Category: Uncategorized

We have added anti-spam support for the ConvertKit and ActiveCampaign forms. All CleanTalk Anti-Spam features are available to keep safe your mailing list from spam emails.

You can protect your spam subscriptions and registrations for spam with using the CleanTalk Anti-Spam plugin and you can download the plugin from the WordPress catalog. To enable spam protection for ConvertKit and ActiveCampaign you need to activate option Protect External Forms.

Learn more about Spam Protection for Convertkit and ActiveCampaign.

Let us know if you have any questions
https://cleantalk.org/my/support

We have strengthened the verification of existing users/comments for spam. Additional parameters were added to the scan which are being taken when checking existing comments and users for spam. Changes to the checking logic have been applied to reduce memory usage.
https://cleantalk.org/help/users-check

Implemented white lists to the SpamFireWall feature. White lists only work in plugins released after Jun 01, 2020. Methods for working with the database and generating queries to the database were updated, and as a result query processing time significantly reduced and SpamFireWall accelerated.
https://cleantalk.org/help/cleantalk-spam-firewall

We have released a new version of the anti-spam plugin for OpenCart in which we have added the following updates:

Added SpamFireWall for OpenCart. Now you can block the most spam active bots until they visit the site.
Read more https://cleantalk.org/help/cleantalk-spam-firewall

Added spam protection for Journal 3 theme. One of the most popular themes for OpenCart now has spam protection for all forms except the contact form. At the moment, we have not been able to implement spam protection for the contact form for Journal 3, and we plan to implement it. To protect the Journal 3 contact form, you can use our universal anti-spam plugin.
How to install universal anti-spam plugin https://cleantalk.org/help/install-uni

How to install the anti-spam plugin for OpenCart
https://cleantalk.org/help/install-opencart

How to update the antispam plugin for OpenCart
https://cleantalk.org/help/update-opencart

We are glad and ready to answer your questions.

If you have any questions, you can contact our support team. https://cleantalk.org/my/support/open

Hello,

AddTrust External CA Root that was used to sign Sectigo Certificates expired on May 30, 2020.

Since you acquired a Sectigo/Comodo Positive SSL Certificate the statement above might be true for you.

Read more about it here: https://www.ssls.com/knowledgebase/sectigo-root-certificate-expiring-may-30-2020/

You don’t need to do anything if your website doesn’t use any web applications. When a web application connects to your website via SSL by itself, for example, a payment gateway app that gets server responses about the payment status. (PayPal will not show any errors).

However, if your website does use web applications then you may see errors in the apps and you have to reinstall the CA Bundle. To do it, follow this guide: https://www.ssls.com/knowledgebase/sectigo-root-certificate-expiring-may-30-2020/

We apologize for the inconvenience caused.

We are glad and ready to answer your questions.

If you have any questions, you can contact our support team. https://cleantalk.org/my/support/open

 
Thank you!

We launched a web version of a malicious code scanner that checks for malicious code on the pages of a website. So, you can check your website pages for a malicious code here https://cleantalk.org/website-malware-scanner.

The scanner checks the HTML code on the web page and if suspicious code is found, such as redirects, scripts, etc. it will be displayed in the results. Also in the results will be displayed all of the links that are on this page.

External links – these links lead to other web sites, be careful and make sure that all links are correct. Often, malicious code can inject hidden links into your web page code that are not visible on the page but visible to search bots.

Internal links – are links to your website, when you click on a link you can scan the corresponding page.

The web malware scanner uses the same scan engine as the CleanTalk Security Plugin.

Malicious code can be placed in different files of the website, the web scanner checks only the public part of the website (frontend). For a full scan, use our security plugin, which will perform a comprehensive scan of all the files on the website. Learn more about CleanTalk Security for a website.

Thank you!

The CleanTalk Anti-Spam team thanks to the wp01.ru site administration for their help and active participation, as a result of which we have optimized the plugin code and accelerated the work of SpamFireWall.

Thank you for your participation!

We are pleased to inform you that we have released a new service for websites Website Uptime Monitoring. 

One of the most important parameters of a website is its reliability and speed, that means a website is available to guests and customers 100% of its work time. If it’s temporary unavailable or the page load speed is very low it can greatly affect its search ranking, convenience for the visitors, its website conversion and the number of the returned customers. Therefore these parameters are crucial for your business.

• The Website Uptime Monitoring is meant to control a website work 24 hours a day and 7 days a week.
• 4 checkpoints from a different geo-locations at the same time. Each point does a check once a minute.
• The service monitors your website load speed. It shows the exact time how long it takes to load each website page.
• The statistics demonstrate changes of data in real-time, so you can identify the time of the heaviest load and see what caused such load in the first place. 
• Easy start, just add URL.

The more stable and faster your website works the better for the SEO, your visitors and your business growth. 

Let’s start uptime monitoring in 30 seconds. Stay up to date if something goes wrong.

If you have any questions, you can contact our support team su*****@cl*******.org or create a personal ticket. https://cleantalk.org/my/support/open

 
Thank you!

Everyone knows that in order for the search engine to index the page, some link must lead to this page.

Search and SEO bots check all pages on various sites and if they find a link, then follow it and index new content.

