is easy to find, simply look at your current trackback URL.

In theory, this should be easily extensible to supporting category trackback pings, although I never use categories so I have not experimented on it directly yet. Note that the URL must be of the form “…/cat/…” instead of “…/entry/…” for category trackbacks.

NB: The name logic for trackbacks automatically strips extensions, so that you can use both “my_cool_post” and “my_cool_post.html” as the name for the trackback URL. This was done to support this technique.

Trackback URL display

One effect of this modification is to make the trackback URLs noticeably longer. This can cause problems with formatting, particularly of popups. What I have done is change explicit display of the trackback URLs to a link with the link text “Trackback URL”. The reader can then either right-click and use the “copy this link” option (available in FireFox, IE and Opera) or use the “friendlier” trackback URLs.

This project originally inspired by a request from Sherwin Techico on the ProNet mailing list

MTTacFeed (MTTF) is a plugin to create feeds from the comments and trackbacks of a Movable Type weblog. “TacFeed” can be read as “Trackbacks and Comment Feed” or “Tactical Feed”, which isn’t as mnemnonic but sounds cooler.

The fundamental operation of TacFeed is to first select a set of objects, then order those objects for display. The objects are usually comments, but can also be trackback pingss and entries. The ability to order the objects is the real meat of TacFeed. A variety of different properties are available for sorting, the objects can be sorted on an arbitrary set of properties, and the display code can check for differences in properties between adjacent objects to generate headers and footers.

Excited? Well, read on anyway.

Note: This plugin is currently under development and not ready for deployment to weblogs that I don’t administer.

Usage

The primary tag for MTTacFeed is the MTTacFeed tag¹. This is a container tag that selects, orders, then iterates over the objects. It is vitally important to keep in mind that selecting and ordering two operations are distinct — once an object is selected, it will be iterated over by the container. The selection doesn’t care what order is later put on the objects, and the ordering doesn’t care how the objects were selected.

All other tags for this plugin are used during the iteration, inside the MTTacFeed tag.

MTTacFeed

The purpose of MTTacFeed is to select feedback objects, comments or trackback pings. The container tag has attributes to control this selection. Related to the feedback objects selected is the set of entries to which those objects are associated. This is termed the entry selection set because we’ll be talking about it quite a bit.

Generalities

The entry selection set can be implicit, explicit, or both. Feedback objects can be selected based on their own properties (making the entry selection set implicit) or based on properties of the entries (making the entry selection set explicit), or both (making the situation confusing).

After selecting the objects, the objects are ordered. Doing this requires two concepts, metrics and axes. A metric is a way of measuring a property. Ultimately, all ordering in MTTacFeed depends on being able to order the values of a property² and uses the term “metric” to describe this. A specific instance of using a metric to order the objects is called an axis. The ordering of the objects is done by a set of axes, each of which has an associated metric.

This is analogous to drawing graphs. For example, one might have “number of readers” and “dollars per year” as metrics. One could then use those to create a graph of various weblogs by putting using “number of readers” along one axis and “dollars per year” along another axis. While the metrics are clearly related to the axes, they are not the same thing and it’s important to keep them distinct.

MTTacFeed metrics are always discrete, not continuous. Because of this, it will usually be the case that multiple objects will have the same value for a metric. In that case, MTTacFeed will consider them equivalent for that metric and will put them in an arbitrary (undefined) order along an axis using that metric. Rather than being a problem, MTTacFeed depends on this feature and is designed to take advantage of it.

Axes in MTTacFeed are always nested. There is an outermost axis, inside of which is an inner axis, inside of that a more inner axis, etc. to any desired depth. The outermost axis groups the objects by its metric. Each of those groups is then internally ordered by the next inner axis. This process continues, each grouping being sub-grouped by the next inner axis to the innermost axis. It is this which gives MTTacFeed its power and it wouldn’t work if the outermost axis completely determined the order of the objects.

The last concept needed is that of an edge, which is the change in value of a metric from one object to another. These are the same thing as group boundaries along an axis, but “edge” is shorter to type. MTTacFeed also distinguishes between a trailing edge and a leading edge. The former is change between the current object in the iteration and the previous object, while the latter is a change between the current object and the next object. Note that one object’s leading edge is the next object’s trailing edge. The use of the term “edge” means a change without reference to a particular object. However, in actual use any template code will be processed with regard to a specific object during the iteration, so that in practice the template code must deal with leading and trailing edges.

Illustation

With the generalities as a background we will consider an example. This is just to illustrate the generalities, which can be difficult for non-math geeks to graph. A more extensive set of examples is provided elsewhere.

Suppose we wanted to display the set of recent comments on a weblog. We don’t want just a flat list³. What we would like is to have a section for each day, then under that a title for each entry that was commented on that day, with the comments grouped under that oldest to newest. In MTTacFeed terms, that would be three axes, using the metrics “day”, “entry ID”, and “comment ID”. MTTacFeed would order by day, putting the comments for each day in an arbitrary order. Each day would then be ordered by the entry, and for each entry by the comment ID. The ability to detect edges lets us put the desired titles in. We can put in a day label for every edge in the “day” axis, and an entry title for each edge in the “entry ID” axis.

The purpose of MTTacFeed is to create this kind of ordering easily so that feeds can be customized for various purposes without having to write Perl code to do it for each feed.

Time

Time isn’t a new concept, but MTTacFeed handles it in a slightly different way.

The most important point is that MTTacFeed has two types of time, “absolute time” and “span time”. Absolute time could also be called “calendar” time. The difference between these two is where the edges are. Absolute time edges are always aligned with the calendar or clock. E.g., the “day” metric from the previous example would have edges at the same points in time as a calendar as an absolute time. Span time, in contrast, has its edges based on the current time, each edge a particular span of time before then without regard to anything else. E.g., “this day” is the same calendar day for absolute time, and within 24 hours of the current time for span time. Both of these are useful and so both are supported.

MTTacFeed accepts time specifications in two formats. The first is the standard Movable Type timestamp, 14 digits of the form YYYYMMDDHHMMSS. Such a specification is always absolute time. The other form, a timespec, is a sequence of digits and letters, the letters selected from this case sensitive list —

The leading digits are treated a number specifying the number of time units indicated by the letter. The digits can have a leading dash to indicate a negative number. For example, “1Y” means “one year”. “1W1D” means “a week and a day”, which is the same as “8D”. 90 minutes can be “1h30m” or “90m” or “2h-30m” or “5400s”. Span time is always specified as a timespec, but a timesec can be used in other situations. Unless otherwise noted, any place a “time” is needed can be specified as either a timestamp or a timespec.

