Comments on: Excerpts Exacted; Shielding the Admin

By: Krissie

Krissie — Thu, 25 Sep 2008 05:17:08 +0000

RE: NeverForgetCerpt…

It’s a great little plugin, but I’ve just encountered a bug with it… namely that when the plugin is activated, the ability to publish immediately by just pressing the publish button when writing a post dissapears… to publish the post with the plugin active, I had to first choose “published” from the dropdown box before hitting the publish button. I don’t know if this plugin prevents scheduled publishing of a post too, but certainly it interfered with immediate publishing for me just now – I’ve, sadly, had to de-activate it.

By: Immeëmsol

Immeëmsol — Fri, 15 Aug 2008 13:28:55 +0000

Eric Meyer:
Alan: I”d do that, but I don”t know of a way for WP/PHP to forge the referer for the browser to pick up and pass along, or to just generally forge the referer. Some Googling turned up zippo, though perhaps I wasn”t using the right terms. I”ll poke around some more.

You could spoof your hostname into being their hostname (/etc/hosts)They will then see that domainname in their logs,but maybe they can still see the ip-address then, I don’t know that right now.

I found this though:
http://own-the.net/news_Hide-referer-tested-on-IE-and-FF_4.html

By: David Eldridge

David Eldridge — Fri, 01 Aug 2008 14:17:49 +0000

You can also use a more direct Google redirect/proxy, e.g. http://www.google.com/gwt/n?u=http://meyerweb.com. I am not sure if this would meet your requirement or not.

By: Andrew

Andrew — Sat, 14 Jun 2008 14:26:08 +0000

Hi, nice idea for a plugin. Changed the code a bit, now it hides the appended URL nicely on Akismet’s page, but not on the edit comments page, as the filter get_comment_author_url_link is not used there. On the other hand that clearly shows when the browser is going to be redirected.

Also changed it so only the links from not-approved comments are redirected either through hidereferer.com or anonim.to.

http://www.laptoptips.ca/wpd/wp-content/img/mw_url_obscurify.zip

By: Stephen

Stephen — Sat, 14 Jun 2008 07:15:24 +0000

Most browsers do not send the referer header on a meta refresh. That would be the method I would use– just link to your own redirect page. You would get to save bandwidth (a tiny amount), get to save time (by only clicking once and loading less pages), and get to use a deprecated method (according to the once useful W3C).

Just thought I’d throw that out as a possibility.

By: Peter Wilson

Peter Wilson — Fri, 13 Jun 2008 00:04:04 +0000

Why not put a simple file redirect.php on your server:

header("Location: " . $_GET["q"]); ?>

Using this, the url could be http://meyerweb.com/redirect.php?q=http://hamstu.com allowing a single click while avoiding the reference to the WP Admin.

Of course, this won’t work if you’re trying to avoid references to meyerweb all together.

By: Jemaleddin

Jemaleddin — Thu, 12 Jun 2008 20:26:51 +0000

@Nick: Sounds like a good job for GreaseMonkey – any takers?

By: Nick

Nick — Thu, 12 Jun 2008 16:25:39 +0000

For the Comments page, get_comment_author_url is assigned to another variable and too many things are done with the variables after that.

You could use Javascript to change all external links when viewing edit-comments.php. If I had any Javascript skills I’d give it a shot.

By: Pete Nelson

Pete Nelson — Thu, 12 Jun 2008 16:14:30 +0000

One of my boss’ favorite things to check out is how many people came to our site via a google search, and then to look at the keywords they use.

If someone wrote a common plugin that went through google to mask the referrer, we could see some very interesting side effects when we look at the keywords used to get to our site.

Even more interesting, though, is that google gives me an intermediary page when I try a URL such as you suggest. It even adds a query param to the URL – “oi=unauthorizedredirect”.

By: Devon Young

Devon Young — Thu, 12 Jun 2008 15:35:28 +0000

You might be interested in the Simple Trackback Validation plugin if you’re going through that much effort. I forget the exact link, but you can find it in my latest blog post. Funny you mention comment spam today.

By: Eric Meyer

Eric Meyer — Thu, 12 Jun 2008 15:11:21 +0000

Thanks, Shaun-- at least some small good might come from your pain. I'll also look at your suggestion, Fireball. Maybe I'll randomly switch between the two for extra obscurity! Alan: I'd do that, but I don't know of a way for WP/PHP to forge the referer for the browser to pick up and pass along, or to just generally forge the referer. Some Googling turned up zippo, though perhaps I wasn't using the right terms. I'll poke around some more.

By: Alan Gresley

Alan Gresley — Thu, 12 Jun 2008 14:32:31 +0000

Not knowing WordPress or script, I will make this suggestion in sheer ignorance.

Why not make the referrer string reflect the domain that is the possible spammer. Their logs would show their site referring to itself. This is what we see normally in our logs from inbound links but would be good payback to spammers.

By: Fireball

Fireball — Thu, 12 Jun 2008 14:08:10 +0000

There is http://anonym.to/, which gives you a slight feeling of anonymity… don’t know if it’s better, but it’s widley used in the german speaking web.

By: Shaun Inman

Shaun Inman — Thu, 12 Jun 2008 14:07:31 +0000

You want http://hiderefer.com/.

I come across this site all the time when dealing with nulled copies of Mint. Sigh.

Just add a question mark and url you want to redirect to.