The content posted on the page is created either by the owners, authors and users of the site and this content is checked by the site team. If you think that you control all the content on your site, then you are mistaken.

You can see and moderate comments, user posts, but what if this content is not available to you, but nevertheless it is indexed and this content is spam?

Detect this type of spam is quite difficult, it is not static content on the site. Such spam is distributed through the search form on the site.

How it works

The spammer uses the site search form and enters spam text into the search bar.

Next, your site generates a new page with a unique URL. On this page will be written something like “Unfortunately on your request “Spam text” is no results”.

Now the spammer has a link to a page on your site that already has spammer text. Now he can only pass this link to the search engine and the search engine will index this content.

The danger is that you don’t even know what content was generated on your site.

It is enough for spammers to do a search with the necessary text, suppose that they post a text about your company, how to contact you and leave their email and phone, and post a link to this result. Search engines will index this page and your site will already show spammers’ contacts.

Another point related to the search, the fact is that the page with the search result is not a static page of the site. With each request, the site generates this page, i.e. uses the server’s power, and if there are a lot of such requests? With a large number of requests, the site will work slower and spammers can make a DDoS attack with such requests.

Spammers may not even visit the site or use the search form to get the desired content.

Most CMS have standard search URLs, for WordPress it looks like this www.site.com/?s= OR https://blog.cleantalk.org/?s=firewall

Therefore, it’s enough to take only the list of sites on a specific CMS and generate the necessary links, then transfer these links to the search engine and at the entrance of the search bot on such a link, the CMS will generate the necessary page.

Another dangerous point is an attempt to hack the site through the search form. We have given two examples that were used on our blog.

The request on the site may look like this www.website.local//?s=index/%5C%5Cthink%5C%5Ctemplate%5C%5Cdriver%5C%5Cfile/write&cacheFile=robots.php&content=xbshell1<?php%24password%20=%20%5C”xinba%5C”;%24ch%20=%20explode(%5C”.%5C”,%5C”hello.ass.world.er.t%5C”);array_intersect_ukey(array(%24_REQUEST%5B%24password%5D%20=>%201),%20array(1),%20%24ch%5B1%5D.%24ch%5B3%5D.%24ch%5B4%5D);?>

This is a web application attack, in this case there was an attempt to use the PHP vulnerability for remote code execution.

www.website.local//s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=assert&vars[1][]=@eval($_GET[%27fuck%27]);&fuck=fputs(fopen(base64_decode(eC5waHA),w),base64_decode(PD9waHAgZXZhbCgkX1BPU1RbeGlhb10pPz54YnNoZWxs));

That is, it can be used to hack web sites, gain access to the server, execute arbitrary code, SQL injection, steal passwords and user data.

How to protect your site from this type of attack?

The first option is to remove/disable the search on the site. Obviously, this is not the best option, but it will suit someone.

The second option is to add the noindex, nofollow tags to the search results page template. At the same time, spammers will still make requests to your site and your site will fulfill them, but search engines will not index this content. In this case, the danger of hacking the site through the search remains.

The third option is to use the CleanTalk Anti-Spam plugin. CleanTalk automatically embeds the tags prohibiting indexing of results and does not allow to fulfill requests for spam bots.

SpamFireWall blocks the most spam active bots before they reach the page of the site, which means there will be less load on the site. The probability of hacking is reduced, because requests from spam active IP addresses will be blocked, in order to fully protect against this type of attack, you need to use a web application firewall.

Learn more, how CleanTalk can protect your website from spam and malicious activity.

We are pleased to inform you that we have released a new version of the Universal Anti-Spam Plugin Version 2.1.

Significant changes have been made to this version.

One of these changes was the addition of new functionality. We have added the ability to use Spam FireWall in the Universal anti-spam plugin. Learn more about Spam FireWall here.

Another important addition is the ability to automatically uninstall the plugin. In previous versions of the plugin, there was no such possibility and it was only possible to remove the plugin manually. Now the plugin itself does this, which will simplify the use and subsequent updates of the plugin. This feature will only work from the current version.

We also added the definition of the CMS on which the plugin is installed, if there is an individual anti-spam plugin for this CMS, a notification about this will be displayed.
Some changes and additions were also made to the definition of spam parameters, which will improve the spam protection of various forms on the website.

The Universal anti-spam plugin allows you to protect any website on any CMS or custom website from spam and spam bots.

Instructions, how to install the Universal anti-spam plugin.

CleanTalk launched the finding of domains on IP addresses.

Now, the method can transmit information about the presence of a domain at a given IP address. This suggests that the IP address belongs to the hosting and it has a website.

Use the “hosted_domains parameter” – 0 | 1 show list of hosted domains on an IPv4 address.

You can also get data on the number of known domains at a given IP address and a list of known domains.
To obtain data of the number of known domains, use the parameter “domains_count”  – a number of domains found on IPv4 address. 

You can use parameter the “domains_list” to obtain a list of known domains  – list of hosted domains/sites on IPv4 address. The method shows the first 1000 domains. To get a full list of domains please use the method “domains_list ()”.

Please see the full instructions for working with the API spam_check method. https://cleantalk.org/help/api-spam-check

If you have any questions, you can ask them in the comments below or create a private ticket. https://cleantalk.org/my/support/open