Attributes

The MTTacFeed tag has the following attributes:

after

Specifies the earliest time for a selected object — only select objects after this time. If omitted it is taken to be earlier than the earliest object.

axes

Specifies the set of axes for iteration. More detail

base_entries

Specify the entry selection set. Regardless of any other attribute, only feedback objects with associated entries that are members of the set of entries specified by this attribute will be seleted. More detail

before

Specifies the latest time for a selected object — only select objects before this time. If omitted it is taken to be later than the current time.

count

The maximum number of objects to select. This attribute does not select any objects but simply puts an upper bound on the number of objects selected by other attributes. There is no guarantee that this many objects will be selected. If exactly one of after or before is specified, then objects are discarded from opposite direction. Otherwise, the earlier objectts are discarded. Error: WikiVar “note” not defined

include_entries

Specifies entries to include in the set of objects. This has no effect on which feedback objects are selected. More detail

type

Specifies the types of objects to automatically select. If the value contains the letter “t” or “p” then trackback pings are selected. If the value contains the letter “c” then comments are seleted. Entries are included only if specifically requested via the include_entries attribute and so are not specified here.

count is generically useful, particularly to limit the size of the output. offset is useful in conjuction with paging and other techniques that require successive chunks of comments. after and before allow specific time ranges to be selected.

Axis Definition

Each axis in the axes attribute is separated by a semi-colon and is of the form

metric [ ( parameter-list ) ] [ = name ]

The option list and name are optional, as indicated by the []s. If there are multiple parameters, they must be separated by commas. Any leading or trailing white space is stripped and then numeric entities are converted to the characters they represent before processing. This can be used to include commas, leading spaces, or quotes in the parameters.

id

Internal object numeric identifier.

entry

The internal numeric identifier of the associated entry.

span

A time span. This has a required timespec parameter, which specifies the length of the time span. The current time is always a boundary, with other boundaries at multiples of the specified interval away.

time

Absolute time. This has a required timespec parameter. The boundaries are set at the natural boundaries for the timespec as close to the current time as possible.

author

The author of the object.

All metrics take an optional parameter of ‘reverse’, which reverses the ordering.

Each axis can be named so that it can be referenced by other MTTacFeed tags. If not specified, the axis is named the same as its metric. Names must be single alphanumeric words, no spaces or punctuation permitted⁴.

Entry Specifiers

The base_entries and include_entries specifiers require the selection of a set of entries. Both of these tags take (almost) the same set of specifiers, which are very similar to the metric specifiers used for axis definitions. The available specifiers are

author

The parameters are weblog author names. Entries with that name are selected.

lastn

The n more recent entries, where n is a number supplied as a parameter.

after

Entries after a specific time. The time is passed in as a parameter.

before

Entries before a specific time. The time is passed in as a parameter.

commented_on_by

The parameters are a list of names. The selected entries are those that have a comment by one of the names.

Iteration

After all of the object selection and ordering has been done, the MTTacFeed tag iterates over the objects in order. For each iteration the contents of the container are evaluated and added to the final output.

During an iteration, the container sets up the appropriate MT context for the object. In addition, the associated entry and weblog for the object is placed in the context so that entry and weblog based tags are available in addition to the comment or trackback (as appropriate) tags.

Other Tags

In addition to the top level container class, MTCatFood also provides conditional tags for controlling presentation. These are the MTTacFeedFIfHeader, MTTacFeedIfFooter, and MTTacFeedIfEdge tags.

MTTacFeedIfHeader and MTTacFeedIfFooter are true if a specified axis or any outer one has an edge. MTTacFeedIfHeader checks for trailing edges, i.e. that the current object has a different metric value than the previous object. MTTacFeedIfFooter checks for a leading edge, i.e. that the current object has a different metric value from the next object. The base axis to check is specified by the axis attribute, which can be either the 0-based numeric index of the axis, or the name.

To go back to the previous example, the MTTacFeed container attribute axes would be “span(1D);entry;id”. To put a header for each day, we would use

<MTTacFeedIfHeader axis="span"><h1><MTCommentDate></h1></MTTacFeedIfHeader>

because the current object determines the MT context and in this case it is always a comment. The container will also set up the associated entry of the comment in the context, so the entry header can be done using

<MTTacFeedIfHeader axis="entry"><h2><MTEntryTitle></h2></MTTacFeedIfHeader>

In this case the cascading edge check insures that a new entry header will be present at the start of each day, even if the associated entry is the same as the previous comment.

The MTTacFeedIfEdge tag is more esoteric and shouldn’t be necessary for most uses. It provides the ability to trigger on any edge boundary on any set of axes. It takes two attributes, header and footer. Each of these is a sequence of axis specifiers (0-based index or name) separated by commas or spaces. The condition is true if any of the specified axes have a trailing or leading edge respectively. Only explicitly names axes are checked, there is no cascading check.

While the set of objects for iteration is by default only comments, it is possible to include trackback pings and entries. To handle these situations, MTTacFeed provides the MTTacFeedIfComment, MTTacFeedIfPing, and MTTacFeedIfEntry tags which are true if the current object is of the appropriate type.

¹ The only simple and obvious thing in the entire plugin, so enjoy it while you can.

² Duh! It’s ordering.

³ Or we wouldn’t be reading this documentation, would we?

⁴ Really, just how complex do you really need to make the names of the axes?

There are a number of junk spewing scripts out in the Internet Wilds that will pound on the default scripts for comments and trackbacks in Movable Type, regardless of whether the scripts exist or not. Many installations rename these scripts in the hopes of avoiding such junk scripts, but generally to no avail. Whether that succeeds or fails, one is left with an error log full of “404: File not found” errors. This makes it difficult to observe real problems.

Because of this, I decided that I would put in a replacement script that would simply accept the connection and ignore it. Then I realized that if I put a delay in that replacement script, it would slow down the junk scripts. Instead of rapidly passing over targets that are disabled, the junk script would instead spend quite a bit of time waiting uselessly, while imposing very little burden on the weblog host machine. The only way to make progress is to impose burdens on the junkers, reducing the set of them for whom this activity is profitable.

The point being to impose more cost on the junkers than it does on the weblog host. The junkers aren’t magical or invincible, they have their resource limits as well. While the junkers are much bigger than any single weblog, I have no doubt that in aggregate there are far more processing resources belonging to the weblog community than the junker community. Even if it just means that the junkers have to buy bigger hardware, well then they have to spend a lot of money in response to a small effort for each weblogger. That’s still a win.

Implemenation (Simple)

I implemented this concept and decided that it would be even better if other weblogs did the same thing, to throw ore sand in the gears of the junk machine. You can get the script here or cut and paste the following:

#!/usr/bin/perl -w

use strict;
local $|=1; # Disable buffering

print <<HTML;
Content-Type: text/html

<body>

<div style="font-size:200%;
            text-align:center;
            background:red;
            color:white;
            margin-bottom:1ex;
            ">
Invalid Access
</div>

<p style="border:2px solid red;padding:1ex;">
There is no reference to this script from anywhere else on the Internet.
You can only have accessed this script by guessing its name.
There is no legitimate reason for doing that. Cease your annoying abuse.
</p>

HTML

sleep 30;

print "</body>\n";

You can, of course, customize the message or the style. I strongly recommend against using a style sheet, as the point of this is to use minimal resources on your host. And really, how well designed does the page have to be?

To install

1. Put the script in your MT install directory (where the mt-comments.cgi or mt-tb.cgi script was originally).
2. Edit the first line to be identical to that in your mt.cgi script.
3. Rename the script to mt-comments.cgi or mt-tb.cgi to replace the missing script.
4. Set the permissions to “755”.

Note that this scripts works for either comments or trackbacks, since it doesn’t do anything except print and sleep. Also, only use this if you’ve renamed the original trackback and/or comment script. Do not use this as a direct replacement of either script.

