Extension:StopForumSpam

The StopForumSpam extension allows wikis to utilize and contribute data to stopforumspam.com. It features automatic IP blocking and an easy interface for administrators to submit data. Use of the IP deny list requires that you use some kind of object caching. It won't work if you have set to CACHE_NONE. If neither APC or Memcached is an option, the simplest approach is to fallback to storing the object cache in your MySQL database. The following preset (in LocalSettings.php ) will do that:

Configuration

 * - location of an extracted IP address deny list
 * - enables a mode where users are not blocked from non-read actions after tripping the deny list

User rights

 * - allows users to bypass deny-listed IP blocks

Logging
To log reports about who StopForumSpam is exempting and blocking, you can enable the "StopForumSpam" channel in your structured logging configuration. All reports for the extension are logged at a level of INFO. If you do not have structured logging configured, you can log to a file by configuring in your LocalSettings.php, like so:

This will write the log to a file located in. MediaWiki will need access to write to this log file and the file should not accessible via the web as it will contain private details of your users (such as usernames, page names, and IP addresses).

The simple logging using will omit details compared to using a structured logging solution such as.

AbuseFilter integration
When using the, a variable named " sfs_blocked " is added. The value is false if the user is not a spammer, and true if they are a spammer.

IP blocking
You can [ https://www.stopforumspam.com/downloads download] IP deny lists, and import them using the script. StopForumSpam has several lists; we recommend using the " listed_ip_30_all " list. Once you choose the list you want, download and extract it to somewhere on your server, then point in the LocalSettings.php file at it. We recommend setting up a nightly cron job to download and extract new versions of the list and subsequently running the updateDenyList maintenance script.

If that IP tries to edit, or a user tries to edit through that IP address, they will be prevented from editing. To exempt a user from being blocked, give them the user right.