| Bad Behavior|
Release status: stable
|Description||Blocks link spam and the robots which deliver it to your blog, forum, wiki or CMS.|
|Author(s)||Michael Hampton (Error28talk)|
|Latest version||2.2.18 (2016-01-13)|
|License||GNU Lesser General Public License 3.0 or later|
Translate the Bad Behavior extension if it is available at translatewiki.net
|Check usage and version matrix.|
The Bad Behavior extension automatically blocks harvesters, spam bots, and other funky stuff.
Bad Behavior rejects spam bots outright, sending an appropriate 4xx error code. [...]
Instead of looking at the spam, we look at the spammer. Bad Behavior analyzes the HTTP headers, IP address, and other metadata regarding the request to determine if it is spammy or malicious. [...]
When Bad Behavior looks at a request, it determines if the request matches a profile of known malicious or spammy activity, and falls outside the bounds of a normal human browsing the web. If so, the request is blocked. [...]
But because Bad Behavior intends to block no legitimate users whatsoever, it must necessarily let some things pass. Consider it your first line of defense, and back it up with a secondary line of defense in the form of a more traditional anti-spam tool for your platform.
— About page
By default, it adds a cookie which can be disabled with appropriate configuration.
It has some problems if you are using cache, in particular: 1) serving of cached wiki pages can't be blocked, only form submission will; 2) IP of last reader of a page can be shown to the next.
- Extension:AbuseFilter which is used by Wikimedia