You can see the script in operation here.

While this script should impose very little burden on your webhost, even under rather heavy use, it may not be suitable for installations that run at the limits of their processing power. For those of us in the long tail, however, it should pose no problem. The long tail is the best place for deployment as well.

Implementation (Advanced)

While I have not observed a burden from this technique, that doesn’t mean it can’t happen. Because of this, I have developed an alternate mechanism that uses PHP instead of Perl so that no external processes are spawned, lowering the burden both computational and in terms of resources (because in many Apache installations, the number of simultaneous external processes is limited). The downside is that this implementation requires the use of ModRewrite and the consequent editing of .htaccess files.

You can download the script here, or cut and paste the text in the box below.

<body>

<div style="font-size:200%;
            text-align:center;
            background:#822;
            color:white;
            border:2px solid red;
            padding:1ex;
            margin-bottom:1ex;
            ">
Sand Trap
</div>

<p style="border:2px solid red;
          padding:1ex;
          ">
You have been redirected to this script because
you have used an obsolete resource to which
no references exist on this website. This makes
you presumably a junker, and therefore your
session has been bogged down with this webpage.
</p>

<?php
ob_flush();
flush();
sleep(30);
?>

<p style="text-align:center;
          border:2px solid red;
          padding:1ex;
          margin-top:1ex;
          ">
If you are going to abuse me, I will abuse you right back.
</p>

</body>

Put this script somewhere where the weblog can access it without a redirection¹, name it sand-trap.php, and set the permissions to 755. Then edit the .htaccess file to do the rewrite.

For this example, it is presumed that

• sand-trap.php is installed in the root directory of the weblog domain. E.g., for this weblog it is installed at http://blog.thought-mesh.net/sand-trap.php (try it if you’d like).
• The .htaccess file is in the Movable Type install directory.

RewriteEngine On
RewriteRule ^mt-comments.cgi /sand-trap.php [last]
RewriteRule ^mt-tb.cgi /sand-trap.php [last]

You can also install the .htaccess in the root directory of the domain, which is what is done on this weblog².

RewriteEngine On
RewriteRule ^cgi-bin/mt/mt-comments.cgi /sand-trap.php [last]
RewriteRule ^cgi-bin/mt/mt-tb.cgi /sand-trap.php [last]

You would, of course, need to change cgi-bin/mt to the local path to your Movable Type install directory.

Note: This will render any scripts with those paths inaccessible, so don’t do this if you haven’t renamed those scripts. Alternatively, you could leave this in to turn comments / trackbacks on and off by putting a leading ‘#’ on the appropriate lines to change them to comments (or not).

As a side benefit of this mechanism, if you use the MT 3.2 Patch: Trackback By Name modification, you can use ModRewrite to drop junkers still using the now invalid numeric form in to the sand trap as well. This is what you would use in a .htaccess file in the MT install directory, presuming that sand-trap.php was in the domain root directory.

RewriteRule ^mt-tb.cgi/[0-9]+ /sand-trap.php [last]

¹ I.e., accessible from the same webserver. This is important because if a redirection happens, the junker will drop the connection and the goal is to keep him on the line as long as possible.

² Because I moved from cgi-bin/mt to scgi-bin in the past, but the junkers keep hitting the scripts in the no longer extant cgi-bin/mt directory. Because that directory doesn’t exist, I can’t put the .htaccess there. Instead, I put it in the root directory to handle both the old and current directories.

The trackback API for Movable Type 3.2 uses the internal numeric ID of the trackback object as the key. This has two problems:

• There is no relationship between the trackback key and information in an entry, making clever URL rewriting infeasible.
• It is an easy target for junkers, who can trivially guess valid values.

This was unavoidable in previous versions of Movable Type, but with the release of 3.2 and its use of globally unique “basenames” for entries, we can do better.

This modification changes the trackback API to use identifying strings instead of numerics as the trackback key. The trackback object identifiers become completely internal (as was done for entry identifiers in 3.2). This overcomes both of the issues listed above.

This project is currently in beta. It has been deployed only several production weblogs, including this one. You can test it out by doing a trackback to this entry using the URL in the “Trackback URL” link below, or using the URL for this entry with “/ping” appended. Please put text that indicates a test if you do test it, so I can clean those out.

NB: This modification explicitly forbids the use of numeric trackback ids. If installed and followed with a complete rebuild, this should not affect legitimate weblogs as the trackback URLs are pulled from your webpages, which will have the new, correct trackback URLs in it.

Implementation

Two files in the base distribution must be modified. You can pick up the modified versions of the files here or, if you’re paranoid like me, you can do the modifications yourself. Once the files have been modified, you will need to a full rebuild to update all of the trackback URLs. At that point the modified trackback API should be fully operational.

Trackback.pm Modification

The lib/MT/App/Trackback.pm file must be modified. Note that there are two files named Trackback.pm in the distribution, be sure to edit the correct one.

Around line 97, there is a subroutine _get_params. Remove this subroutine and replace it with the following subroutine:

sub _get_tb {
    my $app = shift;
    my ($tb, $pass); # Trackback object and password to return
    my ($key, $name); # local vars for internal computations
    if (my $pi = $app->path_info) {
        $pi =~ s!^/!!; # drop leading slash
        ($key, $name, $pass) = split /\//, $pi;
        if ($key =~ m/\d+/) {
            $app->error($app->translate(
                'Numeric trackback IDs are no longer accepted'));
        } elsif (lc($key) eq 'entry') {
            require MT::Entry;
            $name =~ s/\..*$//; # strip any extension
            if (my $entry = MT::Entry->load({ basename => $name})) {
                $tb = MT::Trackback->load({ entry_id => $entry->id});
                $app->error($app->translate(
                    'No trackbacks for entry with basename [_1]', $name))
                    if not $tb;
            } else {
                $app->error($app->translate('No entry with basename [_1]', $name));
            }
        } elsif ($key =~ m/^cat/i) {
            require MT::Category;
            if (my $cat = MT::Category->load({ label => $name })) {
                $tb = MT::Trackback->load({ category_id => $cat->id });
                $app->error($app->translate(
                    'No trackbacks for category with label [_1]', $name))
                    if not $tb;
            } else {
                $app->error($app->translate(
                    'No category with label [_1]', $name));
            }
        } else {
            $app->error($app->translate(
                'Invalid trackback target key [_1]', $key));
        }
    } else {
        $app->error($app->translate(
          'Track request URL incorrectly formatted.
           The trackback target path information was missing'));
    }
    ($tb, $pass);
}

Around line 150, in subroutine ping, change

    my($tb_id, $pass) = $app->_get_params;
    return $app->_response(Error =>
        $app->translate("Need a TrackBack ID (tb_id)."))
        unless $tb_id;

    require MT::Trackback;
    my $tb = MT::Trackback->load($tb_id)
        or return $app->_response(Error =>
            $app->translate("Invalid TrackBack ID '[_1]'", $tb_id));

to

    my($tb, $pass) = $app->_get_tb;
    return $app->_response(Error => $app->errstr) unless $tb;

Around line 185, change

    no_utf8($tb_id, $title, $excerpt, $url, $blog_name);

to

    no_utf8($title, $excerpt, $url, $blog_name);

Around line 213, change

    $ping->tb_id($tb_id);

to

    $ping->tb_id($tb->id);

In subroutine rss, around line 369, change

    my($tb_id, $pass) = $app->_get_params;
    my $tb = MT::Trackback->load($tb_id)
        or return $app->_response(Error =>
            $app->translate("Invalid TrackBack ID '[_1]'", $tb_id));

to

    my ($tb, $pass) = $app->_get_tb;
    return $app->_response(Error => $app->errstr) unless $tb;

ContextHandlers.pm Modification

The file lib/MT/Template/ContextHandlers.pm should be modified. This is not strictly required, but if this is not done then you will have to construct all trackback related data by hand in the templates rather than using the standard tags.

