Nope, looks like they're used for blog spam now too. At least it looks that way from my MT logs, as I look at all the stuff that MT-Blacklist has blocked. (Mmmmm, MT-blacklist goodness. Regardless of whatever happens with MT 3.x's license, code, or fortune cookies, there's no way in hell I'm switching from the MT2.661 setup I have now if there's no blacklist equivalent for it)
Dunno whether they're generic web proxies, or blog-spam-specific things. Since the wave hit more than a week ago it's tough to tell for sure, since dynamic IP addresses for dialup machines and whatnot'll have long-since changed. There are a variety of webservers and whatnot running on some of the IP addresses now. (I almost wonder if someone's got some sort of auto-posting web-spam bug XSS exploit. Or something)
Posted by Dan at June 14, 2004 08:13 PM | TrackBack (0)Dan --
yeppers. the blog spammers are the email spammers, at least
as far as I can tell. They
certainly are the same people in the case of referrer spam,
at least...