… but it involves a baseball bat, knee caps, and a demonstration of one or two of Newton’s Laws.
Seem’s that someone’s figured out how to spam Movable Type comments pages. It all makes pretty grim reading.
If it’s possible to access your comments by just incrementing a number, and possible to leave a comment by just sending an HTTP POST request (yes, Movable Type users, that’s you, among others), you should know that you are vulnerable to being flooded with comments. All it takes is a moron spammer like “Mike Johnson” of “www.las-vegas-real-estate-1.com” with enough scripting ability (very little) and gall (quite a bit) to write a script that starts with your first entry number and runs through to the last, sending POST after POST with his moron spammer website link and witless comment text.
The Trotts were planning on rolling out comment registration for MT soon, and may be forced to do it sooner, but that’s a solution that nobody likes (myself included), and it’s not clear that’s a solid long-term solution, anyway.
(via ToaFD)