In subroutine _hdlr_entry_id, around line 1125, change

    $path . $cfg->TrackbackScript . '/' . $tb->id;

to

    $path . $cfg->TrackbackScript . '/entry/' . $e->basename;

In subroutine _hdlr_entry_tb_data, around line 1138, change

    $path .= $cfg->TrackbackScript . '/' . $tb->id;

to

   $path .= $cfg->TrackbackScript . '/entry/' . $e->basename;

In subroutine _hdlr_category_tb_link, around line 2639, change

    $path . $cfg->TrackbackScript . '/' . $tb->id;

to

    $path . $cfg->TrackbackScript . '/cat/' . $cat->label;

Other Notes, Techniques and Caveats

There are several things to keep in mind once this modification is installed.

Friendly trackback URLs

One of the drivers for this modification was a request for “friendlier” trackback URLs. In particular, the desire was to be able to have other weblogs link via trackback to a post by using the URL of the post with “/ping” appended as the trackback URL. This requires

• Installing this modification
• An Apache webserver
• Access to the Apache configuration file or .htaccess files to enable mod_rewrite

Also note that this works only for individual archives.

To set it up, in the top level directory for the individual archives, place text like the following in a .htaccess file:

RewriteEngine On

# Support trackback pings by appending "/ping" to an individual archive URL.
RewriteRule /([^/]+)/ping$ /cgi-bin/mt/mt-tb.cgi/entry/$1

You need to make sure that the path “/cgi-bin/mt/mt-tb.cgi/” is correct for your installation. This is easy to find, simply look at your current trackback URL.

In theory, this should be easily extensible to supporting category trackback pings, although I never use categories so I have not experimented on it directly yet. Note that the URL must be of the form “…/cat/…” instead of “…/entry/…” for category trackbacks.

NB: The name logic for trackbacks automatically strips extensions, so that you can use both “my_cool_post” and “my_cool_post.html” as the name for the trackback URL. This was done to support this technique.

Trackback URL display

One effect of this modification is to make the trackback URLs noticeably longer. This can cause problems with formatting, particularly of popups. What I have done is change explicit display of the trackback URLs to a link with the link text “Trackback URL”. The reader can then either right-click and use the “copy this link” option (available in FireFox, IE and Opera) or use the “friendlier” trackback URLs.

This project originally inspired by a request from Sherwin Techico on the ProNet mailing list

The new plugin configuration settings support in MT 3.2 takes some getting used to but it is well worth the effort. One of the issues, however, is that for many plugins that have per weblog configuration data, it would be handy to use the system level settings as another level of defaults so that any weblog that wasn’t explicitly configured would use the system settings instead of the hardwired defaults. This turns out to be achievable with a reasonable amount of effort.

Implementation

There are two places which have to be dealt with to achieve the desired effect:

• Loading system settings as weblog defaults in the plugin logic.
• Loading system settings as weblog defaults for the plugin settings configuration page.

This description presumes that you have created your plugin as a subclass of MT::Plugin as is recommended. The implementation consists of adding two methods to your plugin class and then using those methods elsewhere in the plugin.

Using system settings as weblog defaults

The MT 3.2 distribution has no mechanism for detecting whether a weblog has a specific configuraiton. This can be remedied by putting a subroutine to do that in to your plugin class.

# Return the config object for the scope if it exists, undef otherwise.
sub test_config_obj {
    my $plugin = shift;
    my ($scope_id) = @_;
    my $key;
    my $scope = $scope_id;
    if ($scope && $scope ne 'system') {
        $scope =~ s/:.*//; # strip off id, leave identifier
        $key = 'configuration:'.$scope_id;
    } else {
        $scope_id = 'system';
        $scope = 'system';
        $key = 'configuration';
    }
    # if it's already in the cache, return it.
    return $plugin->{__config_obj}{$scope_id}
      if $plugin->{__config_obj}{$scope_id};
    # otherwise try to load it.
    require MT::PluginData;
    my $pdata_obj = MT::PluginData->load({plugin => $plugin->name(),
					  key => $key});
    # if we succeed in loading, cache it
    $plugin->{__config_obj}{$scope_id} = $pdata_obj if ($pdata_obj);
    return $pdata_obj;
}

This is a modified clone of the get_config_obj subroutine. If the configuration is found, it is cached to make subsequent calls to retrieve it fast. Therefore it’s not a Bad Idea to call the test method and then the get method.

Once this is present, then defaulting to system settings for non-configured weblogs is easy, presuming that $plugin is set to your plugin object.

        if ($plugin->test_config_obj($scope)) {
            $settings = $plugin->get_config_hash($scope);
        } else {
            $settings = $plugin->get_config_hash('system');
        }

After this, $settings is set to the weblogs specific settings, if present, otherwise the system settings or, if those are missing, the hardwired defaults.

My personal preference is to use an “operation” class for my plugin logic that is instantiated when the plugin has to do its work. That class loads up the settings using this logic during construction (in the new subroutine) and caches them for use everywhere else.

Using system settings as default weblog configuration

If a user goes to configure the plugin for a specific weblog and there is no configuration data for that weblog, the defaults loaded in to the configuration interface should be the system defaults because

• Those are the values that will be used, so to do otherwise is to provide bogus data to the user.
• If the user wants to tweak, then the starting point should be the system settings if available.

We can do this by overriding the default logic in the base class for our plugin class with this subroutine:

sub apply_default_settings {
    my ($self, $data, $scope_id) = @_;
    # If the defaults are being applied to a weblog, then copy down
    # from the system settings to supply the default values.
    if ($scope_id =~ m/:/) {
        my $system_data = $self->get_config_hash('system');
        foreach (keys %$system_data) {
            $data->{$_} = $system_data->{$_}
              if not exists $data->{$_} or not defined $data->{$_};
        }
    }
    return $self->SUPER::apply_default_settings($data, $scope_id);
}

Other issues that work out automagically

How do I reset a weblog to system defaults?

Just use the “Reset to Defaults” button. What that does is destroy the configuration data for the weblog. After that, the tweaked up default logic will pull in the system settings automagically.

Don't I have to handle creating weblog specific configurations?

No. The base MT logic handles that correctly, once everything else is set up. MT uses the default value logic to populate data for unconfigured weblogs and handles all the scoping automagically. In fact, the plugin for which I worked this out doesn’t even have separate subroutines for the system and weblog configuration templates.

Some Movable Type plugins require database tables to store their information because it is too large for the simple plugin settings data. It has always been a problem to create these tables automatically, but with MT 3.2 this is now possible.

Implementation

This implementation description presumes that the plugin and the plugin data class are correctly registered in accord with Movable Type 3.2 requirements. All of that is covered elsewhere (like here), although I learned primarily by reading the code and its internal documentation, and looking at other working plugins. The write up on the Movable Type website isn’t worth reading (incomplete and obsolete) so I recommend against looking there.

Define the columns

When using the install_properties mechanism to define the data elements of a plugin, use ‘column_defs’ instead of ‘columns’. This is a hash, not an array, which maps column names to column descriptors. These descriptors are the standard SQL description of a column. Some standard types to use are

• For the required identifier column ‘id’ — ‘integer not null auto_increment’
• For columns that store entry, weblog, comment identifiers — ‘integer not null’
• Strings — ‘string(255)’. This one I am not so clear on, whether the number matters for performance or, if it does, what the optimal value is. It will be transformed in to a variable sized string, so it doesn’t matter in terms of functionality.

Detect / create missing tables.

This is the code used in my Webiki plugin. It is in the configuration template generation logic. The Webiki plugin defaults to not transforming the text and the user must therefore visit the configuration page before it works. I am not sure how expensive the table existence checks are, so I wanted to not have them done every single time the plugin was loaded.

my $db = MT::Object->driver();
if (not $db->table_exists('Transfinitum::Webiki::Word')) {
    my $error = 'Database handle from driver not valid';
    my $statement;
    my $dbh = $db->{dbh};
    if ($dbh) {
        $error = '';
        for ( $db->fix_class('Transfinitum::Webiki::Word') ) {
            $statement = $_; # cache for later use in error message
            if (not $dbh->do($statement)) {
                $error = $dbh->errstr;
                last;
            }
        }
    }
    if ($error) {
        MT->instance->log(
          MT->translate(
            'Failed to create database tables for Webiki plugin - [_1]'
           , $error
        ));
        $tmpl .= <<INIT;
<p style="color:red;">Failed to create database tables for Webiki plugin.
<br />Statement: &lsquo;$statement&rsquo;
<br />Error: $error.</p>
INIT
    } else {
        $tmpl .= '<p>Created database tables for Webiki plugin.</p>';
    }
}
$tmpl;

The first two lines check for the existence of the tables for the ‘Transfinitum::Webiki::Word’ object, which is the type of object stored in the database table. If not, then we create them. The fix_class method does not actually fix the class, but instead returns the appropriate database statements to do so. This method is generally used in the upgrade process, but if the table doesn’t exist (as we’ve determined) then it emits only the table creation statements.

After that, we execute the statements one by one, checking for errors. If errors are encountered, we log that and attach it to the settings display. If the tables are created successfully, we make a note of that as well.

Notes

You can see this code used in a working plugin by looking at the source for Webiki. Working code is always a good companion to documentation.

First, execute the following on the command line:

perl -e "print crypt('password', 'ac');"

Substitute the password you want for the string ‘password’ in the above command. The ‘ac’ can be any two characters, it doesn’t matter, but they must be present (that’s the “salt” for you UNIX™ geeks). This will print a set of apparently random characters. Take those characters and put them in to the “author_password” column of the corresponding row of the “mt_author” table in the Movable Type database. Do not use any DB encryption function — Movable Type does that itself and uses the DB column as a simple text field.

This article describes my anti-junk defense grid for Movable Type. It is a layered defense, different aspects working together to reduce the burden of maintaining successful defenses, without overly restricting users of the weblog¹.

Layered Defense

I use a combination of technologies as a defense in depth, so that even if there is penetration, it is rarely much effort to clean up.

SpamLookup

SpamLookup is a junk filtering plugin that is installed in Movable Type by default, starting with version 3.2. This is a very useful plugin and I use it extensively. I primarily make use of the word filter to scan for indicators of junk posters and ban specific domains. While SpamLookup doesn’t have any bulk delete functionality, MT 3.2 itself allows one to search comments for specific strings, which is enough to make bulk clean up tolerable. With my defense grid in place, however, I haven’t had to do that for quite a while.

While the distributed SpamLookup is useful, there were many things that I observed that I wanted to check for that were not possible. Initially I wrote my own filter to do these checks but later I created my own SpamLookup Extension to be able to apply filters to specific fields in the entries. This permits much broader filters and more complex patterns. For instance, one can simpy forbid the character sequence “poker” or “sex” in a home page URL or commentor name without affecting normal use of the word in the actual comments. Or, in terms of patterns, one can forbid commentor names that are longer than some specific number of characters.

This layer provides an excellent first defense that gets at least 90% of the incoming junk. Here is my base set of filters. It has a lot of examples of how to take advantage of the field capability. I do tend to tweak it a bit, but it’s got most categories that are useful so it’s mostly a matter of cloning an existing filter and using a new word.

Simple Junk Filters

Simple Junk Filters is a small filter framework that lets me create PERL based filters and easily set them up to run and be tunable via the plugin configuration screens. This used to do much more, but now that I have extended SpamLookup it is down to two tests, but both of these catch quite a bit of junk. Also, should I find some other property of junk I need code to check for, I can put it in this plugin very rapidly with full configuration.

AutoBan

AutoBan is an IP banning plugin that helps

• Control the number of junk objects so that it is easier to detect inappropriately junked objects.
• Control floods by banning IP addresses that are repeatedly hitting the weblog.

AutoBan keeps a ‘.htaccess’ file updated to ban the IP addresses of junk objects. As new comments or trackbacks are junked, the IP addresses are automatically banned if there too many junk objects from that IP address. IP addresses are unbanned when the junk entries are deleted (directly or via automatic cleanup) or the junk object is marked as not junk. The key rationale is that the cost of starting up the Movable Type application is large, so any filtering that can be done to prevent that should reduce the load on the server. See the page for MTAutoBan for a more detailed discussion of the performance issue.

While this doesn’t help as much as I hoped, it still seems to keep flooding under control. It also helps protect multiple weblogs in a single install because banned addresses are banned for all the weblogs. This weblog gets very little junk because the junkers hit Thought Mesh first and are banned before they can hit this weblog.

Trackbacks By Name

I use MT 3.2 Patch: Trackback By Name to stop junkers who guess at trackback ping URLs, along with ModRewrite to redirect numeric ID based trackbacks to a sand trap. This definitely seems to have slowed down the trackback junk.

No pop ups

I have removed pop up windows for trackbacks and comments and used ModRewrite to send any requests for those popups to the sand trap. That presumably should help reduce the server load both by slowing up the junkers and by using many fewer webhost resources (as I use the PHP variant, there is no CGI overhead).

The ModRewrite logic used is

RewriteCond %{QUERY_STRING} __mode=view
RewriteRule mt-tb[.]cgi /sand-trap.php [last]
RewriteCond %{QUERY_STRING} __mode=view
RewriteRule mt-comments[.]cgi /sand-trap.php [last]

¹ For instance, some weblogs forbid any URL in a trackback excerpt, which is very burdensome because one normally puts the link to the target post early, which puts it in the excerpt. I’ve just stopped linking to such weblogs. Also, I hate captchas — I don’t comment on websites with those, either.

This is a collection of various junk filters I use which are not implementable in other junk filter plugins. Many of the original set have been removed because they can be done with the SpamLookup Extension.

Each filter can be tuned to have a distinct weight via the top level plugin settings page. Setting a weight to zero disables the filter.

This plugin also provides a nice platform for adding other simple filter checks.

Installation

1. Get the distribution.
2. Put the ‘transfinitum-junk-filters.pl’ file in the ‘plugins’ directory of your Movable Type installation.
3. Configure the filters
   1. Go to the ‘Main Menu’ page.
   2. Click on the ‘Plugins’ link in the ‘System Shortcuts’ column.
   3. Click on the ‘Show Settings’ Link under ‘Transfinitum Junk Filters’.
   4. Set the weights and click ‘Save’.

Usage

Nothing to do, it’s an install and forget filter. If you don’t like a filter, configure the weight of that filter to be zero. Note that the plugin returns a single junk filter score, not one per filter, that is the sum of the scores of the filters that matched.

To add your own filters, you can add a new subroutine to the plugin. It takes two arguments

1. The plugin object.
2. The target object for the filter, which will be a MT::Comment or a MT::TBPing.

The subroutine should return a true value if it matched on the object, false otherwise. The filter weight is controlled via the configuration, not the code.

After writing the subroutine for the filter, add a description of the filter to the plugin construction. That’s it, the filter will now run with a configurable weight.

SpamLookup Extension is now available for

• Movable Type 3.34 and 3.35 — see here.
• Movable Type 4.0 (beta) — distribution. This has the same release notes as the 3.34 / 3.25 version.

Additional Capabilities

The modification provides the ability to apply word filters to specific fields in the comments and trackbacks, rather than the conglomeration of all fields. There are a number of specialized checks that I have found useful, most of which I had previously put in to a custom spam filter.

The new syntax for filter lines is

word ( fields ) weight

where

word

A space delimited word or a ‘/’ delimited regular expression.

fields

A space delimited set of field keywords. This is optional.

weight

A numeric value specifying the weight of this word. This is optional. A weight can be negative (with a leading ‘–’) which makes it a white listing instead of a blacklisting.

A word can be either a space delimited literal word or a ‘/’ delimited regular expression. In the latter case, the characters ‘-ismx’ are permitted to directly following the trailing ‘/’. If present, these are passed to the PERL regular expression engine to control the interpretation of the regular expression.

The valid field keywords are

If no fields are specified, “all” is used, thereby preserving (almost) the orginal behavior and syntax. The url and text fields are provided to make scanning equivalent fields for comments and trackbacks easy. If multiple fields are specified, they are all scanned in order. A match on any field counts as a match.

Examples

Most of these are from my customized spam filter, which can now be simplified. All of them are things I have seen in comment and trackback spam.

Empty trackback excerpt.

/^$/ (excerpt)

Double dash in domain.

-- (url email)

Comment is the single word 'Hi.'

/^Hi\.$/ (content)

No source URL for trackback

/^$/ (source)

The word 'poker' in the email address or homepage

poker (url email)

Homepage looks like an archive, not a base URL

/[[:digit:]]{3,}\.(?:html|htm|shtml|php)$/ (home)

Email address is purely numeric

/^[[:digit:]]+@/ (email)

Note that some of these are simply not possible in the original release (particularly the empty field checks). Others are possible but too broad to be practicle (such as checking for archive like links as a home page, or double dashes).

One feature that has come in handy is the ability to search for phrases at the beginning of a comment, which detects spammers with much less impact on legitimate commentors. For instance, one spammer starts his comments with ‘Hello, Admin!’. This can be detected with

/^Hello, Admin!/ (text)

The ‘^’ means “match only at the start” when inside a regular expression (denoted by the ‘/’ characters). The other handy character is ‘$’, which means “match only at the end”. Together with ‘^’ this means you can match on phrases that are the entire comment, not just part of it. E.g., if a spammer just puts the word ‘Hi.’ in his comments, you can catch that with

/^Hi\.$/ (text)

Note that we have to put a backslash in front of the ‘.’ because otherwise that means “match any single character”. With this, some one who writes ‘Hi.’ at the start won’t be matched, if he writes any additional text.

One common request is to ban a specific email address. This is now trivial. To ban the email address “neo@hotmail.com” you can do

neo@hotmail.com (email)

If you want to detect the word “poker” in email address, commentor name, or home page URL, you can do

poker (email url name)

and your commentors can still use the word in the text without impediment.

The weight of a filter can be negative, which causes it to be a white listing. If I wanted to give myself a bypass, I could use the rule

Annoying Old Guy (name) -10

which would subtract 10 from the junk score of all of my comments so that my comment would pass even if it hit several filters. This could easily be used to give bypasses to other commentors by name, email, or home page URL. One could even use this to create a magic bypass word, say ‘ciscomyyahoo’. Put in the rule

ciscomyyahoo (content) -10

and then when you want a bypass, put the magic word in an HTML comment, e.g. <!–– ciscomyyahoo ––> in your comment and you’re through the filters yet other people don’t see the magic word.

My current working set of filters can be found here, which has numerous other examples.

Differences

There a few minor functional differences.

Bug fixes

The original distribution of SpamLookup had bugs in the handling of decoded¹ text where the decoded version of the text would not be scanned if the raw version did not have any hits by filters for junk filters. In the case of moderation filters, the decoded text would always be scanned, regardless of hits in the raw text (making the raw text scan pointless).

The new version now applies filters per field first to the raw text for the field, and then, if the raw text did not have a match, the decoded version (if different) is scanned. A match in either case counts as a match for the filter.

The processing of standard words (not regular expressions) is improved. Previously, words that started with non-word boundary characters would never match (because expressions like ‘\b<’ never match). These cases are now handled correctly.

The base implementation has a problem where backreferences do not work correctly because the regular expression is compiled before the outermost parentheses are added leading to various problems. This does not occur in this version and the workaround suggested won’t break. The only thing to keep in mind is that all backreferences need to be incremented by one before being used.

Undocumented feature

The original release, when combinging the fields in to the combined text, would prefix each field with the string “field:” where field was one of ‘name’, ‘email’, ‘url’, ‘text’ for comments and one of ‘blog’, ‘title’, ‘url’, ‘text’ for trackbacks. Presumably this was done to provide a semblance of the functionality of my modification (at least, one could check if a specific field began with a specific filter word) but as there are no comments in the code there and no documentation, this is only speculation. In any case, I could see no use for it at all in this modification so it was removed.

Log enchancement

If a match occurs for a specific field other than ‘all’, the name of the field is added to the pattern in the log message on the comment / trackback.

For each word filter match, the specific score for that match is logged.

The patterns and matched text are HTML encoded before being placed in to the log so that pattern or match text that contains HTML code does not disturb the log display. In addition, literal question marks ‘?’ are transformed in to entities because they mess up the log display (although I have not had the time to track down why that is).

MT 3.3

The MT 3.34 replacement lib is available here. This is currently in use on multiple live weblogs.

The new version has a bit more tuning, although it’s unlikely to be noticeable in the real world. I have added more comments in the code for the curious and tweaked the log messages to be a bit clearer.

The only known potential issue is with Japanese and word boundaries. As best as I understood the code, the special checks for that should still work correctly. The original checks were removed, as they should be handled correctly by my bug fix for broken word boundaries in the original version.

¹ “Decoded” means entities decoded to their textual equivalents.

MTAutoBan is a plugin for Movable Type. It maintains an Apache webserver configuration file (also known as a “.htaccess” file) that bans IP addresses in the Apache webserver. The set of banned addresses is generated from the junk objects stored in the Movable Type database. Whenever the set of junked objects changes, the Apache configuration file is updated.

The goal of this plugin is to slow down the flood of junk objects by banning the IP source addresses that generate them. This makes it easier to check the junk objects for bad filtering and makes denial of service effects from excessive amount of junk much less likely. By doing the banning at the Apache webserver level instead of in Movable Type itself, the runtime cost of the banning is minimized. With a good set of filters, even large¹ groups of systems are rapidly banned with little effect on the weblog.

As a result of further experience, I added the ability to redirect requests instead of simply banning them, because it seems that many junkers notice 403 error eventually and rotate attacks over to new machines. Redirection is intended to thwart this.

Because of the large numbers of compromised computers used to generate junk, the maintenance cost of banning the associated IP addresses must be near zero. This plugin achieves that goal. No maintenance is required once installed, and the defaults are good enough that initial configuration is not even necessary.

To make the banning as automatic as possible, the configuration file is updated whenever

• An object is marked as “junk”, either explicitly or via junk filtering.
• A set of objects is marked as “not junk” explicitly.
• Whenever a junked object is deleted.

Current Version: 1.2.3

Beta Version for MT 4.0 Compatibility: 1.2.4

Requirements

MTAutoBan requires

• Apache webserver
• Movable Type 3.2 or 3.3

All other Perl modules required by MTAutoBan are also required by Movable Type.

Installation

1. Get the distribution.
2. Create a directory named AutoBan under the plugins directory in your MT installation directory.
3. Copy all files in the distribution to the AutoBan directory.

Note: If you installed a version prior to 1.1.0, you should remove the no longer in use file

extlib/Transfinitum/Apache/IPAccess.pm

Usage

MTAutoBan is designed to be a “zero configuration” plugin — unless you like to fiddle with things, you should have no need of configuring MTAutoBan. If you do read through this section and there are settings that you don’t understand, simply ignore them and leave them unchanged. These settings are for control-freaks like me who have psychological problems that do not permit them to tolerate anything they do not have absolute control over. Normal, well-adjusted people can get on with their lives instead.

To configure MTAutoBan, go to the global plugins configuration page. This can be reached from the “Plugins” link on the MT main page in the “System Shortcuts” area. MTAutoBan should be listed as one of the plugins available. The plugin has several configuration options.

Ban address if

This sets the number of times an address must appear in the junk objects to be banned. Addresses that appear this many times (or more) are put in the set of addresses to be banned.

Junk Comments

If this is checked, then junk comments are considered to be junk objects.

Junk Trackbacks

If this is checked, then junk trackbacks are considered to be junk objects.

Only junk objects less than #### minutes old.

If this is checked, the set of junk objects is restricted to those less than the specified number of minutes old. One day is 1440 minutes, a week is 10,080 minutes.

Path

Path to the access file. If this path is relative, then it is relative to the MT installation directory. If the final character is a forward slash, then the file name ‘.htaccess’ is automatically added. MTAutoBan will mark its own ban list in the file so that an existing file can be used even if there are other Apache configuration commands in it.

Redirection

MTAutoBan by default denies access to banned addresses. If this setting is “None”, that is what happens. MTAutoBan can also redirect requests from those addresses. This can be done in one of two ways, determined by this setting. In both cases, only requests for files in directories controlled by the access file are affected.

• ErrorDocument — MTAutoBan inserts an ErrorDocument directive in its section of the access file to override the page that would normally be used.
• mod_rewrite — Use mod_rewrite to redirect requests instead of denying them. This option has unknown performance implications and so should be used with caution (see here).

Ban page URL

If the previous setting, “Redirection”, is set to be active, then the target of the redirection is this URL. Relative paths are relative to the directory where the access file is (by default the MT install directory). Absolute paths are relative to the base URL for the weblog.

Read #### objects at a time from the database

This is a performance tuning parameter for geeks. When MTAutoBan is generating the access file contents, it reads junk objects from the database. To avoid system limitations, it does this in chunks. This parameter specifies the number of objects per chunk.

Write #### addresses per line in the access file

This controls how many addresses are written per line of access file output.

In addition to these configuration options, there is also a check box labeled “Force access file update”. If checked, when the configuration is saved the access file is updated.

Tags

MTAutoBan has MT tags to display information about its operations.

Known Issues

• If a junk object is changed to non-junk on the object edit page, the access file is not updated. If the object is changed to non-junk from the listing page, then the access file is updated. This is by design for performance reasons. Fixing this means updating the access file on every non-junk comment and trackback. Currently comments and trackbacks that are not marked junk avoid the cost of access file update. This can be worked around by either using the listing page to mark objects non-junk, or using the configuration panel to force an access file update, or not worrying about it and letting the next automatic update to the access file fix the problem.
• Using the time limit has some possible performance implications. Because the timestamps on comment and trackbacks are stored in weblog local time instead of UTC, it is not possible to determine how old a potential junk object is without loading the weblog to which it belongs. Therefore enabling this option will cause a load of all weblogs whenever the access file is updated. In addition, rather than doing two database queries (one for comments, one for trackbacks), the update will potentially require two database queries for every weblog. The internal logic will optimize this where possible, combining queries for weblogs that have the same timezone. If all weblogs have the same timezone, then only two queries for all comments and trackbacks are done. Whether this is noticeable in a real deployment is unknown. It shouldn’t be an issue unless you have dozens of weblogs in many different timezones.

Notes

• Don’t forget to set auto-delete for feedback if you want MTAutoBan to clean up after itself.
• MTAutoBan is careful to update the access file at most once for each invocation of the MT configuration script.
• MTAutoBan has been tested on configurations with over 32,000 junk entries and over 10,000 banned addresses.
• This plugin is not quite as useful as I had hoped, due to the large number of spam sources (over 13,000 on one weblog). It does seem to do well at holding back floods. In addition, many junkers use the same zombie net so that even new attacks that get past the filters don’t generate hundreds of junk objects. I haven’t had a new attack dump more than a dozen or so junk objects since I installed MTAutoBan, whereas it was quite common before that.
• If the ban threshold is set to a non-numeric value it will be reset to the default.
• If the path is left blank, it will be reset to the default.

Performance

The overall performance characteristics of this plugin are unknown due to lack of an installed base. It has been running on all of my MT based weblogs for a couple of years without any apparent negative performance impact, but that is not conclusive.

The theory is that while updating the access file is expensive, it is significantly less expensive than loading up the MT application itself, which is done even when junk is caught by the filters. My experience has been that while there are a number of single hit junkers, there are many who flood a single weblog with a large number of requests in a short time period. It is those that MTAutoBan is designed to frustrate.

MTAutoBan does file locking on the access file and if it fails to get the lock, it cancels its access file update on the presumption that another instance of itself is already in the middle of an update. Because all addresses are updated every time², if an address is not added for this reason it will be on the next access file update so at most there is one more junk object than optimal. In exchange, the total server load per weblog is limited to a single update at any moment in time.

Support for mod_rewrite adds another level of complexity to performance issues. Because MTAutoBan is targeted at access files, it cannot use the RewriteMap directive, which is only available to the main Apache configuration file. Therefore, it uses stacked RewriteCond directives followed by a RewriteRule that rewrites all URLs to the redirection target. I have very little data on the performance impact of processing 100 - 200 RewriteCond directives each with 50 alternate clauses in their regular expression is. It’s a lot of data, but the regular expresions are all literals.

In practice, I used it briefly with ~7,000 addresses without an obvious performance impact, which is rather weak evidence. This weblog has ~5,000 addresses banned with mod_write redirection (you can see the exactly number on the upper right of this page). If there is an impact, it should show up while using the Movable Type interface. If it has, I have not noticed. It may be, however, that I happen to use or run on a lightly loaded webserver. I recomend caution when using this feature.

White listing

MTAutoBan has its own section of the .htaccess file and preserves content outside of its area when updating the file. This is done so that other, non MTAutoBan directives can be kept in the file. The most common expected use of this feature is white listing, i.e. allowing specific hosts / IP addresses access regardless of what AutoBan does. For example, if your ISP supplied IP addresses was 192.168.56.56, you might want to white list it to decrease the risk of losing access. To do that, you would put the following in the .htaccess file.

order deny,allow
allow from 192.168.56.56

This instructs the Apache webserver to favor allow from over deny from and then to allow the IP address 192.168.56.56, achieving the desired effect. The same technique can be used to permit specific proxy addresses or domains (see here for additional information). This content will be preserved by MTAutoBan.

Bugs

Versions prior to 1.0.3 had a bug where multiple instances of could interfere and scrozzle the .htaccess file. The symptoms are that any access to MT scripts causes a 500 (internal server) error. If this occurs, simply delete the .htaccess file via FTP or your webhost’s standard file management then install a version 1.0.3 or later.

History

• Version 0.1.0 - Initial version
• Version 0.2.0
  • Added check boxes for each address.
  • Added “Check all” and “Uncheck all” buttons
  • Suppressed buttons when no log data is present or it is all filtered.
• Version 0.3.0
  • Fixed a problem with the login template.
  • Fixed a bug where a missing .htaccess file would cause a spurious warning.
• Version 0.4.0
  • The plugin automatically detects which version of MTB is in use and grubs through the appropriate log data. This means that the same install works on Movable Type 2.6X and 3.1X.
• Version 1.0.0
  • Updated extensively for MT 3.2.
  • Use junk objects instead of activity log.
  • Use plugin configuration to set parameters.
  • Completely automated, no separate operation page.
• Version 1.0.1
  • Minor formatting cleanup.
  • Added “Force access file update” option.
• Version 1.0.2
  • Fixed documentation link problem.
• Version 1.0.3
  • Fixed a potential race condition where the .htaccess file could get scrozzled under high loads.
• Version 1.1
  • Added the option to time limit the potential junk objects.
  • Cleaned up the distribution so that all files are in the same plugin directory.
  • Moved code around to minimize plugin footprint when not invoked.
  • Cleaned up some language and display in the settings to be more consistent.
  • Added MT tags to display statistics.
• Version 1.1.1
  • Added MTAutoBanThreshold tag.
  • Cleaned up some code, added additional comments.
  • Cleaned up settings display for more consistent terminology, widened some input boxes.
• Version 1.1.2
  • Changed IP address sorting algorithm to be faster.
• Version 1.1.3
  • Fixed MT::PluginData library requirement for the template tags.
• Version 1.2.2
  • Added ErrorDocument support.
  • Added mod_write redirection support.
  • Added performance tuning parameters to settings.
  • Improved look and feel of settings display.
  • Verified MT 3.31 compatibility.
• Version 1.2.3
  • Fixed bug where the target URL for mod_rewrite would always be “sand-trap.php” in the access file regardless of the settings value.
• Version 1.2.4
  • Fixed a minor issue with accessing the junk score constant.
  • Updated settings HTML to work in both MT 3 and MT 4.
  • Did minor testing with MT 4.0 to verify compatibility.

¹ As of this writing, the largest observed attack was roughly 1800 distinct source addresses. These were all detected and banned with no noticeable effect on the weblog. Note that this is for posting attacks only — reading attacks are not protected against.

² You might think that it would be more efficient to do incremental updating, but it’s not. And since it’s not, it is much more robust to do everything every time.

• Tweaks to the original implementation to correct errors or provide easier use
• Extensions to existing functionality
• Additional functionality similar to but distinct from the original functionality

To install this, replace the existing file in lib/MT with the modified version. Be sure to have a backup copy of the original somewhere, although you can recover if necessary by downloading the original Movable Type distribution and copying the original file from there.

Tweaks

• publishPost will now set the post state to “PUBLISH” if it is not already. This resolves an issue I have with w.bloggar leaving new posts in “DRAFT” state. In my view, if the client calls this method to publish a post, the post should end up published, i.e. publically visible.
• editPost and newPost will now accept the trackback URLs to pick as a space separated string, in addition to an array of strings. This fixes an issue with w.bloggar.
• editPost supports modifying the author of a post. It still requires that the specified author be associated with the weblog for the post.

Extensions

MovableTypeRPC_getPost

The data returned can be controlled by the caller by specifying which fields to return.

Additional

MT::XMLRPC::getPostRange

Get a range of posts by properties.

MT::XMLRPC::getComment

Get a single comment by comment ID.

MT::XMLRPC::getCommentRange

Get a range of comments by properties.

blogid

The ID of the weblog from which to retrieve the posts.

user

A user name for an author associated with the weblog.

password

The password for the author

terms

The search terms for locating the range of posts. The available terms are

count

The maximum number of posts in the range.

before

Include only posts that were created before the time specified.

after

Include only posts that were created after the time specified.

reverse

If count is specified, then the posts are counted from latest to earliest. If this term is specified and true then the posts are counted in the reverse direction.

fields

The fields to return. If this field is not present, a default set of fields are returned to emulate the original behavior. The default set is all fields not marked “by request only”.

postid

The ID of the post.

userid

The ID of the author of the post.

mt_blogid

The ID of the weblog in which the post appears. By request only.

title

The title of the post.

description

The text in the post.

content

A synonymn for the description field. This is used by the getRecentPosts method. By request only.

mt_description_length

Length of the description. By request only.

dateCreated

Timestamp of when the post was created.

link

The URL for the post.

permaLink

Synonym for the link field.

mt_allow_pings

Whether pings are allowed.

mt_allow_comments

Whether comments are allowed

mt_convert_breaks

Text filter

mt_text_more

Extended entry text for the post

mt_excerpt

Excerpt for the post

mt_keywords

Keywords for the post

mt_status

Status (0:draft, 1:publish). By request only.

If the name and password are specified as empty strings then the call still succeeds but only published posts are returned. Draft posts are ignored.